Cannot Login A Certain Site, Cannot See eBay

I cannot log in to my local library.

Recent developments - like just now - seem to indicate this might not be a local problem. A friend hundreds of miles away just tried for me and they couldn't either.

But they can in the library. My username and password work for them okay.

I cannot see eBay. I cannot ping eBay.

Ping translates the DNS okay, pings the number and times out on no response.

I cannot log in to my adsl modem/router. well, I half can, half can't. i.e. I login but the page never finishes loading. It is a Billion Bipac 5200. What doesn't load is the menu bar at the top of the screen. So I can't go anywhere, do anything.

I wanted to check for blocked traffic.

There is no firewall.

Avira free is running.

I did a full Malwarebytes scan and clean yesterday.

I feel there's something wrong here. Recently I did a Repair - just about a week ago. It is XP SP3.

OTL logfile created on: 8/11/2013 9:34:48 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\dave\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.74 Gb Available Physical Memory | 37.11% Memory free
3.85 Gb Paging File | 2.56 Gb Available in Paging File | 66.65% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 127.99 Gb Total Space | 0.41 Gb Free Space | 0.32% Space Free | Partition Type: NTFS
Drive E: | 170.10 Gb Total Space | 1.88 Gb Free Space | 1.10% Space Free | Partition Type: NTFS
Drive H: | 189.92 Gb Total Space | 3.03 Gb Free Space | 1.59% Space Free | Partition Type: NTFS
Drive I: | 931.51 Gb Total Space | 63.98 Gb Free Space | 6.87% Space Free | Partition Type: NTFS
Drive J: | 931.51 Gb Total Space | 19.09 Gb Free Space | 2.05% Space Free | Partition Type: NTFS

Computer Name: ASUS | User Name: dave | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/08/11 21:34:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\dave\My Documents\Downloads\OTL.exe
PRC - [2013/07/29 22:05:36 | 000,182,184 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013/06/26 19:26:19 | 000,084,024 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2013/06/26 19:22:50 | 000,345,144 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2013/06/26 19:22:50 | 000,108,088 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2013/06/26 19:22:50 | 000,076,856 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2013/06/18 23:51:12 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/06/08 07:43:10 | 010,057,216 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\FAHClient\cores\www.stanford.edu\~pande\Win32\x86\Core_a4.fah\FahCore_a4.exe
PRC - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/02/19 08:58:08 | 014,800,896 | ---- | M] () -- C:\Program Files\FAHClient\FAHClient.exe
PRC - [2013/02/19 08:13:36 | 002,755,072 | ---- | M] () -- C:\Program Files\FAHClient\FAHCoreWrapper.exe
PRC - [2011/10/24 18:24:26 | 001,203,712 | ---- | M] () -- C:\Program Files\Domain Tools\ProjectWhois\ProjectWhois.exe
PRC - [2011/08/25 18:35:02 | 000,055,296 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe
PRC - [2011/08/25 18:35:02 | 000,024,064 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
PRC - [2011/07/14 12:47:08 | 000,614,400 | R--- | M] (SmarterTools Inc.) -- C:\Program Files\SmarterTools\SmarterStats\Service\SSSvc.exe
PRC - [2011/07/14 12:44:08 | 000,073,728 | ---- | M] (SmarterTools Inc) -- C:\Program Files\SmarterTools\SmarterStats\Web Server\SSWebSvr.exe
PRC - [2011/07/08 15:46:38 | 000,874,496 | ---- | M] (Bopsoft) -- C:\Program Files\Listary\Listary.exe
PRC - [2011/02/11 15:19:26 | 002,760,192 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Boxtools\Toolbox.exe
PRC - [2010/07/11 19:12:46 | 002,199,040 | ---- | M] () -- C:\Program Files\Rainlendar2\Rainlendar2.exe
PRC - [2010/06/27 02:39:18 | 000,167,936 | ---- | M] (Applian Technologies, Inc.) -- C:\Program Files\Freecorder\FLVSrvc.exe
PRC - [2010/03/04 21:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2009/11/10 19:21:58 | 000,327,400 | ---- | M] () -- C:\WINDOWS\system32\AtwtusbIcon.exe
PRC - [2009/10/29 11:17:04 | 000,515,816 | ---- | M] () -- C:\WINDOWS\system32\ATWTUSB.EXE
PRC - [2009/08/27 17:09:10 | 001,253,376 | ---- | M] (MAGIX AG) -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
PRC - [2009/07/07 15:29:58 | 000,282,624 | ---- | M] (BlazeVideo Company) -- C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe
PRC - [2009/01/14 10:32:30 | 002,145,792 | ---- | M] (ASUS) -- C:\Program Files\ASUS\PC Probe II\Probe2.exe
PRC - [2008/12/17 13:35:36 | 000,621,568 | ---- | M] () -- C:\Program Files\ASUS\AASP\1.00.82\aaCenter.exe
PRC - [2008/05/02 13:45:46 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
PRC - [2008/04/14 15:12:24 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2008/04/14 15:12:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/14 15:12:16 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe
PRC - [2008/04/14 05:42:36 | 000,073,796 | ---- | M] (Smart Link) -- C:\WINDOWS\system32\slserv.exe
PRC - [2007/03/28 09:54:08 | 000,049,152 | ---- | M] (Vimicro) -- C:\WINDOWS\VM301Snap.exe
PRC - [2007/01/31 14:55:42 | 000,096,370 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
PRC - [2006/07/26 12:03:30 | 000,443,904 | ---- | M] () -- C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe
PRC - [2006/07/05 06:46:32 | 000,049,152 | ---- | M] () -- C:\WINDOWS\Domino.exe
PRC - [2005/08/06 01:07:30 | 000,061,440 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2005/04/07 13:13:08 | 000,839,680 | ---- | M] (Telstra) -- C:\Program Files\Telstra\OnlineTextBuddy\OnlineTextBuddy.exe
PRC - [2004/11/15 19:50:20 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2000/05/20 17:23:48 | 000,086,016 | ---- | M] () -- C:\WINDOWS\StartupMonitor.exe
PRC - [1999/07/03 23:00:00 | 000,099,840 | ---- | M] () -- C:\Program Files\WinKey\WinKey.exe

========== Modules (No Company Name) ==========

MOD - [2013/07/20 07:41:09 | 016,166,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll
MOD - [2013/06/19 05:38:18 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2013/06/18 23:51:31 | 003,285,912 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/06/08 07:43:10 | 010,057,216 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\FAHClient\cores\www.stanford.edu\~pande\Win32\x86\Core_a4.fah\FahCore_a4.exe
MOD - [2013/05/22 21:18:24 | 000,397,704 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2013/02/19 08:58:08 | 014,800,896 | ---- | M] () -- C:\Program Files\FAHClient\FAHClient.exe
MOD - [2013/02/19 08:13:36 | 002,755,072 | ---- | M] () -- C:\Program Files\FAHClient\FAHCoreWrapper.exe
MOD - [2012/12/21 21:52:16 | 000,105,696 | ---- | M] () -- C:\Program Files\HMA! Pro VPN\bin\ForceInterfaceLSP.dll
MOD - [2011/10/29 01:43:36 | 000,162,816 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\LAV\libbluray.dll
MOD - [2011/10/29 01:43:24 | 006,034,229 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\LAV\avcodec-lav-53.dll
MOD - [2011/10/29 01:43:24 | 000,962,568 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\LAV\avformat-lav-53.dll
MOD - [2011/10/29 01:43:24 | 000,221,581 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\LAV\avutil-lav-51.dll
MOD - [2011/10/24 18:24:26 | 001,203,712 | ---- | M] () -- C:\Program Files\Domain Tools\ProjectWhois\ProjectWhois.exe
MOD - [2011/09/22 18:43:08 | 003,578,880 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\ffdshow\ffdshow.ax
MOD - [2011/09/08 23:31:08 | 000,556,032 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\Haali\splitter.ax
MOD - [2011/09/08 23:30:52 | 000,150,528 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\Haali\mkx.dll
MOD - [2011/09/08 23:30:48 | 000,142,336 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\Haali\mp4.dll
MOD - [2011/09/08 23:29:54 | 000,080,384 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\filters\Haali\mkzlib.dll
MOD - [2011/08/25 18:35:02 | 000,055,296 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe
MOD - [2011/08/25 18:35:02 | 000,024,064 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
MOD - [2011/08/25 18:34:06 | 000,039,424 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.SSL.pyd
MOD - [2011/08/25 18:34:06 | 000,006,656 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\pyovpnc.pyd
MOD - [2011/08/25 18:34:00 | 000,010,240 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.rand.pyd
MOD - [2011/08/25 18:33:58 | 000,061,440 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.crypto.pyd
MOD - [2011/08/25 18:33:38 | 000,007,680 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\twisted.protocols._c_urlarg.pyd
MOD - [2011/08/25 18:32:48 | 000,019,968 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\zope.interface._zope_interface_coptimizations.pyd
MOD - [2011/08/19 00:44:10 | 000,005,632 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\ovpntray.dll
MOD - [2011/08/01 07:37:24 | 001,203,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.WorkflowServ#\ad9facc364268611cc4ca65f77caeddd\System.WorkflowServices.ni.dll
MOD - [2011/08/01 07:36:43 | 000,365,056 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\76a5d670ce969c0c65a905b7303d4bbf\System.ServiceModel.Routing.ni.dll
MOD - [2011/08/01 07:36:42 | 001,127,424 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\dbf07cb14b4dcc210cdf8b5d90a12a56\System.ServiceModel.Discovery.ni.dll
MOD - [2011/08/01 07:36:40 | 000,082,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\c3831eb95ccf3904bab81a97a9b08ed3\System.ServiceModel.Channels.ni.dll
MOD - [2011/08/01 07:36:21 | 001,388,032 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\52481fccddb053768631c640d5059d4b\System.ServiceModel.Activities.ni.dll
MOD - [2011/08/01 07:36:17 | 001,065,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\9eac876f58a3ebca8878b8654efdc817\System.IdentityModel.ni.dll
MOD - [2011/08/01 07:36:15 | 017,919,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\250b525aa8c17327216e102569c0d766\System.ServiceModel.ni.dll
MOD - [2011/08/01 07:35:53 | 001,046,528 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\51c60db370e050d9cdcac17060aaac53\System.ServiceModel.Web.ni.dll
MOD - [2011/08/01 07:33:55 | 000,220,672 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\6e7f1bdc845816dfc797f8002b76b5e8\System.ServiceProcess.ni.dll
MOD - [2011/08/01 07:33:50 | 011,912,704 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Web\a70842538614699d690561ef5f43598b\System.Web.ni.dll
MOD - [2011/08/01 07:33:40 | 000,767,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll
MOD - [2011/08/01 07:33:36 | 001,011,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\f3989d3e9cb8904e4edf23ede5adb6c1\System.Runtime.DurableInstancing.ni.dll
MOD - [2011/08/01 07:33:35 | 000,142,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\4d2a51c03b27e615ff9f1c430f2014ba\SMDiagnostics.ni.dll
MOD - [2011/08/01 07:33:34 | 002,625,024 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
MOD - [2011/07/31 21:52:28 | 006,754,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\92cccedc7cda413ff6fc6492cb256b58\System.Data.ni.dll
MOD - [2011/07/31 21:52:19 | 000,144,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Numerics\b07f0d26a34ad53fc369248f289d1126\System.Numerics.ni.dll
MOD - [2011/07/31 21:52:15 | 000,973,312 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\ac18c2dcd06bd2a0589bac94ccae5716\System.Configuration.ni.dll
MOD - [2011/07/31 21:52:10 | 005,571,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll
MOD - [2011/07/31 21:51:58 | 013,006,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll
MOD - [2011/07/31 21:51:45 | 001,651,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll
MOD - [2011/07/31 21:51:39 | 007,025,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
MOD - [2011/07/31 21:51:23 | 009,000,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
MOD - [2011/07/31 21:51:04 | 014,415,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
MOD - [2011/06/07 00:00:58 | 000,054,784 | ---- | M] () -- C:\Program Files\Listary\CrashRpt.dll
MOD - [2011/02/27 09:12:56 | 000,110,080 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\pywintypes26.dll
MOD - [2011/02/26 10:38:18 | 000,265,728 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32com.shell.shell.pyd
MOD - [2011/02/26 10:34:56 | 000,354,304 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\pythoncom26.dll
MOD - [2011/02/26 10:33:32 | 000,027,648 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\servicemanager.pyd
MOD - [2011/02/26 10:33:20 | 000,167,424 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32gui.pyd
MOD - [2011/02/26 10:33:14 | 000,096,768 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32api.pyd
MOD - [2011/02/26 10:33:04 | 000,022,528 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32ts.pyd
MOD - [2011/02/26 10:32:44 | 000,040,960 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32service.pyd
MOD - [2011/02/26 10:32:38 | 000,110,080 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32security.pyd
MOD - [2011/02/26 10:32:28 | 000,035,840 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32process.pyd
MOD - [2011/02/26 10:32:20 | 000,023,552 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32pipe.pyd
MOD - [2011/02/26 10:31:48 | 000,017,408 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32event.pyd
MOD - [2011/02/26 10:31:46 | 000,112,128 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\win32file.pyd
MOD - [2011/02/11 15:19:26 | 002,760,192 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Boxtools\Toolbox.exe
MOD - [2010/10/16 10:15:26 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_b67eae90\mscorlib.dll
MOD - [2010/10/16 10:15:23 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_08301f0d\system.drawing.dll
MOD - [2010/10/16 10:15:13 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_299c0cb3\system.xml.dll
MOD - [2010/10/16 10:15:07 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_f20e5c9f\system.windows.forms.dll
MOD - [2010/10/16 10:14:57 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_37146e29\system.dll
MOD - [2010/10/16 10:13:34 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2010/10/16 10:13:33 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2010/08/24 17:48:54 | 000,011,776 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\select.pyd
MOD - [2010/08/24 17:48:52 | 000,286,208 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\_hashlib.pyd
MOD - [2010/08/24 17:48:48 | 000,153,088 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\pyexpat.pyd
MOD - [2010/08/24 17:48:16 | 000,073,728 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\_ctypes.pyd
MOD - [2010/08/24 17:48:06 | 000,585,728 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\unicodedata.pyd
MOD - [2010/08/24 17:48:02 | 000,720,896 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\_ssl.pyd
MOD - [2010/08/24 17:47:50 | 000,040,448 | ---- | M] () -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\_socket.pyd
MOD - [2010/07/11 19:12:52 | 000,193,024 | ---- | M] () -- C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
MOD - [2010/07/11 19:12:46 | 002,199,040 | ---- | M] () -- C:\Program Files\Rainlendar2\Rainlendar2.exe
MOD - [2010/05/24 03:55:48 | 000,501,760 | ---- | M] () -- C:\Program Files\Rainlendar2\wxmsw28u_xrc_vc_rny.dll
MOD - [2010/05/24 03:55:36 | 000,131,072 | ---- | M] () -- C:\Program Files\Rainlendar2\wxbase28u_xml_vc_rny.dll
MOD - [2010/05/24 03:55:32 | 000,485,376 | ---- | M] () -- C:\Program Files\Rainlendar2\wxmsw28u_html_vc_rny.dll
MOD - [2010/05/24 03:55:20 | 000,707,584 | ---- | M] () -- C:\Program Files\Rainlendar2\wxmsw28u_adv_vc_rny.dll
MOD - [2010/05/24 03:55:12 | 002,629,120 | ---- | M] () -- C:\Program Files\Rainlendar2\wxmsw28u_core_vc_rny.dll
MOD - [2010/05/24 03:54:20 | 001,202,688 | ---- | M] () -- C:\Program Files\Rainlendar2\wxbase28u_vc_rny.dll
MOD - [2010/05/24 03:50:08 | 000,012,288 | ---- | M] () -- C:\Program Files\Rainlendar2\lfs.dll
MOD - [2010/05/24 03:50:04 | 000,126,976 | ---- | M] () -- C:\Program Files\Rainlendar2\lua51.dll
MOD - [2010/05/24 02:47:46 | 000,060,416 | ---- | M] () -- C:\Program Files\Rainlendar2\zlib1.dll
MOD - [2010/03/04 21:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
MOD - [2010/02/06 03:57:45 | 001,291,776 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2009/11/10 19:21:58 | 000,327,400 | ---- | M] () -- C:\WINDOWS\system32\AtwtusbIcon.exe
MOD - [2009/10/29 11:17:04 | 000,515,816 | ---- | M] () -- C:\WINDOWS\system32\ATWTUSB.EXE
MOD - [2009/04/24 12:25:14 | 000,176,235 | ---- | M] () -- C:\WINDOWS\system32\Primomonnt.dll
MOD - [2008/12/30 11:40:30 | 000,073,728 | ---- | M] () -- C:\Program Files\BlazeVideo\BlazeDTV 6.0\VersionInfo.dll
MOD - [2008/12/30 11:40:26 | 000,106,496 | ---- | M] () -- C:\Program Files\BlazeVideo\BlazeDTV 6.0\mlutil.dll
MOD - [2008/12/30 11:40:26 | 000,032,768 | ---- | M] () -- C:\Program Files\BlazeVideo\BlazeDTV 6.0\MMKeyboardHook.dll
MOD - [2008/12/17 13:35:36 | 000,621,568 | ---- | M] () -- C:\Program Files\ASUS\AASP\1.00.82\aaCenter.exe
MOD - [2008/06/12 14:21:40 | 000,188,416 | ---- | M] () -- C:\Program Files\ASUS\AASP\1.00.82\aasp.dll
MOD - [2008/05/02 13:45:46 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
MOD - [2008/05/02 13:45:35 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
MOD - [2008/04/14 15:12:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 15:11:58 | 000,035,328 | ---- | M] () -- C:\WINDOWS\system32\mciqtz32.dll
MOD - [2008/04/14 15:11:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008/01/17 15:46:20 | 000,053,248 | ---- | M] () -- C:\Program Files\ASUS\PC Probe II\cpuutil.dll
MOD - [2008/01/17 15:46:20 | 000,053,248 | ---- | M] () -- C:\Program Files\ASUS\AASP\1.00.82\cpuutil.dll
MOD - [2007/07/31 18:44:59 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2007/07/31 18:44:59 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
MOD - [2007/07/31 18:44:59 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
MOD - [2007/07/31 18:44:58 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2007/07/31 18:44:58 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2006/10/28 11:11:16 | 000,516,096 | ---- | M] () -- C:\WINDOWS\system32\ac3filter.ax
MOD - [2006/07/26 12:03:30 | 000,443,904 | ---- | M] () -- C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe
MOD - [2006/07/05 06:46:32 | 000,049,152 | ---- | M] () -- C:\WINDOWS\Domino.exe
MOD - [2006/02/26 03:20:46 | 000,061,440 | ---- | M] () -- C:\Program Files\Avi2Dvd\Programs\Filters\Haali media splitter\mmfinfo.dll
MOD - [2006/02/26 03:20:16 | 000,023,552 | ---- | M] () -- C:\Program Files\Avi2Dvd\Programs\Filters\Haali media splitter\mkunicode.dll
MOD - [2006/01/10 15:50:20 | 000,024,576 | ---- | M] () -- C:\WINDOWS\system32\AsIO.dll
MOD - [2005/06/22 16:39:56 | 000,204,851 | ---- | M] () -- C:\Program Files\ASUS\PC Probe II\PowerDll.dll
MOD - [2005/06/22 16:39:56 | 000,204,851 | ---- | M] () -- C:\Program Files\ASUS\AASP\1.00.82\PowerDll.dll
MOD - [2004/12/14 09:08:44 | 000,028,672 | ---- | M] () -- C:\Program Files\ASUS\PC Probe II\AsHtmlEngine.dll
MOD - [2004/02/05 16:44:58 | 000,373,760 | ---- | M] () -- C:\Program Files\ASUS\PC Probe II\SoundPlay.dll
MOD - [2001/10/28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
MOD - [2000/05/20 17:23:48 | 000,086,016 | ---- | M] () -- C:\WINDOWS\StartupMonitor.exe
MOD - [1999/07/03 23:00:00 | 000,099,840 | ---- | M] () -- C:\Program Files\WinKey\WinKey.exe

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\NPVR\NRecord.exe -- (NPVR Recording Service)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - File not found [Auto | Stopped] -- c:\program files\common files\akamai\rswin_3586.dll -- (Akamai)
SRV - [2013/07/29 22:05:36 | 000,182,184 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013/07/20 07:41:12 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/26 19:26:19 | 000,084,024 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013/06/26 19:22:50 | 000,108,088 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2013/06/18 23:51:21 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/11/20 00:20:38 | 000,036,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\HMA! Pro VPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2012/09/06 01:26:44 | 000,234,776 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\3.0.285\McCHSvc.exe -- (McComponentHostService)
SRV - [2011/08/25 18:35:02 | 000,024,064 | ---- | M] () [Auto | Running] -- C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\capiws.exe -- (OpenVPNAccessClient)
SRV - [2011/07/28 05:28:30 | 005,023,744 | ---- | M] (Moonware Studios) [On_Demand | Stopped] -- C:\Program Files\wLite\wService.exe -- (wxpSvc)
SRV - [2011/07/14 12:47:08 | 000,614,400 | R--- | M] (SmarterTools Inc.) [Auto | Running] -- C:\Program Files\SmarterTools\SmarterStats\Service\SSSvc.exe -- (SSCollect)
SRV - [2011/07/14 12:44:08 | 000,073,728 | ---- | M] (SmarterTools Inc) [Auto | Running] -- C:\Program Files\SmarterTools\SmarterStats\Web Server\SSWebSvr.exe -- (SSWebSvr)
SRV - [2011/03/22 14:27:21 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/06/14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/03/04 21:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2010/01/27 11:39:02 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd)
SRV - [2009/10/29 11:17:04 | 000,515,816 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\ATWTUSB.EXE -- (WTService)
SRV - [2009/08/27 17:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Auto | Running] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2008/08/07 11:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2008/04/14 15:12:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008/04/14 15:12:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC)
SRV - [2008/04/14 15:12:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (MSFtpsvc)
SRV - [2008/04/14 15:12:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008/04/14 15:12:04 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\p2pgasvc.dll -- (p2pgasvc)
SRV - [2008/04/14 15:11:56 | 000,035,328 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
SRV - [2008/04/14 05:42:36 | 000,073,796 | ---- | M] (Smart Link) [Auto | Running] -- C:\WINDOWS\System32\slserv.exe -- (SLService)
SRV - [2007/11/07 08:58:18 | 003,004,416 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe -- (msvsmon90)
SRV - [2007/05/30 11:11:48 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2007/01/31 14:55:42 | 000,096,370 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2006/07/26 12:03:30 | 000,443,904 | ---- | M] () [Auto | Running] -- C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe -- (prtgwatchservice)
SRV - [2006/02/15 16:17:12 | 000,122,880 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Zenturi\ProgramChecker\sassvc.exe -- (sassvc)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\usbser_lowerflt.sys -- (upperdev)
DRV - File not found [Kernel | Disabled | Stopped] -- System32\Drivers\sptd.sys -- (sptd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Internet Explorer\SABProcEnum.sys -- (SABProcEnum)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbser.sys -- (qcusbser)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\BUSB2902.sys -- (BEHRINGER_2902)
DRV - [2013/05/22 21:19:55 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2013/05/22 21:19:54 | 000,135,136 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2013/05/22 21:19:54 | 000,084,744 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2013/05/22 21:19:54 | 000,037,352 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/12/30 06:29:38 | 000,024,184 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2012/11/30 06:40:54 | 000,483,200 | ---- | M] (ITETech ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AF15BDA.sys -- (AF15BDA)
DRV - [2012/11/20 00:20:38 | 000,026,112 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2012/01/05 08:31:54 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2011/08/19 00:46:06 | 000,026,112 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tapoas.sys -- (tapoas)
DRV - [2011/08/09 17:33:58 | 000,003,840 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\BANTExt.sys -- (BANTExt)
DRV - [2011/06/26 10:26:44 | 000,028,256 | ---- | M] (Applian Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\appliand.sys -- (appliandMP)
DRV - [2011/06/26 10:26:44 | 000,028,256 | ---- | M] (Applian Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\appliand.sys -- (appliand)
DRV - [2011/06/13 12:06:10 | 000,042,728 | ---- | M] (Realtek) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2832U_IRHID.sys -- (RTL2832U_IRHID)
DRV - [2011/05/17 13:48:22 | 000,188,520 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2832UBDA.sys -- (RTL2832UBDA)
DRV - [2011/05/17 13:48:22 | 000,032,872 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2832UUSB.sys -- (RTL2832UUSB)
DRV - [2011/04/08 22:11:29 | 000,011,496 | ---- | M] (UVNC BVBA) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mv2.sys -- (mv2)
DRV - [2010/12/30 15:19:40 | 000,016,640 | -H-- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apowersoft_AudioDevice.sys -- (Apowersoft_AudioDevice)
DRV - [2010/11/14 07:43:16 | 000,035,816 | ---- | M] (Greatis Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Partizan.sys -- (Partizan)
DRV - [2010/11/10 13:19:04 | 001,156,736 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HCW713x.sys -- (HCW713x)
DRV - [2010/09/08 12:20:01 | 000,037,920 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2010/07/17 19:57:22 | 000,049,208 | ---- | M] (NCH Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stdriver32.sys -- (stdriver)
DRV - [2010/06/29 16:31:47 | 000,038,976 | ---- | M] (microOLAP Technologies LTD) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pssdk42.sys -- (PSSDK42)
DRV - [2010/06/10 20:10:42 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2010/06/10 20:10:42 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2010/06/10 20:10:42 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame)
DRV - [2010/02/11 21:32:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2010/01/25 13:03:18 | 000,105,216 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\zgwhsmdm.sys -- (zgwhsmdm)
DRV - [2009/12/31 13:03:48 | 000,106,752 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\zgwhsnmea.sys -- (zgwhsnmea)
DRV - [2009/12/31 13:03:40 | 000,106,752 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\zgwhsdiag.sys -- (zgwhsdiag)
DRV - [2009/11/12 12:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/10/30 15:09:44 | 000,039,488 | R--- | M] (BEHRINGER) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\busbwdm.sys -- (BUSB_AUDIO_WDM)
DRV - [2009/08/20 20:08:24 | 000,006,144 | R--- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\walvhid.sys -- (vhidmini)
DRV - [2009/08/05 17:30:16 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2009/03/08 20:45:14 | 000,006,144 | R--- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\moufiltr.sys -- (moufiltr)
DRV - [2008/09/26 17:06:24 | 000,129,824 | ---- | M] (Paragon) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Uim_IM.sys -- (Uim_IM)
DRV - [2008/09/26 17:06:24 | 000,032,048 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\UimBus.sys -- (UimBus)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/08/25 16:48:18 | 000,040,496 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hotcore3.sys -- (hotcore3)
DRV - [2008/07/11 11:36:22 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2008/06/19 01:19:16 | 000,049,904 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2008/05/02 13:45:44 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2008/04/17 01:34:04 | 000,120,472 | ---- | M] (High Criteria inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TotRec7.sys -- (TotRec7)
DRV - [2008/04/14 09:56:08 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008/04/14 09:53:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2008/04/13 23:53:44 | 000,013,776 | ---- | M] (Smart Link) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\recagent.sys -- (RecAgent)
DRV - [2008/04/13 22:53:48 | 000,095,424 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slnthal.sys -- (SlNtHal)
DRV - [2008/04/13 22:53:48 | 000,013,240 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slwdmsup.sys -- (SlWdmSup)
DRV - [2008/04/13 22:53:44 | 000,129,535 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slnt7554.sys -- (Slnt7554)
DRV - [2008/04/13 22:53:42 | 000,180,360 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ntmtlfax.sys -- (NtMtlFax)
DRV - [2008/04/13 22:53:42 | 000,126,686 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mtlmnt5.sys -- (Mtlmnt5)
DRV - [2008/04/13 22:53:40 | 001,309,184 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mtlstrm.sys -- (Mtlstrm)
DRV - [2008/02/22 14:33:02 | 000,114,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2008/02/22 14:33:02 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2008/02/22 14:33:00 | 000,087,936 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus)
DRV - [2007/12/17 16:14:06 | 000,012,400 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2007/09/26 00:29:46 | 000,015,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\MediaCoder\SysInfo.sys -- (CrystalSysInfo)
DRV - [2007/06/16 17:05:21 | 000,021,120 | ---- | M] (NCH Swift Sound) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nchssvad.sys -- (NCHSSVAD)
DRV - [2007/05/25 15:22:30 | 000,083,552 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2007/04/05 11:55:16 | 000,046,112 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2006/09/27 11:20:05 | 001,754,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006/03/18 11:54:59 | 000,026,844 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2005/07/28 07:18:40 | 000,685,056 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2005/05/17 19:15:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2005/04/06 04:52:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005/04/06 04:52:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004/11/17 20:35:38 | 002,297,664 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
DRV - [2004/09/14 19:15:10 | 000,089,764 | ---- | M] (VM) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbVM31b.sys -- (ZSMC301b)
DRV - [2004/08/19 07:21:00 | 000,189,568 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2004/08/13 12:26:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004/08/04 22:30:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/04 22:30:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2003/12/23 02:15:42 | 000,005,248 | ---- | M] ( ) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\xmasscsi.sys -- (xmasscsi)
DRV - [2003/12/21 17:24:22 | 000,140,800 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\xmasbus.sys -- (xmasbus)
DRV - [2002/07/17 08:53:02 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\ASPI32.SYS -- (ASPI32)
DRV - [2001/08/17 13:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2000/10/31 21:30:00 | 000,161,860 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\omcamvid.sys -- (OVT511Plus)
DRV - [1996/04/04 05:03:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search...p={searchTerms}
IE - HKLM\..\SearchScopes\{F8305D7D-CF69-465a-9003-813C6013A702}: "URL" = http://start.flashvi...q={searchTerms}
IE - HKLM\..\SearchScopes\{F8305D7D-CF79-465a-9003-813C6013A702}: "URL" = http://start.flashvi...q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{F8305D7D-CF69-465a-9003-813C6013A702}: "URL" = http://start.flashvi...q={searchTerms}
IE - HKCU\..\SearchScopes\{F8305D7D-CF79-465a-9003-813C6013A702}: "URL" = http://start.flashvi...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: [email protected]:4.1
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.3.20081117
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..browser.search.defaultengine: "ACPro"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.search.order.1: "ACPro"
FF - prefs.js..keyword.URL: "http://au.search.yah...type=966134&p="
FF - prefs.js..keyword.URL: "http://au.search.yah...type=966134&p="
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=966134&ilc=12"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.0: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Fiddler2\FiddlerHook [2011/09/17 21:36:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/07/26 22:54:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/08/01 13:25:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012/02/06 15:55:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2013/08/01 13:25:07 | 000,000,000 | ---D | M]

[2011/02/11 19:48:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Extensions
[2011/02/11 19:48:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011/02/11 19:48:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Extensions\MediaCoder
[2011/02/11 19:48:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Extensions\MediaCoder-Setup-Wizard
[2011/06/24 22:20:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Extensions\[email protected]
[2011/02/11 19:48:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Extensions\[email protected]
[2013/07/26 12:00:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\0cp4fpjs.default\extensions
[2011/02/08 11:24:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\0cp4fpjs.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2013/07/26 12:00:10 | 000,000,000 | ---D | M] (GetSavin) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\0cp4fpjs.default\extensions\getsavin@jetpack
[2011/02/08 11:24:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\0cp4fpjs.default\extensions\staged-xpis
[2013/08/11 19:30:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions
[2013/07/26 19:47:03 | 000,000,000 | ---D | M] (EPUBReader) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
[2013/07/20 21:16:59 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/07/20 22:09:12 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\[email protected]
[2013/03/06 20:06:49 | 000,000,000 | ---D | M] (Firelang) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\[email protected]
[2011/02/11 19:47:52 | 000,000,000 | ---D | M] (VideoDownloader) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\videodowloader@videodownloader(2).net
[2009/03/18 13:40:42 | 000,019,153 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\0cp4fpjs.default\extensions\staged-xpis\{20a82645-c095-46ed-80e3-08825760534b}\MicrosoftDotNetFrameworkAssistant.xpi
[2013/07/20 22:09:09 | 002,168,615 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\[email protected]
[2013/03/06 20:06:49 | 000,627,103 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\[email protected]
[2012/11/30 00:17:10 | 000,197,580 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\[email protected]
[2013/08/11 19:30:18 | 000,249,988 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\[email protected]
[2013/07/20 22:09:03 | 000,350,663 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2013/05/08 07:30:29 | 000,003,994 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{4b58406a-b75b-11e2-8275-b8ac6f996f26}.xpi
[2013/07/28 12:36:39 | 000,868,738 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}.xpi
[2012/01/06 19:31:07 | 000,098,637 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{DA1B0AB5-7DD3-4066-BC2A-64AABBDD0A8B}.xpi
[2013/08/03 18:06:07 | 000,275,449 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013/07/20 22:09:03 | 000,280,941 | ---- | M] () (No name found) -- C:\Documents and Settings\dave\Application Data\Mozilla\Firefox\Profiles\yhlwep6y.default\extensions\{FCAB6FDD-5585-425b-95C1-5ED856F3FD08}.xpi
[2013/07/26 22:54:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/23 08:35:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2013/07/26 22:54:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/07/26 22:54:52 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\PDFFORGE TOOLBAR\FF
[2007/02/04 22:02:56 | 001,642,496 | ---- | M] (LizardTech) -- C:\Program Files\mozilla firefox\plugins\npdjvu.dll
[2007/03/04 06:23:44 | 000,114,688 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npmozax.dll
[2008/09/15 10:52:06 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npsnapfish.dll
[2011/04/29 21:07:38 | 000,003,189 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\acpro.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Documents and Settings\dave\Application Data\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Documents and Settings\dave\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: LizardTech DjVu (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdjvu.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: Snapfish Plugin for Firefox (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U17 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: WPI Detector 1.1 (Enabled) = C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
CHR - plugin: Java Deployment Toolkit 7.0.170.2 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
CHR - Extension: Google Docs = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Edit This Cookie = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg\1.2.1_0\
CHR - Extension: FTdownloader = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gkjoindjjcmbdpbfppabdgflnkgbbcli\1.0_0\
CHR - Extension: GetSavin = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mjildcbkilmkddbbpbjljljdmmlfeppl\5.0_0\
CHR - Extension: GoPhoto.it = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.5_0\
CHR - Extension: Gmail = C:\Documents and Settings\dave\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/09/28 22:49:22 | 000,000,389 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 applian.securesites.com
O2 - BHO: (Open FVD Suite IE Plugin) - {2B171655-A70C-5c18-B693-6CB5DC269D44} - C:\Program Files\FVDIEPlugin\FVDIEPlugin_1.dll (www.flashvideodownloader.org/fvd-suite/)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (GetSavin 5.0) - {9E9F4168-FAEC-4F07-B6D6-146D398605D9} - C:\Documents and Settings\dave\Local Settings\Application Data\getsavin\ie\getsavin_1374805802.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Microsoft Web Test Recorder 9.0 Helper) - {E31CE47F-C268-41ba-897B-B415E613947D} - C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO90.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (FVD Suite IE Plugin) - {2B171655-A70C-5c18-B693-6CB5DC269D41} - C:\Program Files\FVDIEPlugin\FVDIEPlugin_1.dll (www.flashvideodownloader.org/fvd-suite/)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {FEEA54B4-D80F-41C7-87B9-DC08E6D3255F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (FVD Suite IE Plugin) - {2B171655-A70C-5C18-B693-6CB5DC269D41} - C:\Program Files\FVDIEPlugin\FVDIEPlugin_1.dll (www.flashvideodownloader.org/fvd-suite/)
O4 - HKLM..\Run: [AtwtusbIcon] C:\WINDOWS\System32\AtwtusbIcon.exe ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BigDogPath] C:\WINDOWS\VM301Snap.exe (Vimicro)
O4 - HKLM..\Run: [DNS7reminder] C:\Program Files\Nuance\NaturallySpeaking10\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [Domino] C:\WINDOWS\Domino.exe ()
O4 - HKLM..\Run: [Freecorder FLV Service] C:\Program Files\Freecorder\FLVSrvc.exe (Applian Technologies, Inc.)
O4 - HKLM..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\imekrmig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [KeePass 2 PreLoad] C:\Program Files\KeePass Password Safe 2\KeePass.exe (Dominik Reichl)
O4 - HKLM..\Run: [Launch PC Probe II] C:\Program Files\ASUS\PC Probe II\Probe2.exe (ASUS)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [ProjectWhois] C:\Program Files\Domain Tools\ProjectWhois\ProjectWhois.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime Alternative\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [Run StartupMonitor] C:\WINDOWS\StartupMonitor.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TrayServer] C:\Program Files\MAGIX\Movie_Edit_Pro_15_Plus_Download_version\Trayserver.exe (MAGIX AG)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" File not found
O4 - HKCU..\Run: [BlazeServoTool] C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe (BlazeVideo Company)
O4 - HKCU..\Run: [Boxoft Tools] C:\Documents and Settings\All Users\Application Data\Boxtools\Boxofttoolbox.exe ()
O4 - HKCU..\Run: [LeechGet] File not found
O4 - HKCU..\Run: [Listary] C:\Program Files\Listary\Listary.exe (Bopsoft)
O4 - HKCU..\Run: [OnlineTextBuddy] C:\Program Files\Telstra\OnlineTextBuddy\OnlineTextBuddy.exe (Telstra)
O4 - HKCU..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Action Manager 32.lnk = C:\Program Files\FounderscanVP\AM32.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\OpenVPN Connect.lnk = C:\Program Files\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinKey.lnk = C:\Program Files\WinKey\WinKey.exe ()
O4 - Startup: C:\Documents and Settings\dave\Start Menu\Programs\Startup\[email protected] = C:\Program Files\FAHClient\HideConsole.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarsOnTaskbar = 0
O8 - Extra context menu item: Add to &Teleport - C:\Program Files\Teleport Pro\teleport.htm ()
O8 - Extra context menu item: Download with Xilisoft Download YouTube Video - C:\Program Files\Xilisoft\Download YouTube Video\upod_link.HTM ()
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\NPJPI150_10.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra 'Tools' menuitem : Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll ()
O9 - Extra Button: PowerWord - {C8CE29C5-7589-11D3-B81B-0080C8DC5DC8} - C:\Program Files\Kingsoft\XDict\IEPlugin.dll ()
O9 - Extra Button: Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - C:\Program Files\Fiddler2\Fiddler.exe (Eric Lawrence)
O9 - Extra 'Tools' menuitem : Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - C:\Program Files\Fiddler2\Fiddler.exe (Eric Lawrence)
O9 - Extra Button: Toll Lite - {E9FADE43-9D7E-4658-951B-3AD0DCB84481} - C:\Documents and Settings\dave\My Documents\Toll Lite\Toll Lite.html File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\HMA! Pro VPN\bin\ForceInterfaceLSP.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\HMA! Pro VPN\bin\ForceInterfaceLSP.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\HMA! Pro VPN\bin\ForceInterfaceLSP.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\HMA! Pro VPN\bin\ForceInterfaceLSP.dll ()
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} http://www.kaspersky...can_unicode.cab (CKAVWebScan Object)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1210025692343 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CA6F0A67-18BB-4E39-BB8A-A1E04D6AACDF} http://www.superadbl...vex/sabminf.cab (SABMachineInfo Class)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2FF9C413-80A6-4BB3-AEDA-25ACE99F880F}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
O18 - Protocol\Handler\schmap-help {2CF664A0-5EA6-47B5-884C-433A60145F78} - C:\Program Files\Schmap\Schmap Player\schmapdoclib.dll ()
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\jkkHXqNf: DllName - (jkkHXqNf.dll) - File not found
O20 - Winlogon\Notify\LMIinit: DllName - (LMIinit.dll) - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O20 - Winlogon\Notify\WgaLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\dave\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\dave\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/11/18 21:52:28 | 000,006,411 | ---- | M] () - C:\autobody101post.txt -- [ NTFS ]
O32 - AutoRun File - [2007/07/01 09:46:07 | 000,000,000 | ---D | M] - C:\autocadkeygen -- [ NTFS ]
O32 - AutoRun File - [2008/08/03 10:17:02 | 000,000,000 | ---D | M] - C:\autocadtutorial -- [ NTFS ]
O32 - AutoRun File - [2010/03/20 07:32:34 | 000,000,075 | ---- | M] () - C:\autodeskloginpassword.txt -- [ NTFS ]
O32 - AutoRun File - [2010/02/12 12:12:05 | 000,000,000 | ---D | M] - C:\autodeskrobotmanuals -- [ NTFS ]
O32 - AutoRun File - [2007/06/17 12:09:48 | 000,000,021 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/05/14 07:13:44 | 000,000,000 | ---D | M] - E:\autocad -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:07:07 | 000,032,231 | ---- | M] () - I:\AutoCAD - 2D Tutorial 1.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:08:38 | 000,034,433 | ---- | M] () - I:\AutoCAD - 2D Tutorial 2.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:09:30 | 000,076,221 | ---- | M] () - I:\AutoCAD - 2D Tutorial 3 - Renaissance Manipulations.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:10:16 | 000,048,163 | ---- | M] () - I:\AutoCAD - 2D Tutorial 4 - Venturing into Plotting.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:14:24 | 000,018,260 | ---- | M] () - I:\AutoCAD solid modelling - 1 - Getting Starteds.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:14:39 | 000,018,891 | ---- | M] () - I:\AutoCAD solid modelling - 2 - Getting Going.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:15:05 | 000,045,605 | ---- | M] () - I:\AutoCAD solid modelling - 3 - Creating Spaces.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:15:20 | 000,021,913 | ---- | M] () - I:\AutoCAD solid modelling - 3a - Creating Objects.htm -- [ NTFS ]
O32 - AutoRun File - [2011/11/04 22:15:37 | 000,015,312 | ---- | M] () - I:\AutoCAD solid modelling - 4 - Animation.htm -- [ NTFS ]
O32 - AutoRun File - [2013/01/25 22:06:48 | 000,049,266 | ---- | M] () - I:\Autoruns for Windows.htm -- [ NTFS ]
O32 - Unable to obtain root file information for disk J:\
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (stera)
O34 - HKLM BootExecute: (Partizan)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2078/07/14 09:30:00 | 000,000,000 | ---D | C] -- C:\VCD
[2013/08/10 20:13:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\My Documents\Any Video Converter
[2013/08/10 20:10:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AnvSoft
[2013/08/10 19:54:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\My Documents\Any Audio Converter
[2013/08/10 19:51:55 | 182,002,016 | ---- | C] (Igor Pavlov) -- C:\Nero-7.10.1.0_eng_full.exe
[2013/08/09 21:01:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Local Settings\Application Data\etax2013
[2013/08/09 21:00:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Start Menu\Programs\e-tax 2013
[2013/08/09 21:00:23 | 000,000,000 | ---D | C] -- C:\Program Files\etax2013
[2013/08/09 12:59:18 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/08/09 10:24:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013/08/09 10:24:14 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/08/09 10:24:14 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/08/09 09:15:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
[2013/08/06 13:47:21 | 000,000,000 | ---D | C] -- C:\Program Files\WebSite Downloader for Windows
[2013/08/06 13:47:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Start Menu\Programs\WebSite Downloader for Windows
[2013/08/06 13:33:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Bimesoft
[2013/08/06 13:33:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SurfOffline Professional 2
[2013/08/06 13:33:18 | 000,000,000 | ---D | C] -- C:\Program Files\SurfOffline Professional 2
[2013/08/03 19:55:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Start Menu\Programs\NirSoft BlueScreenView
[2013/08/01 13:17:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/08/01 12:48:41 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013/08/01 12:48:41 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013/08/01 12:48:41 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/08/01 12:47:37 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013/08/01 12:42:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2013/08/01 12:42:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Cache
[2013/08/01 12:22:47 | 000,049,152 | ---- | C] (Vimicro) -- C:\WINDOWS\VM301Snap.exe
[2013/08/01 09:30:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\setup.pss
[2013/08/01 08:10:02 | 000,000,000 | ---D | C] -- C:\WINDOWS.0
[2013/07/31 07:58:50 | 004,815,135 | ---- | C] (FileZilla Project) -- C:\Documents and Settings\dave\My Documents\FileZilla_3.7.1_win32-setup.exe
[2013/07/29 22:11:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Seagate
[2013/07/29 22:11:24 | 000,000,000 | ---D | C] -- C:\Program Files\Seagate
[2013/07/29 10:44:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Start Menu\Programs\SpeedFan
[2013/07/29 10:44:44 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2013/07/28 14:00:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Local Settings\Application Data\Wondershare
[2013/07/28 14:00:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wondershare
[2013/07/28 13:59:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PDFEditor
[2013/07/28 13:59:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Application Data\Wondershare
[2013/07/28 13:50:40 | 001,872,884 | ---- | C] (Red Hat) -- C:\Documents and Settings\dave\My Documents\cygwin1.dll
[2013/07/28 13:47:04 | 001,872,884 | ---- | C] (Red Hat) -- C:\cygwin1.dll
[2013/07/27 22:30:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\aTubeCatcher
[2013/07/27 08:19:46 | 000,000,000 | ---D | C] -- C:\HoffmanUtilitySpotlight
[2013/07/27 08:12:53 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\dave\Recent
[2013/07/27 08:02:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
[2013/07/27 07:43:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ErrorEND
[2013/07/27 07:36:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Rich Tools
[2013/07/27 07:36:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Rich Tools
[2013/07/27 07:34:53 | 000,000,000 | ---D | C] -- C:\richcopycode
[2013/07/27 07:03:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Earth
[2013/07/26 21:50:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Application Data\SumatraPDF
[2013/07/26 21:50:33 | 000,000,000 | ---D | C] -- C:\Program Files\SumatraPDF
[2013/07/26 12:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Local Settings\Application Data\getsavin
[2013/07/26 11:59:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dave\Application Data\SwvUpdater
[2011/10/13 21:18:58 | 000,066,332 | ---- | C] (Eric Lawrence) -- C:\Documents and Settings\dave\DesktopFiddler2Upgrade.exe
[2011/02/11 19:46:14 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\dave\Application Data\pcouffin.sys
[2009/11/19 20:08:02 | 003,749,224 | ---- | C] (Acresso Software Inc.) -- C:\Program Files\Common Files\adlmint_libFNP.dll
[2009/11/19 20:08:02 | 002,941,288 | ---- | C] (Autodesk, Inc.) -- C:\Program Files\Common Files\adlmint.dll
[9 C:\Documents and Settings\dave\My Documents\*.tmp files -> C:\Documents and Settings\dave\My Documents\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/08/11 21:22:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/08/11 21:21:01 | 000,000,392 | ---- | M] () -- C:\WINDOWS\tasks\AmiUpdXp.job
[2013/08/11 20:55:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/11 18:37:17 | 000,097,280 | ---- | M] () -- C:\Documents and Settings\dave\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/08/11 18:22:00 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/11 18:21:39 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2013/08/11 18:17:11 | 000,000,000 | ---- | M] () -- C:\WINDOWS\TempFile
[2013/08/11 18:16:53 | 000,002,284 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/08/11 18:16:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/08/10 20:10:45 | 000,000,888 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\Any Video Converter.lnk
[2013/08/10 19:02:05 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013/08/10 18:43:33 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\ExpressBurnReminder.job
[2013/08/10 18:43:20 | 000,000,847 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Express Burn.lnk
[2013/08/10 13:00:00 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2013/08/09 21:46:36 | 000,000,840 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2013/08/09 21:00:32 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\e-tax 2013.lnk
[2013/08/09 10:24:37 | 000,000,820 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/08/09 10:01:04 | 000,001,867 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/08/09 09:15:07 | 000,001,849 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/08/08 19:50:30 | 000,000,533 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\Shortcut to p7Napper_20101222.exe.lnk
[2013/08/08 14:52:51 | 000,004,608 | ---- | M] () -- C:\6XSourceFilter.grf
[2013/08/08 13:16:46 | 000,000,088 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\QC3383_Software.zip.URL
[2013/08/08 11:23:19 | 000,007,168 | -H-- | M] () -- C:\WINDOWS\explorer.suo
[2013/08/08 11:23:19 | 000,000,611 | ---- | M] () -- C:\WINDOWS\explorer.sln
[2013/08/08 09:51:01 | 000,031,815 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\librarygrab8813.jpg
[2013/08/06 13:47:21 | 000,000,860 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\WebSite Downloader for Windows.lnk
[2013/08/06 13:42:03 | 000,000,882 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\Install WinWSD WebSite Downloader.lnk
[2013/08/06 13:33:19 | 000,000,832 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SurfOffline Professional 2.lnk
[2013/08/06 13:13:02 | 000,000,686 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\HTTrack Website Copier.lnk
[2013/08/05 14:42:54 | 000,001,071 | ---- | M] () -- C:\WINDOWS\AWMODEM.INF
[2013/08/05 14:29:08 | 000,601,980 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/08/05 14:29:08 | 000,124,340 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/08/01 13:19:30 | 002,140,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/08/01 13:14:23 | 000,071,926 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/08/01 12:46:37 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2013/08/01 12:46:36 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/08/01 12:46:36 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/08/01 12:46:20 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013/08/01 12:42:26 | 000,026,264 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/08/01 12:42:01 | 000,000,535 | ---- | M] () -- C:\WINDOWS\System32\mapisvc.inf
[2013/08/01 12:23:21 | 000,000,282 | -HS- | M] () -- C:\boot.ini
[2013/08/01 10:50:19 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2013/07/31 12:24:35 | 000,003,728 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2013/07/31 08:02:50 | 000,001,699 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FileZilla Client.lnk
[2013/07/31 07:59:36 | 004,815,135 | ---- | M] (FileZilla Project) -- C:\Documents and Settings\dave\My Documents\FileZilla_3.7.1_win32-setup.exe
[2013/07/30 18:02:08 | 000,000,589 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\Shortcut to iViewNapper_20130301.exe.lnk
[2013/07/30 16:02:45 | 000,002,954 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\gaylepridebaker.mpcpl
[2013/07/29 22:22:27 | 000,001,797 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Belarc Advisor.lnk
[2013/07/29 22:11:26 | 000,001,812 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SeaTools for Windows.lnk
[2013/07/29 11:31:32 | 000,000,891 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\Shortcut to DiskInfoS.exe.lnk
[2013/07/29 10:44:46 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\SpeedFan.lnk
[2013/07/29 10:44:44 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2013/07/27 08:14:27 | 000,201,658 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\cc_20130727_081410.reg
[2013/07/27 08:02:05 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2013/07/27 07:03:27 | 000,001,951 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2013/07/27 00:03:21 | 000,000,000 | ---- | M] () -- C:\[3].wmv
[2013/07/26 23:46:04 | 000,000,000 | ---- | M] () -- C:\[2].wmv
[2013/07/26 23:36:44 | 000,000,000 | ---- | M] () -- C:\[1].wmv
[2013/07/26 22:55:31 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013/07/26 22:55:02 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/07/24 17:49:36 | 000,000,877 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\µTorrent.lnk
[2013/07/24 17:49:36 | 000,000,839 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/07/24 04:18:03 | 000,085,520 | ---- | M] () -- C:\etax2013juan.TAX
[2013/07/24 02:47:35 | 009,672,192 | ---- | M] () -- C:\etax2013_1.msi
[2013/07/23 21:55:37 | 000,006,304 | ---- | M] () -- C:\Documents and Settings\dave\Application Data\PrimoPDFSet.xml
[2013/07/23 21:55:36 | 019,354,401 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\wems3101200.pdf
[2013/07/23 21:22:47 | 000,000,861 | ---- | M] () -- C:\Documents and Settings\dave\Desktop\µTorrent.lnk
[2013/07/19 22:54:11 | 000,000,084 | ---- | M] () -- C:\WINDOWS\convert.INI
[2013/07/19 00:37:51 | 000,412,236 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\womensencyclopediaWEMS-5.pdf
[2013/07/18 19:40:49 | 000,002,449 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Telstra Online Text Buddy.lnk
[2013/07/16 07:39:29 | 001,685,531 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\familyhouseholdincomestats65230_2009-10.pdf
[2013/07/14 12:08:37 | 000,157,159 | ---- | M] () -- C:\Documents and Settings\dave\My Documents\MincerGSM_Manual.pdf
[2013/07/13 18:35:18 | 000,001,919 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[9 C:\Documents and Settings\dave\My Documents\*.tmp files -> C:\Documents and Settings\dave\My Documents\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/08/10 20:10:45 | 000,000,888 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\Any Video Converter.lnk
[2013/08/10 18:43:21 | 000,000,290 | ---- | C] () -- C:\WINDOWS\tasks\ExpressBurnReminder.job
[2013/08/10 18:43:20 | 000,000,847 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Express Burn.lnk
[2013/08/10 18:43:19 | 000,000,853 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Express Burn.lnk
[2013/08/09 21:00:32 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\e-tax 2013.lnk
[2013/08/09 20:56:17 | 000,085,520 | ---- | C] () -- C:\etax2013juan.TAX
[2013/08/09 20:39:50 | 009,672,192 | ---- | C] () -- C:\etax2013_1.msi
[2013/08/09 18:58:07 | 013,339,087 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\Ancient_Goddesses.pdf
[2013/08/09 10:24:37 | 000,000,820 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/08/09 09:15:07 | 000,001,867 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/08/09 09:15:07 | 000,001,849 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/08/08 13:16:46 | 000,000,088 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\QC3383_Software.zip.URL
[2013/08/08 11:23:19 | 000,007,168 | -H-- | C] () -- C:\WINDOWS\explorer.suo
[2013/08/08 11:23:19 | 000,000,611 | ---- | C] () -- C:\WINDOWS\explorer.sln
[2013/08/08 09:51:36 | 000,031,815 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\librarygrab8813.jpg
[2013/08/06 13:47:21 | 000,000,860 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\WebSite Downloader for Windows.lnk
[2013/08/06 13:42:03 | 000,000,882 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\Install WinWSD WebSite Downloader.lnk
[2013/08/06 13:33:19 | 000,000,832 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SurfOffline Professional 2.lnk
[2013/08/06 13:13:02 | 000,000,686 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\HTTrack Website Copier.lnk
[2013/08/01 13:20:03 | 000,000,828 | ---- | C] () -- C:\Documents and Settings\dave\Start Menu\Programs\Windows Media Player.lnk
[2013/08/01 12:42:45 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
[2013/08/01 10:50:19 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2013/08/01 10:49:19 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013/08/01 10:49:14 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013/08/01 10:47:30 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2013/08/01 10:47:30 | 000,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2013/08/01 10:47:30 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2013/08/01 10:47:30 | 000,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2013/08/01 10:47:30 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2013/08/01 10:47:30 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013/08/01 10:47:30 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013/08/01 10:47:29 | 001,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2013/08/01 10:47:29 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013/08/01 10:47:29 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013/08/01 10:47:29 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2013/08/01 10:47:29 | 000,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2013/08/01 10:47:29 | 000,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2013/08/01 10:47:29 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013/08/01 10:47:29 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013/08/01 10:47:29 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013/08/01 10:47:29 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2013/08/01 10:47:28 | 002,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2013/08/01 10:47:28 | 000,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013/07/30 22:02:07 | 000,003,728 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2013/07/30 16:02:45 | 000,002,954 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\gaylepridebaker.mpcpl
[2013/07/29 22:11:26 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SeaTools for Windows.lnk
[2013/07/29 11:31:32 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\Shortcut to DiskInfoS.exe.lnk
[2013/07/29 10:44:46 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\SpeedFan.lnk
[2013/07/29 10:44:43 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo
[2013/07/28 13:50:40 | 000,034,816 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\pdfcrack.exe
[2013/07/28 13:50:40 | 000,003,388 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\changelog
[2013/07/28 13:48:02 | 000,307,751 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\stat1.pdf
[2013/07/28 13:47:32 | 000,307,751 | ---- | C] () -- C:\Statement12102012.pdf
[2013/07/28 13:47:04 | 000,034,816 | ---- | C] () -- C:\pdfcrack.exe
[2013/07/28 13:47:04 | 000,003,388 | ---- | C] () -- C:\changelog
[2013/07/27 08:14:13 | 000,201,658 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\cc_20130727_081410.reg
[2013/07/27 08:02:05 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2013/07/27 07:03:27 | 000,001,951 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2013/07/27 00:03:21 | 000,000,000 | ---- | C] () -- C:\[3].wmv
[2013/07/26 23:46:04 | 000,000,000 | ---- | C] () -- C:\[2].wmv
[2013/07/26 23:36:44 | 000,000,000 | ---- | C] () -- C:\[1].wmv
[2013/07/26 21:50:34 | 000,001,622 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\SumatraPDF.lnk
[2013/07/26 11:59:30 | 000,000,392 | ---- | C] () -- C:\WINDOWS\tasks\AmiUpdXp.job
[2013/07/23 21:54:36 | 019,354,401 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\wems3101200.pdf
[2013/07/23 21:22:47 | 000,000,861 | ---- | C] () -- C:\Documents and Settings\dave\Desktop\µTorrent.lnk
[2013/07/19 22:54:11 | 000,000,084 | ---- | C] () -- C:\WINDOWS\convert.INI
[2013/07/19 00:37:50 | 000,412,236 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\womensencyclopediaWEMS-5.pdf
[2013/07/16 07:39:29 | 001,685,531 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\familyhouseholdincomestats65230_2009-10.pdf
[2013/07/14 12:08:36 | 000,157,159 | ---- | C] () -- C:\Documents and Settings\dave\My Documents\MincerGSM_Manual.pdf
[2013/07/13 18:35:18 | 000,001,919 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2013/05/08 06:41:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\SharedSettings.ccs
[2012/12/06 05:38:42 | 000,107,520 | RHS- | C] () -- C:\WINDOWS\System32\TAKDSDecoder.dll
[2012/11/28 20:37:39 | 005,759,057 | ---- | C] ( ) -- C:\WINDOWS\System32\RTKISDBT.dll
[2012/11/28 20:25:47 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\systemmem3.dll
[2012/03/30 13:44:57 | 000,000,245 | ---- | C] () -- C:\Documents and Settings\dave\openvpn-connect.json
[2011/12/22 14:04:44 | 000,421,888 | ---- | C] () -- C:\WINDOWS\System32\HisiDVFW.dll
[2011/12/16 19:10:09 | 000,000,841 | ---- | C] () -- C:\WINDOWS\asfbinwin.INI
[2011/12/15 22:25:27 | 002,055,330 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-117609710-1580436667-839522115-1003-0.dat
[2011/12/15 22:25:26 | 000,657,266 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011/11/17 20:59:29 | 000,074,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011/08/27 13:42:14 | 000,454,700 | ---- | C] () -- C:\Documents and Settings\dave\bahbubbydah.wav
[2011/07/29 14:25:10 | 007,302,188 | ---- | C] () -- C:\Documents and Settings\dave\countrysound.wav
[2011/05/11 12:22:02 | 000,000,085 | R--- | C] () -- C:\Documents and Settings\All Users\Application Data\Kpster.ini
[2011/02/15 14:32:06 | 000,000,060 | ---- | C] () -- C:\Documents and Settings\dave\default.pls
[2011/02/11 19:46:14 | 000,081,920 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\ezpinst.exe
[2011/02/11 19:46:14 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\pcouffin.cat
[2011/02/11 19:46:14 | 000,006,304 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\PrimoPDFSet.xml
[2011/02/11 19:46:14 | 000,004,634 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\SAS7_000.DAT
[2011/02/11 19:46:14 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\pcouffin.inf
[2011/02/11 19:46:14 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\vso_ts_preview.xml
[2011/02/11 19:46:14 | 000,000,240 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\Solve Elec 2.1 Prefs
[2011/02/11 19:46:14 | 000,000,156 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\RobotProgPrefs
[2011/02/11 19:46:14 | 000,000,119 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\FixVTS.ini
[2011/02/11 19:46:10 | 000,000,557 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\AutoGK.ini
[2011/02/11 19:46:10 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\burnaware.ini
[2011/02/11 19:46:10 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\default.rss
[2011/02/11 19:46:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\dave\Application Data\AVSDVDPlayer.m3u
[2011/02/09 20:53:36 | 000,000,647 | ---- | C] () -- C:\Documents and Settings\dave\.swfinfo
[2011/02/08 14:32:08 | 000,097,280 | ---- | C] () -- C:\Documents and Settings\dave\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/08 11:17:24 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\dave\Local Settings\Application Data\fusioncache.dat
[2011/02/08 11:15:27 | 000,001,066 | RHS- | C] () -- C:\Documents and Settings\dave\ntuser.pol
[2010/10/21 14:05:33 | 000,002,512 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/02/11 17:06:31 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2009/09/12 17:43:42 | 000,005,061 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\xqkcebzs.dik
[2009/08/25 11:55:47 | 000,000,326 | ---- | C] () -- C:\Documents and Settings\LocalService\Application Data\PrimoPDFSet.xml

========== ZeroAccess Check ==========

[2006/08/19 21:41:59 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2010/04/17 01:39:07 | 001,509,888 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 21:40:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 15:12:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/05/08 14:21:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\A4B093E3CCFA128B0000A4AFEF3715C3
[2013/07/06 18:59:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\APN
[2011/05/27 14:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Applian
[2011/03/22 15:09:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2013/08/06 13:33:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bimesoft
[2012/11/30 06:41:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BlazeVideo
[2013/08/11 18:52:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Boxtools
[2007/07/30 20:18:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cadsoft
[2011/02/24 18:41:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2011/01/13 14:32:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2010/11/30 19:14:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clone.AD
[2013/07/11 21:49:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cogniview
[2013/03/07 11:29:05 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2009/01/07 12:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Conceiva
[2011/08/30 17:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Deskshare
[2009/06/15 10:40:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner
[2013/07/27 07:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ErrorEND
[2011/08/30 17:25:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\firebird
[2012/04/09 19:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FUJIFILM
[2013/05/08 11:46:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HitmanPro
[2010/07/20 14:00:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iLevel
[2009/05/02 09:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IMSIDesign
[2010/07/13 04:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2012/12/14 05:19:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2010/05/29 20:34:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Jcx.Software
[2008/09/28 08:43:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\jezehchu
[2006/11/13 22:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kazaa
[2013/01/10 21:39:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MAGIX
[2013/03/11 20:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2008/07/27 11:09:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Minnetonka Audio Software
[2010/11/11 16:23:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MySQL
[2011/07/21 17:07:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2008/06/23 21:18:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NJStar
[2009/08/08 10:14:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nokia
[2011/04/16 19:54:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NPVR
[2009/02/15 08:28:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nuance
[2013/03/23 06:13:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2011/06/01 22:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Parker Software
[2009/04/07 18:43:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
[2008/05/13 16:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2013/07/28 14:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PDFEditor
[2008/07/06 15:49:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PreEmptive Solutions
[2007/11/15 09:27:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prevx
[2008/10/17 18:47:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuuxPlayer
[2010/10/01 21:16:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
[2012/09/28 23:13:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2008/07/02 07:55:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\River Past G5
[2007/08/02 14:07:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2006/10/31 21:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2008/04/02 18:29:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\sickmalwarebytes
[2012/02/27 20:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpeedMaxPc
[2007/03/15 13:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir
[2007/03/15 13:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SSScanWizard
[2011/08/02 15:09:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Steinberg
[2011/12/15 22:12:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOIK
[2011/05/11 11:57:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tablet
[2010/06/22 09:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Team MediaPortal
[2010/10/02 14:09:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith
[2012/10/03 08:01:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/09/15 07:13:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Transparent
[2008/11/22 09:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2010/11/26 08:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Virtual Mechanics
[2007/12/16 18:05:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\vsosdk
[2011/08/02 16:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VST3 Presets
[2011/07/10 23:47:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\webcamXP 5
[2011/10/26 20:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Xilisoft
[2008/08/24 13:59:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zenturi
[2008/09/28 15:48:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\zixgpazq
[2009/06/15 10:34:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{148D8B8A-8F96-4822-81EC-D510B626B7D5}
[2007/12/26 09:52:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{27ED786F-D773-47F8-93EB-8A249414AD30}
[2010/08/09 13:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/07/11 21:52:11 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{7D4B3D1D-104E-4507-9123-568BC721B7E2}
[2011/05/30 21:48:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{E03C36F6-927E-4ECE-90BE-0F0D82DF4099}
[2011/02/11 19:49:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\4200Series
[2011/02/11 19:49:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\adma
[2013/08/10 20:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\AnvSoft
[2012/06/15 18:27:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Any Video Converter Professional
[2012/07/22 20:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Apowersoft
[2013/03/17 07:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Audacity
[2011/12/16 11:17:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Aura4You
[2011/03/22 15:09:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Autodesk
[2012/01/05 19:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\avidemux
[2011/02/11 19:49:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\AVSMedia
[2011/02/11 19:48:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Broad Intelligence
[2011/02/18 14:35:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\camersoft
[2011/02/24 18:41:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Canneverbe Limited
[2011/10/10 14:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\CloneSpy
[2011/02/11 19:48:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\CoCreate
[2011/02/11 19:48:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Conceiva
[2011/02/11 19:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\CursorArts
[2011/02/11 19:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\DeepBurner Pro
[2011/02/11 19:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\DevCad
[2011/12/07 22:07:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\DevFind
[2013/05/31 18:59:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Digiarty
[2011/11/03 20:23:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\DriverCure
[2011/02/11 19:48:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\dvdisaster
[2011/02/11 19:48:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Easy Thumbnails
[2011/02/11 19:48:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\eBookPro6
[2013/03/06 21:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Exnuric
[2013/08/11 18:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FAHClient
[2013/08/04 22:09:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FileZilla
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FinalBurner .ISO
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FinalBurner Audio CD
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FinalBurner DATA
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FinalBurner Video DVD
[2011/11/17 20:35:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FLV Extract
[2011/12/10 20:57:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\foobar2000
[2011/09/21 18:22:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Free Online Radio Player Recorder
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FreeAudioPack
[2012/10/29 20:13:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FreeCDRipper
[2012/12/19 10:55:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FreeFileSync
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FreeVideoConverter
[2012/03/25 20:36:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FUJIFILM
[2011/10/13 21:52:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\FVDIEPlugin
[2011/02/11 19:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\GetRightToGo
[2011/03/05 12:33:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\GlarySoft
[2012/03/30 09:08:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\gnupg
[2011/02/11 19:48:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\GrabIt
[2011/02/11 19:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\GrabPro
[2012/08/26 20:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\gtk-2.0
[2011/02/11 19:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Haihaisoft
[2011/02/11 19:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Haihaisoft Universal Player
[2011/02/11 19:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\HandBrake
[2011/02/11 19:48:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\HAPedit
[2011/02/11 19:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\ImgBurn
[2011/02/11 19:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\IMSIDesign
[2011/02/24 17:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\InfraRecorder
[2013/07/27 08:13:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Inkscape
[2012/12/14 05:17:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\IObit
[2011/02/11 19:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\iPodder
[2012/02/28 20:10:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\iSpy
[2013/03/04 10:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\JAM Software
[2011/04/29 20:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\JLC's Software
[2011/02/11 19:48:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Kazaa Lite
[2011/02/11 19:48:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\KompoZer
[2011/02/11 19:48:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\LEAPS
[2011/02/11 19:48:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Leawo
[2011/02/11 19:48:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\LimeWire
[2011/07/12 23:47:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Listary
[2011/05/27 21:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\MAGIX
[2011/02/11 19:48:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\MonoDevelop
[2011/11/16 21:48:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Moyea
[2013/03/14 10:38:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Mp3tag
[2011/02/11 19:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\MPEG Streamclip
[2011/02/11 19:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\MSDebug
[2013/02/21 11:06:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\MusE
[2012/05/28 20:22:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\MySQL
[2011/02/11 19:47:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\mythtv
[2011/07/16 20:07:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\NCH Swift Sound
[2011/02/11 19:47:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\NJStar
[2011/02/11 19:47:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Nokia
[2011/02/11 19:47:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Notepad++
[2011/02/11 19:47:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Nuance
[2011/02/11 19:47:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Nvu
[2011/02/11 19:47:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Opera
[2011/11/25 20:45:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Orbit
[2013/03/07 20:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\ParetoLogic
[2011/02/11 19:47:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\PC Suite
[2012/09/28 12:58:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\PDF reDirect
[2011/02/11 19:47:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Pegasys Inc
[2011/05/27 23:37:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\PFStaticIP
[2012/01/30 21:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\PhotoScape
[2011/02/11 19:47:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\PHP Designer 2007
[2011/02/11 19:47:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\phpDesigner 2008
[2011/07/25 20:24:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Power Sound Editor Free
[2011/10/13 21:32:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\ProgSense
[2013/06/04 10:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\ProjectWhois
[2011/07/14 22:20:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Recordpad
[2012/12/15 21:27:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Replay Media Catcher 4
[2012/03/30 10:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\RetroShare
[2011/02/11 19:47:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\River Past G5
[2011/02/11 19:46:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Samsung
[2011/02/11 19:46:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\ScanSoft
[2011/02/11 19:46:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Schmap
[2011/02/11 19:46:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Scribd
[2011/02/11 19:46:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Serif
[2011/02/11 19:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Seven Zip
[2011/02/11 19:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\SmartDraw
[2011/02/11 19:46:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Snapfish
[2011/02/11 19:46:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Snappy Fax
[2011/02/11 19:46:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Snappy Fax Archives
[2011/11/03 20:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\SpeedMaxPc
[2013/02/12 08:52:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Spotify
[2011/08/02 15:12:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Steinberg
[2011/02/11 19:46:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\STOIK
[2012/02/07 09:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Subtitle Edit
[2013/07/26 21:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\SumatraPDF
[2013/07/26 11:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\SwvUpdater
[2011/02/08 11:32:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Telstra
[2011/02/11 19:46:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Thunderbird
[2011/02/11 19:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Tonido
[2011/02/11 19:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\TotalRecorder
[2011/02/11 19:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\True Sword
[2011/02/11 19:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\tunebite
[2013/03/07 11:48:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\TuneUp Software
[2011/02/11 19:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Ulead Systems
[2011/02/11 19:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Uniblue
[2011/02/11 19:46:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\uPlayer
[2011/02/11 19:46:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\UseNeXT
[2013/08/10 11:39:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\uTorrent
[2011/02/08 11:18:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\VCOM
[2011/02/11 19:46:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\VDownloader
[2011/02/11 19:46:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Video DVD Maker FREE
[2011/02/11 19:46:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Virtual Mechanics
[2012/10/02 22:01:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Vorouhu
[2013/06/19 14:30:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Vso
[2011/02/18 16:49:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\WebcamMax
[2011/02/11 19:46:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\WinPatrol
[2011/02/11 19:46:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Wireshark
[2013/07/28 14:01:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Wondershare
[2011/10/26 20:41:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Xilisoft
[2012/01/30 15:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dave\Application Data\Yamb

========== Purity Check ==========

========== Files - Unicode (All) ==========
[2011/07/26 12:01:15 | 000,068,737 | ---- | M] ()(C:\Documents and Settings\dave\My Documents\Cambridge98.com - ???? ???? ?? ?? ?????. _ For better Tomorrow..htm) -- C:\Documents and Settings\dave\My Documents\Cambridge98.com - 캠브리지 어학원에 오신 것을 환영합니다. _ For better Tomorrow..htm
[2011/07/26 12:01:14 | 000,068,737 | ---- | C] ()(C:\Documents and Settings\dave\My Documents\Cambridge98.com - ???? ???? ?? ?? ?????. _ For better Tomorrow..htm) -- C:\Documents and Settings\dave\My Documents\Cambridge98.com - 캠브리지 어학원에 오신 것을 환영합니다. _ For better Tomorrow..htm
[2011/05/05 09:17:11 | 423,462,509 | ---- | C] ()(C:\Documents and Settings\All Users\Documents\???_?????.rar) -- C:\Documents and Settings\All Users\Documents\王玥波_侠义英雄传.rar
[2011/05/05 09:14:40 | 295,828,819 | ---- | C] ()(C:\Documents and Settings\All Users\Documents\???_?????_?67?.rar) -- C:\Documents and Settings\All Users\Documents\王玥波_三盗九龙杯_全67回.rar
[2010/10/25 11:39:20 | 423,462,509 | ---- | M] ()(C:\Documents and Settings\All Users\Documents\???_?????.rar) -- C:\Documents and Settings\All Users\Documents\王玥波_侠义英雄传.rar
[2010/10/25 11:11:02 | 295,828,819 | ---- | M] ()(C:\Documents and Settings\All Users\Documents\???_?????_?67?.rar) -- C:\Documents and Settings\All Users\Documents\王玥波_三盗九龙杯_全67回.rar

========== Alternate Data Streams ==========

@Alternate Data Stream - 76 bytes -> C:\Documents and Settings\dave\My Documents\4723wheel.jpg:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Documents and Settings\dave\My Documents\040327KingsX.jpg:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Documents and Settings\dave\My Documents\040327Cleethorpes.jpg:Roxio EMC Stream
@Alternate Data Stream - 194 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C265C458
@Alternate Data Stream - 152 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D2F2F703
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A24211BA
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F35A93AD
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A11F741D
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4B7BEAFF
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ECF54A0E
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C80278B1
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CEB1746D

< End of report >

#1
abrogard

Posted 11 August 2013 - 06:32 AM

Advertisements

#2
RKinner

Posted 12 August 2013 - 10:25 PM

#3
abrogard

Posted 12 August 2013 - 10:49 PM

#4
RKinner

Posted 12 August 2013 - 11:56 PM

#5
abrogard

Posted 13 August 2013 - 05:09 AM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us