Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Computer Freezes, Sound turns off, security features turn off. [Closed

Started by NicoleB89 , Feb 17 2012 07:53 PM

This topic is locked

#1
NicoleB89

Posted 17 February 2012 - 07:53 PM

Member

Member
14 posts

A few weeks ago I had a problem where my computer would freeze and they only way to fix it was to hard reset it. I assumed that it was just a minor issue so I reformatted my laptop (it hadn't been done in a while anyway). After I reformatted the problem lessened and I thought that it was solved but then I began having the same issues again albeit not as often. I honestly thought that it was a hardware issue. I began to think that it was malware when randomly the sound would stop working, I would go to start a song in itunes and it would stop being able to connect to the speakers. As well when i restart now my windows security is turned off, things like my firewall. The nail in the coffin for it being malware is that when I borrowed my friend's harddrive it said that it had a virus when he got it back. I assume that the virus ended up in my external drive and got back on my computer that way after I reformatted. So when I ran OTL I did it with my external drive plugged in.

OTL logfile created on: 2/17/2012 10:13:24 PM - Run 1
OTL by OldTimer - Version 3.2.32.0 Folder = C:\Users\Nikki\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 1.68 Gb Available Physical Memory | 55.97% Memory free
6.21 Gb Paging File | 4.88 Gb Available in Paging File | 78.66% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 116.47 Gb Free Space | 50.01% Space Free | Partition Type: NTFS
Drive D: | 7.71 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive E: | 931.51 Gb Total Space | 164.88 Gb Free Space | 17.70% Space Free | Partition Type: NTFS

Computer Name: NIKKI-PC | User Name: Nikki | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/17 22:13:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Nikki\Downloads\OTL.exe
PRC - [2012/02/17 22:08:27 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/02/14 00:22:51 | 000,481,064 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe
PRC - [2012/02/05 04:06:36 | 006,056,304 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent\BitTorrent.exe
PRC - [2012/02/05 04:03:07 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2012/01/03 09:40:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/04/05 16:46:08 | 000,288,040 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2010/03/23 13:22:26 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2010/02/26 02:03:00 | 000,495,708 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2010/02/26 02:03:00 | 000,229,458 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\stacsv.exe
PRC - [2010/02/17 15:34:40 | 000,054,568 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2009/03/03 02:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\AEstSrv.exe
PRC - [2009/01/31 22:43:30 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2008/10/29 02:59:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/05/07 17:41:14 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/05/07 17:41:12 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

========== Modules (No Company Name) ==========

MOD - [2012/02/17 22:08:26 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/02/14 00:22:49 | 014,415,144 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll
MOD - [2012/02/14 00:22:42 | 000,857,896 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll
MOD - [2012/02/14 00:22:39 | 000,091,432 | ---- | M] () -- C:\Program Files\Steam\bin\avutil-50.dll
MOD - [2012/02/14 00:22:38 | 000,914,216 | ---- | M] () -- C:\Program Files\Steam\bin\avcodec-52.dll
MOD - [2012/02/14 00:22:38 | 000,155,432 | ---- | M] () -- C:\Program Files\Steam\bin\avformat-52.dll
MOD - [2012/02/07 03:37:46 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
MOD - [2012/02/07 03:37:44 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1ba19f8efcff8ad7f972aa38ab9a15f5\System.Runtime.Remoting.ni.dll
MOD - [2012/02/07 03:37:40 | 011,800,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0a1195c6b5fab213527364c9e8b26ef0\System.Web.ni.dll
MOD - [2012/02/07 03:37:25 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\aa3e053d433c48e1e8c3f436b4de1ed3\System.Configuration.ni.dll
MOD - [2012/02/07 03:34:08 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb60f99da570cc494e27e0e8ee747e2\System.Xml.ni.dll
MOD - [2012/02/07 03:33:52 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\381fb23cb39e1a61e13b8770eb9800ba\System.Windows.Forms.ni.dll
MOD - [2012/02/07 03:33:43 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f1aa2385c0109f3059e0e6ba8b58ff68\System.Drawing.ni.dll
MOD - [2012/02/07 03:32:42 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dff86a62a525ec8dc827fe9f50298b7\System.ni.dll
MOD - [2012/02/07 03:32:32 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
MOD - [2012/02/05 04:42:27 | 008,527,008 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2012/02/05 00:15:13 | 001,691,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3266.29383__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:13 | 000,278,528 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3266.29368__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:13 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3266.29384__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:13 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3266.29380__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:13 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3266.29375__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:12 | 000,466,944 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3266.29459__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:12 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3266.29460__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:12 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3266.29438__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:12 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3266.29374__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:12 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3266.29418__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:12 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3266.29405__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:11 | 000,344,064 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3266.29424__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:11 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3266.29459__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:11 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3266.29424__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:11 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3266.29423__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:10 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3266.29458__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:08 | 000,811,008 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3266.29408__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:08 | 000,405,504 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3266.29433__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:08 | 000,081,920 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3266.29407__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:07 | 000,716,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3266.29376__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,589,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3266.29385__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3266.29417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3266.29388__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:07 | 000,225,280 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3266.29385__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3266.29416__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3266.29388__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:07 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3266.29415__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:07 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3266.29417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:06 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3266.29406__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:06 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3266.29406__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:06 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3266.29407__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:06 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3218.28677__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3218.28672__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3218.28683__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3218.28705__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3218.28685__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3218.28705__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2012/02/05 00:15:05 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2012/02/05 00:15:04 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3218.28664__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2012/02/05 00:15:04 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3218.28665__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2012/02/05 00:15:04 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3218.28686__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2012/02/05 00:15:03 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2012/02/05 00:15:03 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3218.28687__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.3218.28687__90ba9c70f846762e\DEM.OS.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3218.28688__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2012/02/05 00:15:02 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3218.28666__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2012/02/05 00:15:02 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3218.28678__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3218.28702__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3218.28727__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2012/02/05 00:15:02 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3218.28681__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3218.28678__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3218.28672__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3218.28676__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3218.28688__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2012/02/05 00:15:01 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3218.28693__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2012/02/05 00:15:01 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3218.28701__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
MOD - [2012/02/05 00:15:01 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3218.28689__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3218.28692__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3218.28692__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3218.28685__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3218.28688__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3218.28686__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3218.28693__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3218.28685__90ba9c70f846762e\APM.Foundation.dll
MOD - [2012/02/05 00:14:59 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3266.29453__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2012/02/05 00:14:59 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3266.29468__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2012/02/05 00:14:59 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3218.28672__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2012/02/05 00:14:59 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2012/02/05 00:14:59 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3218.28686__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2012/02/05 00:14:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3218.28670__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll
MOD - [2012/02/05 00:14:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3218.28678__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2012/02/05 00:14:59 | 000,014,848 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2012/02/05 00:14:59 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2012/02/05 00:14:59 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3266.29476__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll
MOD - [2012/02/05 00:14:59 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3266.29366__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2012/02/05 00:14:58 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3266.29451__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2012/02/05 00:14:58 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3218.28670__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2012/02/05 00:14:57 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3266.29379__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2012/02/05 00:14:57 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3218.28681__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2012/02/05 00:14:56 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3266.29366__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2012/02/05 00:14:56 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3266.29368__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2012/02/05 00:14:56 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3218.28682__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2012/02/05 00:14:53 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3218.28682__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2012/02/05 00:14:52 | 001,073,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3266.29372__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2012/02/05 00:14:52 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3218.28675__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2012/02/05 00:14:52 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3218.28695__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2012/02/05 00:14:51 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3266.29367__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2012/02/05 00:14:51 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2012/02/05 00:14:51 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3266.29452__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2012/02/05 00:14:50 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3266.29365__90ba9c70f846762e\APM.Server.dll
MOD - [2012/02/05 00:14:50 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3266.29366__90ba9c70f846762e\AEM.Server.dll
MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2008/12/10 17:05:52 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2008/11/17 07:29:10 | 000,054,784 | ---- | M] () -- C:\Windows\System32\bcmwlrmt.dll

========== Win32 Services (SafeList) ==========

SRV - [2012/02/14 00:22:51 | 000,481,064 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/01/03 09:40:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/02/26 02:03:00 | 000,229,458 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\stacsv.exe -- (STacSV)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/03/03 02:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\AEstSrv.exe -- (AESTFilters)
SRV - [2008/05/07 17:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/01/20 22:53:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - [2011/04/27 15:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/04/15 13:36:40 | 000,252,536 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2010/02/26 02:03:00 | 000,423,424 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2009/03/19 17:02:00 | 000,271,552 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA009Vid.sys -- (OA009Vid)
DRV - [2009/03/06 07:30:08 | 000,133,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA009Ufd.sys -- (OA009Ufd)
DRV - [2008/12/10 18:30:58 | 004,172,288 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008/11/17 07:29:08 | 000,018,424 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcm42rly.sys -- (BCM42RLY)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/02/17 22:08:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/02/05 00:25:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nikki\AppData\Roaming\Mozilla\Extensions
[2012/02/14 02:35:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nikki\AppData\Roaming\Mozilla\Firefox\Profiles\fghh76ve.default\extensions
[2012/02/12 15:24:00 | 000,012,703 | ---- | M] () -- C:\Users\Nikki\AppData\Roaming\Mozilla\Firefox\Profiles\fghh76ve.default\searchplugins\imdb.xml
[2012/02/06 01:20:10 | 000,002,057 | ---- | M] () -- C:\Users\Nikki\AppData\Roaming\Mozilla\Firefox\Profiles\fghh76ve.default\searchplugins\youtube-video-search.xml
[2012/02/05 00:25:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
() (No name found) -- C:\USERS\NIKKI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FGHH76VE.DEFAULT\EXTENSIONS\[email protected]
[2012/02/17 22:08:27 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/01/29 10:06:35 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/29 10:06:35 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2006/09/18 18:11:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [BitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{69CC0513-0734-4C21-8E96-E8FD5B881585}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Nikki\Downloads\1024-768-200215.jpg
O24 - Desktop BackupWallPaper: C:\Users\Nikki\Downloads\1024-768-200215.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 18:13:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{666d8bd9-4fcb-11e1-82d4-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{666d8bd9-4fcb-11e1-82d4-806e6f6e6963}\Shell\AutoRun\command - "" = D:\install.EXE id= ver=1.0.0.0
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/14 00:28:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Steam
[2012/02/14 00:28:15 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2012/02/10 20:34:55 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Apps
[2012/02/10 11:33:37 | 000,000,000 | ---D | C] -- C:\84b3d0aeb03e2131f7894c1ec4
[2012/02/10 11:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2012/02/09 08:39:49 | 000,000,000 | ---D | C] -- C:\9a08bb087125bcee0265d4
[2012/02/08 03:16:48 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\WinRAR
[2012/02/08 03:16:47 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/02/08 03:16:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/02/08 03:16:41 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012/02/07 23:38:34 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2012/02/06 14:41:54 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Adobe Photoshop CS5.1
[2012/02/06 14:39:18 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012/02/06 14:39:15 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Download Assistant
[2012/02/06 13:55:41 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Documents\OneNote Notebooks
[2012/02/06 10:40:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2012/02/05 23:49:30 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Documents\My Received Files
[2012/02/05 23:26:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InterActual
[2012/02/05 23:26:46 | 000,000,000 | ---D | C] -- C:\Program Files\InterActual
[2012/02/05 22:48:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012/02/05 22:48:51 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Adobe
[2012/02/05 22:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/02/05 22:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/02/05 22:46:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/02/05 22:44:37 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Solid State Networks
[2012/02/05 18:29:53 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\IceChat
[2012/02/05 18:28:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IceChat7
[2012/02/05 18:28:21 | 000,000,000 | ---D | C] -- C:\Program Files\IceChat7
[2012/02/05 16:28:37 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\vlc
[2012/02/05 04:56:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/02/05 04:54:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2012/02/05 04:53:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2012/02/05 04:53:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012/02/05 04:51:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2012/02/05 04:48:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2012/02/05 04:45:09 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Microsoft Help
[2012/02/05 04:44:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012/02/05 04:44:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012/02/05 04:31:37 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2012/02/05 04:28:14 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2012/02/05 04:12:22 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/02/05 04:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrent
[2012/02/05 04:04:08 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\BitTorrent
[2012/02/05 04:02:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2012/02/05 04:02:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2012/02/05 04:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2012/02/05 04:01:46 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012/02/05 04:01:00 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012/02/05 04:00:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\OEM
[2012/02/05 03:48:01 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Apple Computer
[2012/02/05 03:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
[2012/02/05 03:40:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\ENU
[2012/02/05 03:40:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2012/02/05 03:39:34 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2012/02/05 03:17:46 | 000,000,000 | ---D | C] -- C:\Program Files\DellTPad
[2012/02/05 03:05:18 | 000,527,360 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll
[2012/02/05 03:04:54 | 012,460,124 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtcpl.cpl
[2012/02/05 03:04:54 | 003,350,528 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stlang.dll
[2012/02/05 03:04:54 | 000,536,576 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtmini1.exe
[2012/02/05 03:03:32 | 000,175,616 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\st326272.dll
[2012/02/05 02:39:21 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\ATI
[2012/02/05 02:39:21 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\ATI
[2012/02/05 02:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012/02/05 02:38:29 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Apple Computer
[2012/02/05 01:27:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/02/05 01:26:32 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2012/02/05 01:24:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2012/02/05 01:22:47 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/02/05 01:22:02 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/02/05 01:22:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/02/05 01:22:02 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/02/05 01:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2012/02/05 01:19:27 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Apple
[2012/02/05 01:19:12 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012/02/05 01:10:49 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/02/05 01:09:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/02/05 01:09:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/02/05 01:02:59 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Tracing
[2012/02/05 01:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2012/02/05 00:59:49 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2012/02/05 00:59:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2012/02/05 00:59:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2012/02/05 00:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2012/02/05 00:59:04 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012/02/05 00:57:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2012/02/05 00:57:03 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Macromedia
[2012/02/05 00:57:02 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Adobe
[2012/02/05 00:56:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2012/02/05 00:45:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/02/05 00:36:52 | 000,945,664 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapo.dll
[2012/02/05 00:36:52 | 000,423,424 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\drivers\stwrt.sys
[2012/02/05 00:36:52 | 000,405,504 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stcplx.dll
[2012/02/05 00:36:43 | 000,000,000 | ---D | C] -- C:\Windows\System32\SRSLabs
[2012/02/05 00:35:48 | 000,000,000 | ---D | C] -- C:\Program Files\IDT
[2012/02/05 00:28:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012/02/05 00:25:51 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2012/02/05 00:25:30 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Mozilla
[2012/02/05 00:25:30 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Mozilla
[2012/02/05 00:25:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/02/05 00:24:56 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless
[2012/02/05 00:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\no-NO
[2012/02/05 00:16:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\vs08
[2012/02/05 00:14:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2012/02/05 00:12:14 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012/02/05 00:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/02/05 00:08:48 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012/02/05 00:08:38 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\InstallShield
[2012/02/05 00:04:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\vmm32
[2012/02/05 00:04:17 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2012/02/05 00:03:48 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012/02/05 00:01:17 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/02/05 00:01:17 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Searches
[2012/02/05 00:01:17 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/02/05 00:01:06 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Identities
[2012/02/05 00:01:04 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Contacts
[2012/02/05 00:01:03 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\VirtualStore
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\AppData\Local\Temporary Internet Files
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Templates
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Start Menu
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Local Settings
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\AppData\Local\History
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\AppData\Local\Application Data
[2012/02/05 00:00:58 | 000,000,000 | --SD | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Videos
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Saved Games
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Pictures
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Music
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Links
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Favorites
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Downloads
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Documents
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Desktop
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\SendTo
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Recent
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\PrintHood
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\NetHood
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Documents\My Videos
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Documents\My Pictures
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Documents\My Music
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\My Documents
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Cookies
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Application Data
[2012/02/05 00:00:58 | 000,000,000 | -H-D | C] -- C:\Users\Nikki\AppData
[2012/02/05 00:00:58 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Temp
[2012/02/05 00:00:58 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Microsoft
[2012/02/05 00:00:58 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Media Center Programs

========== Files - Modified Within 30 Days ==========

[2012/02/17 22:15:59 | 000,606,602 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/02/17 22:15:59 | 000,105,170 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/02/17 22:13:15 | 000,073,728 | ---- | M] () -- C:\Users\Nikki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/17 21:37:58 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/17 21:37:58 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/17 19:38:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/15 23:32:29 | 3217,416,192 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/11 15:37:23 | 000,916,588 | ---- | M] () -- C:\Users\Nikki\Documents\Brat Pack.jpg
[2012/02/11 15:14:56 | 000,598,609 | ---- | M] () -- C:\Users\Nikki\Documents\LOTR.jpg
[2012/02/08 02:34:21 | 003,727,944 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/08 02:12:36 | 000,726,844 | ---- | M] () -- C:\Users\Nikki\Documents\Diesel Marathon.jpg
[2012/02/08 02:10:13 | 018,948,808 | ---- | M] () -- C:\Users\Nikki\Documents\Untitled-1.psd
[2012/02/06 14:39:15 | 000,000,912 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Download Assistant.lnk
[2012/02/06 13:55:40 | 000,001,111 | ---- | M] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
[2012/02/05 22:47:43 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012/02/05 18:28:24 | 000,000,804 | ---- | M] () -- C:\Users\Nikki\Desktop\IceChat.lnk
[2012/02/05 16:42:06 | 000,135,168 | ---- | M] () -- C:\Users\Nikki\Desktop\pattern.exe
[2012/02/05 04:13:25 | 000,047,092 | ---- | M] () -- C:\Windows\System32\license.rtf
[2012/02/05 04:13:01 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2012/02/05 04:02:40 | 000,000,786 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2012/02/05 04:00:46 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2012/02/05 03:18:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2012/02/05 03:18:08 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/02/05 02:36:24 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2012/02/05 01:27:04 | 000,001,664 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/02/05 01:24:07 | 000,000,859 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2012/02/05 01:03:08 | 000,000,680 | ---- | M] () -- C:\Users\Nikki\AppData\Local\d3d9caps.dat
[2012/02/05 00:58:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2012/02/05 00:46:36 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/02/05 00:31:24 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2012/02/05 00:25:20 | 000,000,870 | ---- | M] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/02/05 00:25:20 | 000,000,846 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/02/05 00:17:32 | 000,773,890 | ---- | M] () -- C:\Windows\System32\oem4.inf

========== Files Created - No Company Name ==========

[2012/02/11 15:37:20 | 000,916,588 | ---- | C] () -- C:\Users\Nikki\Documents\Brat Pack.jpg
[2012/02/11 15:14:52 | 000,598,609 | ---- | C] () -- C:\Users\Nikki\Documents\LOTR.jpg
[2012/02/08 20:09:17 | 3217,416,192 | -HS- | C] () -- C:\hiberfil.sys
[2012/02/08 02:12:31 | 000,726,844 | ---- | C] () -- C:\Users\Nikki\Documents\Diesel Marathon.jpg
[2012/02/08 02:00:19 | 018,948,808 | ---- | C] () -- C:\Users\Nikki\Documents\Untitled-1.psd
[2012/02/07 23:38:22 | 000,001,016 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.1.lnk
[2012/02/07 23:36:56 | 000,000,978 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.1.lnk
[2012/02/07 23:36:35 | 000,001,071 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.5.lnk
[2012/02/07 23:35:38 | 000,001,172 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.5.lnk
[2012/02/07 23:35:32 | 000,001,340 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS5.5.lnk
[2012/02/07 23:35:01 | 000,000,874 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2012/02/06 14:39:15 | 000,000,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
[2012/02/06 14:39:15 | 000,000,912 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Download Assistant.lnk
[2012/02/06 13:55:40 | 000,001,111 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
[2012/02/06 02:18:00 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2012/02/06 02:18:00 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2012/02/06 02:17:56 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2012/02/06 01:30:00 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2012/02/06 01:30:00 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2012/02/06 01:29:59 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2012/02/05 22:47:43 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012/02/05 22:47:43 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/02/05 18:28:24 | 000,000,804 | ---- | C] () -- C:\Users\Nikki\Desktop\IceChat.lnk
[2012/02/05 16:42:06 | 000,135,168 | ---- | C] () -- C:\Users\Nikki\Desktop\pattern.exe
[2012/02/05 04:13:01 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2012/02/05 04:02:40 | 000,000,786 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2012/02/05 04:00:27 | 000,000,024 | RH-- | C] () -- C:\Windows\dell_version
[2012/02/05 03:47:02 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2012/02/05 03:18:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2012/02/05 03:18:08 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/02/05 03:12:24 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2012/02/05 02:36:24 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/02/05 01:27:04 | 000,001,664 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/02/05 01:24:07 | 000,000,859 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2012/02/05 01:19:17 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/02/05 00:58:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2012/02/05 00:46:36 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/02/05 00:45:47 | 000,001,808 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/02/05 00:45:12 | 000,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2012/02/05 00:34:21 | 000,073,728 | ---- | C] () -- C:\Users\Nikki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/05 00:31:24 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2012/02/05 00:28:16 | 000,057,656 | ---- | C] () -- C:\Windows\System32\drivers\OA009PC.bmp
[2012/02/05 00:28:16 | 000,022,951 | ---- | C] () -- C:\Windows\System32\drivers\OA009PC.jpg
[2012/02/05 00:28:16 | 000,004,212 | ---- | C] () -- C:\Windows\OA009.uns
[2012/02/05 00:25:20 | 000,000,870 | ---- | C] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/02/05 00:25:20 | 000,000,846 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/02/05 00:25:19 | 000,000,858 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/02/05 00:23:53 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2012/02/05 00:23:52 | 000,001,591 | ---- | C] () -- C:\Windows\System32\Uninst_EAPModules.bat
[2012/02/05 00:23:47 | 000,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2012/02/05 00:23:44 | 000,026,112 | ---- | C] () -- C:\Windows\System32\WLTRYSVC.EXE
[2012/02/05 00:18:03 | 000,773,890 | ---- | C] () -- C:\Windows\System32\oem4.inf
[2012/02/05 00:16:52 | 000,000,416 | ---- | C] () -- C:\Windows\System32\vcredist_x86.bat
[2012/02/05 00:08:48 | 006,416,928 | ---- | C] () -- C:\Windows\System\DriveIcon.dll
[2012/02/05 00:01:18 | 000,000,949 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/02/05 00:01:16 | 000,000,944 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2012/02/05 00:01:04 | 000,000,915 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2012/02/05 00:01:00 | 000,000,680 | ---- | C] () -- C:\Users\Nikki\AppData\Local\d3d9caps.dat
[2012/02/05 00:00:58 | 000,000,258 | ---- | C] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/02/05 00:00:58 | 000,000,240 | ---- | C] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/04/26 19:56:34 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2011/04/26 19:56:34 | 000,180,720 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/04/26 19:56:34 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2011/04/26 19:56:34 | 000,081,920 | ---- | C] () -- C:\Windows\System32\ATIODE.exe
[2011/04/26 19:56:34 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe
[2006/11/02 09:27:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 09:17:37 | 003,727,944 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 09:05:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 07:03:01 | 000,606,602 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 07:03:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 07:03:01 | 000,105,170 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 07:03:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:53:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 05:28:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:49:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 04:10:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:55:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== LOP Check ==========

[2012/02/17 22:16:29 | 000,000,000 | ---D | M] -- C:\Users\Nikki\AppData\Roaming\BitTorrent
[2012/02/06 14:39:18 | 000,000,000 | ---D | M] -- C:\Users\Nikki\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012/02/13 13:23:38 | 000,014,896 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

Thanks for your help!

#2
Essexboy

Posted 03 March 2012 - 09:15 AM

GeekU Moderator

Retired Staff
69,964 posts

Hi there and sorry for the delay, could you update me on the current problems please

Download OTL to your Desktop

Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
Select All Users
Under the Custom Scan box paste this in
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
consrv.dll
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS /s
C:\Windows\assembly\tmp\U\*.* /s
%Temp%\smtmp\1\*.*
%Temp%\smtmp\2\*.*
%Temp%\smtmp\3\*.*
%Temp%\smtmp\4\*.*
CREATERESTOREPOINT
Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Post both logs

THEN

Download aswMBR.exe ( 1.8mb ) to your desktop.
Double click the aswMBR.exe to run it Click the "Scan" button to start scan

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

Posted Image

AND FINALLY

Please download GetPartitions from the link bellow. You must right click on the link and choose Save as.... Save it as GetPartitions.bat on your desktop

getpartitions.bat

Double click it to run it (If running Vista or Windows 7, right click on it and select "Run as an Administrator").
It will produce C:\DiskReport.txt log please post results from that log here to me.

#3
NicoleB89

Posted 03 March 2012 - 03:52 PM

Member

Topic Starter
Member
14 posts

Okay, the OTL did not produce an extras log and the getpartitions did not even though I followed the directions exactly. I clicked run as administrator and it popped up with a command screen said one line closed and the getpartitions icon was gone from my desktop and no file was produced. The symptoms are the same as before, although sometimes flash player will not work in Mozilla even though it is up to date. And when my sound won't work my iTunes won't work; the song stays at 0:00.
Here are the other logs:

OTL logfile created on: 3/3/2012 6:03:36 PM - Run 3
OTL by OldTimer - Version 3.2.32.0 Folder = C:\Users\Nikki\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 1.85 Gb Available Physical Memory | 61.64% Memory free
6.21 Gb Paging File | 5.11 Gb Available in Paging File | 82.20% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 112.27 Gb Free Space | 48.21% Space Free | Partition Type: NTFS
Drive E: | 931.51 Gb Total Space | 140.77 Gb Free Space | 15.11% Space Free | Partition Type: NTFS

Computer Name: NIKKI-PC | User Name: Nikki | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/18 15:25:35 | 000,650,104 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent\BitTorrent.exe
PRC - [2012/02/17 22:13:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Nikki\Desktop\OTL.exe
PRC - [2012/01/03 09:40:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/03/15 17:59:32 | 000,312,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2010/04/05 16:46:08 | 000,288,040 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2010/03/23 13:22:26 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2010/02/26 02:03:00 | 000,495,708 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2010/02/26 02:03:00 | 000,229,458 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\stacsv.exe
PRC - [2010/02/17 15:34:40 | 000,054,568 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2009/03/03 02:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\AEstSrv.exe
PRC - [2009/01/31 22:43:30 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2008/10/29 02:59:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/05/07 17:41:14 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/05/07 17:41:12 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

========== Modules (No Company Name) ==========

MOD - [2012/02/07 03:37:46 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
MOD - [2012/02/07 03:37:44 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1ba19f8efcff8ad7f972aa38ab9a15f5\System.Runtime.Remoting.ni.dll
MOD - [2012/02/07 03:37:40 | 011,800,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0a1195c6b5fab213527364c9e8b26ef0\System.Web.ni.dll
MOD - [2012/02/07 03:37:25 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\aa3e053d433c48e1e8c3f436b4de1ed3\System.Configuration.ni.dll
MOD - [2012/02/07 03:34:08 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb60f99da570cc494e27e0e8ee747e2\System.Xml.ni.dll
MOD - [2012/02/07 03:33:52 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\381fb23cb39e1a61e13b8770eb9800ba\System.Windows.Forms.ni.dll
MOD - [2012/02/07 03:33:43 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f1aa2385c0109f3059e0e6ba8b58ff68\System.Drawing.ni.dll
MOD - [2012/02/07 03:32:42 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dff86a62a525ec8dc827fe9f50298b7\System.ni.dll
MOD - [2012/02/07 03:32:32 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
MOD - [2012/02/05 00:15:13 | 001,691,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3266.29383__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:13 | 000,278,528 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3266.29368__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:13 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3266.29384__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:13 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3266.29380__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:13 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3266.29375__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:12 | 000,466,944 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3266.29459__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:12 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3266.29460__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:12 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3266.29438__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:12 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3266.29374__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:12 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3266.29418__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:12 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3266.29405__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:11 | 000,344,064 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3266.29424__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:11 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3266.29459__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:11 | 000,094,208 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3266.29424__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:11 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3266.29423__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:10 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3266.29458__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:08 | 000,811,008 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3266.29408__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:08 | 000,405,504 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3266.29433__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:08 | 000,081,920 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3266.29407__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:07 | 000,716,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3266.29376__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,589,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3266.29385__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3266.29417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3266.29388__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
MOD - [2012/02/05 00:15:07 | 000,225,280 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3266.29385__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3266.29416__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:07 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3266.29388__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:07 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3266.29415__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:07 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3266.29417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:06 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3266.29406__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2012/02/05 00:15:06 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3266.29406__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:06 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3266.29407__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2012/02/05 00:15:06 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3218.28677__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3218.28672__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3218.28683__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3218.28705__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3218.28685__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2012/02/05 00:15:06 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3218.28705__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2012/02/05 00:15:05 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2012/02/05 00:15:04 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3218.28664__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2012/02/05 00:15:04 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3218.28665__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2012/02/05 00:15:04 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3218.28686__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2012/02/05 00:15:03 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2012/02/05 00:15:03 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3218.28687__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.3218.28687__90ba9c70f846762e\DEM.OS.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3218.28688__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2012/02/05 00:15:03 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2012/02/05 00:15:02 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3218.28666__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2012/02/05 00:15:02 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3218.28678__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3218.28702__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3218.28727__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2012/02/05 00:15:02 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3218.28681__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3218.28678__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3218.28672__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3218.28676__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2012/02/05 00:15:02 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3218.28688__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2012/02/05 00:15:01 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3218.28693__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2012/02/05 00:15:01 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3218.28701__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
MOD - [2012/02/05 00:15:01 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3218.28689__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3218.28692__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3218.28692__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3218.28694__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3218.28685__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3218.28690__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3218.28688__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3218.28686__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3218.28693__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2012/02/05 00:15:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3218.28685__90ba9c70f846762e\APM.Foundation.dll
MOD - [2012/02/05 00:14:59 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3266.29453__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2012/02/05 00:14:59 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3266.29468__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2012/02/05 00:14:59 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3218.28672__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2012/02/05 00:14:59 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2012/02/05 00:14:59 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3218.28686__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2012/02/05 00:14:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3218.28670__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll
MOD - [2012/02/05 00:14:59 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3218.28678__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2012/02/05 00:14:59 | 000,014,848 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2012/02/05 00:14:59 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2012/02/05 00:14:59 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3266.29476__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll
MOD - [2012/02/05 00:14:59 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3266.29366__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2012/02/05 00:14:58 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3266.29451__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2012/02/05 00:14:58 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3218.28670__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2012/02/05 00:14:57 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3266.29379__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2012/02/05 00:14:57 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3218.28681__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2012/02/05 00:14:56 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3266.29366__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2012/02/05 00:14:56 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3266.29368__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2012/02/05 00:14:56 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3218.28682__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2012/02/05 00:14:53 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3218.28682__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2012/02/05 00:14:52 | 001,073,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3266.29372__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2012/02/05 00:14:52 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3218.28675__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2012/02/05 00:14:52 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3218.28695__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2012/02/05 00:14:51 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3266.29367__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2012/02/05 00:14:51 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2012/02/05 00:14:51 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3266.29452__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2012/02/05 00:14:50 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3266.29365__90ba9c70f846762e\APM.Server.dll
MOD - [2012/02/05 00:14:50 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3266.29366__90ba9c70f846762e\AEM.Server.dll
MOD - [2012/01/09 19:44:20 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2008/12/10 17:05:52 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2008/11/17 07:29:10 | 000,054,784 | ---- | M] () -- C:\Windows\System32\bcmwlrmt.dll

========== Win32 Services (SafeList) ==========

SRV - [2012/02/27 12:25:07 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/01/03 09:40:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/02/26 02:03:00 | 000,229,458 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\stacsv.exe -- (STacSV)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/03/03 02:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_0145da1d\AEstSrv.exe -- (AESTFilters)
SRV - [2008/05/07 17:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/01/20 22:53:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - [2011/04/27 15:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/04/15 13:36:40 | 000,252,536 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2010/02/26 02:03:00 | 000,423,424 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2009/03/19 17:02:00 | 000,271,552 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA009Vid.sys -- (OA009Vid)
DRV - [2009/03/06 07:30:08 | 000,133,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA009Ufd.sys -- (OA009Ufd)
DRV - [2008/12/10 18:30:58 | 004,172,288 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008/11/17 07:29:08 | 000,018,424 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcm42rly.sys -- (BCM42RLY)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3710531815-1547149420-105203629-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3710531815-1547149420-105203629-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/02/17 22:08:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/02/05 00:25:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nikki\AppData\Roaming\Mozilla\Extensions
[2012/02/14 02:35:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nikki\AppData\Roaming\Mozilla\Firefox\Profiles\fghh76ve.default\extensions
[2012/02/12 15:24:00 | 000,012,703 | ---- | M] () -- C:\Users\Nikki\AppData\Roaming\Mozilla\Firefox\Profiles\fghh76ve.default\searchplugins\imdb.xml
[2012/02/06 01:20:10 | 000,002,057 | ---- | M] () -- C:\Users\Nikki\AppData\Roaming\Mozilla\Firefox\Profiles\fghh76ve.default\searchplugins\youtube-video-search.xml
[2012/02/26 17:42:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/02/26 17:42:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
() (No name found) -- C:\USERS\NIKKI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FGHH76VE.DEFAULT\EXTENSIONS\[email protected]
[2012/02/17 22:08:27 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/01/29 10:06:35 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/29 10:06:35 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2006/09/18 18:11:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-3710531815-1547149420-105203629-1000..\Run: [BitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-3710531815-1547149420-105203629-1000..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-3710531815-1547149420-105203629-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O9 - Extra Button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{69CC0513-0734-4C21-8E96-E8FD5B881585}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Nikki\Downloads\1024-768-200215.jpg
O24 - Desktop BackupWallPaper: C:\Users\Nikki\Downloads\1024-768-200215.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 18:13:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{666d8bd9-4fcb-11e1-82d4-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{666d8bd9-4fcb-11e1-82d4-806e6f6e6963}\Shell\AutoRun\command - "" = D:\install.EXE id= ver=1.0.0.0
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/03/01 15:09:55 | 012,460,124 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtcpl.cpl
[2012/03/01 15:09:55 | 003,350,528 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stlang.dll
[2012/03/01 15:09:55 | 000,536,576 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtmini1.exe
[2012/02/26 17:42:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/02/26 17:42:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/02/26 17:41:35 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/02/22 23:13:50 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2012/02/22 23:12:35 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\HPAppData
[2012/02/22 23:12:27 | 000,000,000 | ---D | C] -- C:\ProgramData\HPSSUPPLY
[2012/02/22 23:11:43 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant
[2012/02/22 23:11:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2012/02/22 23:10:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2012/02/22 23:09:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2012/02/22 23:07:53 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012/02/22 23:06:42 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2012/02/17 22:12:56 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Nikki\Desktop\OTL.exe
[2012/02/14 00:28:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Steam
[2012/02/14 00:28:15 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2012/02/10 20:34:55 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Apps
[2012/02/10 11:33:37 | 000,000,000 | ---D | C] -- C:\84b3d0aeb03e2131f7894c1ec4
[2012/02/10 11:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2012/02/09 08:39:49 | 000,000,000 | ---D | C] -- C:\9a08bb087125bcee0265d4
[2012/02/08 03:16:48 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\WinRAR
[2012/02/08 03:16:47 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/02/08 03:16:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/02/08 03:16:41 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012/02/07 23:38:34 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2012/02/06 14:41:54 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Adobe Photoshop CS5.1
[2012/02/06 14:39:18 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012/02/06 14:39:15 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Download Assistant
[2012/02/06 13:55:41 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Documents\OneNote Notebooks
[2012/02/06 10:40:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2012/02/05 23:49:30 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Documents\My Received Files
[2012/02/05 23:26:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InterActual
[2012/02/05 23:26:46 | 000,000,000 | ---D | C] -- C:\Program Files\InterActual
[2012/02/05 22:48:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012/02/05 22:48:51 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Adobe
[2012/02/05 22:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/02/05 22:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/02/05 22:46:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/02/05 18:29:53 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\IceChat
[2012/02/05 18:28:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IceChat7
[2012/02/05 18:28:21 | 000,000,000 | ---D | C] -- C:\Program Files\IceChat7
[2012/02/05 16:28:37 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\vlc
[2012/02/05 04:56:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/02/05 04:54:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2012/02/05 04:53:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2012/02/05 04:53:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012/02/05 04:51:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2012/02/05 04:48:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2012/02/05 04:45:09 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Microsoft Help
[2012/02/05 04:44:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012/02/05 04:44:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012/02/05 04:31:37 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2012/02/05 04:28:14 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2012/02/05 04:12:22 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/02/05 04:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrent
[2012/02/05 04:04:08 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\BitTorrent
[2012/02/05 04:02:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2012/02/05 04:02:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2012/02/05 04:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2012/02/05 04:01:46 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012/02/05 04:01:00 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012/02/05 04:00:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\OEM
[2012/02/05 03:48:01 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Apple Computer
[2012/02/05 03:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
[2012/02/05 03:40:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\ENU
[2012/02/05 03:40:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2012/02/05 03:39:34 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2012/02/05 03:17:46 | 000,000,000 | ---D | C] -- C:\Program Files\DellTPad
[2012/02/05 03:03:32 | 000,175,616 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\st326272.dll
[2012/02/05 02:39:21 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\ATI
[2012/02/05 02:39:21 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\ATI
[2012/02/05 02:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012/02/05 02:38:29 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Apple Computer
[2012/02/05 01:27:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/02/05 01:26:32 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2012/02/05 01:24:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2012/02/05 01:22:47 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/02/05 01:22:02 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/02/05 01:22:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/02/05 01:22:02 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/02/05 01:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2012/02/05 01:19:27 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Apple
[2012/02/05 01:19:12 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012/02/05 01:10:49 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/02/05 01:09:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/02/05 01:09:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/02/05 01:02:59 | 000,000,000 | ---D | C] -- C:\Users\Nikki\Tracing
[2012/02/05 01:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2012/02/05 00:59:49 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2012/02/05 00:59:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2012/02/05 00:59:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2012/02/05 00:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2012/02/05 00:59:04 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012/02/05 00:57:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2012/02/05 00:57:03 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Macromedia
[2012/02/05 00:57:02 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Adobe
[2012/02/05 00:56:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2012/02/05 00:45:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/02/05 00:36:52 | 000,527,360 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll
[2012/02/05 00:36:52 | 000,423,424 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\drivers\stwrt.sys
[2012/02/05 00:36:52 | 000,405,504 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stcplx.dll
[2012/02/05 00:36:43 | 000,000,000 | ---D | C] -- C:\Windows\System32\SRSLabs
[2012/02/05 00:35:48 | 000,000,000 | ---D | C] -- C:\Program Files\IDT
[2012/02/05 00:28:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012/02/05 00:25:51 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2012/02/05 00:25:30 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Mozilla
[2012/02/05 00:25:30 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Mozilla
[2012/02/05 00:25:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/02/05 00:24:56 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless
[2012/02/05 00:17:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\no-NO
[2012/02/05 00:16:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\vs08
[2012/02/05 00:14:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2012/02/05 00:12:14 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012/02/05 00:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/02/05 00:08:48 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012/02/05 00:08:38 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\InstallShield
[2012/02/05 00:04:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\vmm32
[2012/02/05 00:04:17 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2012/02/05 00:03:48 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012/02/05 00:01:17 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/02/05 00:01:17 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Searches
[2012/02/05 00:01:17 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/02/05 00:01:06 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Identities
[2012/02/05 00:01:04 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Contacts
[2012/02/05 00:01:03 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\VirtualStore
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\AppData\Local\Temporary Internet Files
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Templates
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Start Menu
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Local Settings
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\AppData\Local\History
[2012/02/05 00:00:59 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\AppData\Local\Application Data
[2012/02/05 00:00:58 | 000,000,000 | --SD | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Videos
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Saved Games
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Pictures
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Music
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Links
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Favorites
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Downloads
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Documents
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\Desktop
[2012/02/05 00:00:58 | 000,000,000 | R--D | C] -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\SendTo
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Recent
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\PrintHood
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\NetHood
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Documents\My Videos
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Documents\My Pictures
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Documents\My Music
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\My Documents
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Cookies
[2012/02/05 00:00:58 | 000,000,000 | -HSD | C] -- C:\Users\Nikki\Application Data
[2012/02/05 00:00:58 | 000,000,000 | -H-D | C] -- C:\Users\Nikki\AppData
[2012/02/05 00:00:58 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Temp
[2012/02/05 00:00:58 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Local\Microsoft
[2012/02/05 00:00:58 | 000,000,000 | ---D | C] -- C:\Users\Nikki\AppData\Roaming\Media Center Programs

========== Files - Modified Within 30 Days ==========

[2012/03/03 18:05:25 | 000,606,602 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/03/03 18:05:25 | 000,105,170 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/03/03 17:32:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/03 14:55:38 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/03 14:55:38 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/02 18:11:49 | 000,000,680 | ---- | M] () -- C:\Users\Nikki\AppData\Local\d3d9caps.dat
[2012/03/02 11:36:48 | 3217,416,192 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/01 01:46:50 | 000,109,568 | ---- | M] () -- C:\Users\Nikki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/29 19:38:17 | 003,728,000 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/28 14:36:49 | 000,610,758 | ---- | M] () -- C:\Users\Nikki\Documents\Scroll SW.jpg
[2012/02/28 14:32:27 | 000,773,781 | ---- | M] () -- C:\Users\Nikki\Documents\Keyboard.jpg
[2012/02/28 14:30:56 | 000,627,043 | ---- | M] () -- C:\Users\Nikki\Documents\ignorance.jpg
[2012/02/28 14:28:39 | 000,694,401 | ---- | M] () -- C:\Users\Nikki\Documents\900 years.jpg
[2012/02/28 14:27:04 | 000,744,719 | ---- | M] () -- C:\Users\Nikki\Documents\Clone war vet.jpg
[2012/02/28 14:25:16 | 000,494,877 | ---- | M] () -- C:\Users\Nikki\Documents\Star wars background.jpg
[2012/02/27 13:42:39 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\WebReg Deskjet D2400 series.job
[2012/02/22 23:13:44 | 000,137,623 | ---- | M] () -- C:\Windows\HPHins15.dat
[2012/02/22 23:11:06 | 000,001,972 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2012/02/17 22:13:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Nikki\Desktop\OTL.exe
[2012/02/11 15:37:23 | 000,916,588 | ---- | M] () -- C:\Users\Nikki\Documents\Brat Pack.jpg
[2012/02/11 15:14:56 | 000,598,609 | ---- | M] () -- C:\Users\Nikki\Documents\LOTR.jpg
[2012/02/08 02:12:36 | 000,726,844 | ---- | M] () -- C:\Users\Nikki\Documents\Diesel Marathon.jpg
[2012/02/08 02:10:13 | 018,948,808 | ---- | M] () -- C:\Users\Nikki\Documents\Untitled-1.psd
[2012/02/06 14:39:15 | 000,000,912 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Download Assistant.lnk
[2012/02/06 13:55:40 | 000,001,111 | ---- | M] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
[2012/02/05 22:47:43 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012/02/05 18:28:24 | 000,000,804 | ---- | M] () -- C:\Users\Nikki\Desktop\IceChat.lnk
[2012/02/05 16:42:06 | 000,135,168 | ---- | M] () -- C:\Users\Nikki\Desktop\pattern.exe
[2012/02/05 04:13:25 | 000,047,092 | ---- | M] () -- C:\Windows\System32\license.rtf
[2012/02/05 04:13:01 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2012/02/05 04:02:40 | 000,000,786 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2012/02/05 04:00:46 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2012/02/05 03:18:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2012/02/05 03:18:08 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/02/05 02:36:24 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2012/02/05 01:27:04 | 000,001,664 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/02/05 01:24:07 | 000,000,859 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2012/02/05 00:58:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2012/02/05 00:46:36 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/02/05 00:31:24 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2012/02/05 00:25:20 | 000,000,870 | ---- | M] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/02/05 00:25:20 | 000,000,846 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/02/05 00:17:32 | 000,773,890 | ---- | M] () -- C:\Windows\System32\oem4.inf

========== Files Created - No Company Name ==========

[2012/02/28 14:36:46 | 000,610,758 | ---- | C] () -- C:\Users\Nikki\Documents\Scroll SW.jpg
[2012/02/28 14:32:25 | 000,773,781 | ---- | C] () -- C:\Users\Nikki\Documents\Keyboard.jpg
[2012/02/28 14:30:54 | 000,627,043 | ---- | C] () -- C:\Users\Nikki\Documents\ignorance.jpg
[2012/02/28 14:28:37 | 000,694,401 | ---- | C] () -- C:\Users\Nikki\Documents\900 years.jpg
[2012/02/28 14:27:02 | 000,744,719 | ---- | C] () -- C:\Users\Nikki\Documents\Clone war vet.jpg
[2012/02/28 14:25:13 | 000,494,877 | ---- | C] () -- C:\Users\Nikki\Documents\Star wars background.jpg
[2012/02/22 23:13:55 | 000,000,302 | ---- | C] () -- C:\Windows\tasks\WebReg Deskjet D2400 series.job
[2012/02/22 23:11:06 | 000,001,972 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2012/02/22 23:06:58 | 000,137,623 | ---- | C] () -- C:\Windows\HPHins15.dat
[2012/02/11 15:37:20 | 000,916,588 | ---- | C] () -- C:\Users\Nikki\Documents\Brat Pack.jpg
[2012/02/11 15:14:52 | 000,598,609 | ---- | C] () -- C:\Users\Nikki\Documents\LOTR.jpg
[2012/02/08 20:09:17 | 3217,416,192 | -HS- | C] () -- C:\hiberfil.sys
[2012/02/08 02:12:31 | 000,726,844 | ---- | C] () -- C:\Users\Nikki\Documents\Diesel Marathon.jpg
[2012/02/08 02:00:19 | 018,948,808 | ---- | C] () -- C:\Users\Nikki\Documents\Untitled-1.psd
[2012/02/07 23:38:22 | 000,001,016 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.1.lnk
[2012/02/07 23:36:56 | 000,000,978 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.1.lnk
[2012/02/07 23:36:35 | 000,001,071 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.5.lnk
[2012/02/07 23:35:38 | 000,001,172 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.5.lnk
[2012/02/07 23:35:32 | 000,001,340 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS5.5.lnk
[2012/02/07 23:35:01 | 000,000,874 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2012/02/06 14:39:15 | 000,000,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
[2012/02/06 14:39:15 | 000,000,912 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Download Assistant.lnk
[2012/02/06 13:55:40 | 000,001,111 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
[2012/02/06 02:18:00 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2012/02/06 02:18:00 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2012/02/06 02:17:56 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2012/02/06 01:30:00 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2012/02/06 01:30:00 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2012/02/06 01:29:59 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2012/02/05 22:47:43 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012/02/05 22:47:43 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/02/05 18:28:24 | 000,000,804 | ---- | C] () -- C:\Users\Nikki\Desktop\IceChat.lnk
[2012/02/05 16:42:06 | 000,135,168 | ---- | C] () -- C:\Users\Nikki\Desktop\pattern.exe
[2012/02/05 04:13:01 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2012/02/05 04:02:40 | 000,000,786 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2012/02/05 04:00:27 | 000,000,024 | RH-- | C] () -- C:\Windows\dell_version
[2012/02/05 03:47:02 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2012/02/05 03:18:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01009.Wdf
[2012/02/05 03:18:08 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/02/05 03:12:24 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf
[2012/02/05 02:36:24 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/02/05 01:27:04 | 000,001,664 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/02/05 01:24:07 | 000,000,859 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2012/02/05 01:19:17 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/02/05 00:58:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2012/02/05 00:46:36 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/02/05 00:45:47 | 000,001,808 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/02/05 00:45:12 | 000,208,966 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2012/02/05 00:34:21 | 000,109,568 | ---- | C] () -- C:\Users\Nikki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/05 00:31:24 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2012/02/05 00:28:16 | 000,057,656 | ---- | C] () -- C:\Windows\System32\drivers\OA009PC.bmp
[2012/02/05 00:28:16 | 000,022,951 | ---- | C] () -- C:\Windows\System32\drivers\OA009PC.jpg
[2012/02/05 00:28:16 | 000,004,212 | ---- | C] () -- C:\Windows\OA009.uns
[2012/02/05 00:25:20 | 000,000,870 | ---- | C] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/02/05 00:25:20 | 000,000,846 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/02/05 00:25:19 | 000,000,858 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/02/05 00:23:53 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2012/02/05 00:23:52 | 000,001,591 | ---- | C] () -- C:\Windows\System32\Uninst_EAPModules.bat
[2012/02/05 00:23:47 | 000,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2012/02/05 00:23:44 | 000,026,112 | ---- | C] () -- C:\Windows\System32\WLTRYSVC.EXE
[2012/02/05 00:18:03 | 000,773,890 | ---- | C] () -- C:\Windows\System32\oem4.inf
[2012/02/05 00:16:52 | 000,000,416 | ---- | C] () -- C:\Windows\System32\vcredist_x86.bat
[2012/02/05 00:08:48 | 006,416,928 | ---- | C] () -- C:\Windows\System\DriveIcon.dll
[2012/02/05 00:01:18 | 000,000,949 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/02/05 00:01:16 | 000,000,944 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2012/02/05 00:01:04 | 000,000,915 | ---- | C] () -- C:\Users\Nikki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2012/02/05 00:01:00 | 000,000,680 | ---- | C] () -- C:\Users\Nikki\AppData\Local\d3d9caps.dat
[2012/02/05 00:00:58 | 000,000,258 | ---- | C] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/02/05 00:00:58 | 000,000,240 | ---- | C] () -- C:\Users\Nikki\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/04/26 19:56:34 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2011/04/26 19:56:34 | 000,180,720 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/04/26 19:56:34 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2011/04/26 19:56:34 | 000,081,920 | ---- | C] () -- C:\Windows\System32\ATIODE.exe
[2011/04/26 19:56:34 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe
[2007/06/07 05:26:07 | 000,002,828 | ---- | C] () -- C:\Windows\hphmdl15.dat
[2006/11/02 09:27:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 09:17:37 | 003,728,000 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 09:05:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 07:03:01 | 000,606,602 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 07:03:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 07:03:01 | 000,105,170 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 07:03:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:53:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 05:28:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:49:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 04:10:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:55:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== LOP Check ==========

[2012/03/03 18:05:44 | 000,000,000 | ---D | M] -- C:\Users\Nikki\AppData\Roaming\BitTorrent
[2012/02/06 14:39:18 | 000,000,000 | ---D | M] -- C:\Users\Nikki\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012/03/01 14:51:33 | 000,017,690 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< MD5 for: EXPLORER.EXE >
[2008/10/29 02:50:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 02:59:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\explorer.exe
[2008/10/29 02:59:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 00:29:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/11 02:57:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/27 22:45:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/20 22:54:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/01/20 22:53:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/20 22:53:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/20 22:54:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/20 22:54:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/04/11 02:58:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\SoftwareDistribution\Download\bcfed137e95e2bc1b83ef80262a82b16\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008/01/20 22:54:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\System32\winlogon.exe
[2008/01/20 22:54:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT /s >
"DisplayName" = NETBT
"Group" = PNP_TDI
"ImagePath" = System32\DRIVERS\netbt.sys -- [2008/01/20 22:54:59 | 000,184,320 | ---- | M] (Microsoft Corporation)
"Description" = This service implements NetBios over TCP/IP.
"ErrorControl" = 1
"Start" = 1
"Type" = 1
"DependOnService" = Tdxtcpip [binary data]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Linkage]
"OtherDependencies" = Tcpip [binary data]
"Bind" = [Binary data over 100 bytes]
"Route" = [Binary data over 100 bytes]
"Export" = [Binary data over 100 bytes]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters]
"BcastNameQueryCount" = 3
"BcastQueryTimeout" = 750
"CacheTimeout" = 600000
"EnableLMHOSTS" = 1
"NameServerPort" = 137
"NameSrvQueryCount" = 3
"NameSrvQueryTimeout" = 1500
"NbProvider" = _tcp
"SessionKeepAlive" = 3600000
"Size/Small/Medium/Large" = 1
"TransportBindName" = \Device\
"UseNewSmb" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters\Interfaces]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters\Interfaces\Tcpip_{69CC0513-0734-4C21-8E96-E8FD5B881585}]
"NameServerList" = [binary data]
"NetbiosOptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Security]
"Security" = [Binary data over 100 bytes]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Enum]
"0" = Root\LEGACY_NETBT\0000
"Count" = 1
"NextInstance" = 1

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS /s >
"Type" = 2
"Start" = 1
"ErrorControl" = 1
"Tag" = 2
"ImagePath" = system32\DRIVERS\netbios.sys -- [2008/01/20 22:54:20 | 000,035,840 | ---- | M] (Microsoft Corporation)
"DisplayName" = NetBIOS Interface
"Group" = NetBIOSGroup
"Description" = NetBIOS Interface
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Linkage]
"LanaMap" = 01 01 01 00 01 03 01 02 [binary data]
"Bind" = [Binary data over 100 bytes]
"Route" = [Binary data over 100 bytes]
"Export" = [Binary data over 100 bytes]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Parameters]
"MaxLana" = 3
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Parameters\Winsock]
"HelperDllName" = %SystemRoot%\System32\wshnetbs.dll -- [2006/11/02 06:16:14 | 000,011,264 | ---- | M] (Microsoft Corporation)
"MaxSockAddrLength" = 20
"MinSockAddrLength" = 20
"Mapping" = 02 00 00 00 03 00 00 00 11 00 00 00 05 00 00 00 00 00 00 00 11 00 00 00 02 00 00 00 00 00 00 00 [binary data]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Enum]
"0" = Root\LEGACY_NETBIOS\0000
"Count" = 1
"NextInstance" = 1

< C:\Windows\assembly\tmp\U\*.* /s >

< %Temp%\smtmp\1\*.* >

< %Temp%\smtmp\2\*.* >

< %Temp%\smtmp\3\*.* >

< %Temp%\smtmp\4\*.* >

< End of report >

aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-03-03 18:12:09
-----------------------------
18:12:09.502 OS Version: Windows 6.0.6001 Service Pack 1
18:12:09.502 Number of processors: 2 586 0x170A
18:12:09.502 ComputerName: NIKKI-PC UserName: Nikki
18:12:11.608 Initialize success
18:12:40.055 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:12:40.055 Disk 0 Vendor: TOSHIBA_ GJ00 Size: 238475MB BusType: 3
18:12:40.071 Disk 0 MBR read successfully
18:12:40.071 Disk 0 MBR scan
18:12:40.086 Disk 0 Windows VISTA default MBR code
18:12:40.086 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238473 MB offset 2048
18:12:40.086 Disk 0 scanning sectors +488394752
18:12:40.164 Disk 0 scanning C:\Windows\system32\drivers
18:12:51.256 Service scanning
18:13:04.157 Service MpKsldbf0836e c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{003DCED9-11C2-465A-83F4-5EE32A4A2DE9}\MpKsldbf0836e.sys **LOCKED** 32
18:13:04.266 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
18:13:21.348 Modules scanning
18:13:36.434 Disk 0 trace - called modules:
18:13:36.465 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:13:36.480 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x865423a8]
18:13:36.480 3 CLASSPNP.SYS[8a9a8745] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x84b5a028]
18:13:36.496 Scan finished successfully
18:13:52.798 Disk 0 MBR has been saved successfully to "C:\Users\Nikki\Desktop\MBR.dat"
18:13:52.798 The log file has been saved successfully to "C:\Users\Nikki\Desktop\aswMBR.txt"

Thanks

#4
Essexboy

Posted 03 March 2012 - 04:09 PM

GeekU Moderator

Retired Staff
69,964 posts

Nothing jumps out at me from those logs,. so lets look a little deeper

Download AVPTool from Here to your desktop

Run the programme you have just downloaded to your desktop (it will be randomly named )

First we will run a virus scan

Click the cog in the upper right
Posted Image

Select down to and including your main drive, once done select the Automatic scan tab and press Start Scan
Posted Image

Allow AVP to delete all infections found
Once it has finished select report tab (last tab)
Select Detected threats report from the left and press Save button
Save it to your desktop and attach to your next post

Now the Analysis

Rerun AVP and select the Manual Disinfection tab and press Start Gathering System Information

Posted Image

On completion click the link to locate the zip file to upload and attach to your next post

Posted Image

#5
Essexboy

Posted 07 March 2012 - 01:35 PM

GeekU Moderator

Retired Staff
69,964 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.