Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Why does AIM freeze when someone signs on..?


  • Please log in to reply

#1
keb12

keb12

    Member

  • Member
  • PipPip
  • 27 posts
This has been happening for a couple weeks now. At first I thought it may've been from a free video converter I downloaded (Wontube) because that is when it started occurring..but no review I've read has reported a virus from the program. So then I thought it was because AIM may've needed an update which there was none at the time, but after being told to update yesterday it still does this. AIM doesn't say it's 'not responding and needs to close', but I can't maximize chat windows and the buddy list turns blank with the mouse's 'hourglass' loading.

I have a Windows Vista Premium 64-bit and run my weekly scans of MBAM and Avira Free and they've found nothing. I ran SuperAntiSpyware a week ago probably and it found nothing. This doesnt happen for AIM users I talk to nor can I find a thread stating this problem anywhere. I've debated ditching desktop software for web alternatives, but I've always used it, and can sometimes be inactive on it so I'm aware that using an alternative such as Meebo might sign me out unexpectedly. Therefore it's kinda the same result.

Here is my OTL Log:

OTL logfile created on: 6/13/2012 12:40:50 AM - Run 2
OTL by OldTimer - Version 3.2.16.0 Folder = c:\Users\UBLimited\Downloads
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 29.00% Memory free
8.00 Gb Paging File | 3.00 Gb Available in Paging File | 33.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.40 Gb Total Space | 18.79 Gb Free Space | 6.63% Space Free | Partition Type: NTFS
Drive D: | 14.65 Gb Total Space | 2.51 Gb Free Space | 17.11% Space Free | Partition Type: NTFS

Computer Name: HOUSE-PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days

========== Processes (SafeList) ==========

PRC - [2012/05/30 13:18:07 | 004,331,392 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AIM\aim.exe
PRC - [2012/05/22 21:56:51 | 001,240,088 | ---- | M] (Google Inc.) -- C:\Users\UBLimited\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2012/05/08 11:31:27 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/08 11:31:26 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/05/08 11:31:26 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/04/04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/03/19 15:10:06 | 000,180,648 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.111\GoogleCrashHandler.exe
PRC - [2012/02/27 00:15:42 | 000,055,144 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/10/31 10:29:04 | 003,165,528 | ---- | M] (Sony Creative Software Inc.) -- C:\Program Files\Sony\Vegas Pro 11.0\x86\sfvstserver.exe
PRC - [2011/10/31 10:27:46 | 003,290,968 | ---- | M] (Sony Creative Software Inc.) -- C:\Program Files\Sony\Vegas Pro 11.0\x86\FileIOSurrogate.exe
PRC - [2011/09/26 23:45:40 | 000,646,232 | ---- | M] () -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
PRC - [2010/11/19 14:38:08 | 000,193,880 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
PRC - [2010/11/19 14:29:00 | 004,916,568 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2010/10/22 15:31:19 | 000,575,488 | ---- | M] (OldTimer Tools) -- c:\Users\UBLimited\Downloads\OTL.exe
PRC - [2010/06/16 17:42:58 | 000,839,680 | ---- | M] () -- C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
PRC - [2009/02/10 12:01:49 | 000,116,104 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
PRC - [2009/01/26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/12/03 01:04:16 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008/09/24 00:09:52 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2007/09/11 00:45:04 | 000,124,832 | ---- | M] () -- C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
PRC - [2007/06/05 10:28:57 | 000,988,256 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files (x86)\EmbarqVALite\EMBARQHelpHelper.exe


========== Modules (SafeList) ==========

MOD - [2010/10/22 16:43:13 | 000,253,688 | ---- | M] (COMODO) -- C:\Windows\SysWOW64\cssdll32.dll
MOD - [2010/10/22 15:31:19 | 000,575,488 | ---- | M] (OldTimer Tools) -- c:\Users\UBLimited\Downloads\OTL.exe
MOD - [2010/08/31 11:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2006/11/02 04:33:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/09/27 15:04:08 | 000,359,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2011/09/08 17:48:36 | 006,583,160 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2011/09/08 17:48:36 | 000,528,760 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen)
SRV:64bit: - [2011/08/11 19:38:04 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2008/09/24 00:09:52 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV:64bit: - [2008/07/18 00:54:02 | 000,086,016 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2008/01/20 22:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/06/05 15:17:44 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/05/08 11:31:27 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/08 11:31:26 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/02/27 00:15:42 | 000,055,144 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/11/16 12:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2010/11/19 14:29:00 | 004,916,568 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2010/09/23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Auto | Running] -- C:\Program Files (x86)\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/08/10 15:47:17 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/03/30 00:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/02/10 12:01:49 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2009/01/26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2007/09/11 00:45:04 | 000,124,832 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor6.0)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\PROCEXP150.SYS -- (PROCEXP150)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2012/05/08 11:31:27 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\avipbb.sys -- (avipbb)
DRV:64bit: - [2012/05/08 11:31:27 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2012/04/04 15:56:40 | 000,024,904 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/02/15 11:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/10/11 15:00:32 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2011/09/08 17:49:36 | 000,013,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\wacmoumonitor.sys -- (wacmoumonitor)
DRV:64bit: - [2011/09/08 17:49:26 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\wacommousefilter.sys -- (wacommousefilter)
DRV:64bit: - [2011/09/08 17:49:24 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2011/09/02 02:30:36 | 000,060,696 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2011/09/02 02:30:24 | 000,066,840 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2011/07/22 12:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 17:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2010/04/27 14:40:40 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/02/03 15:56:56 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\hamachi.sys -- (hamachi)
DRV:64bit: - [2009/09/30 20:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/04/22 16:46:06 | 003,552,384 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\snp2uvc.sys -- (SNP2UVC)
DRV:64bit: - [2009/02/09 01:43:10 | 000,111,104 | ---- | M] (Guillemot Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hxctlflt.sys -- (hxctlflt)
DRV:64bit: - [2008/05/05 05:31:38 | 000,313,472 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel®
DRV:64bit: - [2008/02/11 20:48:28 | 007,709,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\igdkmd64.sys -- (igfx)
DRV:64bit: - [2008/01/20 22:47:27 | 000,903,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\xnacc.sys -- (xnacc)
DRV:64bit: - [2006/11/02 03:48:50 | 002,488,320 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2006/09/18 17:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)
DRV - [2010/10/22 15:44:49 | 000,034,560 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\Normandy.sys -- (Normandy)
DRV - [1999/09/10 12:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\ASPI32.SYS -- (ASPI32)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {37153479-1976-43c3-a1ee-557513977b64} - C:\Program Files (x86)\Coupons.com\prxtbCoup.dll File not found

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=us&ibd=3081203
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.tccpassport.tcc.fl.edu/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {37153479-1976-43c3-a1ee-557513977b64} - C:\Program Files (x86)\Coupons.com\prxtbCoup.dll File not found
IE - HKCU\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.aol.com/?...usaimc00000001"
FF - prefs.js..extensions.enabledItems: {0C7E3F01-99E9-4095-9BDC-F84724960B57}:5.0.0.4
FF - prefs.js..extensions.enabledItems: {000a9d1c-beef-4f90-9363-039d445309b8}:0.5.36.0
FF - prefs.js..keyword.URL: "http://search.condui...rchSource=2&q="


FF - HKLM\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files (x86)\Google\Google Gears\Firefox\ [2010/03/05 23:37:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/01/09 22:11:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 13.0\extensions\\Components: C:\Users\Public\Documents\components [2012/06/06 10:02:47 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 13.0\extensions\\Plugins: C:\Users\Public\Documents\plugins [2012/05/20 18:59:41 | 000,000,000 | ---D | M]

[2011/08/27 20:33:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Extensions
[2011/08/27 20:33:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Extensions\[email protected]
[2012/04/24 22:57:19 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\rbfxha1w.default\extensions
[2009/03/03 13:25:25 | 000,000,000 | ---D | M] (Coupon Manager) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\rbfxha1w.default\extensions\{0C7E3F01-99E9-4095-9BDC-F84724960B57}
[2010/10/24 00:24:58 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\rbfxha1w.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/04/24 22:57:19 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\rbfxha1w.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012/01/20 13:44:22 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\rbfxha1w.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011/02/14 23:16:11 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\rbfxha1w.default\extensions\[email protected]
[2011/03/18 17:47:01 | 000,002,014 | ---- | M] () -- C:\Users\Admin\AppData\Roaming\Mozilla\FireFox\Profiles\rbfxha1w.default\searchplugins\bing-zugo.xml

O1 HOSTS File: ([2012/03/09 17:41:31 | 000,441,412 | R--- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15174 more lines...
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Coupons.com Toolbar) - {37153479-1976-43c3-a1ee-557513977b64} - C:\Program Files (x86)\Coupons.com\prxtbCoup.dll File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files (x86)\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files (x86)\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\Hyperionics DB Toolbar\tbcore3.dll ()
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Hyperionics DB Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\Hyperionics DB Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Coupons.com Toolbar) - {37153479-1976-43c3-a1ee-557513977b64} - C:\Program Files (x86)\Coupons.com\prxtbCoup.dll File not found
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Hyperionics DB Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\Hyperionics DB Toolbar\tbcore3.dll ()
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [COMODO SafeSurf] C:\Program Files\Comodo\SafeSurf\cssurf.exe (COMODO)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Windows\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [WPCUMI] C:\Windows\SysNative\WpcUmi.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe ()
O4 - HKLM..\Run: [EmbarqVALite_McciTrayApp] C:\Program Files (x86)\EmbarqVALite\EMBARQHelpHelper.exe (Motive Communications, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Monitor] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe (LeapFrog Enterprises, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [FileHippo.com] C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe (FileHippo.com)
O4 - HKCU..\Run: [OpenDNS Updater] C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe ()
O4 - HKCU..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe ()
O4 - HKLM..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Plus Player\DSEPlugins\DivXPlaybackModule.dll] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9 - Extra 'Tools' menuitem : &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files (x86)\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\SysNative\wpclsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\SysWow64\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.4.0)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.4.0)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {2B658B62-1B6F-4CFF-8A7C-225B7BB15336} http://shangrila.dot...TimeCrochet.cab (CrochetCtrl Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\cssdll64.dll) - C:\Windows\SysNative\cssdll64.dll (COMODO)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\cssdll32.dll) - C:\Windows\SysWOW64\cssdll32.dll (COMODO)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 90 Days ==========

[2012/06/11 11:52:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Software Update Utility
[2012/06/05 18:37:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Wacom
[2012/06/05 18:36:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bamboo Dock
[2012/06/05 18:34:12 | 001,107,832 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysWow64\Pen_Touch_Tablet.dll
[2012/06/05 18:34:11 | 001,326,456 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysNative\Pen_Touch_Tablet.dll
[2012/06/05 18:33:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TabletPlugins
[2012/06/05 18:32:55 | 000,013,312 | ---- | C] (Wacom Technology) -- C:\Windows\SysNative\drivers\wacmoumonitor.sys
[2012/06/05 18:31:41 | 000,012,848 | ---- | C] (Wacom Technology) -- C:\Windows\SysNative\drivers\wacommousefilter.sys
[2012/06/05 18:30:22 | 000,016,168 | ---- | C] (Wacom Technology) -- C:\Windows\SysNative\drivers\wacomvhid.sys
[2012/06/05 18:30:19 | 001,401,208 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysNative\Wintab32.dll
[2012/06/05 18:30:19 | 001,392,504 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysNative\WacomMT.dll
[2012/06/05 18:30:19 | 001,369,464 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysWow64\Pen_Tablet.dll
[2012/06/05 18:30:19 | 001,156,472 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysWow64\Wintab32.dll
[2012/06/05 18:30:19 | 001,152,888 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysWow64\WacomMT.dll
[2012/06/05 18:30:18 | 001,665,400 | ---- | C] (Wacom Technology, Corp.) -- C:\Windows\SysNative\Pen_Tablet.dll
[2012/06/05 18:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\Tablet
[2012/05/31 17:48:15 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2012/05/31 17:47:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xvid
[2012/05/26 20:14:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JetVideo
[2012/05/23 11:04:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iWisoft Free Video Converter
[2012/05/23 02:54:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MKVToolNix
[2012/05/22 23:40:09 | 000,000,000 | ---D | C] -- C:\ProgramData\xml_param
[2012/05/22 23:36:32 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\FreeVideoConverter
[2012/05/22 23:35:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WonTube
[2012/05/22 23:19:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Video Editor
[2012/05/20 22:15:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2012/05/20 22:14:26 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012/05/07 14:14:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Aegisub
[2012/04/27 23:33:14 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Sony
[2012/04/25 11:33:33 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Sony
[2012/04/24 22:57:20 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\CRE
[2012/04/24 22:57:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012/04/21 18:46:08 | 000,000,000 | ---D | C] -- C:\Program Files\Avidemux 2.5
[2012/04/21 15:26:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Unlocker
[2012/04/16 21:27:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinDirStat
[2012/04/14 01:39:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cobian Backup 10
[2012/04/14 00:58:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Auslogics
[2012/04/13 20:07:26 | 000,000,000 | ---D | C] -- C:\Program Files\InfraRecorder
[2012/04/13 19:59:58 | 000,000,000 | ---D | C] -- C:\Program Files\Alex Feinman
[2012/04/12 17:29:02 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2012/04/12 17:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/04/12 17:25:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/04/01 19:10:11 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/04/01 19:10:08 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/04/01 19:10:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012/03/31 14:50:33 | 000,000,000 | ---D | C] -- C:\Program Files\Matrox VFW Software Codecs
[2012/03/25 15:09:46 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012/03/17 14:09:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\FileZilla
[2012/03/17 14:09:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FileZilla FTP Client
[2010/11/10 00:07:10 | 000,864,256 | ---- | C] ( Voyager Japan,Inc.) -- C:\Program Files (x86)\npCrochetPLUG.dll
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Admin\AppData\Local\*.tmp files -> C:\Users\Admin\AppData\Local\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2012/06/13 00:22:07 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/06/13 00:22:07 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/06/13 00:17:01 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2992304008-1766412960-3508781518-1001UA.job
[2012/06/13 00:15:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/06/12 15:15:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/06/12 12:06:00 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2012/06/12 02:17:00 | 000,000,872 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2992304008-1766412960-3508781518-1001Core.job
[2012/06/11 11:52:54 | 000,001,543 | -H-- | M] () -- C:\IPH.PH
[2012/06/11 11:52:46 | 000,001,745 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\AIM.lnk
[2012/06/11 09:25:29 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\Spybot - Search & Destroy - Scheduled Task.job
[2012/06/09 23:42:08 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\EasyShare Registration Task.job
[2012/06/06 10:03:13 | 000,005,724 | ---- | M] () -- C:\Users\Public\Documents\updates.xml
[2012/06/06 10:03:13 | 000,000,057 | ---- | M] () -- C:\Users\Public\Documents\active-update.xml
[2012/06/06 10:02:47 | 000,010,326 | ---- | M] () -- C:\Users\Public\Documents\blocklist.xml
[2012/06/06 10:02:47 | 000,000,478 | ---- | M] () -- C:\Users\Public\Documents\freebl3.chk
[2012/06/06 10:02:47 | 000,000,455 | ---- | M] () -- C:\Users\Public\Documents\application.ini
[2012/06/06 10:02:46 | 007,686,307 | ---- | M] () -- C:\Users\Public\Documents\omni.ja
[2012/06/06 10:02:46 | 002,042,848 | ---- | M] () -- C:\Users\Public\Documents\mozjs.dll
[2012/06/06 10:02:46 | 000,829,920 | ---- | M] (sqlite.org) -- C:\Users\Public\Documents\mozsqlite3.dll
[2012/06/06 10:02:46 | 000,001,704 | ---- | M] () -- C:\Users\Public\Documents\precomplete
[2012/06/06 10:02:46 | 000,000,478 | ---- | M] () -- C:\Users\Public\Documents\softokn3.chk
[2012/06/06 10:02:46 | 000,000,478 | ---- | M] () -- C:\Users\Public\Documents\nssdbm3.chk
[2012/06/06 10:02:46 | 000,000,140 | ---- | M] () -- C:\Users\Public\Documents\platform.ini
[2012/06/06 10:02:45 | 000,001,045 | ---- | M] () -- C:\Users\Public\Documents\updater.ini
[2012/06/05 18:23:00 | 000,000,414 | ---- | M] () -- C:\Windows\tasks\EasyShare Registration RunOnce Task.job
[2012/06/05 18:20:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/31 01:07:01 | 000,052,477 | ---- | M] () -- C:\Users\Admin\Desktop\Buddy.png
[2012/05/29 20:52:38 | 000,607,406 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/05/29 20:52:37 | 000,707,520 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/05/29 20:52:37 | 000,105,046 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/05/23 11:04:14 | 000,000,883 | ---- | M] () -- C:\Users\Admin\Desktop\iWisoft Free Video Converter.lnk
[2012/05/23 03:07:51 | 000,074,240 | ---- | M] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/05/09 03:43:27 | 005,006,176 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/05/08 11:31:27 | 000,132,832 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2012/05/08 11:31:27 | 000,098,848 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2012/05/04 13:04:15 | 000,000,132 | ---- | M] () -- C:\Users\Public\Documents\update-settings.ini
[2012/04/09 00:47:14 | 000,092,160 | ---- | M] () -- C:\Windows\SysNative\ff_vfw.dll
[2012/04/04 15:56:40 | 000,024,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Admin\AppData\Local\*.tmp files -> C:\Users\Admin\AppData\Local\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/06/06 10:03:12 | 000,005,724 | ---- | C] () -- C:\Users\Public\Documents\updates.xml
[2012/06/06 10:03:11 | 000,000,057 | ---- | C] () -- C:\Users\Public\Documents\active-update.xml
[2012/05/31 17:48:16 | 000,092,160 | ---- | C] () -- C:\Windows\SysNative\ff_vfw.dll
[2012/05/31 17:47:16 | 000,696,832 | ---- | C] () -- C:\Windows\SysNative\xvidcore.dll
[2012/05/31 17:47:16 | 000,645,632 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2012/05/31 17:47:16 | 000,255,488 | ---- | C] () -- C:\Windows\SysNative\xvidvfw.dll
[2012/05/31 17:47:16 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2012/05/31 17:47:16 | 000,173,568 | ---- | C] () -- C:\Windows\SysNative\xvid.ax
[2012/05/31 17:47:16 | 000,153,088 | ---- | C] () -- C:\Windows\SysWow64\xvid.ax
[2012/05/31 01:07:28 | 000,052,477 | ---- | C] () -- C:\Users\Admin\Desktop\Buddy.png
[2012/05/23 11:04:14 | 000,000,883 | ---- | C] () -- C:\Users\Admin\Desktop\iWisoft Free Video Converter.lnk
[2012/05/04 13:04:15 | 000,000,132 | ---- | C] () -- C:\Users\Public\Documents\update-settings.ini
[2012/04/07 02:12:20 | 000,000,924 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2992304008-1766412960-3508781518-1001UA.job
[2012/04/07 02:12:19 | 000,000,872 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2992304008-1766412960-3508781518-1001Core.job
[2012/03/09 18:14:02 | 000,000,144 | ---- | C] () -- C:\Windows\wininit.ini
[2011/12/20 18:04:50 | 000,000,275 | ---- | C] () -- C:\Users\Admin\AppData\Local\HamsterVideoConverterSettings.cfg
[2011/08/27 21:41:31 | 000,361,788 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI391A.txt
[2011/08/27 21:41:29 | 000,016,830 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI391A.txt
[2011/08/27 21:23:23 | 000,361,794 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI2B3C.txt
[2011/08/27 21:23:22 | 000,015,798 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI2B3C.txt
[2011/08/27 20:33:19 | 000,361,794 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI04E4.txt
[2011/08/27 20:33:16 | 000,014,766 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI04E4.txt
[2011/08/24 02:33:50 | 000,037,878 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_dotnetfx35install_lp.txt
[2011/08/24 02:33:50 | 000,000,002 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_dotnetfx35error_lp.txt
[2011/08/24 02:32:47 | 002,322,500 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_NET_Framework35_x64_MSI5F85.txt
[2011/08/19 13:27:50 | 000,428,522 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI4E36.txt
[2011/08/19 13:27:50 | 000,011,478 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI4E36.txt
[2011/02/22 22:51:40 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2011/02/22 22:51:39 | 000,015,144 | ---- | C] () -- C:\Windows\SysWow64\HWLMSET2PS.dll
[2010/10/24 03:30:52 | 000,721,296 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/10/22 15:44:40 | 000,034,560 | ---- | C] () -- C:\Windows\SysWow64\drivers\Normandy.sys
[2010/07/23 15:13:12 | 000,425,506 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI7AB6.txt
[2010/07/23 15:13:11 | 000,189,546 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI7AB6.txt
[2010/07/23 15:11:37 | 000,415,998 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI7963.txt
[2010/07/23 15:11:27 | 000,189,570 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI7963.txt
[2010/07/04 16:48:09 | 000,000,021 | ---- | C] () -- C:\Windows\atid.ini
[2010/04/23 12:28:42 | 000,000,180 | ---- | C] () -- C:\Users\Admin\AppData\Roaming\setup.log
[2010/04/23 12:28:32 | 000,000,760 | ---- | C] () -- C:\Users\Admin\AppData\Roaming\setup_ldm.iss
[2010/04/15 14:02:36 | 000,010,024 | -HS- | C] () -- C:\ProgramData\g0e65To
[2010/04/02 10:24:45 | 000,016,122 | ---- | C] () -- C:\Users\Admin\AppData\Local\clear.log
[2010/04/01 12:44:20 | 000,421,158 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI0BBF.txt
[2010/04/01 12:44:19 | 000,011,630 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI0BBF.txt
[2010/02/07 14:56:57 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/10/20 08:21:52 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009/10/20 08:20:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/09/27 16:49:35 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/07/15 13:57:10 | 001,750,816 | ---- | C] () -- C:\Program Files (x86)\TMPGEnc-2.525.64.184-EN.zip
[2009/07/10 21:18:38 | 000,002,516 | -HS- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2009/07/10 21:18:38 | 000,000,088 | RHS- | C] () -- C:\Windows\SysWow64\E30A41796F.sys
[2009/07/08 20:47:14 | 000,378,892 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI7FD9.txt
[2009/07/08 20:47:14 | 000,015,762 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI7FD9.txt
[2009/06/08 14:11:10 | 000,378,118 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI28B9.txt
[2009/06/08 14:11:10 | 000,011,178 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI28B9.txt
[2009/06/06 17:30:15 | 000,412,456 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI24D1.txt
[2009/06/06 17:30:14 | 000,011,482 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI24D1.txt
[2009/05/12 12:16:42 | 000,422,910 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistMSI1385.txt
[2009/05/12 12:16:42 | 000,011,366 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_vcredistUI1385.txt
[2009/03/24 21:26:28 | 000,166,912 | ---- | C] () -- C:\Windows\SysWow64\Lame_enc.dll
[2009/02/25 13:31:47 | 002,138,764 | ---- | C] () -- C:\Program Files (x86)\VirtualDubMod_1_5_10_1_All_inclusive.zip
[2009/01/20 18:05:00 | 000,002,516 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009/01/20 18:05:00 | 000,000,088 | RHS- | C] () -- C:\ProgramData\E30A41796F.sys
[2009/01/20 12:24:11 | 000,000,173 | ---- | C] () -- C:\Windows\KPCMS.INI
[2009/01/20 12:24:07 | 000,210,944 | ---- | C] () -- C:\Windows\SysWow64\MSVCRT10.DLL
[2009/01/09 16:08:05 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2009/01/08 23:13:17 | 000,486,164 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
[2009/01/08 23:12:11 | 000,765,112 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_dotnetfx35install.txt
[2009/01/08 23:12:11 | 000,007,106 | ---- | C] () -- C:\Users\Admin\AppData\Local\uxeventlog.txt
[2009/01/08 23:12:11 | 000,001,072 | ---- | C] () -- C:\Users\Admin\AppData\Local\dd_dotnetfx35error.txt
[2008/12/30 14:37:19 | 000,000,209 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2008/12/29 19:48:52 | 000,000,732 | ---- | C] () -- C:\Users\Admin\AppData\Local\d3d9caps64.dat
[2008/12/29 17:44:04 | 000,074,240 | ---- | C] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/12/29 15:00:04 | 000,000,000 | ---- | C] () -- C:\Users\Admin\AppData\Roaming\wklnhst.dat
[2008/12/03 02:44:10 | 001,953,696 | ---- | C] () -- C:\Windows\SysWow64\igklg400.dll
[2008/12/03 02:44:10 | 001,533,360 | ---- | C] () -- C:\Windows\SysWow64\igklg450.dll
[2008/12/03 02:44:10 | 000,104,636 | ---- | C] () -- C:\Windows\SysWow64\igmedcompkrn.dll
[2008/01/20 22:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2007/04/27 11:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2005/03/30 12:29:16 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\msvos.dll
[2002/10/15 18:54:04 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll

========== LOP Check ==========

[2009/01/23 01:19:15 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\acccore
[2009/07/01 21:09:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Artweaver
[2009/02/10 17:50:41 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Auslogics
[2012/04/21 18:46:30 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\avidemux
[2010/03/01 21:11:57 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Blender Foundation
[2009/09/26 16:17:08 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Broad Intelligence
[2011/11/12 15:46:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Catalina Marketing Corp
[2012/03/17 14:10:24 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FileZilla
[2012/05/22 23:36:32 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FreeVideoConverter
[2009/03/27 16:34:00 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\gtk-2.0
[2011/12/20 18:03:46 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\HamsterSoft
[2009/08/13 16:06:23 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Inkscape
[2011/08/19 13:30:46 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Leadertech
[2011/11/28 00:54:12 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\MAGIX
[2011/03/18 17:57:44 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\ooVoo Details
[2010/10/27 13:44:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\OpenDNS Updater
[2011/08/19 13:40:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\PrettyMay
[2010/07/04 16:54:39 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\QQ Games Plugin
[2011/10/21 00:20:31 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\SharpPlus
[2012/05/29 20:52:53 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Sony
[2010/07/26 00:31:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\SYSTEMAX Software Development
[2008/12/29 15:00:06 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Template
[2011/12/06 21:40:46 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Trillian
[2012/06/05 18:23:00 | 000,000,414 | ---- | M] () -- C:\Windows\Tasks\EasyShare Registration RunOnce Task.job
[2012/06/09 23:42:08 | 000,000,400 | ---- | M] () -- C:\Windows\Tasks\EasyShare Registration Task.job
[2012/06/05 18:19:04 | 000,032,632 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:0CB6E0BD
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:7578EF04
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:C1F4198F

< End of report >

Please help!

Edited by keb12, 12 June 2012 - 10:52 PM.

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP