Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HijackThis log claims that I am missing files.


  • This topic is locked This topic is locked
11 replies to this topic

#1 BrandonWenger

BrandonWenger

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:27 AM

Posted 07 September 2010 - 03:29 PM

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:28:08 PM, on 9/7/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Java\jre6\bin\javaw.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\Brandon\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: TurboBoost - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11911 bytes

Edited by hamluis, 07 September 2010 - 04:58 PM.
Moved from Win 7 to Malware Removal Logs ~ Hamluis.

Operating System
MS Windows 7 Ultimate 64-bit
CPU
Intel Core i7 720QM @ 1.60GHz 58 °C
Clarksfield 45nm Technology
RAM
6.0GB Dual-Channel DDR3 @ 659MHz (9-9-9-24)
Motherboard
ASUSTeK Computer Inc. G73Jh (Socket 989)
Graphics
MEUSLCD4 @ 1920x1080
Generic PnP Monitor @ 1600x900
ATI Mobility Radeon HD 5870
Hard Drives
488GB Seagate ST9500420AS (SATA) 40 °C
Optical Drives
HL-DT-ST DVDRAM GT32N
DWVM XQRCP67K9 SCSI CdRom Device
MagicISO Virtual DVD-ROM0000
Audio
Realtek High Definition Audio

BC AdBot (Login to Remove)

 


#2 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,766 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:11:27 AM

Posted 13 September 2010 - 12:53 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.
We need to create an OTL Report
  1. Please download OTL from one of the following mirrors:
  2. Save it to your desktop.
  3. Double click on the icon on your desktop.
  4. Click the "Scan All Users" checkbox.
  5. In the custom scan box paste the following:
    CODE
    msconfig
    safebootminimal
    activex
    drivers32
    netsvcs
    %SYSTEMDRIVE%\*.exe
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    atapi.sys
    IdeChnDr.sys
    viasraid.sys
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    ahcix86.sys
    KR10N.sys
    nvstor32.sys
    ahcix86s.sys
    nvrd32.sys
    symmpi.sys
    adp3132.sys
    mv61xx.sys
    nvraid.sys
    /md5stop
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    %systemroot%\system32\drivers\*.sys /90
  6. Push the button.
  7. Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt<--Will be minimized

In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#3 BrandonWenger

BrandonWenger
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:27 AM

Posted 13 September 2010 - 01:51 PM

Thank you for getting back with me on this. I am trying to figure out why my computer slows down from time to time. When it happens, the RAM usage does not raise noticeably and I can't figure it out. It passes scans by Avast 5.0 and Malwarebytes Anti-Malware 1.46 every night but the performance does not improve. The laptop is an Asus G73JH that I got from Best Buy. It has the Core i7 and 6gb of RAM. The windows install is about 2 weeks old.

Here are the logs you requested, in the order received:

OTL logfile created on: 9/13/2010 2:34:19 PM - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Brandon\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 4.00 Gb Available Physical Memory | 64.00% Memory free
12.00 Gb Paging File | 9.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 446.23 Gb Total Space | 40.10 Gb Free Space | 8.99% Space Free | Partition Type: NTFS
Drive D: | 3.20 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BRANDON-PC
Current User Name: Brandon
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/09/13 14:33:00 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Brandon\Desktop\OTL.exe
PRC - [2010/09/12 21:41:01 | 000,328,568 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
PRC - [2010/09/07 23:22:09 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/09/07 23:22:09 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/09/07 11:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/09/07 08:51:31 | 000,407,336 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2010/09/05 17:27:20 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2010/09/01 20:06:58 | 000,151,552 | ---- | M] () -- C:\Windows\KMService.exe
PRC - [2010/09/01 20:06:58 | 000,008,192 | ---- | M] () -- C:\Windows\SysWOW64\srvany.exe
PRC - [2010/09/01 00:11:58 | 000,473,616 | ---- | M] () -- C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
PRC - [2010/07/06 18:14:56 | 000,716,024 | ---- | M] (Tunngle.net GmbH) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe
PRC - [2010/07/06 11:06:20 | 005,279,016 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer.exe
PRC - [2010/07/06 11:03:00 | 000,173,352 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2010/06/16 03:47:24 | 003,058,304 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2010/03/09 04:28:26 | 011,989,960 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe
PRC - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
PRC - [2010/01/04 20:43:36 | 001,597,440 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2009/12/23 17:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2009/11/24 16:45:36 | 000,053,888 | ---- | M] () -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
PRC - [2009/11/02 17:21:26 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2009/10/26 23:29:32 | 006,998,656 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2009/10/26 13:10:42 | 000,174,720 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
PRC - [2009/09/30 22:34:22 | 002,314,240 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2009/09/30 22:33:08 | 000,262,144 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2009/08/19 23:31:48 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2009/07/31 13:38:24 | 000,305,720 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
PRC - [2009/06/19 13:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
PRC - [2009/06/19 13:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
PRC - [2009/06/15 20:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
PRC - [2009/01/14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2008/12/29 16:32:54 | 000,237,693 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe
PRC - [2008/12/22 20:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
PRC - [2008/07/07 03:34:59 | 000,167,936 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
PRC - [2007/11/30 14:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe


========== Modules (SafeList) ==========

MOD - [2010/09/13 14:33:00 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Brandon\Desktop\OTL.exe
MOD - [2010/07/06 11:06:20 | 000,107,816 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TV.dll
MOD - [2009/07/13 21:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/13 21:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\srvany.exe -- (KMService)
SRV:64bit: - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:64bit: - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:64bit: - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2009/12/17 05:18:07 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/12/07 19:16:34 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:64bit: - [2009/08/06 17:17:46 | 000,118,672 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/09/07 08:51:31 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/09/02 20:33:32 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2010/09/01 20:06:58 | 000,008,192 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\srvany.exe -- (KMService)
SRV - [2010/07/06 18:14:56 | 000,716,024 | ---- | M] (Tunngle.net GmbH) [Auto | Running] -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2010/07/06 11:03:00 | 000,173,352 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2010/06/16 03:42:56 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/28 07:44:02 | 000,704,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2010/03/25 13:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/12/23 17:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009/11/09 22:20:36 | 000,096,896 | ---- | M] (ASUS) [Auto | Stopped] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009/09/30 22:34:22 | 002,314,240 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) Intel®
SRV - [2009/09/30 22:33:08 | 000,262,144 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) Intel®
SRV - [2009/07/26 06:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2009/06/15 20:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2009/01/14 17:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2010/09/12 20:49:30 | 000,828,912 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/09/07 10:47:33 | 000,061,008 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010/09/05 23:32:26 | 000,311,968 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2010/09/05 22:59:33 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2010/09/02 17:49:44 | 000,015,360 | ---- | M] (June Fabrics Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pneteth.sys -- (pneteth)
DRV:64bit: - [2010/04/29 15:39:28 | 000,024,664 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2010/04/28 08:57:50 | 000,061,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009/12/17 05:52:59 | 006,177,792 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/11/18 06:30:55 | 000,123,408 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/10/09 07:16:27 | 000,293,936 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/10/04 21:33:59 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/09/17 15:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel®
DRV:64bit: - [2009/09/16 08:02:42 | 000,031,232 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901t.sys -- (tap0901t) TAP-Win32 Adapter V9 (Tunngle)
DRV:64bit: - [2009/09/04 01:39:07 | 000,062,464 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (NDIS 6.20)
DRV:64bit: - [2009/08/14 01:10:18 | 000,073,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009/08/06 17:24:13 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/08/06 17:17:34 | 000,013,784 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2009/07/20 05:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009/07/13 21:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 21:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/05 06:16:29 | 001,806,400 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2009/05/13 12:07:20 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)
DRV:64bit: - [2008/11/11 13:42:00 | 000,033,792 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64modem.sys -- (USBModem)
DRV:64bit: - [2008/11/11 13:42:00 | 000,027,136 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64gps.sys -- (UsbGps)
DRV:64bit: - [2008/11/11 13:42:00 | 000,027,136 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64diag.sys -- (UsbDiag)
DRV:64bit: - [2008/11/11 13:42:00 | 000,017,920 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64bus.sys -- (usbbus)
DRV:64bit: - [2008/05/23 20:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-548790786-1048006441-1675084100-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
IE - HKU\S-1-5-21-548790786-1048006441-1675084100-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE - HKU\S-1-5-21-548790786-1048006441-1675084100-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://bl138w.blu138.mail.live.com/default.aspx?wa=wsignin1.0"
FF - prefs.js..extensions.enabledItems: {340c2bbc-ce74-4362-90b5-7c26312808ef}:1.4.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.12.0.36605
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/09/10 10:45:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/09/10 10:45:13 | 000,000,000 | ---D | M]

[2010/09/01 17:40:28 | 000,000,000 | ---D | M] -- C:\Users\Brandon\AppData\Roaming\Mozilla\Extensions
[2010/09/01 17:40:28 | 000,000,000 | ---D | M] -- C:\Users\Brandon\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org
[2010/09/13 00:25:51 | 000,000,000 | ---D | M] -- C:\Users\Brandon\AppData\Roaming\Mozilla\Firefox\Profiles\7fjtk1j3.default\extensions
[2010/08/31 11:11:17 | 000,000,000 | ---D | M] (Firefox Sync) -- C:\Users\Brandon\AppData\Roaming\Mozilla\Firefox\Profiles\7fjtk1j3.default\extensions\{340c2bbc-ce74-4362-90b5-7c26312808ef}
[2010/09/01 18:48:03 | 000,000,000 | ---D | M] -- C:\Users\Brandon\AppData\Roaming\Mozilla\Firefox\Profiles\7fjtk1j3.default\extensions\piclens@cooliris.com
[2010/09/07 23:20:32 | 000,002,232 | ---- | M] () -- C:\Users\Brandon\AppData\Roaming\Mozilla\Firefox\Profiles\7fjtk1j3.default\searchplugins\picktorrentcom.xml
[2010/09/01 01:27:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/09/01 01:27:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/09/01 01:27:38 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/01/12 16:03:50 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll

O1 HOSTS File: ([2010/09/10 05:21:06 | 000,000,906 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-548790786-1048006441-1675084100-1000\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.)
O4:64bit: - HKLM..\Run: [RunDLLEntry] C:\Windows\system32\AmbRunE.DLL File not found
O4:64bit: - HKLM..\Run: [Setwallpaper] c:\programdata\SetWallpaper.cmd File not found
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BCSSync] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe File not found
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-548790786-1048006441-1675084100-1000..\Run: [AdobeBridge] C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe (Adobe Systems, Inc.)
O4 - HKU\S-1-5-21-548790786-1048006441-1675084100-1000..\Run: [AlcoholAutomount] C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-548790786-1048006441-1675084100-1000..\Run: [EA Core] C:\Program Files (x86)\Electronic Arts\EADM\Core.exe File not found
O4 - HKU\S-1-5-21-548790786-1048006441-1675084100-1000..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-548790786-1048006441-1675084100-1000..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\Brandon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe (Lime Wire, LLC)
O4 - Startup: C:\Users\Brandon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk = C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Setup.exe -- File not found
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\Setup.exe -- File not found
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\setup\rsrc\Autorun.exe -- File not found
O33 - MountPoints2\H\Shell\dinstall\command - "" = H:\Directx\dxsetup.exe -- File not found
O33 - MountPoints2\I\Shell - "" = AutoRun
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\autorun.exe -- File not found
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\autorun.exe -- File not found
O33 - MountPoints2\K\Shell - "" = AutoRun
O33 - MountPoints2\K\Shell\AutoRun\command - "" = K:\Autorun.exe -- File not found
O33 - MountPoints2\L\Shell - "" = AutoRun
O33 - MountPoints2\L\Shell\AutoRun\command - "" = L:\setup\rsrc\Autorun.exe -- File not found
O33 - MountPoints2\L\Shell\dinstall\command - "" = L:\Directx\dxsetup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

MsConfig:64bit - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: ASUS Screen Saver Protector - hkey= - key= - C:\Windows\AsScrPro.exe (ASUS)
MsConfig:64bit - StartUpReg: CLMLServer - hkey= - key= - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
MsConfig:64bit - StartUpReg: RtHDVCpl - hkey= - key= - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)

SafeBootMin:64bit: AppMgmt - Service
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {0117C68E-101F-F4A5-9F55-C804042E9222} - Internet Explorer
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2505B2A8-0F8F-E51B-03BC-F8D63807A7A1} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)


========== Files/Folders - Created Within 30 Days ==========

[2010/09/13 14:33:00 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\Brandon\Desktop\OTL.exe
[2010/09/13 03:24:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Project64 1.6
[2010/09/13 00:02:51 | 000,033,792 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64modem.sys
[2010/09/13 00:02:51 | 000,027,136 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64gps.sys
[2010/09/13 00:02:51 | 000,027,136 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64diag.sys
[2010/09/13 00:02:51 | 000,017,920 | ---- | C] (LG Electronics Inc.) -- C:\Windows\SysNative\drivers\lgx64bus.sys
[2010/09/13 00:02:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG Electronics
[2010/09/12 21:15:33 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Ashampoo
[2010/09/12 21:14:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2010/09/12 16:17:39 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\AVS4YOU
[2010/09/12 16:16:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVSMedia
[2010/09/12 16:16:53 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc70.dll
[2010/09/12 16:16:53 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp70.dll
[2010/09/12 16:16:53 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr70.dll
[2010/09/12 16:16:52 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2010/09/12 16:16:52 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll
[2010/09/12 16:16:52 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2010/09/12 16:16:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVS4YOU
[2010/09/12 10:15:12 | 000,000,000 | ---D | C] -- C:\Windows\ehome
[2010/09/12 09:52:42 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\Pictures
[2010/09/12 03:13:06 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Apple Computer
[2010/09/11 23:24:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Windows Genuine Advantage
[2010/09/10 22:53:37 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Malwarebytes
[2010/09/10 22:53:23 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/09/10 22:53:21 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/09/10 11:19:01 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\vlc
[2010/09/10 11:07:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2010/09/10 10:45:32 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Adobe Mini Bridge CS5
[2010/09/10 10:45:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp Detect
[2010/09/10 10:44:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2010/09/10 06:25:44 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Digital Anarchy
[2010/09/10 05:26:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nik Software
[2010/09/10 05:26:43 | 000,000,000 | ---D | C] -- C:\Windows\MSSecurityNS
[2010/09/10 05:26:43 | 000,000,000 | ---D | C] -- C:\Windows\MSSecurityNi
[2010/09/10 05:24:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010/09/10 04:50:39 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2010/09/10 04:49:55 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010/09/10 04:48:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/09/10 04:47:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Media Player
[2010/09/10 04:17:46 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\Adobe CS5
[2010/09/09 14:15:37 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Diagnostics
[2010/09/09 14:13:13 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010/09/09 12:44:39 | 000,015,360 | ---- | C] (June Fabrics Technology Inc.) -- C:\Windows\SysNative\drivers\pneteth.sys
[2010/09/09 12:38:28 | 001,490,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01007.dll
[2010/09/09 12:38:28 | 000,708,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinUSBCoInstaller.dll
[2010/09/09 12:38:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PdaNet for Android
[2010/09/09 10:27:40 | 004,567,840 | ---- | C] (June Fabrics Technology Inc. ) -- C:\Users\Brandon\Desktop\PdaNetA245x64.exe
[2010/09/09 09:54:54 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\2K Games
[2010/09/09 09:51:02 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2010/09/09 09:51:02 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2010/09/09 09:51:01 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2010/09/09 09:51:01 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2010/09/09 09:51:01 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2010/09/09 09:51:01 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2010/09/09 09:51:00 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2010/09/09 09:51:00 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2010/09/09 09:51:00 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2010/09/09 09:51:00 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2010/09/09 09:51:00 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2010/09/09 09:51:00 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2010/09/09 09:50:59 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2010/09/09 09:50:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2010/09/09 09:50:59 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2010/09/09 09:50:59 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2010/09/09 09:46:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010/09/09 09:29:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\2K Games
[2010/09/07 13:55:15 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Yahoo!
[2010/09/07 09:19:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SoundSpectrum
[2010/09/06 21:28:54 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\SoundSpectrum
[2010/09/06 15:53:55 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\SEGA Corporation
[2010/09/06 15:53:52 | 000,000,000 | ---D | C] -- C:\ProgramData\SEGA Corporation
[2010/09/06 15:52:31 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Square Enix
[2010/09/06 14:57:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SEGA
[2010/09/06 11:42:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/09/06 11:42:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/09/06 11:00:01 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\The Witcher
[2010/09/06 11:00:01 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\The Witcher
[2010/09/06 11:00:00 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\The Witcher
[2010/09/06 10:41:36 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\tdsskiller
[2010/09/06 03:24:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010/09/06 03:24:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010/09/06 03:03:06 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010/09/06 03:03:06 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010/09/06 03:03:06 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010/09/06 03:03:06 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010/09/06 03:03:06 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010/09/06 03:03:06 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010/09/06 03:03:06 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010/09/06 03:03:06 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010/09/05 23:39:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The Witcher Enhanced Edition
[2010/09/05 22:59:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Atari
[2010/09/05 21:33:20 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Need for Speed World
[2010/09/05 21:22:27 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Electronic_Arts_Inc
[2010/09/05 18:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MegaDev
[2010/09/05 18:35:56 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\NFS_Shift_SAVEGAME
[2010/09/05 18:34:56 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\nfsstrn
[2010/09/05 18:34:26 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\Need_for_Speed_SHIFT_V1.1_Plus_5_Trainer_By_KelSat
[2010/09/05 18:33:19 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\mt-x_setup
[2010/09/05 18:27:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Alcohol Soft
[2010/09/05 18:19:28 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\A.C.I.D_v1.2.10010
[2010/09/05 18:18:04 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\SHIFT_bended
[2010/09/05 17:57:45 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\CrashRpt
[2010/09/05 17:29:43 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\aIW-37a-10802
[2010/09/05 17:27:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2010/09/05 17:27:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2010/09/05 17:17:22 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\TeknoMW2_1.0
[2010/09/05 16:23:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Tunngle
[2010/09/05 16:23:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Tunngle
[2010/09/05 16:23:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Tunngle
[2010/09/05 16:23:28 | 000,031,232 | ---- | C] (Tunngle.net) -- C:\Windows\SysNative\drivers\tap0901t.sys
[2010/09/05 16:23:27 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Tunngle
[2010/09/05 16:23:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tunngle
[2010/09/05 16:22:47 | 004,170,136 | ---- | C] (Tunngle.net GmbH ) -- C:\Users\Brandon\Desktop\TunngleSetup_v4.3.1.3.exe
[2010/09/05 15:53:18 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\mw2 server emu
[2010/09/05 11:03:23 | 000,000,000 | ---D | C] -- C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
[2010/09/05 10:51:45 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010/09/05 10:51:45 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/09/05 10:51:44 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010/09/05 10:51:44 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/09/05 10:51:43 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010/09/05 10:51:43 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010/09/05 10:51:19 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2010/09/05 10:50:25 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010/09/05 10:50:24 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010/09/05 10:50:24 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010/09/05 10:49:34 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010/09/05 10:49:31 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010/09/05 10:49:31 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010/09/05 10:49:24 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010/09/05 10:49:19 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2010/09/05 10:48:47 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010/09/05 10:48:47 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010/09/05 10:48:46 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010/09/05 10:48:45 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2010/09/05 10:48:45 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010/09/05 10:48:44 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010/09/05 10:48:44 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010/09/05 10:48:05 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2010/09/05 10:48:03 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010/09/05 10:48:03 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010/09/05 10:48:03 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010/09/05 10:48:03 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010/09/05 02:37:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\directx
[2010/09/04 23:23:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\KONAMI
[2010/09/04 20:51:51 | 000,000,000 | ---D | C] -- C:\ClearViewRC
[2010/09/04 19:46:28 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Desktop\TWFC_FPS_Unlocker
[2010/09/04 19:19:07 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010/09/04 19:19:07 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010/09/04 19:19:07 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010/09/04 19:19:07 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010/09/04 19:19:06 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010/09/04 19:19:06 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010/09/04 19:19:06 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010/09/04 19:19:06 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010/09/04 16:31:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Unlocker
[2010/09/04 13:18:50 | 000,000,000 | ---D | C] -- C:\ProgramData\BioWare
[2010/09/04 13:18:17 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\BioWare
[2010/09/04 12:31:04 | 000,000,000 | ---D | C] -- C:\Windows\1C4551A64743409391E41477CD655043.TMP
[2010/09/04 12:07:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dragon Age
[2010/09/04 12:07:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BioWare
[2010/09/03 22:01:02 | 000,000,000 | ---D | C] -- C:\Root
[2010/09/02 23:51:35 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2010/09/02 23:51:24 | 002,601,816 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2010/09/02 23:51:24 | 002,032,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2010/09/02 23:51:24 | 001,146,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2010/09/02 23:51:24 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2010/09/02 23:51:24 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2010/09/02 23:51:24 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2010/09/02 23:51:24 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2010/09/02 23:51:24 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2010/09/02 23:51:23 | 002,618,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2010/09/02 23:51:23 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2010/09/02 23:51:23 | 001,213,544 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2010/09/02 23:51:23 | 000,607,832 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll
[2010/09/02 23:51:23 | 000,531,032 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll
[2010/09/02 23:51:23 | 000,476,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2010/09/02 23:51:23 | 000,372,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2010/09/02 23:51:23 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2010/09/02 23:51:23 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2010/09/02 23:51:23 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2010/09/02 23:51:23 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2010/09/02 23:51:23 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2010/09/02 23:51:23 | 000,099,016 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2010/09/02 23:51:23 | 000,080,984 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll
[2010/09/02 23:51:23 | 000,076,904 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll
[2010/09/02 23:51:23 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2010/09/02 23:51:23 | 000,064,600 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBppld64.dll
[2010/09/02 23:51:23 | 000,060,504 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBPPCn64.dll
[2010/09/02 23:51:21 | 000,330,656 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2010/09/02 23:51:21 | 000,200,800 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2010/09/02 23:51:21 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2010/09/02 23:51:16 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2010/09/02 20:33:39 | 000,017,920 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\AmbRunE.dll
[2010/09/02 20:33:02 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2010/09/02 18:27:55 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\CyberLink
[2010/09/02 15:46:45 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\My Received Files
[2010/09/02 15:30:50 | 000,061,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fssfltr.sys
[2010/09/02 15:22:13 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Tracing
[2010/09/02 13:08:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
[2010/09/02 11:21:19 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Outlook Files
[2010/09/02 01:38:55 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\My Spore Creations
[2010/09/02 01:38:32 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\SPORE
[2010/09/02 00:51:22 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Torrent Episode Downloader
[2010/09/02 00:36:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2010/09/02 00:36:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010/09/02 00:36:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010/09/02 00:34:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/09/02 00:34:33 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/09/02 00:34:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
[2010/09/02 00:33:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010/09/02 00:33:34 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/09/01 23:21:08 | 000,086,016 | ---- | C] (MindVision Software) -- C:\Windows\unvise32.exe
[2010/09/01 23:21:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Aleks 3.13
[2010/09/01 22:12:34 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010/09/01 22:12:34 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010/09/01 22:12:34 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2010/09/01 22:12:34 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010/09/01 22:12:34 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010/09/01 22:12:34 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2010/09/01 22:12:32 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2010/09/01 22:12:32 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010/09/01 22:12:32 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2010/09/01 22:12:32 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010/09/01 22:12:31 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2010/09/01 22:12:31 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010/09/01 22:12:31 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010/09/01 22:12:31 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010/09/01 22:12:30 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010/09/01 22:12:30 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010/09/01 22:12:26 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2010/09/01 22:12:26 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2010/09/01 22:12:26 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2010/09/01 22:12:26 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2010/09/01 22:12:26 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2010/09/01 22:12:26 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2010/09/01 21:34:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Activision
[2010/09/01 21:29:38 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Adobe
[2010/09/01 21:27:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2010/09/01 21:07:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Media Center Programs
[2010/09/01 20:59:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2010/09/01 20:40:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2010/09/01 20:38:42 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2010/09/01 20:38:42 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2010/09/01 20:38:42 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2010/09/01 20:38:42 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2010/09/01 20:38:41 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2010/09/01 20:38:41 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2010/09/01 20:38:41 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2010/09/01 20:38:41 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2010/09/01 20:38:41 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2010/09/01 20:38:41 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2010/09/01 20:38:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2010/09/01 20:38:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010/09/01 20:38:39 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2010/09/01 20:38:39 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2010/09/01 20:38:39 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2010/09/01 20:38:39 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2010/09/01 20:38:37 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2010/09/01 20:38:37 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010/09/01 18:48:05 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Cooliris
[2010/09/01 18:43:52 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/09/01 18:43:52 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2010/09/01 18:39:04 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Microsoft Help
[2010/09/01 18:38:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010/09/01 17:42:33 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Incomplete
[2010/09/01 17:40:14 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\LimeWire
[2010/09/01 17:38:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LimeWire
[2010/09/01 17:29:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2010/09/01 17:29:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010/09/01 17:28:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2010/09/01 17:28:19 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Apple
[2010/09/01 17:28:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2010/09/01 17:28:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2010/09/01 14:25:54 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\TeamViewer
[2010/09/01 14:25:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2010/09/01 12:27:52 | 000,000,000 | ---D | C] -- C:\Users\Brandon\My Ebooks
[2010/09/01 12:21:12 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Unfinished Downloads
[2010/09/01 12:15:42 | 000,000,000 | ---D | C] -- C:\Users\Brandon\My Programs
[2010/09/01 07:39:57 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010/09/01 04:41:09 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Root
[2010/09/01 02:28:55 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Eidos
[2010/09/01 02:26:12 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\ElevatedDiagnostics
[2010/09/01 02:23:29 | 001,596,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkHDM64.dll
[2010/09/01 02:23:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2010/09/01 02:14:03 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\ted
[2010/09/01 02:14:03 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Singularity
[2010/09/01 02:14:03 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Ross
[2010/09/01 02:14:03 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Prototype
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\NFS SHIFT
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\My Games
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\LimeWire
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\BFBC2
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\ASUS
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\4A Games
[2010/09/01 02:14:02 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\2K Play
[2010/09/01 02:08:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASIO4ALL v2
[2010/09/01 02:08:32 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\Windows\SysWow64\rewire.dll
[2010/09/01 02:08:32 | 000,000,000 | ---D | C] -- C:\Users\Brandon\Documents\Image-Line
[2010/09/01 02:08:23 | 001,554,944 | ---- | C] (HMS http://hp.vector.co.jp/authors/VA012897/) -- C:\Windows\SysWow64\vorbis.acm
[2010/09/01 02:08:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VstPlugins
[2010/09/01 02:08:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Outsim
[2010/09/01 02:06:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Image-Line
[2010/09/01 01:40:46 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive
[2010/09/01 01:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
[2010/09/01 01:40:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010/09/01 01:32:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Eidos
[2010/09/01 01:31:24 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2010/09/01 01:31:24 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010/09/01 01:31:24 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010/09/01 01:31:24 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2010/09/01 01:31:24 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010/09/01 01:31:24 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010/09/01 01:31:24 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010/09/01 01:31:24 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010/09/01 01:31:23 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2010/09/01 01:31:23 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010/09/01 01:31:23 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2010/09/01 01:31:23 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010/09/01 01:31:23 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2010/09/01 01:31:23 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010/09/01 01:31:22 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2010/09/01 01:31:22 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2010/09/01 01:31:22 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2010/09/01 01:31:22 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2010/09/01 01:31:22 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2010/09/01 01:31:22 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2010/09/01 01:31:22 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2010/09/01 01:31:22 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2010/09/01 01:31:22 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2010/09/01 01:31:22 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2010/09/01 01:31:22 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2010/09/01 01:31:22 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2010/09/01 01:31:21 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2010/09/01 01:31:21 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2010/09/01 01:31:21 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2010/09/01 01:31:21 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2010/09/01 01:31:20 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2010/09/01 01:31:20 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2010/09/01 01:31:20 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2010/09/01 01:31:20 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2010/09/01 01:31:20 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2010/09/01 01:31:20 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2010/09/01 01:31:20 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2010/09/01 01:31:20 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2010/09/01 01:31:20 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2010/09/01 01:31:20 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2010/09/01 01:31:20 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2010/09/01 01:31:20 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2010/09/01 01:31:19 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2010/09/01 01:31:19 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2010/09/01 01:31:19 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2010/09/01 01:31:19 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2010/09/01 01:31:18 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2010/09/01 01:31:18 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2010/09/01 01:31:18 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2010/09/01 01:31:18 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2010/09/01 01:31:18 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2010/09/01 01:31:18 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2010/09/01 01:31:18 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2010/09/01 01:31:18 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2010/09/01 01:31:18 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2010/09/01 01:31:18 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2010/09/01 01:31:17 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2010/09/01 01:31:17 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010/09/01 01:31:17 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2010/09/01 01:31:17 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2010/09/01 01:31:17 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2010/09/01 01:31:17 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2010/09/01 01:31:17 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2010/09/01 01:31:17 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2010/09/01 01:31:17 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2010/09/01 01:31:17 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2010/09/01 01:31:16 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2010/09/01 01:31:16 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2010/09/01 01:31:16 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2010/09/01 01:31:16 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010/09/01 01:31:16 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2010/09/01 01:31:16 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2010/09/01 01:31:16 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2010/09/01 01:31:16 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2010/09/01 01:31:16 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2010/09/01 01:31:16 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2010/09/01 01:31:16 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2010/09/01 01:31:16 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2010/09/01 01:31:15 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2010/09/01 01:31:15 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2010/09/01 01:31:15 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2010/09/01 01:31:15 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2010/09/01 01:31:14 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2010/09/01 01:31:14 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2010/09/01 01:31:14 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2010/09/01 01:31:14 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2010/09/01 01:31:14 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2010/09/01 01:31:14 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2010/09/01 01:31:14 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2010/09/01 01:31:14 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2010/09/01 01:31:14 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2010/09/01 01:31:14 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2010/09/01 01:31:13 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2010/09/01 01:31:13 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2010/09/01 01:31:13 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2010/09/01 01:31:13 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2010/09/01 01:31:12 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2010/09/01 01:31:12 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2010/09/01 01:31:10 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2010/09/01 01:31:10 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010/09/01 01:31:10 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2010/09/01 01:31:10 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2010/09/01 01:31:10 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2010/09/01 01:31:10 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2010/09/01 01:31:09 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2010/09/01 01:31:09 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2010/09/01 01:31:09 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2010/09/01 01:31:09 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2010/09/01 01:31:09 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2010/09/01 01:31:09 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2010/09/01 01:31:09 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2010/09/01 01:31:09 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2010/09/01 01:31:08 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2010/09/01 01:31:08 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2010/09/01 01:31:07 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2010/09/01 01:31:07 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2010/09/01 01:28:55 | 000,000,000 | ---D | C] -- C:\Users\Brandon\My Games
[2010/09/01 01:27:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/09/01 01:27:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/09/01 01:27:44 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/01 01:27:44 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/01 01:27:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/01 01:27:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/09/01 01:27:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010/09/01 01:12:36 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010/09/01 01:11:26 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\InstallShield
[2010/08/31 12:53:37 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\WinRAR
[2010/08/31 12:51:08 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\DFX
[2010/08/31 12:48:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010/08/31 12:45:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Torrent Episode Downloader
[2010/08/31 12:42:21 | 000,085,424 | ---- | C] (PowerISO Computing, Inc.) -- C:\Windows\SysNative\drivers\scdemu.sys
[2010/08/31 12:42:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerISO
[2010/08/31 12:40:45 | 000,000,000 | ---D | C] -- C:\ProgramData\DFX
[2010/08/31 12:40:43 | 000,000,000 | ---D | C] -- C:\Program Files\DFX
[2010/08/31 12:40:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DFX
[2010/08/31 12:39:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2010/08/31 12:39:41 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\uTorrent
[2010/08/31 12:34:11 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\TP
[2010/08/31 12:30:07 | 000,020,048 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/08/31 12:30:06 | 000,121,936 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/08/31 12:30:03 | 000,028,752 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/08/31 12:30:01 | 000,051,280 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/08/31 12:29:55 | 000,061,008 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/08/31 12:28:51 | 000,167,592 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/08/31 12:28:51 | 000,038,848 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/08/31 12:28:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010/08/31 12:28:48 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/08/31 11:05:42 | 000,000,000 | ---D | C] -- C:\Users\Brandon\The Magic Folder
[2010/08/31 09:01:39 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\PackageAware
[2010/08/31 07:51:24 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Macromedia
[2010/08/31 07:50:36 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Mozilla
[2010/08/31 07:50:36 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Mozilla
[2010/08/31 07:50:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010/08/31 07:48:54 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Adobe
[2010/08/31 07:44:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Best_Buy®
[2010/08/31 07:43:43 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\ATI
[2010/08/31 07:43:43 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\ATI
[2010/08/31 07:42:37 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Searches
[2010/08/31 07:42:37 | 000,000,000 | -H-D | C] -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2010/08/31 07:42:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Identities
[2010/08/31 07:42:26 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Contacts
[2010/08/31 07:41:57 | 000,000,000 | -H-D | C] -- C:\ASUS.DAT
[2010/08/31 07:41:53 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Power2Go
[2010/08/31 07:41:50 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\VirtualStore
[2010/08/31 07:41:30 | 000,000,000 | --SD | C] -- C:\Users\Brandon\AppData\Roaming\Microsoft
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Videos
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Saved Games
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Pictures
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Music
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Links
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Favorites
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Downloads
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\My Documents
[2010/08/31 07:41:30 | 000,000,000 | R--D | C] -- C:\Users\Brandon\Desktop
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\AppData\Local\Temporary Internet Files
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Templates
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Start Menu
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\SendTo
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Recent
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\PrintHood
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\NetHood
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Documents\My Videos
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Documents\My Pictures
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Documents\My Music
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\My Documents
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Local Settings
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\AppData\Local\History
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Cookies
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\Application Data
[2010/08/31 07:41:30 | 000,000,000 | -HSD | C] -- C:\Users\Brandon\AppData\Local\Application Data
[2010/08/31 07:41:30 | 000,000,000 | -H-D | C] -- C:\Users\Brandon\AppData
[2010/08/31 07:41:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Temp
[2010/08/31 07:41:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Local\Microsoft
[2010/08/31 07:41:30 | 000,000,000 | ---D | C] -- C:\Users\Brandon\AppData\Roaming\Media Center Programs
[2010/08/25 19:31:23 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\Brandon\Desktop\ATF-Cleaner.exe
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/09/13 14:34:34 | 002,097,152 | -HS- | M] () -- C:\Users\Brandon\NTUSER.DAT
[2010/09/13 14:33:00 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Brandon\Desktop\OTL.exe
[2010/09/13 14:30:33 | 000,030,208 | ---- | M] () -- C:\Users\Brandon\Desktop\Best Buy Review.doc
[2010/09/13 09:14:09 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/09/13 09:14:09 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/09/13 09:06:08 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/13 09:05:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/09/13 09:05:47 | 477,532,159 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/13 03:35:17 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2010/09/13 03:35:13 | 004,114,528 | -H-- | M] () -- C:\Users\Brandon\AppData\Local\IconCache.db
[2010/09/12 23:25:20 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/09/12 23:25:20 | 000,624,178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/09/12 23:25:20 | 000,106,522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/09/12 21:41:02 | 000,000,969 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2010/09/12 21:14:37 | 000,001,197 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 9.lnk
[2010/09/12 20:59:10 | 000,000,273 | ---- | M] () -- C:\Users\Brandon\Documents\ax_files.xml
[2010/09/12 20:53:17 | 000,001,068 | ---- | M] () -- C:\Users\Public\Desktop\Alcohol 120%.lnk
[2010/09/12 20:51:40 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe
[2010/09/12 20:49:30 | 000,828,912 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/09/12 16:41:49 | 000,007,605 | ---- | M] () -- C:\Users\Brandon\AppData\Local\Resmon.ResmonCfg
[2010/09/12 16:17:32 | 000,001,295 | ---- | M] () -- C:\Users\Brandon\Desktop\AVS4YOU Software Navigator.lnk
[2010/09/11 23:43:58 | 001,731,294 | ---- | M] () -- C:\Users\Brandon\Documents\Untitled-1.psd
[2010/09/11 09:03:59 | 000,002,200 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2010/09/11 09:03:45 | 000,001,406 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2010/09/10 22:53:25 | 000,001,035 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/10 11:43:29 | 004,969,304 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/09/10 11:07:26 | 000,001,068 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010/09/10 05:21:06 | 000,000,906 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2010/09/10 05:20:15 | 000,109,224 | ---- | M] () -- C:\Users\Brandon\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/09/09 23:16:35 | 000,270,936 | ---- | M] () -- C:\Users\Brandon\Desktop\claire-danes-nipple-slip-03.jpg
[2010/09/09 20:53:23 | 000,035,328 | ---- | M] () -- C:\Users\Brandon\Documents\US101 Final - Brandon Wenger.doc
[2010/09/09 15:24:35 | 000,104,183 | ---- | M] () -- C:\Users\Brandon\Desktop\7b63ac76-a5da-4e2d-b948-f3d21814be37.jpg
[2010/09/09 14:13:08 | 525,148,605 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/09/09 12:44:40 | 000,001,031 | ---- | M] () -- C:\Users\Brandon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk
[2010/09/09 12:43:17 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010/09/09 10:27:40 | 004,567,840 | ---- | M] (June Fabrics Technology Inc. ) -- C:\Users\Brandon\Desktop\PdaNetA245x64.exe
[2010/09/09 00:36:26 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\129129029414067873.jpg
[2010/09/09 00:35:55 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\74687171-5eba-4148-9ba7-c8c20e6ee353.jpg
[2010/09/09 00:35:22 | 000,131,072 | ---- | M] () -- C:\Users\Brandon\Desktop\59c0a56a-5917-4105-8530-93afa920c44e.jpg
[2010/09/09 00:35:11 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\4d87a683-6a9f-4de2-9c04-e76a1ca4310f.jpg
[2010/09/09 00:29:28 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\dce2e09f-a307-4620-ba2a-a598f9e72fd3.jpg
[2010/09/09 00:29:02 | 000,131,072 | ---- | M] () -- C:\Users\Brandon\Desktop\32b745b0-d6ed-464e-8335-be9263eea534.jpg
[2010/09/09 00:28:49 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\f0c17db5-b313-4bc8-93dc-04d3f63dd62e.jpg
[2010/09/09 00:17:38 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\643c50ae-25b2-4309-b7e7-fbf692cadaed.jpg
[2010/09/09 00:12:14 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\129115792002158729.jpg
[2010/09/09 00:11:22 | 000,032,928 | ---- | M] () -- C:\Users\Brandon\Desktop\b6501c0b-7c1d-4d72-af05-96fa93c05dcb.jpg
[2010/09/09 00:08:24 | 000,032,928 | ---- | M] () -- C:\Users\Brandon\Desktop\a09a3d72-8069-43d0-a7d4-b5651d98d4d9.jpg
[2010/09/09 00:06:52 | 000,032,928 | ---- | M] () -- C:\Users\Brandon\Desktop\c9ae0f5d-d749-400e-aed6-30e0157f84d3.jpg
[2010/09/09 00:05:42 | 000,032,928 | ---- | M] () -- C:\Users\Brandon\Desktop\965bdc6d-d3d2-4cea-92be-c4a81b5668b5.jpg
[2010/09/09 00:04:29 | 000,032,928 | ---- | M] () -- C:\Users\Brandon\Desktop\4787e3ba-66c8-484c-baaf-c3e6755b8dd2.jpg
[2010/09/09 00:04:13 | 000,032,928 | ---- | M] () -- C:\Users\Brandon\Desktop\2d0c2fa5-c96a-479b-9bc2-4aaf13f693a8.jpg
[2010/09/08 23:56:47 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\0805cfe0-49f7-4e25-b4cb-c1ec61dbfa77.jpg
[2010/09/08 23:53:58 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\3c22b3ce-81fe-491c-84e9-67b521f5f0ff.jpg
[2010/09/08 23:26:43 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\f9df9039-3afa-44fc-9cf6-982c8388c4e0.jpg
[2010/09/08 23:26:19 | 000,026,967 | ---- | M] () -- C:\Users\Brandon\Desktop\10f705b5-aa65-40fc-9edf-8f905384b659.jpg
[2010/09/08 23:24:55 | 000,030,556 | ---- | M] () -- C:\Users\Brandon\Desktop\d8b27118-46d3-41fd-94c9-3eba8ddc1ad0.jpg
[2010/09/08 23:23:41 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\5f3975f9-5a83-4be3-97b4-bb14bc9943b7.jpg
[2010/09/08 23:23:26 | 000,047,207 | ---- | M] () -- C:\Users\Brandon\Desktop\29b65bb4-4b2d-45e0-9678-6e6c4604b0281.jpg
[2010/09/08 23:18:12 | 000,016,490 | ---- | M] () -- C:\Users\Brandon\Desktop\91ad06e9-b725-4d70-9851-6aab8849352e.jpg
[2010/09/08 23:18:01 | 000,042,826 | ---- | M] () -- C:\Users\Brandon\Desktop\a50f6325-da9c-4f57-96ee-a50.jpg
[2010/09/08 23:17:35 | 000,131,712 | ---- | M] () -- C:\Users\Brandon\Desktop\b06063fc-98ce-4594-a967-0794c0d82947.jpg
[2010/09/08 23:15:31 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\59ffba87-9e12-4ce8-88da-7f96339d72f5.jpg
[2010/09/08 23:13:29 | 000,131,072 | ---- | M] () -- C:\Users\Brandon\Desktop\54788083-e8da-4e92-84ce-9051b0719b6a.jpg
[2010/09/08 23:12:42 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\29481cf1-6197-41ed-bc7b-ad3ce8509012.jpg
[2010/09/08 23:12:28 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\129191882515101516.jpg
[2010/09/08 23:10:59 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\26ecda52-a248-4828-9d3c-1d76532a5c2c.jpg
[2010/09/08 23:10:41 | 000,016,384 | ---- | M] () -- C:\Users\Brandon\Desktop\b0d0a5fa-820e-4680-a160-56afb240b75f.jpg
[2010/09/08 23:08:59 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\c56322ee-ba59-4d21-812b-ab88901f56c3.jpg
[2010/09/08 23:08:45 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\964b6cef-7ca2-465c-8355-07e86b262da0.jpg
[2010/09/08 23:08:18 | 000,045,897 | ---- | M] () -- C:\Users\Brandon\Desktop\b0a9697d-2ad0-49af-8094-f2d1357cd931.jpg
[2010/09/08 23:08:11 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\cd8b13d3-b7a1-4069-bb63-7fc7c95cbbc4.jpg
[2010/09/08 23:07:55 | 000,023,757 | ---- | M] () -- C:\Users\Brandon\Desktop\b3742113-588e-4555-aab7-677154511727.jpg
[2010/09/08 23:06:31 | 000,062,127 | ---- | M] () -- C:\Users\Brandon\Desktop\487a80a2-e4cf-44b2-9427-0fc839feac84.jpg
[2010/09/08 23:06:15 | 000,020,835 | ---- | M] () -- C:\Users\Brandon\Desktop\6c536bf2-10ec-462b-ab36-6a15d1320977.jpg
[2010/09/08 23:05:39 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\b087b127-576a-40ad-b564-b9bfc4782b27.jpg
[2010/09/08 23:04:40 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\e59a2e94-95d7-4a2d-926c-8c34a9fbeb69.jpg
[2010/09/08 23:03:52 | 000,065,536 | ---- | M] () -- C:\Users\Brandon\Desktop\21bae4e4-4407-425b-b519-de691d2eefc4.jpg
[2010/09/08 23:03:34 | 000,032,768 | ---- | M] () -- C:\Users\Brandon\Desktop\720138ab-5841-4779-86f0-ea5027fe63bd.jpg
[2010/09/08 17:34:27 | 000,053,818 | ---- | M] () -- C:\Users\Brandon\Desktop\bookmarks-2010-09-08.json
[2010/09/08 17:15:43 | 000,000,214 | ---- | M] () -- C:\Users\Brandon\defogger_reenable
[2010/09/08 17:14:48 | 000,525,824 | ---- | M] () -- C:\Users\Brandon\Desktop\dds.scr
[2010/09/08 17:13:51 | 000,050,477 | ---- | M] () -- C:\Users\Brandon\Desktop\Defogger.exe
[2010/09/08 16:11:34 | 000,030,877 | ---- | M] () -- C:\Users\Brandon\Desktop\woof.jpg
[2010/09/07 18:50:12 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010/09/07 11:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/07 11:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2010/09/07 10:52:29 | 000,051,280 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2010/09/07 10:52:09 | 000,121,936 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2010/09/07 10:47:49 | 000,028,752 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2010/09/07 10:47:33 | 000,061,008 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2010/09/07 10:47:10 | 000,020,048 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2010/09/05 23:32:26 | 000,311,968 | ---- | M] () -- C:\Windows\SysNative\drivers\atksgt.sys
[2010/09/05 22:59:33 | 000,043,168 | ---- | M] () -- C:\Windows\SysNative\drivers\lirsgt.sys
[2010/09/05 18:39:52 | 000,002,196 | ---- | M] () -- C:\Users\Brandon\Desktop\MegaTrainer eXperience.lnk
[2010/09/05 18:39:52 | 000,002,163 | ---- | M] () -- C:\Users\Brandon\Desktop\MT-X - Guide.lnk
[2010/09/05 18:32:17 | 000,002,219 | ---- | M] () -- C:\Users\Public\Desktop\Need For Speed World.lnk
[2010/09/05 17:32:53 | 000,000,919 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/09/05 17:20:27 | 000,001,245 | ---- | M] () -- C:\Users\Brandon\Desktop\TeknoGods_MW2SP --ip=192.168.1.1.lnk
[2010/09/05 17:05:03 | 000,000,955 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Tunngle beta.lnk
[2010/09/05 17:05:03 | 000,000,931 | ---- | M] () -- C:\Users\Public\Desktop\Tunngle beta.lnk
[2010/09/05 16:22:57 | 004,170,136 | ---- | M] (Tunngle.net GmbH ) -- C:\Users\Brandon\Desktop\TunngleSetup_v4.3.1.3.exe
[2010/09/04 11:44:57 | 000,003,584 | ---- | M] () -- C:\Users\Brandon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/03 11:55:04 | 083,385,001 | ---- | M] () -- C:\Users\Brandon\Desktop\VIDEO0058.3gp
[2010/09/02 20:33:38 | 000,000,159 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2010/09/02 20:33:37 | 000,419,840 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2010/09/02 20:33:37 | 000,413,696 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2010/09/02 20:33:37 | 000,133,632 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2010/09/02 20:33:37 | 000,110,592 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2010/09/02 17:49:44 | 000,015,360 | ---- | M] (June Fabrics Technology Inc.) -- C:\Windows\SysNative\drivers\pneteth.sys
[2010/09/02 11:21:21 | 000,001,133 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk
[2010/09/02 00:34:30 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010/09/01 20:06:58 | 000,151,552 | ---- | M] () -- C:\Windows\KMService.exe
[2010/09/01 20:06:58 | 000,008,192 | ---- | M] () -- C:\Windows\SysWow64\srvany.exe
[2010/09/01 17:40:35 | 000,001,863 | ---- | M] () -- C:\Users\Brandon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LimeWire On Startup.lnk
[2010/09/01 07:40:40 | 000,039,252 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010/09/01 07:40:40 | 000,039,252 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2010/09/01 03:04:05 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf
[2010/09/01 01:27:38 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/01 01:27:38 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/01 01:27:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/01 01:27:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/08/31 12:34:50 | 000,731,106 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/08/31 09:02:06 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\tmvsthfud.bin
[2010/08/31 09:02:04 | 000,000,824 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\tmvsthfss.bin
[2010/08/31 08:49:41 | 000,000,080 | ---- | M] () -- C:\Windows\SysNative\Defrag.ini
[2010/08/31 08:05:35 | 000,524,288 | -HS- | M] () -- C:\Users\Brandon\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010/08/31 08:05:35 | 000,524,288 | -HS- | M] () -- C:\Users\Brandon\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010/08/31 08:05:35 | 000,065,536 | -HS- | M] () -- C:\Users\Brandon\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010/08/31 07:53:41 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\1043_ASUSTeK_G73Jh.alu
[2010/08/31 07:50:34 | 000,001,965 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/31 07:48:38 | 000,001,439 | ---- | M] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/08/31 07:41:30 | 000,000,020 | -HS- | M] () -- C:\Users\Brandon\ntuser.ini
[2010/08/22 19:44:06 | 000,024,064 | ---- | M] () -- C:\Users\Brandon\Documents\Based on the descriptions in the text.doc
[2010/08/19 21:06:24 | 001,416,671 | ---- | M] () -- C:\Users\Brandon\Desktop\Windows Loader v1.9.1.zip
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/09/12 21:41:02 | 000,000,969 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2010/09/12 21:14:37 | 000,001,197 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 9.lnk
[2010/09/12 20:53:17 | 000,001,068 | ---- | C] () -- C:\Users\Public\Desktop\Alcohol 120%.lnk
[2010/09/12 16:17:32 | 000,001,295 | ---- | C] () -- C:\Users\Brandon\Desktop\AVS4YOU Software Navigator.lnk
[2010/09/11 11:12:46 | 001,731,294 | ---- | C] () -- C:\Users\Brandon\Documents\Untitled-1.psd
[2010/09/10 22:53:25 | 000,001,035 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/09/10 11:07:26 | 000,001,068 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010/09/09 23:16:35 | 000,270,936 | ---- | C] () -- C:\Users\Brandon\Desktop\claire-danes-nipple-slip-03.jpg
[2010/09/09 20:53:22 | 000,035,328 | ---- | C] () -- C:\Users\Brandon\Documents\US101 Final - Brandon Wenger.doc
[2010/09/09 14:13:08 | 525,148,605 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010/09/09 12:44:40 | 000,001,031 | ---- | C] () -- C:\Users\Brandon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk
[2010/09/09 12:43:17 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010/09/09 00:36:26 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\129129029414067873.jpg
[2010/09/09 00:36:03 | 000,104,183 | ---- | C] () -- C:\Users\Brandon\Desktop\7b63ac76-a5da-4e2d-b948-f3d21814be37.jpg
[2010/09/09 00:35:54 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\74687171-5eba-4148-9ba7-c8c20e6ee353.jpg
[2010/09/09 00:35:21 | 000,131,072 | ---- | C] () -- C:\Users\Brandon\Desktop\59c0a56a-5917-4105-8530-93afa920c44e.jpg
[2010/09/09 00:35:10 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\4d87a683-6a9f-4de2-9c04-e76a1ca4310f.jpg
[2010/09/09 00:29:28 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\dce2e09f-a307-4620-ba2a-a598f9e72fd3.jpg
[2010/09/09 00:29:02 | 000,131,072 | ---- | C] () -- C:\Users\Brandon\Desktop\32b745b0-d6ed-464e-8335-be9263eea534.jpg
[2010/09/09 00:28:49 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\f0c17db5-b313-4bc8-93dc-04d3f63dd62e.jpg
[2010/09/09 00:17:37 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\643c50ae-25b2-4309-b7e7-fbf692cadaed.jpg
[2010/09/09 00:12:14 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\129115792002158729.jpg
[2010/09/09 00:11:22 | 000,032,928 | ---- | C] () -- C:\Users\Brandon\Desktop\b6501c0b-7c1d-4d72-af05-96fa93c05dcb.jpg
[2010/09/09 00:08:24 | 000,032,928 | ---- | C] () -- C:\Users\Brandon\Desktop\a09a3d72-8069-43d0-a7d4-b5651d98d4d9.jpg
[2010/09/09 00:06:52 | 000,032,928 | ---- | C] () -- C:\Users\Brandon\Desktop\c9ae0f5d-d749-400e-aed6-30e0157f84d3.jpg
[2010/09/09 00:05:42 | 000,032,928 | ---- | C] () -- C:\Users\Brandon\Desktop\965bdc6d-d3d2-4cea-92be-c4a81b5668b5.jpg
[2010/09/09 00:04:29 | 000,032,928 | ---- | C] () -- C:\Users\Brandon\Desktop\4787e3ba-66c8-484c-baaf-c3e6755b8dd2.jpg
[2010/09/09 00:04:11 | 000,032,928 | ---- | C] () -- C:\Users\Brandon\Desktop\2d0c2fa5-c96a-479b-9bc2-4aaf13f693a8.jpg
[2010/09/08 23:56:47 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\0805cfe0-49f7-4e25-b4cb-c1ec61dbfa77.jpg
[2010/09/08 23:53:58 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\3c22b3ce-81fe-491c-84e9-67b521f5f0ff.jpg
[2010/09/08 23:26:43 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\f9df9039-3afa-44fc-9cf6-982c8388c4e0.jpg
[2010/09/08 23:26:19 | 000,026,967 | ---- | C] () -- C:\Users\Brandon\Desktop\10f705b5-aa65-40fc-9edf-8f905384b659.jpg
[2010/09/08 23:24:54 | 000,030,556 | ---- | C] () -- C:\Users\Brandon\Desktop\d8b27118-46d3-41fd-94c9-3eba8ddc1ad0.jpg
[2010/09/08 23:23:41 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\5f3975f9-5a83-4be3-97b4-bb14bc9943b7.jpg
[2010/09/08 23:23:26 | 000,047,207 | ---- | C] () -- C:\Users\Brandon\Desktop\29b65bb4-4b2d-45e0-9678-6e6c4604b0281.jpg
[2010/09/08 23:18:11 | 000,016,490 | ---- | C] () -- C:\Users\Brandon\Desktop\91ad06e9-b725-4d70-9851-6aab8849352e.jpg
[2010/09/08 23:18:01 | 000,042,826 | ---- | C] () -- C:\Users\Brandon\Desktop\a50f6325-da9c-4f57-96ee-a50.jpg
[2010/09/08 23:17:34 | 000,131,712 | ---- | C] () -- C:\Users\Brandon\Desktop\b06063fc-98ce-4594-a967-0794c0d82947.jpg
[2010/09/08 23:15:31 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\59ffba87-9e12-4ce8-88da-7f96339d72f5.jpg
[2010/09/08 23:13:23 | 000,131,072 | ---- | C] () -- C:\Users\Brandon\Desktop\54788083-e8da-4e92-84ce-9051b0719b6a.jpg
[2010/09/08 23:12:42 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\29481cf1-6197-41ed-bc7b-ad3ce8509012.jpg
[2010/09/08 23:12:28 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\129191882515101516.jpg
[2010/09/08 23:10:59 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\26ecda52-a248-4828-9d3c-1d76532a5c2c.jpg
[2010/09/08 23:10:40 | 000,016,384 | ---- | C] () -- C:\Users\Brandon\Desktop\b0d0a5fa-820e-4680-a160-56afb240b75f.jpg
[2010/09/08 23:08:59 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\c56322ee-ba59-4d21-812b-ab88901f56c3.jpg
[2010/09/08 23:08:45 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\964b6cef-7ca2-465c-8355-07e86b262da0.jpg
[2010/09/08 23:08:18 | 000,045,897 | ---- | C] () -- C:\Users\Brandon\Desktop\b0a9697d-2ad0-49af-8094-f2d1357cd931.jpg
[2010/09/08 23:08:11 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\cd8b13d3-b7a1-4069-bb63-7fc7c95cbbc4.jpg
[2010/09/08 23:07:54 | 000,023,757 | ---- | C] () -- C:\Users\Brandon\Desktop\b3742113-588e-4555-aab7-677154511727.jpg
[2010/09/08 23:06:31 | 000,062,127 | ---- | C] () -- C:\Users\Brandon\Desktop\487a80a2-e4cf-44b2-9427-0fc839feac84.jpg
[2010/09/08 23:06:14 | 000,020,835 | ---- | C] () -- C:\Users\Brandon\Desktop\6c536bf2-10ec-462b-ab36-6a15d1320977.jpg
[2010/09/08 23:05:39 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\b087b127-576a-40ad-b564-b9bfc4782b27.jpg
[2010/09/08 23:04:39 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\e59a2e94-95d7-4a2d-926c-8c34a9fbeb69.jpg
[2010/09/08 23:03:52 | 000,065,536 | ---- | C] () -- C:\Users\Brandon\Desktop\21bae4e4-4407-425b-b519-de691d2eefc4.jpg
[2010/09/08 23:03:33 | 000,032,768 | ---- | C] () -- C:\Users\Brandon\Desktop\720138ab-5841-4779-86f0-ea5027fe63bd.jpg
[2010/09/08 17:34:27 | 000,053,818 | ---- | C] () -- C:\Users\Brandon\Desktop\bookmarks-2010-09-08.json
[2010/09/08 17:29:20 | 000,293,376 | ---- | C] () -- C:\Users\Brandon\Desktop\gmer.exe
[2010/09/08 17:15:43 | 000,000,214 | ---- | C] () -- C:\Users\Brandon\defogger_reenable
[2010/09/08 17:14:48 | 000,525,824 | ---- | C] () -- C:\Users\Brandon\Desktop\dds.scr
[2010/09/08 17:13:50 | 000,050,477 | ---- | C] () -- C:\Users\Brandon\Desktop\Defogger.exe
[2010/09/08 16:11:33 | 000,030,877 | ---- | C] () -- C:\Users\Brandon\Desktop\woof.jpg
[2010/09/08 12:24:45 | 000,030,208 | ---- | C] () -- C:\Users\Brandon\Desktop\Best Buy Review.doc
[2010/09/05 22:59:33 | 000,311,968 | ---- | C] () -- C:\Windows\SysNative\drivers\atksgt.sys
[2010/09/05 22:59:33 | 000,043,168 | ---- | C] () -- C:\Windows\SysNative\drivers\lirsgt.sys
[2010/09/05 19:57:52 | 000,000,273 | ---- | C] () -- C:\Users\Brandon\Documents\ax_files.xml
[2010/09/05 18:39:52 | 000,002,196 | ---- | C] () -- C:\Users\Brandon\Desktop\MegaTrainer eXperience.lnk
[2010/09/05 18:39:52 | 000,002,163 | ---- | C] () -- C:\Users\Brandon\Desktop\MT-X - Guide.lnk
[2010/09/05 18:32:17 | 000,002,219 | ---- | C] () -- C:\Users\Public\Desktop\Need For Speed World.lnk
[2010/09/05 18:24:16 | 000,828,912 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/09/05 17:27:06 | 000,000,919 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/09/05 17:20:27 | 000,001,245 | ---- | C] () -- C:\Users\Brandon\Desktop\TeknoGods_MW2SP --ip=192.168.1.1.lnk
[2010/09/05 16:24:49 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat
[2010/09/05 16:23:28 | 000,000,955 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Tunngle beta.lnk
[2010/09/05 16:23:28 | 000,000,931 | ---- | C] () -- C:\Users\Public\Desktop\Tunngle beta.lnk
[2010/09/04 11:44:57 | 000,003,584 | ---- | C] () -- C:\Users\Brandon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/04 00:31:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysNative\acovcnt.exe
[2010/09/03 12:10:13 | 083,385,001 | ---- | C] () -- C:\Users\Brandon\Desktop\VIDEO0058.3gp
[2010/09/02 11:21:21 | 000,001,133 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk
[2010/09/01 20:46:18 | 000,007,605 | ---- | C] () -- C:\Users\Brandon\AppData\Local\Resmon.ResmonCfg
[2010/09/01 20:08:35 | 000,151,552 | ---- | C] () -- C:\Windows\KMService.exe
[2010/09/01 20:08:35 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe
[2010/09/01 17:40:35 | 000,001,863 | ---- | C] () -- C:\Users\Brandon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LimeWire On Startup.lnk
[2010/09/01 07:39:50 | 477,532,159 | -HS- | C] () -- C:\hiberfil.sys
[2010/09/01 03:04:05 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf
[2010/09/01 02:14:02 | 000,024,064 | ---- | C] () -- C:\Users\Brandon\Documents\Based on the descriptions in the text.doc
[2010/08/31 12:34:50 | 000,731,106 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/08/31 12:29:54 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2010/08/31 07:53:41 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\1043_ASUSTeK_G73Jh.alu
[2010/08/31 07:50:34 | 000,001,965 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/31 07:48:38 | 000,001,439 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/08/31 07:41:30 | 002,097,152 | -HS- | C] () -- C:\Users\Brandon\NTUSER.DAT
[2010/08/31 07:41:30 | 000,524,288 | -HS- | C] () -- C:\Users\Brandon\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010/08/31 07:41:30 | 000,524,288 | -HS- | C] () -- C:\Users\Brandon\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010/08/31 07:41:30 | 000,262,144 | -HS- | C] () -- C:\Users\Brandon\ntuser.dat.LOG1
[2010/08/31 07:41:30 | 000,065,536 | -HS- | C] () -- C:\Users\Brandon\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010/08/31 07:41:30 | 000,000,290 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2010/08/31 07:41:30 | 000,000,272 | ---- | C] () -- C:\Users\Brandon\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2010/08/31 07:41:30 | 000,000,020 | -HS- | C] () -- C:\Users\Brandon\ntuser.ini
[2010/08/31 07:41:30 | 000,000,000 | -HS- | C] () -- C:\Users\Brandon\ntuser.dat.LOG2
[2010/08/25 19:31:25 | 000,000,362 | ---- | C] () -- C:\Users\Brandon\Desktop\PIX.rtf
[2010/08/19 21:06:47 | 001,416,671 | ---- | C] () -- C:\Users\Brandon\Desktop\Windows Loader v1.9.1.zip
[2010/06/16 03:46:53 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\LogonStart.dll
[2010/06/16 03:43:04 | 000,000,735 | ---- | C] () -- C:\Windows\FF05_Render_Spk_Hp.ini
[2010/06/16 03:43:04 | 000,000,508 | ---- | C] () -- C:\Windows\FF05_not_Spk_Hp.ini
[2010/06/16 03:40:43 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2010/06/16 03:40:43 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2010/06/16 03:23:08 | 000,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
[2010/06/16 03:22:48 | 000,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
[2010/04/02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009/08/19 04:33:09 | 000,000,232 | ---- | C] () -- C:\Windows\OOBEPlayer.ini
[2009/07/29 01:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2008/12/01 21:32:32 | 000,362,029 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll

========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe


< MD5 for: AGP440.SYS >
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/13 21:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: IASTOR.SYS >
[2009/08/06 17:24:13 | 000,408,600 | ---- | M] (Intel Corporation) MD5=BBB3B6DF1ABB0FE35802EDE85CC1C011 -- C:\Windows\SysWow64\DriverStore\FileRepository\iaahci.inf_amd64_neutral_4fa22a1c88c09097\iaStor.sys
[2009/08/06 17:24:13 | 000,408,600 | ---- | M] (Intel Corporation) MD5=BBB3B6DF1ABB0FE35802EDE85CC1C011 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastor.inf_amd64_neutral_9071cf01e963be0e\iaStor.sys

< MD5 for: IASTORV.SYS >
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/07/13 21:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009/07/13 21:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/13 21:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/13 21:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/13 21:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtmsft.dll
[2009/07/13 21:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtrans.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\drivers\*.sys /90 >

========== Alternate Data Streams ==========

@Alternate Data Stream - 85 bytes -> C:\ProgramData:$SS_DESCRIPTOR_LVVWVBGV0VFBTLX4D06YH7LVUTPXGJMBKE1R0WT1VH7E24F7PHCTVF4VMVFVVX4VM
< End of report >



log 2:


OTL Extras logfile created on: 9/13/2010 2:34:19 PM - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Brandon\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 4.00 Gb Available Physical Memory | 64.00% Memory free
12.00 Gb Paging File | 9.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 446.23 Gb Total Space | 40.10 Gb Free Space | 8.99% Space Free | Partition Type: NTFS
Drive D: | 3.20 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BRANDON-PC
Current User Name: Brandon
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-548790786-1048006441-1675084100-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AutoUpdateDisableNotify" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{26B0A622-1314-70B4-2971-DA74D58F2DDB}" = ccc-utility64
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel® Turbo Boost Technology Monitor
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5AC309D7-93D6-418F-8DCA-DD710724A5B4}" = Windows Live Family Safety
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}" = ASUS Power4Gear Hybrid
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D87D65E0-B704-9861-F836-5A310B41F153}" = ATI Catalyst Install Manager
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F634E9C2-5D00-3A4B-5AB0-148C431BBDD5}" = ATI AVIVO64 Codecs
"Beauty Box PS" = Beauty Box
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"ToonIt PS" = ToonIt!
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0512FBC8-37F5-11E1-630E-0E4BF115179A}" = CCC Help Norwegian
"{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}" = ASUS AI Recovery
"{07C4EA80-2F1F-B150-4CCC-0AD2E4F8FBAB}" = CCC Help Hungarian
"{07EC03E1-2831-C147-CAA7-7A900EE9FD8D}" = CCC Help Dutch
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0D052F88-18D4-FC0A-BF33-318C4FDFF6FD}" = Catalyst Control Center Graphics Light
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{1BD07DF4-FB06-41BA-B896-B2DA59000C96}" = Windows Live Toolbar
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1E356931-3A8D-77D4-4D08-2FB6A1C01361}" = CCC Help Thai
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java™ 6 Update 21
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2A96D655-4FEF-4512-9468-0AABA70CD389}" = Activision®
"{2B81872B-A054-48DA-BE3B-FA5C164C303A}" = ASUS FancyStart
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{33A9D3F0-C131-5CCF-3630-13FDAE4931E8}" = ccc-core-static
"{33D31A9E-7D50-1B38-7D5E-FB41C89A805A}" = CCC Help Turkish
"{3877E508-FD52-4095-A60C-9B2FC0341397}" = ClearView
"{38F8D823-008D-4E5A-BBCE-867A86C2BF2B}" = Sound Blaster Audigy HD
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{420897E0-9294-C91D-194A-C3D53B768AB7}" = Catalyst Control Center Core Implementation
"{43E49F45-70FB-31D8-2C9A-4C80A0694F28}" = CCC Help Finnish
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{4997619D-FA9C-1987-ADD9-292E7623A7AB}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}" = Batman: Arkham Asylum
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{5E7B9D7C-0245-A5AF-9A7F-C2A74F8A4251}" = CCC Help French
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{641BFAC0-2527-FEF8-DA90-52F42A9C82AB}" = CCC Help Portuguese
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{65CE0B7D-F67E-EE9C-A10F-85ECBDC7FF01}" = Catalyst Control Center Graphics Full New
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6E36A172-06FB-4BC8-B7FC-D30D219E6776}" = Tom Clancy's H.A.W.X
"{6EB8E500-1A08-5104-C0F4-B131C23BAC57}" = CCC Help Italian
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{7C3B44A6-CA80-67A8-BD61-72AC2E367760}" = CCC Help Russian
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8385135C-A857-2F59-5226-03AF656DA9A5}" = Catalyst Control Center Localization All
"{856520DF-4018-0EAD-B02F-C506C0C52F02}" = CCC Help Swedish
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90D9AF4D-8BA2-D322-E2B6-316CC4EEDEB9}" = CCC Help English
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype™
"{95140000-0048-0409-0000-0000000FF1CE}" = Microsoft Outlook Hotmail Connector 32-bit
"{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
"{9B408981-8298-20FE-58E5-59113B371947}" = CCC Help Japanese
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{9DB3F20E-EAE9-FE53-DC08-71BC5E5F18E3}" = Catalyst Control Center Graphics Previews Vista
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{9E3234AD-F86D-7ABE-EC5B-A1BDDC770FFE}" = CCC Help Danish
"{A57039DB-8A82-0DA3-CFBD-888E88A50816}" = CCC Help Korean
"{A5981835-5A34-E723-BBB1-3A4556F93B14}" = CCC Help Greek
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}" = Apple Application Support
"{A9D0699A-714A-7AF0-7887-A880440CF1EE}" = CCC Help German
"{AB3C268A-E54B-4F6D-BF97-2DFCEEFA94F5}" = Catalyst Control Center - Branding
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.3.4 MUI
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{B10914FD-8812-47A4-85A1-50FCDE7F1F33}" = Windows Live Sync
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B5A5627C-0173-4DB2-ADA8-740479370F67}" = Express Gate
"{B72E80DB-DF9B-DE1E-8899-CC74B6B9456A}" = Catalyst Control Center InstallProxy
"{BB1FCCCB-CF8E-87FE-B989-37041A118F29}" = CCC Help Chinese Traditional
"{BBF0A67B-5DBA-452F-9D2E-6F168BC226E4}" = Need for Speed™ SHIFT
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C94ADF6E-B9F0-1221-AD6F-25D547EA0726}" = Catalyst Control Center Graphics Previews Common
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D221681D-9B40-2078-0119-4FD158DC571B}" = Catalyst Control Center Graphics Full Existing
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DBE73977-170A-4742-AB28-CA41B06A63AA}_is1" = The Witcher Enhanced Edition
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{E4C16219-48E5-B6BC-637B-F16412CE5DE5}" = CCC Help Spanish
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EAEAAF8C-8E86-4CAC-AC08-1A33EDCA34AC}" = Prince of Persia The Forgotten Sands™
"{EB900AF8-CC61-4E15-871B-98D1EA3E8025}" = QuickTime
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{EE39FFBD-544E-49E4-A999-6819828EAE91}" = Windows Live Photo Gallery
"{EE83CCB4-1DDF-153A-3E73-242A687D8C58}" = CCC Help Polish
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"{F81722A1-2B1A-383B-1775-26BE96E14E4E}" = CCC Help Czech
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Aleks 3.13" = Aleks 3.13
"Ashampoo Burning Studio 9_is1" = Ashampoo Burning Studio 9.03
"ASIO4ALL" = ASIO4ALL
"ASUS_Notebook_G73" = ASUS_Notebook_G73 Screen Saver
"avast5" = avast! Free Antivirus
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"Call of Duty Modern Warfare 2_is1" = Call of Duty Modern Warfare 2
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Color Efex Pro 3.0 Complete" = Color Efex Pro 3.0 Complete
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"DFX for Windows Media Player" = DFX for Windows Media Player
"FL Studio 9" = FL Studio 9
"G-Force" = G-Force
"Hardcore" = Hardcore
"IL Download Manager" = IL Download Manager
"InstallShield_{2A96D655-4FEF-4512-9468-0AABA70CD389}" = Transformers™ - War for Cybertron™
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype™
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"LimeWire" = LimeWire 5.5.8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MegaTrainer eXperience_is1" = MegaTrainer eXperience V1.0.0.5
"Mozilla Firefox (3.6.9)" = Mozilla Firefox (3.6.9)
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"PdaNet_is1" = PdaNet for Android 2.45
"PoiZone" = PoiZone
"PowerISO" = PowerISO
"Sawer" = Sawer
"TeamViewer 5" = TeamViewer 5
"Torrent Episode Downloader 0.9715" = Torrent Episode Downloader
"Toxic Biohazard" = Toxic Biohazard
"Tunngle beta_is1" = Tunngle beta
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.4
"WhiteCap" = WhiteCap
"WinLiveSuite_Wave3" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-548790786-1048006441-1675084100-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus 2.9.8

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9/5/2010 9:52:19 PM | Computer Name = Brandon-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\Brandon\Downloads\SoftonicDownloader_for_tunngle.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/6/2010 1:50:50 AM | Computer Name = Brandon-PC | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files (x86)\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

Error - 9/6/2010 1:59:44 PM | Computer Name = Brandon-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\Brandon\Downloads\SoftonicDownloader_for_tunngle.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/6/2010 2:57:24 PM | Computer Name = Brandon-PC | Source = MsiInstaller | ID = 1013
Description =

Error - 9/6/2010 3:45:47 PM | Computer Name = Brandon-PC | Source = Application Error | ID = 1000
Description = Faulting application name: setup.exe_unknown, version: 0.0.0.0, time
stamp: 0x40f7662b Faulting module name: setup.exe, version: 0.0.0.0, time stamp:
0x40f7662b Exception code: 0xc0000006 Fault offset: 0x00008dc1 Faulting process id:
0xbd0 Faulting application start time: 0x01cb4df51328d0df Faulting application path:
D:\setup.exe Faulting module path: D:\setup.exe Report Id: 57b69083-b9ef-11df-b332-485b398f6134

Error - 9/6/2010 3:45:47 PM | Computer Name = Brandon-PC | Source = Application Error | ID = 1005
Description = Windows cannot access the file for one of the following reasons: there
is a problem with the network connection, the disk that the file is stored on,
or the storage drivers installed on this computer; or the disk is missing. Windows
closed the program setup.exe because of this error. Program: setup.exe File: The
error value is listed in the Additional Data section. User Action 1. Open the file
again. This situation might be a temporary problem that corrects itself when the
program runs again. 2. If the file still cannot be accessed and - It is on the network,
your
network administrator should verify that there is not a problem with the network
and that the server can be contacted. - It is on a removable disk, for example,
a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3.
Check and repair the file system by running CHKDSK. To run CHKDSK, click Start,
click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F,
and then press ENTER. 4. If the problem persists, restore the file from a backup
copy. 5. Determine whether other files on the same disk can be opened. If not, the
disk might be damaged. If it is a hard disk, contact your administrator or computer
hardware vendor for further assistance. Additional Data Error value: C000026E Disk
type: 0

Error - 9/6/2010 3:45:59 PM | Computer Name = Brandon-PC | Source = Application Error | ID = 1000
Description = Faulting application name: setup.exe_unknown, version: 0.0.0.0, time
stamp: 0x40f7662b Faulting module name: setup.exe, version: 0.0.0.0, time stamp:
0x40f7662b Exception code: 0xc0000006 Fault offset: 0x000070d0 Faulting process id:
0x1160 Faulting application start time: 0x01cb4df5130ea1bc Faulting application path:
D:\setup.exe Faulting module path: D:\setup.exe Report Id: 5ec8426a-b9ef-11df-b332-485b398f6134

Error - 9/6/2010 3:45:59 PM | Computer Name = Brandon-PC | Source = Application Error | ID = 1005
Description = Windows cannot access the file for one of the following reasons: there
is a problem with the network connection, the disk that the file is stored on,
or the storage drivers installed on this computer; or the disk is missing. Windows
closed the program setup.exe because of this error. Program: setup.exe File: The
error value is listed in the Additional Data section. User Action 1. Open the file
again. This situation might be a temporary problem that corrects itself when the
program runs again. 2. If the file still cannot be accessed and - It is on the network,
your
network administrator should verify that there is not a problem with the network
and that the server can be contacted. - It is on a removable disk, for example,
a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3.
Check and repair the file system by running CHKDSK. To run CHKDSK, click Start,
click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F,
and then press ENTER. 4. If the problem persists, restore the file from a backup
copy. 5. Determine whether other files on the same disk can be opened. If not, the
disk might be damaged. If it is a hard disk, contact your administrator or computer
hardware vendor for further assistance. Additional Data Error value: C000026E Disk
type: 0

Error - 9/7/2010 9:44:38 PM | Computer Name = Brandon-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\Brandon\Downloads\SoftonicDownloader_for_tunngle.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/8/2010 12:34:18 AM | Computer Name = Brandon-PC | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files (x86)\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

[ Media Center Events ]
Error - 8/31/2010 9:11:10 AM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 6:11:10 AM - Error connecting to the internet. 6:11:10 AM - Unable
to contact server..

Error - 9/9/2010 4:11:46 PM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 4:11:46 PM - Error connecting to the internet. 4:11:46 PM - Unable
to contact server..

Error - 9/9/2010 4:11:55 PM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 4:11:51 PM - Error connecting to the internet. 4:11:51 PM - Unable
to contact server..

Error - 9/9/2010 5:11:59 PM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 5:11:59 PM - Error connecting to the internet. 5:11:59 PM - Unable
to contact server..

Error - 9/9/2010 5:12:04 PM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 5:12:04 PM - Error connecting to the internet. 5:12:04 PM - Unable
to contact server..

Error - 9/9/2010 6:12:09 PM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 6:12:09 PM - Error connecting to the internet. 6:12:09 PM - Unable
to contact server..

Error - 9/9/2010 6:12:15 PM | Computer Name = Brandon-PC | Source = MCUpdate | ID = 0
Description = 6:12:14 PM - Error connecting to the internet. 6:12:14 PM - Unable
to contact server..

[ System Events ]
Error - 9/10/2010 11:43:43 AM | Computer Name = Brandon-PC | Source = Application Popup | ID = 875
Description = Driver atksgt.sys has been blocked from loading.

Error - 9/10/2010 11:43:43 AM | Computer Name = Brandon-PC | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%1275

Error - 9/11/2010 9:03:11 AM | Computer Name = Brandon-PC | Source = Service Control Manager | ID = 7003
Description = The ATKGFNEX Service service depends the following service: ASMMAP64.
This service might not be installed.

Error - 9/11/2010 9:03:17 AM | Computer Name = Brandon-PC | Source = Application Popup | ID = 875
Description = Driver atksgt.sys has been blocked from loading.

Error - 9/11/2010 9:03:17 AM | Computer Name = Brandon-PC | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%1275

Error - 9/11/2010 9:38:28 AM | Computer Name = Brandon-PC | Source = ACPI | ID = 327690
Description = ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation
Region (0x4), Please contact your system vendor for technical assistance.

Error - 9/11/2010 9:38:28 AM | Computer Name = Brandon-PC | Source = ACPI | ID = 327690
Description = ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation
Region (0x4), Please contact your system vendor for technical assistance.

Error - 9/11/2010 11:45:48 PM | Computer Name = Brandon-PC | Source = Service Control Manager | ID = 7003
Description = The ATKGFNEX Service service depends the following service: ASMMAP64.
This service might not be installed.

Error - 9/11/2010 11:45:53 PM | Computer Name = Brandon-PC | Source = Application Popup | ID = 875
Description = Driver atksgt.sys has been blocked from loading.

Error - 9/11/2010 11:45:53 PM | Computer Name = Brandon-PC | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%1275


< End of report >





Thank you for helping me with this,
Brandon

Edited by BrandonWenger, 13 September 2010 - 01:52 PM.

Operating System
MS Windows 7 Ultimate 64-bit
CPU
Intel Core i7 720QM @ 1.60GHz 58 °C
Clarksfield 45nm Technology
RAM
6.0GB Dual-Channel DDR3 @ 659MHz (9-9-9-24)
Motherboard
ASUSTeK Computer Inc. G73Jh (Socket 989)
Graphics
MEUSLCD4 @ 1920x1080
Generic PnP Monitor @ 1600x900
ATI Mobility Radeon HD 5870
Hard Drives
488GB Seagate ST9500420AS (SATA) 40 °C
Optical Drives
HL-DT-ST DVDRAM GT32N
DWVM XQRCP67K9 SCSI CdRom Device
MagicISO Virtual DVD-ROM0000
Audio
Realtek High Definition Audio

#4 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,766 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:11:27 AM

Posted 13 September 2010 - 02:08 PM

Hi,

have you checked if your CPU is being used up, if RAM is not being used fully?

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#5 BrandonWenger

BrandonWenger
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:27 AM

Posted 13 September 2010 - 04:10 PM

The CPU rarely goes above 10%, even while gaming. The sluggishness is not due to physical resource consumption. I have a widget on my desktop that keeps me current on CPU/RAM usage. In fact, I have tried pressing the overclock button when it gets slow and it changes nothing.
Operating System
MS Windows 7 Ultimate 64-bit
CPU
Intel Core i7 720QM @ 1.60GHz 58 °C
Clarksfield 45nm Technology
RAM
6.0GB Dual-Channel DDR3 @ 659MHz (9-9-9-24)
Motherboard
ASUSTeK Computer Inc. G73Jh (Socket 989)
Graphics
MEUSLCD4 @ 1920x1080
Generic PnP Monitor @ 1600x900
ATI Mobility Radeon HD 5870
Hard Drives
488GB Seagate ST9500420AS (SATA) 40 °C
Optical Drives
HL-DT-ST DVDRAM GT32N
DWVM XQRCP67K9 SCSI CdRom Device
MagicISO Virtual DVD-ROM0000
Audio
Realtek High Definition Audio

#6 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,766 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:11:27 AM

Posted 13 September 2010 - 04:25 PM

Hi,

it could be something else then. Maybe hard disk or graphics, not sure. I'm not seeing anything that points at an infection at the moment.

Just to be safe please run a scan with MBRCheck:
Please download MBRCheck.exe to your desktop.
  1. Double click to run it
  2. It will prompt you with some text
  3. Left click on title bar (where program name and path is written)
  4. From menu chose Edit -> Select All
  5. Now just click Enter key on keyboard to copy selected text
  6. Now paste that text here for me.

Hijackthis is not compatible with 64bit OS, that is why so many files are listed as missing.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#7 BrandonWenger

BrandonWenger
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:27 AM

Posted 13 September 2010 - 07:05 PM

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: ASUSTeK Computer Inc.
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: ASUSTeK Computer Inc.
System Product Name: G73Jh
Logical Drives Mask: 0x00000074

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000004`e22cec00 (NTFS)

Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79


Done!
Press ENTER to exit...

Operating System
MS Windows 7 Ultimate 64-bit
CPU
Intel Core i7 720QM @ 1.60GHz 58 °C
Clarksfield 45nm Technology
RAM
6.0GB Dual-Channel DDR3 @ 659MHz (9-9-9-24)
Motherboard
ASUSTeK Computer Inc. G73Jh (Socket 989)
Graphics
MEUSLCD4 @ 1920x1080
Generic PnP Monitor @ 1600x900
ATI Mobility Radeon HD 5870
Hard Drives
488GB Seagate ST9500420AS (SATA) 40 °C
Optical Drives
HL-DT-ST DVDRAM GT32N
DWVM XQRCP67K9 SCSI CdRom Device
MagicISO Virtual DVD-ROM0000
Audio
Realtek High Definition Audio

#8 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,766 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:11:27 AM

Posted 13 September 2010 - 07:11 PM

Hi,

I don't believe your problem is related to malware. Your logs seem clean.

Have you tried running checkdisk or a file integrity check?

I would actually suggest that you post in the Windows forums instead of here to get help. People may be more familiar with the isue than I am since it isn't malware.
regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#9 BrandonWenger

BrandonWenger
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:27 AM

Posted 13 September 2010 - 10:55 PM

I did, initially. It got moved here for some reason. Thank you for your help.
Operating System
MS Windows 7 Ultimate 64-bit
CPU
Intel Core i7 720QM @ 1.60GHz 58 °C
Clarksfield 45nm Technology
RAM
6.0GB Dual-Channel DDR3 @ 659MHz (9-9-9-24)
Motherboard
ASUSTeK Computer Inc. G73Jh (Socket 989)
Graphics
MEUSLCD4 @ 1920x1080
Generic PnP Monitor @ 1600x900
ATI Mobility Radeon HD 5870
Hard Drives
488GB Seagate ST9500420AS (SATA) 40 °C
Optical Drives
HL-DT-ST DVDRAM GT32N
DWVM XQRCP67K9 SCSI CdRom Device
MagicISO Virtual DVD-ROM0000
Audio
Realtek High Definition Audio

#10 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,766 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:11:27 AM

Posted 14 September 2010 - 08:03 AM

hi,

the reason it got moved is because you posted the logs. hijackthis is mostly used for malware analysis and it is reserved for this on this board. so whenever you post a log it will get moved to this forum.

restating your problem without a log should help you solve your problem. smile.gif

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#11 BrandonWenger

BrandonWenger
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:27 AM

Posted 14 September 2010 - 09:16 AM

Ah. Good to know! Thanks again.
Operating System
MS Windows 7 Ultimate 64-bit
CPU
Intel Core i7 720QM @ 1.60GHz 58 °C
Clarksfield 45nm Technology
RAM
6.0GB Dual-Channel DDR3 @ 659MHz (9-9-9-24)
Motherboard
ASUSTeK Computer Inc. G73Jh (Socket 989)
Graphics
MEUSLCD4 @ 1920x1080
Generic PnP Monitor @ 1600x900
ATI Mobility Radeon HD 5870
Hard Drives
488GB Seagate ST9500420AS (SATA) 40 °C
Optical Drives
HL-DT-ST DVDRAM GT32N
DWVM XQRCP67K9 SCSI CdRom Device
MagicISO Virtual DVD-ROM0000
Audio
Realtek High Definition Audio

#12 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,766 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:11:27 AM

Posted 14 September 2010 - 04:00 PM

Since this topic has been transferred, I will now close it.

If you need this topic re-opened please send me a PM.

Everyone else, please start a new topic.

With Regards,
myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users