Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Need a Check on my system please.


  • Please log in to reply

#1
PHutch

PHutch

    Member

  • Member
  • PipPip
  • 51 posts
A few months back, I was having difficulties with internet connection. Ran a few tests, couldn't get it resolved, restored computer back to factory image. Updated all drivers, etc. Restored all my programs, updated Malware program, ran, and removed a malware (I can't remember the name or the program corrupted) from my external hard drive.

About a month later, I accidently let my battery completely run down to the point of shutting off. I was away from home and honestly did not have internet access or the external hard drive attached. Battery was charged, external peripherals connected. Upon turning my computer on, it was really slow to start up. But ran alright. A few days later, it took a minimum of 5 minutes to open any program or document or webpage. Tried to run malware and antivirus software program with no success and computer taking even longer to load.

Backed up computer with the Dell Data Safe back up and upon rebooting / reinstall, computer went back to the basic factory install I think. All my programs were gone, nothing was reserved (I messed something up with that, I am quite sure).
After that, when I tried to restore my programs, I was receiving a message that the program could not be installed, the side by side cart file couldn't be found.

I deleted alot of the files that I am sure were the duplicate.
I'm honestly believing it's my registry keys that could be messed up. Also, can't remember, but read somewhere that upon rebooting your system, your C drive will sometimes maintain a copy of your old files (thus taking up memory space); as I only have half of the memory space left in the C-Drive at this point, and I am quite sure that before my last episode, I didn't have near that amount taking up C drive memory.

I am posting here, as I reviewed the forums listings, I noticed the OTL program and the directions state to post the log in this forum.
Any help is greatly appreciated. Thanks
(Computer seems to be working fine, boot up and starting programs running alright).

My Computer is Dell, Inspiron 5110; IntelCore i5-2430M CPU @ 2.4 GHz; 4Gb RAM; 64 BIT; SP1; Windows 7 Home Premium.

OTL logfile created on: 11/10/2012 7:54:12 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Paula.Paula-PC\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 1.66 Gb Available Physical Memory | 42.38% Memory free
7.82 Gb Paging File | 5.30 Gb Available in Paging File | 67.81% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 231.24 Gb Free Space | 51.27% Space Free | Partition Type: NTFS
Drive F: | 931.28 Gb Total Space | 48.62 Gb Free Space | 5.22% Space Free | Partition Type: FAT32

Computer Name: PAULA-PC | User Name: Paula | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/11/04 22:52:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Paula.Paula-PC\Downloads\OTL.exe
PRC - [2012/10/28 22:03:08 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012/10/24 07:33:46 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_287.exe
PRC - [2012/10/09 09:22:48 | 000,173,568 | ---- | M] (Dell Products, LP.) -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
PRC - [2012/09/29 19:54:26 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/09/29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/09/29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/09/23 19:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/02/01 10:50:58 | 000,968,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
PRC - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2011/09/06 11:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/08/18 09:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 09:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/01 11:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/05/19 01:16:48 | 000,995,392 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2011/05/19 01:16:46 | 001,335,360 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2011/05/19 01:16:36 | 000,921,664 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2011/05/19 01:16:34 | 000,839,744 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
PRC - [2010/11/17 11:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010/11/05 23:54:22 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/11/05 23:54:20 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/10/05 21:04:12 | 002,655,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/10/05 21:04:08 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe


========== Modules (No Company Name) ==========

MOD - [2012/10/28 22:03:08 | 002,295,264 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/10/28 21:57:30 | 002,297,856 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll
MOD - [2012/10/28 21:12:23 | 000,475,648 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\2e16482769fcdf856919e292a968f16c\IAStorUtil.ni.dll
MOD - [2012/10/28 21:12:23 | 000,014,336 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\3b2b9f4ec1819e4b95792d92f56d26f9\IAStorCommon.ni.dll
MOD - [2012/10/28 20:34:31 | 000,368,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll
MOD - [2012/10/28 20:34:16 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll
MOD - [2012/10/28 20:34:06 | 014,340,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll
MOD - [2012/10/28 20:33:55 | 012,436,480 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
MOD - [2012/10/28 20:33:50 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
MOD - [2012/10/28 20:33:48 | 000,060,928 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\ca2eff60beb3ba00a529a2d42dceca22\UIAutomationProvider.ni.dll
MOD - [2012/10/28 20:33:48 | 000,025,600 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\2ec98ab0193d64e95b7d09d094deed97\Accessibility.ni.dll
MOD - [2012/10/28 20:33:47 | 012,237,824 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll
MOD - [2012/10/28 20:33:39 | 003,347,968 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012/10/28 20:33:35 | 005,452,800 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012/10/28 20:33:32 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012/10/28 20:33:31 | 007,967,232 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012/10/28 20:33:27 | 011,492,864 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012/10/24 07:33:46 | 009,814,968 | ---- | M] () -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll
MOD - [2012/02/01 10:50:58 | 000,968,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
MOD - [2012/02/01 10:44:34 | 008,151,040 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
MOD - [2012/02/01 10:44:34 | 002,278,400 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
MOD - [2011/08/18 09:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 21:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 21:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/08/08 07:39:18 | 001,166,848 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2011/07/27 21:04:48 | 001,517,328 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011/07/27 20:48:34 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/07/27 20:44:18 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011/06/03 12:51:38 | 000,134,928 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2011/01/25 03:57:18 | 000,296,448 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/11/29 15:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 19:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/03 04:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2012/10/28 22:03:08 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/10/24 08:13:38 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/10/09 09:22:48 | 000,173,568 | ---- | M] (Dell Products, LP.) [Auto | Running] -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe -- (DellDigitalDelivery)
SRV - [2012/09/29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/09/23 19:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2011/08/18 09:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/05/19 01:16:48 | 000,995,392 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2011/05/19 01:16:46 | 001,335,360 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2011/05/19 01:16:36 | 000,921,664 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2010/11/25 05:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 05:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/11/05 23:54:22 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/10/12 11:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/10/05 21:04:12 | 002,655,768 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/10/05 21:04:08 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/08/25 20:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 15:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/09/29 19:54:26 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/08/30 22:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/08/23 08:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 08:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/23 08:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/03/01 00:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/09 18:45:00 | 000,060,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2011/11/15 00:13:00 | 000,327,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2011/08/08 07:32:08 | 000,299,008 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2011/08/08 07:32:08 | 000,299,008 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011/08/03 17:28:32 | 008,604,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2011/06/21 15:19:14 | 000,025,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2011/06/21 15:19:12 | 000,034,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2011/06/10 05:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/05/19 01:17:04 | 000,053,248 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2011/05/19 01:17:02 | 000,051,712 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\btmaud.sys -- (btmaudio)
DRV:64bit: - [2011/05/13 02:28:46 | 000,363,856 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2011/04/10 13:51:06 | 012,223,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/03/11 00:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 00:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/25 03:57:18 | 000,520,192 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2011/01/20 11:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2010/12/10 15:50:36 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010/12/10 15:50:36 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010/11/29 15:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/20 21:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/06 17:45:48 | 000,438,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/10/29 18:11:42 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/10/19 22:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 03:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/07/13 19:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 19:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 19:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 14:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 14:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 14:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 14:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/02/06 01:05:05 | 000,011,576 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\SSPORT.sys -- (SSPORT)
DRV:64bit: - [2006/11/01 12:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 19:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "yahoo.com"
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/28 22:03:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/28 22:03:08 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/10/24 00:22:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Paula\AppData\Roaming\Mozilla\Extensions
[2012/10/24 00:26:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Paula.Paula-PC\AppData\Roaming\mozilla\Firefox\Profiles\vap8xc61.default\extensions
[2012/10/28 22:03:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/10/28 22:03:08 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/10/10 19:05:38 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/10/10 19:05:38 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2009/06/10 15:00:26 | 000,000,824 | ---- | M]) - C:\WINDOWS\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12 File not found
O4 - HKLM..\Run: [RoxWatchTray] c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_Plugin.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.9.2)
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_09)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_09)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FD1DCA4-20F2-4623-9760-9A49263A867A}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/11/06 22:18:13 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Adobe
[2012/11/06 20:53:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/11/06 20:52:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2012/11/06 20:51:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2012/11/06 20:51:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2012/11/06 20:49:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2012/11/06 20:48:07 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012/11/06 20:38:14 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\PSU
[2012/11/06 20:37:29 | 000,000,000 | ---D | C] -- C:\windows\Samsung
[2012/11/06 20:37:26 | 000,081,920 | ---- | C] (Samsung Electronics) -- C:\windows\SysWow64\ssdevm.dll
[2012/11/06 20:37:26 | 000,074,240 | ---- | C] (Samsung Electronics) -- C:\windows\SysNative\ssdevm64.dll
[2012/11/06 20:31:02 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Documents\SCX-4623_SP_1.25.01
[2012/11/06 19:27:53 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Malwarebytes
[2012/11/06 19:27:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/11/06 19:27:44 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2012/11/05 22:10:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012/11/05 22:10:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/11/05 22:02:47 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Avg2013
[2012/11/04 13:34:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2012/11/04 13:13:04 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\ElevatedDiagnostics
[2012/11/04 08:51:31 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Microsoft Help
[2012/11/04 08:51:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012/11/03 14:49:41 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2012/11/02 23:14:15 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Macrovision
[2012/11/02 23:14:13 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Roxio Burn
[2012/11/02 16:49:05 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Skype
[2012/11/02 16:49:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/11/02 16:49:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/11/01 22:07:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012/11/01 22:07:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012/11/01 22:07:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012/11/01 20:59:22 | 000,000,000 | ---D | C] -- C:\Temp
[2012/10/29 02:00:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/10/28 22:03:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/10/28 20:46:17 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Desktop\Adobe
[2012/10/25 20:18:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartSound
[2012/10/25 20:18:20 | 000,000,000 | ---D | C] -- C:\ProgramData\SmartSound Software Inc
[2012/10/25 20:00:23 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Desktop\Adobe Photoshop Elements 10
[2012/10/25 20:00:11 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Desktop\Adobe Premiere Elements 10
[2012/10/25 16:22:45 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Apple Computer
[2012/10/25 16:22:45 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Apple Computer
[2012/10/25 16:22:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/10/25 16:22:41 | 000,000,000 | ---D | C] -- C:\windows\SysNative\DRVSTORE
[2012/10/25 16:22:27 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/10/25 16:22:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/10/25 16:22:27 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2012/10/25 16:22:11 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Apple
[2012/10/25 16:21:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/10/25 16:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/10/25 16:21:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/10/25 16:19:55 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Desktop\Premiere
[2012/10/25 16:13:23 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Desktop\photoshop
[2012/10/25 16:12:12 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Akamai
[2012/10/25 15:04:16 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\OEM
[2012/10/25 15:01:11 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2012/10/25 15:01:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
[2012/10/25 15:01:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. Applications
[2012/10/25 15:01:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/10/25 15:00:10 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/10/25 15:00:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012/10/25 14:59:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/10/25 14:59:05 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/10/25 14:59:05 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/10/25 14:59:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012/10/25 14:58:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2012/10/25 14:58:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tablet
[2012/10/25 14:58:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SmartSound Software
[2012/10/25 14:58:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SmarThru 4
[2012/10/25 14:58:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2012/10/25 14:58:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SamsungPrinterLiveUpdate
[2012/10/25 14:58:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Readiris10
[2012/10/25 14:58:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/10/25 14:57:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Canon
[2012/10/25 14:57:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/10/25 14:57:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Canon
[2012/10/25 14:57:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2012/10/25 14:57:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/10/25 13:02:58 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\TuneUp Software
[2012/10/25 13:02:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVG Secure Search
[2012/10/25 12:55:18 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012/10/25 12:55:18 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\MFAData
[2012/10/25 12:55:18 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012/10/25 02:07:03 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Wat
[2012/10/25 02:07:03 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Wat
[2012/10/24 09:04:01 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
[2012/10/24 09:04:00 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor for Windows
[2012/10/24 09:03:18 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Support Center
[2012/10/24 09:00:52 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\PCDr
[2012/10/24 09:00:05 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr
[2012/10/24 07:51:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/10/24 07:50:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/10/24 07:34:46 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Macromedia
[2012/10/24 07:33:35 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Macromed
[2012/10/24 06:30:51 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Nero_AG
[2012/10/24 01:40:56 | 000,000,000 | ---D | C] -- C:\Emergency
[2012/10/24 01:20:59 | 000,000,000 | ---D | C] -- C:\windows\SMINST
[2012/10/24 00:32:11 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Desktop\MySyncUPFiles
[2012/10/24 00:21:54 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Mozilla
[2012/10/24 00:21:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/10/24 00:21:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/10/24 00:20:32 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\My Backup Files
[2012/10/24 00:13:36 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Adobe
[2012/10/24 00:10:33 | 000,000,000 | ---D | C] -- C:\TrustedID IDMonitor Identity Protection
[2012/10/24 00:09:36 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Mozilla
[2012/10/24 00:08:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Digital Delivery
[2012/10/24 00:03:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Touch Software Suite
[2012/10/24 00:02:12 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Dell
[2012/10/24 00:01:22 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Fingertapps
[2012/10/24 00:01:22 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Dell
[2012/10/24 00:01:13 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Roxio
[2012/10/24 00:01:12 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Intel Corporation
[2012/10/24 00:01:08 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Dell Touch Zone
[2012/10/24 00:00:59 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Creative
[2012/10/24 00:00:21 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/10/24 00:00:21 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Searches
[2012/10/24 00:00:21 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/10/24 00:00:21 | 000,000,000 | -H-D | C] -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/10/24 00:00:06 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Identities
[2012/10/24 00:00:01 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Contacts
[2012/10/23 23:59:59 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/10/23 23:59:57 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\VirtualStore
[2012/10/23 23:57:10 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Intel
[2012/10/23 23:57:07 | 000,000,000 | --SD | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Videos
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Saved Games
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Desktop\Play Games
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Pictures
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Music
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Links
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Favorites
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Downloads
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Documents
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\Desktop
[2012/10/23 23:57:07 | 000,000,000 | R--D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Temporary Internet Files
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Templates
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Start Menu
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\SendTo
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Recent
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\PrintHood
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\NetHood
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Documents\My Videos
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Documents\My Pictures
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Documents\My Music
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\My Documents
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Local Settings
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\AppData\Local\History
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Cookies
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\Application Data
[2012/10/23 23:57:07 | 000,000,000 | -HSD | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Application Data
[2012/10/23 23:57:07 | 000,000,000 | -H-D | C] -- C:\Users\Paula.Paula-PC\AppData
[2012/10/23 23:57:07 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Temp
[2012/10/23 23:57:07 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\SoftThinks
[2012/10/23 23:57:07 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\Roaming
[2012/10/23 23:57:07 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Local\Microsoft
[2012/10/23 23:57:07 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Media Center Programs
[2012/10/23 23:57:07 | 000,000,000 | ---D | C] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Macromedia

========== Files - Modified Within 30 Days ==========

[2012/11/10 19:33:12 | 000,001,524 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk
[2012/11/10 19:13:01 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/11/10 18:07:53 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/10 18:07:53 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/10 16:18:30 | 000,782,986 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012/11/10 16:18:30 | 000,663,260 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012/11/10 16:18:30 | 000,122,096 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012/11/10 16:13:06 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/11/10 16:12:30 | 3148,226,560 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/07 03:24:06 | 000,468,136 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012/11/06 21:15:22 | 000,001,139 | ---- | M] () -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2012/11/06 21:01:57 | 000,796,420 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012/11/06 20:37:34 | 000,000,276 | ---- | M] () -- C:\Users\Public\Desktop\SAMSUNG Dr.Printer.url
[2012/11/06 19:27:45 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/11/05 22:10:56 | 000,001,945 | ---- | M] () -- C:\windows\epplauncher.mif
[2012/11/04 16:44:06 | 000,004,388 | ---- | M] () -- C:\WirelessDiagLog.csv
[2012/11/03 15:23:44 | 000,013,523 | ---- | M] () -- C:\Users\Paula.Paula-PC\Desktop\transcending_travel_ebook - Shortcut.lnk
[2012/11/03 13:40:17 | 000,136,280 | -H-- | M] () -- C:\windows\SysWow64\mlfcache.dat
[2012/11/01 22:00:37 | 000,002,021 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2012/10/28 20:48:38 | 000,002,069 | ---- | M] () -- C:\Users\Public\Desktop\Lightroom 3.6 64-bit.lnk
[2012/10/25 20:25:42 | 000,002,123 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Photoshop Elements 10.lnk
[2012/10/25 20:15:24 | 000,001,219 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Premiere Elements 10.lnk
[2012/10/25 16:22:43 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/10/24 03:54:56 | 000,108,227 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2012/10/24 03:54:56 | 000,108,227 | ---- | M] () -- C:\windows\SysNative\license.rtf
[2012/10/24 01:44:02 | 000,000,452 | ---- | M] () -- C:\Users\Public\Desktop\Emergency Backup.lnk
[2012/10/24 00:21:23 | 000,001,153 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/10/24 00:13:23 | 000,001,443 | ---- | M] () -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/10/24 00:10:33 | 000,000,211 | ---- | M] () -- C:\Users\Public\Desktop\My Identity Protection.url

========== Files Created - No Company Name ==========

[2012/11/10 19:33:12 | 000,001,536 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
[2012/11/10 19:33:12 | 000,001,524 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Application Manager.lnk
[2012/11/06 21:15:22 | 000,001,139 | ---- | C] () -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2012/11/06 20:37:32 | 000,493,432 | ---- | C] () -- C:\windows\ssndii.exe
[2012/11/06 19:27:45 | 000,001,115 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/11/05 22:10:56 | 000,001,945 | ---- | C] () -- C:\windows\epplauncher.mif
[2012/11/05 22:10:46 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/11/04 14:12:06 | 000,004,388 | ---- | C] () -- C:\WirelessDiagLog.csv
[2012/11/03 15:23:44 | 000,013,523 | ---- | C] () -- C:\Users\Paula.Paula-PC\Desktop\transcending_travel_ebook - Shortcut.lnk
[2012/11/03 13:40:17 | 000,136,280 | -H-- | C] () -- C:\windows\SysWow64\mlfcache.dat
[2012/11/01 22:00:37 | 000,002,021 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2012/11/01 22:00:36 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2012/10/28 20:48:38 | 000,002,077 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 3.6 64-bit.lnk
[2012/10/28 20:48:38 | 000,002,069 | ---- | C] () -- C:\Users\Public\Desktop\Lightroom 3.6 64-bit.lnk
[2012/10/25 20:25:42 | 000,002,139 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 10.lnk
[2012/10/25 20:25:42 | 000,002,123 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Photoshop Elements 10.lnk
[2012/10/25 20:15:24 | 000,002,239 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Elements 10.lnk
[2012/10/25 20:15:24 | 000,001,219 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Premiere Elements 10.lnk
[2012/10/25 16:22:43 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/10/25 16:22:10 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/10/24 07:33:46 | 000,000,830 | ---- | C] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/10/24 03:53:05 | 3148,226,560 | -HS- | C] () -- C:\hiberfil.sys
[2012/10/24 01:44:02 | 000,000,452 | ---- | C] () -- C:\Users\Public\Desktop\Emergency Backup.lnk
[2012/10/24 00:21:23 | 000,001,165 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/10/24 00:21:23 | 000,001,153 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/10/24 00:13:23 | 000,001,443 | ---- | C] () -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/10/24 00:08:33 | 000,000,970 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Digital Delivery.lnk
[2012/10/24 00:00:30 | 000,001,415 | ---- | C] () -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012/10/24 00:00:23 | 000,001,449 | ---- | C] () -- C:\Users\Paula.Paula-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/10/23 23:59:34 | 000,001,979 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Help Documentation.lnk
[2012/10/23 23:57:07 | 000,000,290 | ---- | C] () -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/10/23 23:57:07 | 000,000,272 | ---- | C] () -- C:\Users\Paula.Paula-PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/12/09 21:21:16 | 000,963,116 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2011/12/09 21:21:16 | 000,218,304 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2011/12/09 21:21:16 | 000,056,832 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2011/12/09 21:21:15 | 013,356,032 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
[2011/12/09 21:21:15 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2011/12/09 21:20:43 | 000,000,096 | ---- | C] () -- C:\windows\LaunApp.ini
[2011/12/09 21:20:37 | 000,000,325 | ---- | C] () -- C:\windows\Prelaunch.ini
[2011/12/09 21:20:37 | 000,000,271 | ---- | C] () -- C:\windows\WisPriority.ini
[2011/12/09 21:20:37 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2011/12/09 21:20:37 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2011/12/09 21:20:37 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2011/12/09 20:04:22 | 000,017,776 | ---- | C] () -- C:\windows\EvtMessage.dll
[2011/12/09 19:59:31 | 000,796,420 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011/12/09 19:56:20 | 000,008,192 | ---- | C] () -- C:\windows\SysWow64\drivers\IntelMEFWVer.dll
[2011/07/29 05:40:44 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2011/07/29 05:40:44 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini

========== ZeroAccess Check ==========

[2009/07/13 22:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\WINDOWS\SysNative\shell32.dll -- [2012/06/08 23:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 22:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\WINDOWS\SysNative\wbem\fastprox.dll -- [2009/07/13 19:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 21:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\WINDOWS\SysNative\wbem\wbemess.dll -- [2009/07/13 19:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/10/24 00:03:45 | 000,000,000 | ---D | M] -- C:\Users\Paula.Paula-PC\AppData\Roaming\Fingertapps
[2012/10/24 09:02:58 | 000,000,000 | ---D | M] -- C:\Users\Paula.Paula-PC\AppData\Roaming\PCDr
[2012/10/25 13:02:58 | 000,000,000 | ---D | M] -- C:\Users\Paula.Paula-PC\AppData\Roaming\TuneUp Software

========== Purity Check ==========



< End of report >
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP