Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Randomly slow internet - Not ISP related.

Started by Lynxzy , Dec 09 2012 02:48 PM

  • Please log in to reply

#1
Lynxzy
Posted 09 December 2012 - 02:48 PM

Lynxzy

    New Member

  • Member
  • Pip
  • 5 posts
Hi there guys,

Let me start by saying that I have gone far and deep investigating my ISP on a potential slow net issue. We have found it is 100% definitely NOT them. We have 3 other computers and my phone that all have no problems, only this one is producing the random VERY slow (latency speeds of up to 9000ms) internet.

I ran a Malware Bytes scan that shows a Hacktool-Wpakill virus onboard. (2 of them actually) and a few RiskTools. I deleted them but I still get these bad drops in speed whilst all other computers do not have the slow speed.

Anyway, I am really stumped and I have the script below for your convinience.

I thank you in advance!!


OTL logfile created on: 09/12/2012 20:40:55 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = F:\Users\Luke\Downloads SSD
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

7.96 Gb Total Physical Memory | 5.39 Gb Available Physical Memory | 67.70% Memory free
7.96 Gb Paging File | 4.93 Gb Available in Paging File | 61.93% Paging File free
Paging file location(s): [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 238.47 Gb Total Space | 128.43 Gb Free Space | 53.86% Space Free | Partition Type: NTFS
Drive E: | 100.00 Mb Total Space | 71.10 Mb Free Space | 71.10% Space Free | Partition Type: NTFS
Drive F: | 931.41 Gb Total Space | 610.65 Gb Free Space | 65.56% Space Free | Partition Type: NTFS

Computer Name: LUKE-PC | User Name: Luke | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/12/09 20:40:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\Users\Luke\Downloads SSD\OTL.exe
PRC - [2012/12/04 12:34:12 | 001,354,736 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2012/11/22 10:29:16 | 003,290,304 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012/10/02 12:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/09/29 19:54:26 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/09/29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/09/29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/09/23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/09/19 11:03:47 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/07/03 08:04:58 | 000,507,312 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2012/01/15 03:58:30 | 004,431,328 | ---- | M] (Thorvald Natvig) -- C:\Program Files (x86)\Mumble\mumble.exe
PRC - [2011/06/13 08:36:54 | 000,922,240 | R--- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
PRC - [2011/05/24 19:54:46 | 001,426,048 | ---- | M] (ASUSTeK Computer Inc.) -- F:\Program Files SSD\AI Suite II\AI Suite II.exe
PRC - [2011/04/18 16:46:48 | 001,216,640 | ---- | M] (ASUSTeK Computer Inc.) -- F:\Program Files SSD\AI Suite II\EPU\EPUHelp.exe
PRC - [2011/04/13 14:15:22 | 001,116,800 | ---- | M] (ASUSTeK Computer Inc.) -- F:\Program Files SSD\AI Suite II\DIGI+ VRM\VRMHelp.exe
PRC - [2010/12/02 02:15:14 | 000,915,584 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
PRC - [2010/11/26 20:50:04 | 002,931,328 | ---- | M] (ASUSTeK Computer Inc.) -- F:\Program Files SSD\AI Suite II\AsRoutineController.exe
PRC - [2010/11/08 14:09:00 | 000,465,536 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
PRC - [2010/10/21 09:52:26 | 000,586,880 | R--- | M] () -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
PRC - [2010/09/24 20:29:32 | 001,115,776 | ---- | M] (ASUSTeK Computer Inc.) -- F:\Program Files SSD\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
PRC - [2010/02/18 17:27:40 | 000,241,789 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe
PRC - [2009/08/28 11:45:56 | 000,286,720 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2009/03/30 06:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe
PRC - [2009/02/23 19:43:12 | 000,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files (x86)\MagicDisc\MagicDisc.exe


========== Modules (No Company Name) ==========

MOD - [2012/12/09 19:23:22 | 000,071,752 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\manual.dll
MOD - [2012/12/09 19:23:22 | 000,025,160 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\wolfet.dll
MOD - [2012/12/09 19:23:22 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\ut3.dll
MOD - [2012/12/09 19:23:21 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\hl2dm.dll
MOD - [2012/12/09 19:23:21 | 000,032,840 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\ut99.dll
MOD - [2012/12/09 19:23:21 | 000,032,184 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\l4d2.dll
MOD - [2012/12/09 19:23:21 | 000,031,816 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\wow.dll
MOD - [2012/12/09 19:23:21 | 000,031,304 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\tf2.dll
MOD - [2012/12/09 19:23:21 | 000,023,624 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\sto.dll
MOD - [2012/12/09 19:23:21 | 000,023,112 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\lol.dll
MOD - [2012/12/09 19:23:21 | 000,023,112 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\gw.dll
MOD - [2012/12/09 19:23:21 | 000,022,600 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\lotro.dll
MOD - [2012/12/09 19:23:21 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\ut2004.dll
MOD - [2012/12/09 19:23:21 | 000,019,384 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\link.dll
MOD - [2012/12/09 19:23:20 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\insurgency.dll
MOD - [2012/12/09 19:23:20 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\gmod.dll
MOD - [2012/12/09 19:23:20 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\dys.dll
MOD - [2012/12/09 19:23:20 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\dods.dll
MOD - [2012/12/09 19:23:20 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\css.dll
MOD - [2012/12/09 19:23:20 | 000,024,136 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\borderlands.dll
MOD - [2012/12/09 19:23:20 | 000,023,624 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\etqw.dll
MOD - [2012/12/09 19:23:20 | 000,023,624 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\cod4.dll
MOD - [2012/12/09 19:23:20 | 000,022,968 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\l4d.dll
MOD - [2012/12/09 19:23:20 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\gtaiv.dll
MOD - [2012/12/09 19:23:20 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\cod2.dll
MOD - [2012/12/09 19:23:20 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\breach.dll
MOD - [2012/12/09 19:23:20 | 000,020,552 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\jc2.dll
MOD - [2012/12/09 19:23:19 | 000,038,984 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\bf2.dll
MOD - [2012/12/09 19:23:19 | 000,037,960 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\aoc.dll
MOD - [2012/12/09 19:23:19 | 000,036,632 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\bf3.dll
MOD - [2012/12/09 19:23:19 | 000,022,600 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\cs.dll
MOD - [2012/12/09 19:23:19 | 000,022,600 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\blacklight.dll
MOD - [2012/12/09 19:23:19 | 000,022,600 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\bf2142.dll
MOD - [2012/12/09 19:23:19 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\codmw2so.dll
MOD - [2012/12/09 19:23:19 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\codmw2.dll
MOD - [2012/12/09 19:23:19 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\cod5.dll
MOD - [2012/12/09 19:23:19 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\bfbc2.dll
MOD - [2012/12/09 19:23:19 | 000,021,064 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\bf1942.dll
MOD - [2012/12/09 19:23:19 | 000,020,552 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\bfheroes.dll
MOD - [2012/12/09 19:23:19 | 000,020,552 | ---- | M] () -- C:\Program Files (x86)\Mumble\plugins\arma2.dll
MOD - [2012/12/04 12:34:18 | 000,835,072 | ---- | M] () -- C:\Program Files (x86)\Steam\sdl.dll
MOD - [2012/12/04 12:34:16 | 020,319,568 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2012/12/04 12:34:16 | 001,099,616 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
MOD - [2012/12/04 12:34:16 | 000,965,616 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2012/12/04 12:34:16 | 000,190,816 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
MOD - [2012/12/04 12:34:16 | 000,123,232 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll
MOD - [2012/11/28 03:43:17 | 000,460,904 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\ppgooglenaclpluginchrome.dll
MOD - [2012/11/28 03:43:16 | 012,456,040 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll
MOD - [2012/11/28 03:43:15 | 004,008,040 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\pdf.dll
MOD - [2012/11/28 03:42:30 | 000,587,880 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\libglesv2.dll
MOD - [2012/11/28 03:42:29 | 000,124,520 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\libegl.dll
MOD - [2012/11/28 03:42:22 | 000,157,304 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\avutil-51.dll
MOD - [2012/11/28 03:42:21 | 002,168,952 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\avcodec-54.dll
MOD - [2012/11/28 03:42:21 | 000,275,576 | ---- | M] () -- C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\avformat-54.dll
MOD - [2012/08/27 20:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/27 20:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/20 08:12:18 | 000,881,152 | ---- | M] () -- F:\Program Files SSD\AI Suite II\Sensor\Sensor.dll
MOD - [2011/05/16 16:35:56 | 000,965,632 | ---- | M] () -- F:\Program Files SSD\AI Suite II\BarGadget\BarGadget.dll
MOD - [2011/05/11 13:01:40 | 001,264,640 | ---- | M] () -- F:\Program Files SSD\AI Suite II\MyLogo\MyLogo.dll
MOD - [2011/05/06 15:53:38 | 001,036,800 | ---- | M] () -- F:\Program Files SSD\AI Suite II\ASUS Update\Update.dll
MOD - [2011/04/07 16:33:18 | 001,607,168 | ---- | M] () -- F:\Program Files SSD\AI Suite II\Sensor Graph\SensorGraph.dll
MOD - [2011/02/24 09:19:36 | 000,143,360 | ---- | M] () -- F:\Program Files SSD\AI Suite II\AssistFunc.dll
MOD - [2011/02/19 13:47:20 | 000,168,104 | ---- | M] () -- C:\Program Files (x86)\Mumble\speex.dll
MOD - [2011/02/19 13:47:14 | 000,129,192 | ---- | M] () -- C:\Program Files (x86)\Mumble\mumble_ol.dll
MOD - [2011/02/19 13:47:08 | 000,079,528 | ---- | M] () -- C:\Program Files (x86)\Mumble\celt0.0.7.0.sse2.dll
MOD - [2011/02/19 13:46:56 | 000,094,888 | ---- | M] () -- C:\Program Files (x86)\Mumble\celt0.0.11.0.sse2.dll
MOD - [2011/02/09 08:02:28 | 000,873,472 | ---- | M] () -- F:\Program Files SSD\AI Suite II\AI Charger+\AIChargerPlus.dll
MOD - [2011/01/10 19:32:04 | 001,070,760 | ---- | M] () -- C:\Program Files (x86)\Mumble\libprotobuf.dll
MOD - [2011/01/10 19:30:54 | 000,042,152 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\iconengines\qsvgicon4.dll
MOD - [2011/01/10 19:30:40 | 000,308,904 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\imageformats\qtiff4.dll
MOD - [2011/01/10 19:30:28 | 000,027,816 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\imageformats\qsvg4.dll
MOD - [2011/01/10 19:30:18 | 000,246,952 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\imageformats\qmng4.dll
MOD - [2011/01/10 19:30:08 | 000,208,552 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\imageformats\qjpeg4.dll
MOD - [2011/01/10 19:29:58 | 000,034,472 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\imageformats\qico4.dll
MOD - [2011/01/10 19:29:48 | 000,032,424 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtPlugins\imageformats\qgif4.dll
MOD - [2011/01/10 19:21:10 | 008,223,744 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtGui4.dll
MOD - [2011/01/07 15:39:36 | 001,246,208 | ---- | M] () -- F:\Program Files SSD\AI Suite II\Settings\Settings.dll
MOD - [2011/01/06 09:38:48 | 001,027,072 | ---- | M] () -- F:\Program Files SSD\AI Suite II\Probe_II\ProbeII.dll
MOD - [2010/12/04 15:47:38 | 000,957,952 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtNetwork4.dll
MOD - [2010/11/09 21:46:08 | 000,271,360 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtSvg4.dll
MOD - [2010/11/09 21:39:20 | 000,691,712 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtOpenGL4.dll
MOD - [2010/11/09 21:24:58 | 000,679,936 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtSql4.dll
MOD - [2010/11/09 21:05:58 | 000,342,528 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtXml4.dll
MOD - [2010/11/09 21:05:46 | 002,343,424 | ---- | M] () -- C:\Program Files (x86)\Mumble\QtCore4.dll
MOD - [2010/10/04 01:50:48 | 002,259,968 | ---- | M] () -- C:\Program Files (x86)\Mumble\libsndfile-1.dll
MOD - [2010/08/23 02:17:40 | 000,662,016 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMLib.dll
MOD - [2010/08/06 17:13:48 | 000,886,272 | ---- | M] () -- F:\Program Files SSD\AI Suite II\TabGadget\TabGadget.dll
MOD - [2010/08/06 17:11:20 | 000,850,944 | ---- | M] () -- F:\Program Files SSD\AI Suite II\Splitter\Splitter.dll
MOD - [2010/07/09 07:41:42 | 002,359,296 | ---- | M] () -- C:\Program Files (x86)\Mumble\libmysql.dll
MOD - [2010/06/21 14:21:22 | 000,208,896 | ---- | M] () -- F:\Program Files SSD\AI Suite II\Sensor\AlertHelper\ImageHelper.dll
MOD - [2010/06/21 14:21:22 | 000,208,896 | ---- | M] () -- F:\Program Files SSD\AI Suite II\ImageHelper.dll
MOD - [2010/06/08 12:22:00 | 000,181,760 | ---- | M] () -- C:\Windows\SysWOW64\APOMngr.DLL
MOD - [2009/12/29 15:50:00 | 000,073,728 | ---- | M] () -- C:\Windows\SysWOW64\CmdRtr.DLL
MOD - [2009/09/09 15:28:56 | 000,059,904 | ---- | M] () -- C:\Program Files (x86)\Mumble\zlib1.dll
MOD - [2009/08/12 19:15:52 | 000,253,952 | ---- | M] () -- F:\Program Files SSD\AI Suite II\pngio.dll
MOD - [2009/03/30 06:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe


========== Services (SafeList) ==========

SRV:64bit: - [2012/08/02 12:42:04 | 008,786,848 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe -- (TabletServiceWacom)
SRV:64bit: - [2012/08/02 12:42:04 | 000,565,152 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Wacom\Wacom_TouchService.exe -- (TouchServiceWacom)
SRV:64bit: - [2011/05/23 15:47:54 | 000,171,688 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel®
SRV:64bit: - [2010/11/22 06:56:12 | 000,487,096 | R--- | M] (cFos Software GmbH) [Auto | Running] -- C:\Program Files\ASUS\ROG GameFirst\spd.exe -- (cFosSpeedS)
SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 01:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012/11/22 10:29:16 | 003,290,304 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012/11/09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/10/28 16:28:05 | 000,529,744 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/10/13 21:23:30 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/10/02 22:21:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/10/02 12:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/09/29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/09/23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/09/19 11:03:47 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/09/18 18:16:13 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2012/09/18 18:15:48 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2012/09/18 18:15:35 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/06/13 08:36:54 | 000,922,240 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe -- (asComSvc)
SRV - [2010/12/02 02:15:14 | 000,915,584 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe -- (asHmComSvc)
SRV - [2010/10/21 09:52:26 | 000,586,880 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/08/28 11:45:56 | 000,286,720 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/08 19:28:23 | 000,560,184 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2012/09/29 19:54:26 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/07/09 12:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/07/03 15:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/06/21 14:12:00 | 000,068,512 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wachidrouter.sys -- (WacHidRouter)
DRV:64bit: - [2012/06/21 14:12:00 | 000,013,728 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf)
DRV:64bit: - [2012/05/22 13:07:18 | 000,015,736 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacomrouterfilter.sys -- (wacomrouterfilter)
DRV:64bit: - [2012/03/01 06:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/06/21 02:26:40 | 000,336,048 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1q62x64.sys -- (e1qexpress)
DRV:64bit: - [2011/03/23 14:41:28 | 000,036,448 | ---- | M] (Asmedia Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\asahci64.sys -- (asahci64)
DRV:64bit: - [2011/03/11 06:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 06:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/03/04 05:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011/03/04 05:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2011/02/24 09:30:50 | 000,389,608 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011/02/24 09:30:50 | 000,126,952 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2010/12/16 04:06:46 | 000,047,232 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/11/22 06:56:14 | 001,437,368 | R--- | M] (cFos Software GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfosspeed.sys -- (cFosSpeed)
DRV:64bit: - [2010/11/21 03:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 03:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010/11/21 03:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 03:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/08 13:57:58 | 000,014,464 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AiChargerPlus.sys -- (AiChargerPlus)
DRV:64bit: - [2009/12/30 10:21:26 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)
DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\mcdbus.sys -- (mcdbus)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0C 80 39 FC C9 95 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.2: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: F:\Program Files SSD\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.138.0: C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.2: C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: F:\Program Files SSD\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@raidcall.en/RCplugin: C:\Users\Luke\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.2: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Luke\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Luke\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2011\FFExt\[email protected]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2011\FFExt\[email protected]


========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Luke\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\gcswf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Luke\AppData\Local\Google\Chrome\Application\23.0.1271.95\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Luke\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: Media Hint = C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja\0.1.12_0\
CHR - Extension: AdBlock = C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.49_0\
CHR - Extension: Reddit Enhancement Suite = C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.1.5_0\
CHR - Extension: Chromium Wheel Smooth Scroller = C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb\1.3.2_0\
CHR - Extension: Hover Zoom = C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbimoafigmfpaiobngkbobhpmjeeppfh\4.7.4_0\

O1 HOSTS File: ([2012/12/09 19:07:38 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files SSD\Java\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files SSD\Java\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft Device Center\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelliType Pro] C:\Program Files\Microsoft Device Center\itype.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [ROG GameFirst] C:\Program Files\ASUS\ROG GameFirst\cfosspeed.exe (cFos Software GmbH)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RunDLLEntry] C:\Windows\SysNative\AmbRunE.DLL (Creative Technology Ltd.)
O4:64bit: - HKLM..\Run: [THXCfg64] C:\Windows\SysNative\THXCfg64.DLL (Creative Technology Ltd.)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [THX Audio Control Panel] C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\THXAudioCP\THXAudio.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6EEE6D6D-C564-442A-9978-94142B49D951}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/09 20:35:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2012/12/09 20:35:48 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/12/09 19:54:48 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/12/09 19:21:54 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Roaming\Mumble
[2012/12/09 19:21:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
[2012/12/09 19:15:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mumble
[2012/12/09 19:08:43 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/12/09 19:03:53 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/12/09 19:03:53 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/12/09 19:03:53 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/12/09 19:03:50 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/12/09 19:03:45 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/12/08 23:48:14 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicDisc
[2012/12/08 23:48:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicDisc
[2012/12/08 23:48:11 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysWow64\drivers\mcdbus.sys
[2012/12/08 23:48:11 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysNative\drivers\mcdbus.sys
[2012/12/08 23:48:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicDisc
[2012/12/08 22:34:40 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images
[2012/12/08 19:28:23 | 000,560,184 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
[2012/12/08 19:28:23 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Roaming\DAEMON Tools Pro
[2012/12/08 19:28:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Pro
[2012/12/08 19:27:29 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Pro
[2012/12/07 02:15:18 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Roaming\Malwarebytes
[2012/12/07 02:15:13 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/12/07 02:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/12/07 02:15:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/12/07 02:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/12/04 00:51:34 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Local\ElevatedDiagnostics
[2012/11/28 02:38:27 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Local\ESN
[2012/11/26 19:20:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/11/26 19:20:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/11/14 20:33:32 | 000,000,000 | ---D | C] -- C:\Users\Luke\AppData\Roaming\Acreon
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/12/09 20:37:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/12/09 20:35:48 | 000,002,971 | ---- | M] () -- C:\Users\Luke\Desktop\HiJackThis.lnk
[2012/12/09 20:29:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2858732620-3104904484-2997652633-1000UA.job
[2012/12/09 20:00:42 | 000,778,834 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/12/09 20:00:42 | 000,664,320 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/12/09 20:00:42 | 000,125,056 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/12/09 19:54:46 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/12/09 19:29:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2858732620-3104904484-2997652633-1000Core.job
[2012/12/09 19:21:13 | 000,001,014 | ---- | M] () -- C:\Users\Public\Desktop\Mumble.lnk
[2012/12/09 19:07:38 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/12/09 00:00:18 | 001,304,405 | ---- | M] () -- C:\Users\Luke\Desktop\old_bike_corust1.png
[2012/12/09 00:00:15 | 000,000,132 | ---- | M] () -- C:\Users\Luke\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012/12/08 23:59:55 | 005,967,063 | ---- | M] () -- C:\Users\Luke\Desktop\old_bike_co.psd
[2012/12/08 23:48:14 | 000,000,993 | ---- | M] () -- C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
[2012/12/08 23:48:14 | 000,000,957 | ---- | M] () -- C:\Users\Luke\Desktop\MagicDisc.lnk
[2012/12/08 19:28:23 | 000,560,184 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
[2012/12/08 18:58:38 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2012/12/08 18:53:20 | 000,049,538 | ---- | M] () -- C:\Users\Luke\Desktop\LUKEHOWITTCV-2.pdf
[2012/12/08 18:53:07 | 000,167,402 | ---- | M] () -- C:\Users\Luke\Desktop\LUKEHOWITTCV-1.pdf
[2012/12/07 02:15:13 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/07 02:12:26 | 000,002,324 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/12/06 18:45:12 | 001,280,317 | ---- | M] () -- C:\Users\Luke\Desktop\old_bike_corust.png
[2012/12/06 00:49:17 | 000,020,848 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/12/06 00:49:17 | 000,020,848 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/12/04 01:34:15 | 000,074,470 | ---- | M] () -- C:\Users\Luke\Desktop\FILTHFAB.jpg
[2012/11/30 18:30:44 | 000,002,444 | ---- | M] () -- C:\Users\Luke\Desktop\Google Chrome.lnk
[2012/11/30 18:09:33 | 002,939,891 | ---- | M] () -- C:\Users\Luke\Desktop\dayz2017.psd
[2012/11/30 18:09:30 | 000,170,465 | ---- | M] () -- C:\Users\Luke\Desktop\dayz2017withblack.jpg
[2012/11/30 18:09:14 | 000,907,289 | ---- | M] () -- C:\Users\Luke\Desktop\dayz2017new.png
[2012/11/29 19:01:42 | 001,107,575 | ---- | M] () -- C:\Users\Luke\Desktop\dayz2017loading.png
[2012/11/29 19:00:49 | 004,910,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/11/29 14:55:41 | 000,228,736 | ---- | M] () -- C:\Users\Luke\Desktop\without3d preview dayz.jpg
[2012/11/29 14:55:22 | 000,241,685 | ---- | M] () -- C:\Users\Luke\Desktop\with3d preview dayz.jpg
[2012/11/28 02:39:09 | 000,281,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2012/11/28 02:39:09 | 000,281,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/11/28 02:38:48 | 000,280,904 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2012/11/26 19:20:32 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/11/23 22:18:00 | 000,441,696 | ---- | M] () -- C:\Users\Luke\Desktop\chocolate_chip_cookie.jpg
[2012/11/12 23:08:16 | 001,473,563 | ---- | M] () -- C:\Users\Luke\Desktop\rainbowyoyo.png
[2012/11/12 23:02:04 | 000,029,924 | ---- | M] () -- C:\Users\Luke\Desktop\logo_design_2_for_2nd_art_by_LynXxXx.png
[2012/11/12 23:00:05 | 001,332,251 | ---- | M] () -- C:\Users\Luke\Desktop\World_Meeting___slashTHREE_by_LynXxXx.png
[2012/11/12 22:59:06 | 000,227,056 | ---- | M] () -- C:\Users\Luke\Desktop\WIP___OM_NOM_Monster_by_LynXxXx.jpg
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/12/09 20:35:48 | 000,002,971 | ---- | C] () -- C:\Users\Luke\Desktop\HiJackThis.lnk
[2012/12/09 19:21:13 | 000,001,014 | ---- | C] () -- C:\Users\Public\Desktop\Mumble.lnk
[2012/12/09 19:03:53 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/12/09 19:03:53 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/12/09 19:03:53 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/12/09 19:03:53 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/12/09 19:03:53 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/12/09 00:00:15 | 001,304,405 | ---- | C] () -- C:\Users\Luke\Desktop\old_bike_corust1.png
[2012/12/08 23:48:14 | 000,000,993 | ---- | C] () -- C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
[2012/12/08 23:48:14 | 000,000,957 | ---- | C] () -- C:\Users\Luke\Desktop\MagicDisc.lnk
[2012/12/08 18:58:38 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2012/12/08 18:58:38 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2012/12/08 18:53:13 | 000,049,538 | ---- | C] () -- C:\Users\Luke\Desktop\LUKEHOWITTCV-2.pdf
[2012/12/08 18:52:53 | 000,167,402 | ---- | C] () -- C:\Users\Luke\Desktop\LUKEHOWITTCV-1.pdf
[2012/12/07 02:15:13 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/07 02:12:26 | 000,002,324 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/12/06 18:45:08 | 001,280,317 | ---- | C] () -- C:\Users\Luke\Desktop\old_bike_corust.png
[2012/12/06 18:44:56 | 005,967,063 | ---- | C] () -- C:\Users\Luke\Desktop\old_bike_co.psd
[2012/12/04 01:34:14 | 000,074,470 | ---- | C] () -- C:\Users\Luke\Desktop\FILTHFAB.jpg
[2012/11/30 18:09:28 | 000,170,465 | ---- | C] () -- C:\Users\Luke\Desktop\dayz2017withblack.jpg
[2012/11/30 18:09:11 | 000,907,289 | ---- | C] () -- C:\Users\Luke\Desktop\dayz2017new.png
[2012/11/29 19:01:40 | 000,000,132 | ---- | C] () -- C:\Users\Luke\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012/11/29 19:01:32 | 001,107,575 | ---- | C] () -- C:\Users\Luke\Desktop\dayz2017loading.png
[2012/11/29 14:56:15 | 002,939,891 | ---- | C] () -- C:\Users\Luke\Desktop\dayz2017.psd
[2012/11/29 14:55:40 | 000,228,736 | ---- | C] () -- C:\Users\Luke\Desktop\without3d preview dayz.jpg
[2012/11/29 14:55:20 | 000,241,685 | ---- | C] () -- C:\Users\Luke\Desktop\with3d preview dayz.jpg
[2012/11/23 22:15:35 | 000,441,696 | ---- | C] () -- C:\Users\Luke\Desktop\chocolate_chip_cookie.jpg
[2012/11/15 03:03:27 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/15 03:00:15 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/14 20:10:37 | 002,852,978 | ---- | C] () -- C:\Users\Luke\Desktop\WowMatrix.exe
[2012/11/12 23:08:16 | 001,473,563 | ---- | C] () -- C:\Users\Luke\Desktop\rainbowyoyo.png
[2012/11/12 23:02:04 | 000,029,924 | ---- | C] () -- C:\Users\Luke\Desktop\logo_design_2_for_2nd_art_by_LynXxXx.png
[2012/11/12 23:00:05 | 001,332,251 | ---- | C] () -- C:\Users\Luke\Desktop\World_Meeting___slashTHREE_by_LynXxXx.png
[2012/11/12 22:59:06 | 000,227,056 | ---- | C] () -- C:\Users\Luke\Desktop\WIP___OM_NOM_Monster_by_LynXxXx.jpg
[2012/10/17 00:10:15 | 000,764,302 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/09/18 18:50:46 | 000,281,520 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/09/18 18:50:45 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012/09/18 18:16:22 | 000,007,594 | ---- | C] () -- C:\Windows\SysWow64\xFiMB2CfgUninstall32.ini
[2012/09/18 18:16:22 | 000,005,135 | ---- | C] () -- C:\Windows\SysWow64\cfgfx.ini
[2012/09/18 18:16:22 | 000,002,775 | ---- | C] () -- C:\Windows\FF08_Render_Spk.ini
[2012/09/18 18:16:22 | 000,002,411 | ---- | C] () -- C:\Windows\FF08_Render_Hp.ini
[2012/09/18 18:16:22 | 000,002,267 | ---- | C] () -- C:\Windows\FF08_Capture.ini
[2012/09/18 18:16:22 | 000,001,542 | ---- | C] () -- C:\Windows\FF08_Render.ini
[2012/09/18 18:16:20 | 000,001,200 | ---- | C] () -- C:\Windows\THXCfg_SP_APOIM.ini
[2012/09/18 18:16:20 | 000,001,099 | ---- | C] () -- C:\Windows\THXCfg_HP_APOIM.ini
[2012/09/18 18:16:20 | 000,001,099 | ---- | C] () -- C:\Windows\THXCfg_APOIM.ini
[2012/09/18 18:16:18 | 000,181,760 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2012/09/18 18:16:18 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2012/09/18 18:12:24 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2012/09/18 18:12:14 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2012/09/18 17:46:15 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012/09/18 17:46:09 | 000,035,015 | ---- | C] () -- C:\Windows\Ascd_tmp.ini

========== ZeroAccess Check ==========

[2009/07/14 04:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 05:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 04:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 01:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 03:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 01:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/11/14 20:33:32 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\Acreon
[2012/12/08 22:34:08 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\DAEMON Tools Pro
[2012/09/18 18:44:44 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\Leadertech
[2012/12/09 19:59:02 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\Mumble
[2012/10/31 10:58:28 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\Origin
[2012/10/03 21:39:11 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\raidcall
[2012/09/20 09:21:48 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\TS3Client
[2012/12/08 19:28:41 | 000,000,000 | ---D | M] -- C:\Users\Luke\AppData\Roaming\uTorrent

========== Purity Check ==========



< End of report >
  • 0

Advertisements

#2
Lynxzy
Posted 10 December 2012 - 06:48 PM

Lynxzy

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
bump.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP