Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

win32/olmarik trojan - unable to clean


  • This topic is locked This topic is locked
21 replies to this topic

#1 audio9

audio9

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 27 April 2011 - 12:44 AM

currently im using eset nod32 smart security. on start up i always get this notification from eset saying "win32/olmarik trojan - unable to clean"
i dont know how to remove it. please help~


.
DDS (Ver_11-03-05.01) - NTFSx86
Run by audi bin marwoto at 12:48:54.74 on Wed 27/04/2011
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_23
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.60.1033.18.1012.132 [GMT 8:00]
.
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: AVG Anti-Virus *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: AVG Anti-Virus *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k Akamai
C:\Windows\system32\SupportAppXL\cdrom_mon.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\Internet Download Manager\idman.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Windows\system32\wuauclt.exe
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\audi bin marwoto\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.ask.com/?o=0&l=dir
uSearch Bar =
mStart Page = hxxp://search.myfacesounds.com
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: mipony-plugin Toolbar: {90d46c30-9f25-4104-aea9-35c3f84477ff} - c:\program files\mipony-plugin\tbmipo.dll
uURLSearchHooks: H - No File
mURLSearchHooks: mipony-plugin Toolbar: {90d46c30-9f25-4104-aea9-35c3f84477ff} - c:\program files\mipony-plugin\tbmipo.dll
BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - c:\program files\internet download manager\IDMIECC.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: mipony-plugin Toolbar: {90d46c30-9f25-4104-aea9-35c3f84477ff} - c:\program files\mipony-plugin\tbmipo.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: mipony-plugin Toolbar: {90d46c30-9f25-4104-aea9-35c3f84477ff} - c:\program files\mipony-plugin\tbmipo.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
TB: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
uRun: [IDMan] c:\program files\internet download manager\IDMan.exe /onboot
uRun: [Messenger (Yahoo!)] "c:\progra~1\yahoo!\messenger\YahooMessenger.exe" -quiet
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Download all links with IDM - c:\program files\internet download manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\internet download manager\IEGetVL.htm
IE: Download with IDM - c:\program files\internet download manager\IEExt.htm
IE: Download with Mipony - file://c:\program files\mipony\browser\IEContext.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\mif5ba~1\office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~4\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: avgrsstx.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
IFEO: javaw.exe - "c:\program files\tuneup utilities 2011\TUAutoReactivator32.exe"
IFEO: javaws.exe - "c:\program files\tuneup utilities 2011\TUAutoReactivator32.exe"
IFEO: setup.exe - "c:\program files\tuneup utilities 2011\TUAutoReactivator32.exe"
.
============= SERVICES / DRIVERS ===============
.
R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2011-4-16 52872]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2011-4-16 216400]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2011-4-16 29584]
R1 AvgTdiX;AVG Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2011-4-16 243024]
R1 DVMIO;DeviceVM IO Service;c:\windows\system32\drivers\dvmio.sys [2009-11-12 18136]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2009-7-14 20992]
R2 Autorun CDROM Monitor;Autorun CDROM Monitor;c:\windows\system32\supportappxl\cdrom_mon.exe [2011-2-12 81920]
R2 avg9wd;AVG WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2011-4-17 308136]
R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-6-24 136120]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2010-6-24 810144]
R2 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2010-4-28 41312]
R2 IDMWFP;IDMWFP;c:\windows\system32\drivers\idmwfp.sys [2011-3-10 85768]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\drivers\RtsPStor.sys [2010-9-10 230944]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2010-9-10 267880]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-7 10064]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-9-10 294952]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2010-9-10 33320]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2011-2-12 7168]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-3-30 38224]
S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-11 4231168]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2009-1-2 27192]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-14 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-14 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-14 661504]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk62x86.sys [2009-7-14 311296]
S3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\drivers\ZTEusbnet.sys [2011-2-12 114688]
S4 AESTFilters;Andrea ST Filters Service;c:\program files\idt\wdm\AEstSrv.exe [2010-9-10 81920]
.
=============== Created Last 30 ================
.
2011-04-26 04:49:25 232448 ----a-w- c:\windows\system32\mp3fhg.acm
2011-04-26 04:49:25 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-04-26 04:49:24 237568 ----a-w- c:\windows\system32\yv12vfw.dll
2011-04-26 04:49:21 810496 ----a-w- c:\windows\system32\xvidcore.dll
2011-04-26 04:49:21 183808 ----a-w- c:\windows\system32\xvidvfw.dll
2011-04-26 04:49:14 80896 ----a-w- c:\windows\system32\ff_vfw.dll
2011-04-26 04:48:54 -------- d-----w- c:\program files\K-Lite Codec Pack
2011-04-19 17:25:09 -------- d-----w- c:\users\audibi~1\appdata\roaming\SendSpace
2011-04-17 00:43:50 -------- d--h--w- C:\$AVG
2011-04-16 23:13:47 -------- d--h--w- c:\progra~2\Common Files
2011-04-16 19:42:21 12536 ----a-w- c:\windows\system32\avgrsstx.dll
2011-04-16 16:50:56 -------- d-----w- c:\users\audibi~1\appdata\local\Apple Computer
2011-04-16 16:43:53 -------- d-----w- c:\program files\Bonjour
2011-04-16 16:43:23 -------- d-----w- c:\users\audibi~1\appdata\local\Apple
2011-04-16 16:03:36 -------- d-----w- c:\users\audibi~1\appdata\roaming\AVG9
2011-04-16 15:30:41 52872 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2011-04-16 15:30:41 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2011-04-16 15:30:26 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2011-04-16 15:30:23 -------- d-----w- c:\windows\system32\drivers\Avg
2011-04-16 15:29:43 -------- d-----w- c:\progra~2\avg9
2011-04-16 15:27:50 -------- d-----w- c:\program files\AVG
2011-04-16 09:46:55 6792528 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{f58b45cf-2e0f-45d5-884b-b70671738b4a}\mpengine.dll
2011-04-14 16:36:52 -------- d-----w- c:\progra~2\NFS Underground
2011-04-14 16:14:21 -------- d-----w- C:\Game
2011-04-14 01:37:19 -------- d-----w- c:\windows\system32\MpEngineStore
2011-04-13 16:15:15 311296 ----a-w- c:\windows\system32\drivers\srv.sys
2011-04-13 16:15:15 309760 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-13 16:15:14 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-04-13 16:15:01 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-04-13 16:11:55 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-04-13 16:11:55 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-04-13 16:11:46 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-04-13 16:11:46 294912 ----a-w- c:\windows\system32\atmfd.dll
2011-04-13 16:02:56 2331136 ----a-w- c:\windows\system32\win32k.sys
2011-04-13 16:02:46 191488 ----a-w- c:\windows\system32\FXSCOVER.exe
2011-04-13 16:02:43 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-04-13 15:56:18 740864 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-13 15:47:26 1137664 ----a-w- c:\windows\system32\mfc42.dll
2011-04-13 15:47:25 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2011-04-13 15:42:18 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-04-13 15:42:18 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-13 15:42:18 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-13 15:42:17 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-04-12 12:57:16 -------- d-----w- c:\program files\Virus Guard v1.8
2011-04-09 16:32:42 -------- d-----w- C:\Virus Guard
2011-04-06 17:40:02 -------- d-----w- c:\program files\ESET
2011-04-05 13:29:26 -------- d-----w- c:\progra~2\PC Tools
2011-04-03 10:25:23 -------- d-----w- c:\progra~2\Astar Games
2011-04-03 04:07:16 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-04-03 04:07:12 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-04-03 04:07:12 21312 ----a-w- c:\windows\system32\authuitu.dll
2011-04-03 04:05:02 -------- d-----w- c:\program files\TuneUp Utilities 2011
2011-03-30 06:30:46 -------- d-----w- c:\users\audibi~1\appdata\roaming\Malwarebytes
2011-03-30 06:30:17 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-03-30 06:30:14 -------- d-----w- c:\progra~2\Malwarebytes
2011-03-30 06:30:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-03-30 06:30:08 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-03-29 08:17:05 -------- d-----w- c:\progra~2\Oberon Games
.
==================== Find3M ====================
.
2011-02-24 05:32:44 981504 ----a-w- c:\windows\system32\wininet.dll
2011-02-24 05:30:16 44544 ----a-w- c:\windows\system32\licmgr10.dll
2011-02-24 04:23:48 386048 ----a-w- c:\windows\system32\html.iec
2011-02-24 03:50:26 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-02-19 05:33:11 802304 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 05:32:48 1074176 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 05:32:35 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-02-02 10:11:20 222080 ------w- c:\windows\system32\MpSigStub.exe
.
=================== ROOTKIT ====================
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7600 Disk: Hitachi_ rev.PB2O -> Harddisk0\DR0 -> \Device\Ide\iaStor0
.
device: opened successfully
user: MBR read successfully
.
Disk trace:
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; STI ; MOV ES, AX; MOV DS, AX; MOV SI, SP; MOV DI, 0x600; MOV CX, 0x200; CLD ; REP MOVSB ; JMP FAR 0x0:0x660; }
detected disk devices:
\Device\Ide\IAAStorageDevice-0 -> \??\IDE#DiskHitachi_HTS545025B9A300_________________PB2OC60F#4&19d8fa68&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
detected hooks:
user & kernel MBR OK
copy of MBR has been found in sector 2 !
sectors 488397166 (+255): user != kernel
.
============= FINISH: 12:57:27.02 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 SweetTech

SweetTech

    Agent ST


  • Members
  • 13,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Antarctica
  • Local time:09:52 PM

Posted 04 May 2011 - 08:18 AM

Hello and welcome to the forums!

My secret agent name on the forums is SweetTech (you can call me ST for short), it's a pleasure to meet you. :)

I am very sorry for the delay in responding, but as you can see we are at the moment being flooded with logs which, when paired with the never-ending shortage of helpers, resulted in the delayed responding to your thread.

I would be glad to take a look at your log and help you with solving any malware problems.

If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed.

If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:

  • Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
  • Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
  • If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
  • In Windows Vista and Windows 7, all tools need to be started by right clicking and selecting Run as Administrator!
  • Do not do things I do not ask for, such as running a spyware scan on your computer. The one thing that you should always do, is to make sure sure that your anti-virus definitions are up-to-date!
  • Please do not use the Attachment feature for any log file. Do a Copy/Paste of the entire contents of the log file and submit it inside your post.
  • I am going to stick with you until ALL malware is gone from your system. I would appreciate it if you would do the same. From this point, we're in this together ;)
    Because of this, you must reply within three days
    failure to reply will result in the topic being closed!
  • Please do not PM me directly for help. If you have any questions, post them in this topic.
  • Lastly, I am no magician. I will try very hard to fix your issues, but no promises can be made. Also be aware that some infections are so severe that you might need to resort to reformatting and reinstalling your operating system.
    Don't worry, this only happens in severe cases, but it sadly does happen. Be prepared to back up your data. Have means of backing up your data available.

____________________________________________________


Posted Image One or more of the identified infections is a backdoor trojan and password stealer.

This type of infection allows hackers to access and remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge.
If you do any banking or other financial transactions on the PC or if it contains any other sensitive information, then from a clean computer, change all passwords where applicable.
It would also be wise to contact those same financial institutions to appraise them of your situation.


I highly suggest you take a look at the two links provided below:
1. How Do I Handle Possible Identify Theft, Internet Fraud, and CC Fraud?
2. When should I re-format? How should I reinstall?


We can still clean this machine but I can't guarantee that it will be 100% secure afterwards. Let me know what you decide to do. If you decide to go through with the cleanup, please proceed with the following steps.



NEXT:



Running TDSSKiller

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • Extract its contents to your desktop.
  • Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.


    Posted Image

  • If an infected file is detected, the default action will be Cure, click on Continue.


    Posted Image

  • If a suspicious file is detected, the default action will be Skip, click on Continue.


    Posted Image

  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.


    Posted Image

  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.


NEXT:



Running OTL

We need to create an OTL Report
  • Please download OTL from one of the following mirrors:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized


NEXT:


Please provide an update on how things are running in your next reply.

Have I helped you? If you'd like to assist in the fight against malware, click here Posted Image


The instructions seen in this post have been specifically tailored to this user and the issues they are experiencing with their computer. If you think you have a similar problem, please first read this topic, and then begin your own, new thread. I do not offer private support via Private Message.


#3 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 05 May 2011 - 09:41 AM

Hello ST~
im looking forward working with u...i beholden my laptop to u.im ready to do whatever u need me do to clean my laptop.but i have another problem and i think i should let u know.
my browser always stop working. im using Mozilla Firefox,Google Chrome and sometimes Safari. all my browser will stop working when searching with Google.com. its very frustrating bosause i am a student and i have to find stuff for school.do u know whats causing this?is it have to do with the virus in my laptop?by the way, below is the TDSSKiller ,OTL and Extra log u requested.



2011/05/05 20:26:54.0990 6116 TDSS rootkit removing tool 2.5.0.0 May 1 2011 14:20:16
2011/05/05 20:26:56.0816 6116 ================================================================================
2011/05/05 20:26:56.0816 6116 SystemInfo:
2011/05/05 20:26:56.0817 6116
2011/05/05 20:26:56.0817 6116 OS Version: 6.1.7600 ServicePack: 0.0
2011/05/05 20:26:56.0817 6116 Product type: Workstation
2011/05/05 20:26:56.0817 6116 ComputerName: USER-PC
2011/05/05 20:26:56.0817 6116 UserName: audi bin marwoto
2011/05/05 20:26:56.0818 6116 Windows directory: C:\Windows
2011/05/05 20:26:56.0818 6116 System windows directory: C:\Windows
2011/05/05 20:26:56.0818 6116 Processor architecture: Intel x86
2011/05/05 20:26:56.0818 6116 Number of processors: 2
2011/05/05 20:26:56.0818 6116 Page size: 0x1000
2011/05/05 20:26:56.0818 6116 Boot type: Normal boot
2011/05/05 20:26:56.0818 6116 ================================================================================
2011/05/05 20:26:58.0057 6116 Initialize success
2011/05/05 20:27:00.0383 5332 ================================================================================
2011/05/05 20:27:00.0383 5332 Scan started
2011/05/05 20:27:00.0383 5332 Mode: Manual;
2011/05/05 20:27:00.0383 5332 ================================================================================
2011/05/05 20:27:02.0522 5332 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2011/05/05 20:27:02.0672 5332 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2011/05/05 20:27:02.0763 5332 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2011/05/05 20:27:02.0960 5332 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/05/05 20:27:03.0131 5332 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2011/05/05 20:27:03.0341 5332 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2011/05/05 20:27:03.0557 5332 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2011/05/05 20:27:03.0616 5332 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2011/05/05 20:27:03.0766 5332 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2011/05/05 20:27:03.0959 5332 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2011/05/05 20:27:04.0016 5332 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2011/05/05 20:27:04.0135 5332 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2011/05/05 20:27:04.0300 5332 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2011/05/05 20:27:04.0363 5332 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2011/05/05 20:27:04.0521 5332 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys
2011/05/05 20:27:04.0706 5332 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/05/05 20:27:04.0853 5332 amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys
2011/05/05 20:27:04.0917 5332 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2011/05/05 20:27:05.0153 5332 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2011/05/05 20:27:05.0245 5332 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2011/05/05 20:27:05.0442 5332 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/05/05 20:27:05.0601 5332 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2011/05/05 20:27:05.0805 5332 AvgLdx86 (b8c187439d27aba430dd69fdcf1fa657) C:\Windows\system32\Drivers\avgldx86.sys
2011/05/05 20:27:05.0980 5332 AvgMfx86 (53b3f979930a786a614d29cafe99f645) C:\Windows\system32\Drivers\avgmfx86.sys
2011/05/05 20:27:06.0117 5332 AvgRkx86 (5bbcd8646074a3af4ee9b321d12c2b64) C:\Windows\system32\Drivers\avgrkx86.sys
2011/05/05 20:27:06.0188 5332 AvgTdiX (22e3b793c3e61720f03d3a22351af410) C:\Windows\system32\Drivers\avgtdix.sys
2011/05/05 20:27:06.0356 5332 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2011/05/05 20:27:06.0510 5332 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2011/05/05 20:27:06.0739 5332 BCM43XX (36a47e6ab1f0967c97722183e21adb1a) C:\Windows\system32\DRIVERS\bcmwl6.sys
2011/05/05 20:27:06.0921 5332 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2011/05/05 20:27:07.0057 5332 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/05/05 20:27:07.0227 5332 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
2011/05/05 20:27:07.0297 5332 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/05/05 20:27:07.0437 5332 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/05/05 20:27:07.0592 5332 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2011/05/05 20:27:07.0644 5332 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/05/05 20:27:07.0777 5332 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/05/05 20:27:07.0823 5332 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/05/05 20:27:07.0974 5332 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\DRIVERS\BthEnum.sys
2011/05/05 20:27:08.0034 5332 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/05/05 20:27:08.0150 5332 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
2011/05/05 20:27:08.0313 5332 BTHPORT (12e2c56656ec2b8b5e96d3584aeabd46) C:\Windows\system32\Drivers\BTHport.sys
2011/05/05 20:27:08.0580 5332 BTHUSB (e41b011f3372606b9de71698606f37ad) C:\Windows\system32\Drivers\BTHUSB.sys
2011/05/05 20:27:08.0842 5332 btwampfl (e4e5ab603c936bafd1a5de1d6086221e) C:\Windows\system32\drivers\btwampfl.sys
2011/05/05 20:27:08.0971 5332 btwaudio (772994c15198818fee2314364cd12ee9) C:\Windows\system32\drivers\btwaudio.sys
2011/05/05 20:27:09.0136 5332 btwavdt (f6a04b6e929c4d57906c76e92025d31c) C:\Windows\system32\drivers\btwavdt.sys
2011/05/05 20:27:09.0270 5332 btwl2cap (de53089f0678cb5f0afeb867acb0fb05) C:\Windows\system32\DRIVERS\btwl2cap.sys
2011/05/05 20:27:09.0412 5332 btwrchid (bccbc07cd5cf37f53155c31c434b4a0e) C:\Windows\system32\DRIVERS\btwrchid.sys
2011/05/05 20:27:09.0552 5332 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2011/05/05 20:27:09.0674 5332 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2011/05/05 20:27:09.0817 5332 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2011/05/05 20:27:09.0972 5332 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2011/05/05 20:27:10.0195 5332 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/05/05 20:27:10.0257 5332 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2011/05/05 20:27:10.0376 5332 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2011/05/05 20:27:10.0423 5332 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2011/05/05 20:27:10.0577 5332 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2011/05/05 20:27:10.0717 5332 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/05/05 20:27:10.0900 5332 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2011/05/05 20:27:11.0101 5332 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2011/05/05 20:27:11.0166 5332 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2011/05/05 20:27:11.0326 5332 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2011/05/05 20:27:11.0506 5332 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2011/05/05 20:27:11.0639 5332 DVMIO (ff7a7a1e0f9a0ab892a454ffb9d14bbe) C:\Windows\system32\DRIVERS\dvmio.sys
2011/05/05 20:27:11.0764 5332 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
2011/05/05 20:27:11.0919 5332 eamonm (7cc490e35663a9deaf7020b26b74e64f) C:\Windows\system32\DRIVERS\eamonm.sys
2011/05/05 20:27:12.0081 5332 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2011/05/05 20:27:12.0312 5332 ehdrv (299a7ce452023a99a65d0d28f3b2bbf6) C:\Windows\system32\DRIVERS\ehdrv.sys
2011/05/05 20:27:12.0522 5332 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2011/05/05 20:27:12.0691 5332 epfw (6bff97e56be01d712bbcc8734a141b29) C:\Windows\system32\DRIVERS\epfw.sys
2011/05/05 20:27:12.0823 5332 Epfwndis (6dfb844fd0618dfd46d19184b475738b) C:\Windows\system32\DRIVERS\Epfwndis.sys
2011/05/05 20:27:12.0972 5332 epfwwfp (019677ab5296588636d0795892e07e17) C:\Windows\system32\DRIVERS\epfwwfp.sys
2011/05/05 20:27:13.0049 5332 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2011/05/05 20:27:13.0223 5332 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2011/05/05 20:27:13.0286 5332 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2011/05/05 20:27:13.0415 5332 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2011/05/05 20:27:13.0508 5332 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2011/05/05 20:27:13.0640 5332 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2011/05/05 20:27:13.0692 5332 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/05/05 20:27:13.0846 5332 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2011/05/05 20:27:14.0046 5332 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2011/05/05 20:27:14.0200 5332 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2011/05/05 20:27:14.0337 5332 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
2011/05/05 20:27:14.0393 5332 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/05/05 20:27:14.0557 5332 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2011/05/05 20:27:14.0742 5332 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2011/05/05 20:27:14.0877 5332 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/05/05 20:27:14.0947 5332 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/05/05 20:27:15.0065 5332 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2011/05/05 20:27:15.0160 5332 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2011/05/05 20:27:15.0310 5332 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2011/05/05 20:27:15.0462 5332 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2011/05/05 20:27:15.0628 5332 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2011/05/05 20:27:15.0770 5332 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2011/05/05 20:27:15.0893 5332 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/05/05 20:27:16.0075 5332 iaStor (e2bc821db5f2a26b4ae5ecc4ddc7297f) C:\Windows\system32\DRIVERS\iaStor.sys
2011/05/05 20:27:16.0079 5332 Suspicious file (Forged): C:\Windows\system32\DRIVERS\iaStor.sys. Real md5: e2bc821db5f2a26b4ae5ecc4ddc7297f, Fake md5: 0baa4115dfffd6a6d809a89d65e1281a
2011/05/05 20:27:16.0101 5332 iaStor - detected Rootkit.Win32.TDSS.tdl3 (0)
2011/05/05 20:27:16.0278 5332 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys
2011/05/05 20:27:16.0421 5332 IDMWFP (a99b28d267c4d661d976975db9c6726f) C:\Windows\system32\DRIVERS\idmwfp.sys
2011/05/05 20:27:16.0801 5332 igfx (ba41e1bba410212ce6d30e0dac47972b) C:\Windows\system32\DRIVERS\igdkmd32.sys
2011/05/05 20:27:17.0182 5332 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2011/05/05 20:27:17.0305 5332 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2011/05/05 20:27:17.0441 5332 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2011/05/05 20:27:17.0514 5332 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/05/05 20:27:17.0654 5332 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2011/05/05 20:27:17.0725 5332 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2011/05/05 20:27:17.0865 5332 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2011/05/05 20:27:17.0997 5332 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2011/05/05 20:27:18.0052 5332 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/05/05 20:27:18.0182 5332 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/05/05 20:27:18.0259 5332 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/05/05 20:27:18.0402 5332 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2011/05/05 20:27:18.0464 5332 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2011/05/05 20:27:18.0669 5332 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/05/05 20:27:18.0846 5332 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/05/05 20:27:18.0975 5332 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/05/05 20:27:19.0120 5332 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/05/05 20:27:19.0264 5332 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/05/05 20:27:19.0431 5332 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2011/05/05 20:27:19.0567 5332 massfilter (6490fe1b088c7199a9b6ce0e04a98a8b) C:\Windows\system32\drivers\massfilter.sys
2011/05/05 20:27:19.0812 5332 MBAMSwissArmy (d68e165c3123aba3b1282eddb4213bd8) C:\Windows\system32\drivers\mbamswissarmy.sys
2011/05/05 20:27:19.0901 5332 mcdbus (8fd868e32459ece2a1bb0169f513d31e) C:\Windows\system32\DRIVERS\mcdbus.sys
2011/05/05 20:27:20.0057 5332 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2011/05/05 20:27:20.0197 5332 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/05/05 20:27:20.0366 5332 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2011/05/05 20:27:20.0498 5332 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2011/05/05 20:27:20.0575 5332 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2011/05/05 20:27:20.0720 5332 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2011/05/05 20:27:20.0799 5332 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2011/05/05 20:27:20.0907 5332 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2011/05/05 20:27:20.0955 5332 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2011/05/05 20:27:21.0086 5332 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2011/05/05 20:27:21.0250 5332 mrxsmb (b4c76ef46322a9711c7b0f4e21ef6ea5) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/05/05 20:27:21.0309 5332 mrxsmb10 (e593d45024a3fdd11e93cc4a6ca91101) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/05/05 20:27:21.0381 5332 mrxsmb20 (a9f86c82c9cc3b679cc3957e1183a30f) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/05/05 20:27:21.0518 5332 msahci (5d9e758baefb5a4f3639e755c66625aa) C:\Windows\system32\DRIVERS\msahci.sys
2011/05/05 20:27:21.0617 5332 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2011/05/05 20:27:21.0776 5332 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2011/05/05 20:27:21.0822 5332 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2011/05/05 20:27:21.0875 5332 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2011/05/05 20:27:22.0025 5332 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2011/05/05 20:27:22.0079 5332 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/05/05 20:27:22.0200 5332 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2011/05/05 20:27:22.0272 5332 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2011/05/05 20:27:22.0352 5332 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/05/05 20:27:22.0470 5332 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2011/05/05 20:27:22.0540 5332 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/05/05 20:27:22.0691 5332 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2011/05/05 20:27:22.0770 5332 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2011/05/05 20:27:22.0899 5332 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2011/05/05 20:27:23.0027 5332 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/05/05 20:27:23.0222 5332 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/05/05 20:27:23.0361 5332 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/05/05 20:27:23.0414 5332 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/05/05 20:27:23.0590 5332 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2011/05/05 20:27:23.0722 5332 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2011/05/05 20:27:23.0783 5332 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2011/05/05 20:27:24.0087 5332 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
2011/05/05 20:27:24.0340 5332 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/05/05 20:27:24.0433 5332 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2011/05/05 20:27:24.0526 5332 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2011/05/05 20:27:24.0672 5332 Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys
2011/05/05 20:27:24.0790 5332 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2011/05/05 20:27:24.0877 5332 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys
2011/05/05 20:27:25.0016 5332 nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys
2011/05/05 20:27:25.0090 5332 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2011/05/05 20:27:25.0208 5332 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/05/05 20:27:25.0420 5332 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2011/05/05 20:27:25.0480 5332 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2011/05/05 20:27:25.0642 5332 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2011/05/05 20:27:25.0738 5332 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2011/05/05 20:27:25.0862 5332 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2011/05/05 20:27:25.0922 5332 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/05/05 20:27:26.0038 5332 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2011/05/05 20:27:26.0109 5332 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2011/05/05 20:27:26.0417 5332 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2011/05/05 20:27:26.0481 5332 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2011/05/05 20:27:26.0661 5332 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2011/05/05 20:27:26.0753 5332 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2011/05/05 20:27:26.0946 5332 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/05/05 20:27:27.0023 5332 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2011/05/05 20:27:27.0152 5332 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2011/05/05 20:27:27.0229 5332 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/05/05 20:27:27.0346 5332 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/05/05 20:27:27.0489 5332 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/05/05 20:27:27.0659 5332 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2011/05/05 20:27:27.0739 5332 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2011/05/05 20:27:27.0863 5332 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/05/05 20:27:27.0909 5332 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/05/05 20:27:28.0068 5332 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2011/05/05 20:27:28.0207 5332 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2011/05/05 20:27:28.0268 5332 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2011/05/05 20:27:28.0419 5332 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2011/05/05 20:27:28.0553 5332 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2011/05/05 20:27:28.0735 5332 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
2011/05/05 20:27:28.0801 5332 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/05/05 20:27:28.0974 5332 RSPCIESTOR (2ad7b2b3d7a10ae3d534877d543eed74) C:\Windows\system32\DRIVERS\RtsPStor.sys
2011/05/05 20:27:29.0170 5332 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2011/05/05 20:27:29.0250 5332 RTL8167 (0516998076ad894ae7e362c3110aa071) C:\Windows\system32\DRIVERS\Rt86win7.sys
2011/05/05 20:27:29.0437 5332 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2011/05/05 20:27:29.0504 5332 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2011/05/05 20:27:29.0667 5332 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
2011/05/05 20:27:29.0843 5332 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/05/05 20:27:30.0010 5332 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2011/05/05 20:27:30.0148 5332 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2011/05/05 20:27:30.0197 5332 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2011/05/05 20:27:30.0376 5332 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2011/05/05 20:27:30.0423 5332 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2011/05/05 20:27:30.0540 5332 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
2011/05/05 20:27:30.0605 5332 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/05/05 20:27:30.0768 5332 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2011/05/05 20:27:30.0828 5332 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/05/05 20:27:30.0948 5332 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/05/05 20:27:31.0118 5332 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2011/05/05 20:27:31.0297 5332 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2011/05/05 20:27:31.0525 5332 sptd (d390675b8ce45e5fb359338e5e649329) C:\Windows\system32\Drivers\sptd.sys
2011/05/05 20:27:31.0740 5332 srv (4a9b0f215de2519e2363f91df25c1e97) C:\Windows\system32\DRIVERS\srv.sys
2011/05/05 20:27:31.0933 5332 srv2 (14c44875518ae1c982e54ea8c5f7fe28) C:\Windows\system32\DRIVERS\srv2.sys
2011/05/05 20:27:32.0057 5332 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
2011/05/05 20:27:32.0155 5332 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
2011/05/05 20:27:32.0298 5332 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
2011/05/05 20:27:32.0445 5332 srvnet (07a14223b0a50e76ade003fdf95d4fec) C:\Windows\system32\DRIVERS\srvnet.sys
2011/05/05 20:27:32.0534 5332 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2011/05/05 20:27:32.0690 5332 STHDA (f71736dc79731c98698b93326e01a6bd) C:\Windows\system32\DRIVERS\stwrt.sys
2011/05/05 20:27:32.0852 5332 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2011/05/05 20:27:33.0108 5332 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2011/05/05 20:27:33.0286 5332 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2011/05/05 20:27:33.0443 5332 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2011/05/05 20:27:33.0513 5332 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2011/05/05 20:27:33.0621 5332 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2011/05/05 20:27:33.0687 5332 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2011/05/05 20:27:33.0814 5332 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2011/05/05 20:27:34.0035 5332 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/05/05 20:27:34.0249 5332 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
2011/05/05 20:27:34.0379 5332 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
2011/05/05 20:27:34.0446 5332 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2011/05/05 20:27:34.0581 5332 udfs (2efee45a340e1590e37c2f2bac16d051) C:\Windows\system32\DRIVERS\udfs.sys
2011/05/05 20:27:34.0766 5332 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
2011/05/05 20:27:34.0898 5332 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
2011/05/05 20:27:34.0959 5332 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2011/05/05 20:27:35.0117 5332 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/05/05 20:27:35.0173 5332 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
2011/05/05 20:27:35.0288 5332 usbehci (0eeedd78c2bedac75e8ed1ba8d77878b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/05/05 20:27:35.0371 5332 usbhub (ba50148445e5b2b3abdba208fc9b6fb5) C:\Windows\system32\DRIVERS\usbhub.sys
2011/05/05 20:27:35.0489 5332 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
2011/05/05 20:27:35.0560 5332 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2011/05/05 20:27:35.0705 5332 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/05/05 20:27:35.0786 5332 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/05/05 20:27:35.0915 5332 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\Windows\System32\Drivers\usbvideo.sys
2011/05/05 20:27:36.0110 5332 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
2011/05/05 20:27:36.0248 5332 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/05/05 20:27:36.0316 5332 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2011/05/05 20:27:36.0391 5332 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
2011/05/05 20:27:36.0520 5332 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
2011/05/05 20:27:36.0590 5332 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2011/05/05 20:27:36.0705 5332 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
2011/05/05 20:27:36.0771 5332 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
2011/05/05 20:27:36.0893 5332 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2011/05/05 20:27:36.0966 5332 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
2011/05/05 20:27:37.0099 5332 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/05/05 20:27:37.0181 5332 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
2011/05/05 20:27:37.0300 5332 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
2011/05/05 20:27:37.0501 5332 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2011/05/05 20:27:37.0693 5332 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2011/05/05 20:27:37.0738 5332 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2011/05/05 20:27:37.0953 5332 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2011/05/05 20:27:38.0030 5332 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2011/05/05 20:27:38.0323 5332 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/05/05 20:27:38.0376 5332 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2011/05/05 20:27:38.0645 5332 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
2011/05/05 20:27:38.0813 5332 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/05/05 20:27:39.0028 5332 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/05/05 20:27:39.0152 5332 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2011/05/05 20:27:39.0283 5332 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/05/05 20:27:39.0496 5332 yukonw7 (b07c5b7efdf936ff93d4f540938725be) C:\Windows\system32\DRIVERS\yk62x86.sys
2011/05/05 20:27:39.0656 5332 ZTEusbmdm6k (86187fb5d81781501558f8742dee4197) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
2011/05/05 20:27:39.0810 5332 ZTEusbnet (b7836ca4a95e12135e7e49fec9c29f2a) C:\Windows\system32\DRIVERS\ZTEusbnet.sys
2011/05/05 20:27:39.0969 5332 ZTEusbnmea (86187fb5d81781501558f8742dee4197) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
2011/05/05 20:27:40.0117 5332 ZTEusbser6k (86187fb5d81781501558f8742dee4197) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
2011/05/05 20:27:40.0318 5332 ================================================================================
2011/05/05 20:27:40.0318 5332 Scan finished
2011/05/05 20:27:40.0318 5332 ================================================================================
2011/05/05 20:27:40.0344 5272 Detected object count: 1
2011/05/05 20:27:55.0422 5272 iaStor (e2bc821db5f2a26b4ae5ecc4ddc7297f) C:\Windows\system32\DRIVERS\iaStor.sys
2011/05/05 20:27:55.0425 5272 Suspicious file (Forged): C:\Windows\system32\DRIVERS\iaStor.sys. Real md5: e2bc821db5f2a26b4ae5ecc4ddc7297f, Fake md5: 0baa4115dfffd6a6d809a89d65e1281a
2011/05/05 20:27:55.0655 5272 Backup copy found, using it..
2011/05/05 20:27:56.0217 5272 C:\Windows\system32\DRIVERS\iaStor.sys - will be cured after reboot
2011/05/05 20:27:56.0217 5272 Rootkit.Win32.TDSS.tdl3(iaStor) - User select action: Cure
2011/05/05 20:32:08.0998 5996 Deinitialize success


OTL logfile created on: 5/5/2011 8:38:34 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\audi bin marwoto\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

1,012.00 Mb Total Physical Memory | 143.00 Mb Available Physical Memory | 14.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 53.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.01 Gb Total Space | 46.87 Gb Free Space | 21.50% Space Free | Partition Type: NTFS
Drive D: | 14.58 Gb Total Space | 2.06 Gb Free Space | 14.11% Space Free | Partition Type: NTFS
Drive E: | 512.96 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: USER-PC | User Name: audi bin marwoto | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/05 20:30:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
PRC - [2011/04/17 07:11:42 | 002,071,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011/04/17 03:42:21 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2011/04/17 03:42:21 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2011/04/17 03:42:15 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2011/04/17 03:42:13 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2011/04/17 03:42:12 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2011/04/17 03:42:11 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2011/03/10 09:15:08 | 003,278,232 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idman.exe
PRC - [2011/02/26 13:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/10/27 18:24:42 | 000,645,952 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
PRC - [2010/10/27 18:23:16 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010/06/24 09:27:12 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010/06/24 09:27:06 | 002,202,704 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010/06/09 14:04:02 | 000,828,704 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2010/06/09 14:04:02 | 000,656,672 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
PRC - [2010/05/25 23:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2009/10/14 02:25:54 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/10/14 02:25:30 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2009/07/14 09:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 09:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/01/09 09:54:26 | 000,081,920 | ---- | M] () -- C:\Windows\System32\SupportAppXL\cdrom_mon.exe


========== Modules (SafeList) ==========

MOD - [2011/05/05 20:30:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
MOD - [2011/04/17 03:42:21 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
MOD - [2010/08/21 13:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (TuneUp.Defrag)
SRV - File not found [On_Demand | Stopped] -- -- (hpqwmiex)
SRV - File not found [Auto | Stopped] -- -- (HP Health Check Service)
SRV - [2011/05/03 16:54:54 | 003,274,328 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\netsession_win_3f211bc.dll -- (Akamai)
SRV - [2011/04/17 03:42:15 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/12/30 18:52:53 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/10/27 18:23:16 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/10/27 18:21:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/10/13 01:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/06/24 09:27:54 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010/06/24 09:27:12 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2010/06/09 17:06:18 | 000,237,650 | ---- | M] (IDT, Inc.) [Disabled | Stopped] -- C:\Program Files\IDT\WDM\stacsv.exe -- (STacSV)
SRV - [2010/06/09 14:04:02 | 000,656,672 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009/10/14 02:25:30 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2009/07/14 09:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 09:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 09:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/03/03 18:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Disabled | Stopped] -- C:\Program Files\IDT\WDM\AEstSrv.exe -- (AESTFilters)
SRV - [2009/01/09 09:54:26 | 000,081,920 | ---- | M] () [Auto | Running] -- C:\Windows\System32\SupportAppXL\cdrom_mon.exe -- (Autorun CDROM Monitor)


========== Driver Services (SafeList) ==========

DRV - [2011/04/17 03:42:22 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2011/04/17 03:42:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/04/17 03:42:13 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2011/04/16 23:30:42 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2011/01/25 18:40:06 | 000,085,768 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/11/29 00:48:36 | 000,685,816 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/10/07 13:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010/06/24 09:04:14 | 000,136,120 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2010/06/09 17:06:18 | 000,431,616 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2010/05/08 01:18:10 | 000,230,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV - [2010/04/28 08:17:46 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfw.sys -- (epfw)
DRV - [2010/04/28 08:17:46 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010/04/28 08:17:46 | 000,041,312 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfp.sys -- (epfwwfp)
DRV - [2010/04/28 08:17:46 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2009/12/30 11:21:16 | 000,027,192 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/11/12 04:09:22 | 000,018,136 | -H-- | M] (DeviceVM, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\dvmio.sys -- (DVMIO)
DRV - [2009/07/21 14:04:04 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009/07/21 14:04:04 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009/07/21 14:04:04 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2009/07/21 09:16:40 | 000,114,688 | ---- | M] (ZTE Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2009/07/14 07:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 07:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\serial.sys -- (Serial)
DRV - [2009/07/14 06:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009/07/14 06:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel®
DRV - [2009/02/24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/08/12 10:11:36 | 000,007,168 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.jp.msn.com/HPALL/32
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myfacesounds.com
IE - HKLM\..\URLSearchHook: {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.jp.msn.com/HPALL/32
IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=0&l=dir
IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\URLSearchHook: {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "mipony-plugin Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "mipony-plugin Customized Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:7.2.8
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="


FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011/04/07 01:40:04 | 000,000,000 | ---D | M]

[2010/11/11 19:38:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Extensions
[2011/04/09 23:31:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions
[2011/03/18 21:07:08 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/01/27 09:05:35 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2011/03/29 19:03:15 | 000,000,000 | ---D | M] (IDM CC) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\mozilla_cc@internetdownloadmanager.com
[2011/03/29 19:03:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\mozilla_cc@internetdownloadmanager.com-trash
[2011/02/12 11:11:48 | 000,002,255 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Mozilla\Firefox\Profiles\b48g0cem.default\searchplugins\askcom.xml
[2011/02/10 17:29:18 | 000,000,929 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Mozilla\Firefox\Profiles\b48g0cem.default\searchplugins\conduit.xml
[2010/12/31 12:17:49 | 000,002,260 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Mozilla\Firefox\Profiles\b48g0cem.default\searchplugins\myfacesounds-powered-by-google.xml
[2011/03/30 14:56:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/01/07 23:01:13 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/12/16 20:13:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2009/06/11 05:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (mipony-plugin Toolbar) - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (mipony-plugin Toolbar) - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (mipony-plugin Toolbar) - {90D46C30-9F25-4104-AEA9-35C3F84477FF} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Download with Mipony - C:\Program Files\MiPony\Browser\IEContext.htm ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O27 - HKLM IFEO\javaw.exe: Debugger - "C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe" (TuneUp Software)
O27 - HKLM IFEO\javaws.exe: Debugger - "C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe" (TuneUp Software)
O27 - HKLM IFEO\setup.exe: Debugger - "C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe" (TuneUp Software)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 05:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2001/04/18 23:23:00 | 000,000,041 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\Shell - "" = AutoRun
O33 - MountPoints2\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\Shell\AutoRun\command - "" = F:\SETUP.EXE
O33 - MountPoints2\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\Shell - "" = AutoRun
O33 - MountPoints2\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\Shell - "" = AutoRun
O33 - MountPoints2\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\Shell\AutoRun\command - "" = E:\SETUP.EXE -- [2001/05/01 01:33:00 | 000,032,768 | R--- | M] ()
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/05/05 20:28:39 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
[2011/05/05 20:25:53 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\tdsskiller
[2011/05/03 01:20:55 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Documents\Maharaja Lawak
[2011/04/30 02:03:49 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\Media Player Classic
[2011/04/27 08:22:13 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2011/04/27 08:22:10 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011/04/27 08:20:36 | 001,686,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\esent.dll
[2011/04/27 08:20:33 | 000,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2011/04/27 08:20:28 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2011/04/27 08:19:27 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/04/26 13:41:30 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\gmer
[2011/04/26 12:49:25 | 000,232,448 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\mp3fhg.acm
[2011/04/26 12:49:25 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2011/04/26 12:49:24 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2011/04/26 12:48:54 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2011/04/20 01:25:09 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\SendSpace
[2011/04/17 08:43:50 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/04/17 07:13:47 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011/04/17 03:42:21 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2011/04/17 00:50:56 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\Apple Computer
[2011/04/17 00:50:56 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Local\Apple Computer
[2011/04/17 00:45:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari
[2011/04/17 00:44:56 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2011/04/17 00:44:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/04/17 00:43:53 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/04/17 00:43:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/04/17 00:43:23 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Local\Apple
[2011/04/17 00:43:14 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/04/17 00:43:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/04/17 00:03:36 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\AVG9
[2011/04/16 23:30:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 9.0
[2011/04/16 23:30:41 | 000,243,024 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2011/04/16 23:30:41 | 000,052,872 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2011/04/16 23:30:26 | 000,216,400 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2011/04/16 23:30:25 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2011/04/16 23:30:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg
[2011/04/16 23:29:43 | 000,000,000 | ---D | C] -- C:\ProgramData\avg9
[2011/04/16 23:27:50 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011/04/15 12:39:34 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\Guerrilla Bob
[2011/04/15 00:36:52 | 000,000,000 | ---D | C] -- C:\ProgramData\NFS Underground
[2011/04/15 00:14:21 | 000,000,000 | ---D | C] -- C:\Game
[2011/04/14 00:36:05 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/04/14 00:36:05 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/04/14 00:36:04 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/04/14 00:36:04 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/04/14 00:36:03 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/04/14 00:36:02 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/04/14 00:36:02 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/04/14 00:36:01 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/04/14 00:36:01 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/04/14 00:36:00 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/04/14 00:36:00 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/04/14 00:15:01 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/04/14 00:15:01 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/04/14 00:11:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/04/14 00:11:46 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/04/14 00:11:46 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/04/14 00:02:56 | 002,331,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/04/14 00:02:46 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2011/04/14 00:02:43 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011/04/13 23:47:26 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/04/13 23:47:25 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/04/12 20:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\Virus Guard v1.8
[2011/04/10 00:32:42 | 000,000,000 | ---D | C] -- C:\Virus Guard
[2011/04/07 01:40:02 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2011/04/07 01:25:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2011/04/05 21:38:58 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\remove-olmarik-trojan_files
[2011/04/05 21:29:26 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2009/10/19 06:11:08 | 131,459,490 | ---- | C] (Igor Pavlov) -- C:\Users\audi bin marwoto\AppData\Roaming\soundforgepro10.0a.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/05/05 20:42:39 | 000,018,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/05 20:42:39 | 000,018,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/05 20:34:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/05 20:34:07 | 795,787,264 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/05 20:30:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
[2011/05/05 19:51:41 | 075,580,712 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/05/05 03:59:59 | 000,628,460 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/05 03:59:59 | 000,110,612 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/04 14:23:45 | 000,106,496 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/29 18:12:22 | 158,367,726 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/04/28 03:09:55 | 000,000,173 | ---- | M] () -- C:\Windows\System32\MRT.INI
[2011/04/26 13:41:02 | 000,293,019 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\gmer.zip
[2011/04/26 13:24:36 | 000,625,664 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\dds.scr
[2011/04/17 03:42:22 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2011/04/17 03:42:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2011/04/17 03:42:21 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2011/04/17 03:42:13 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2011/04/17 00:45:11 | 000,002,503 | ---- | M] () -- C:\Users\audi bin marwoto\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/04/17 00:45:11 | 000,002,479 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2011/04/17 00:05:42 | 000,002,333 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\Google Chrome.lnk
[2011/04/16 23:30:43 | 000,001,776 | ---- | M] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
[2011/04/16 23:30:42 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2011/04/16 23:30:25 | 000,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2011/04/14 09:21:08 | 000,409,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/04/05 22:01:00 | 001,253,218 | ---- | M] () -- C:\Windows\System32\drivers\Cat.DB
[2011/04/05 21:39:07 | 000,056,015 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\remove-olmarik-trojan.htm
[2011/04/05 21:29:17 | 000,512,992 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\sdasetup_revwire207.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/04/26 13:40:42 | 000,293,019 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\gmer.zip
[2011/04/26 13:22:44 | 000,625,664 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\dds.scr
[2011/04/26 12:52:04 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/04/26 12:49:21 | 000,810,496 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/04/26 12:49:21 | 000,183,808 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/04/26 12:49:14 | 000,080,896 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/04/17 00:45:11 | 000,002,503 | ---- | C] () -- C:\Users\audi bin marwoto\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/04/17 00:45:11 | 000,002,479 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2011/04/17 00:43:15 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/04/17 00:05:42 | 000,002,333 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\Google Chrome.lnk
[2011/04/16 23:30:43 | 000,001,776 | ---- | C] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
[2011/04/16 23:30:25 | 000,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2011/04/16 23:30:23 | 075,580,712 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/04/14 09:19:32 | 158,367,726 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011/04/05 22:00:20 | 001,253,218 | ---- | C] () -- C:\Windows\System32\drivers\Cat.DB
[2011/04/05 21:38:55 | 000,056,015 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\remove-olmarik-trojan.htm
[2011/04/05 21:29:26 | 000,512,992 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\sdasetup_revwire207.exe
[2011/02/13 03:10:40 | 000,000,173 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2011/02/06 19:28:24 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011/02/06 19:28:20 | 000,019,968 | ---- | C] () -- C:\Windows\System32\cpuinf32.dll
[2011/01/07 23:02:45 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/12/31 10:18:53 | 000,000,017 | ---- | C] () -- C:\Windows\System32\shortcut_ex.dat
[2010/12/21 15:35:22 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2010/12/21 15:35:22 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2010/12/21 15:35:22 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2010/12/21 15:31:13 | 000,036,208 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2010/12/09 16:19:26 | 000,082,944 | ---- | C] () -- C:\Windows\System32\infinst.exe
[2010/11/25 07:04:44 | 000,053,248 | ---- | C] () -- C:\Windows\System32\PhysXLoader.dll
[2010/11/13 19:49:08 | 000,106,496 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/15 14:12:48 | 000,000,138 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Local\mv_Photo.xml
[2010/10/15 14:12:48 | 000,000,129 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Local\mv_music.xml
[2010/09/10 02:41:04 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2010/09/10 02:39:14 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/09/10 02:33:43 | 000,000,292 | ---- | C] () -- C:\Windows\System32\RStoneLog2.ini
[2010/09/10 02:33:43 | 000,000,233 | ---- | C] () -- C:\Windows\System32\RStoneLog.ini
[2009/07/14 12:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 12:33:53 | 000,409,640 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 10:05:48 | 000,628,460 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 10:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 10:05:48 | 000,110,612 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 10:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 10:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 10:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 08:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/07/14 07:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 07:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 07:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/14 06:09:19 | 001,498,564 | ---- | C] () -- C:\Windows\System32\igkrng400.bin
[2009/07/10 12:03:56 | 000,370,312 | ---- | C] () -- C:\Windows\System32\sqlite3.dll
[2009/06/11 05:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== Alternate Data Streams ==========

@Alternate Data Stream - 94 bytes -> C:\ProgramData\Temp:DE7902AF
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:DFC5A2B2
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:04756BD8
@Alternate Data Stream - 104 bytes -> C:\ProgramData\Temp:D1B5B4F1
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:ADF211B1

< End of report >



OTL Extras logfile created on: 5/5/2011 8:38:34 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\audi bin marwoto\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

1,012.00 Mb Total Physical Memory | 143.00 Mb Available Physical Memory | 14.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 53.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.01 Gb Total Space | 46.87 Gb Free Space | 21.50% Space Free | Partition Type: NTFS
Drive D: | 14.58 Gb Total Space | 2.06 Gb Free Space | 14.11% Space Free | Partition Type: NTFS
Drive E: | 512.96 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: USER-PC | User Name: audi bin marwoto | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{19FDE7C3-9837-4365-883C-01D51A9F262C}" = ESET Smart Security
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US)
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java™ 6 Update 23
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2D406FFD-7603-49C1-A16C-D3296E8E20F7}" = Zumas Revenge
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Windows 7
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}" = Broadcom 2070 Bluetooth 3.0
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.1
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App (HP Games)
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72D90DB3-A16A-4545-B555-868471101833}" = HP Setup
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}" = SMART BRO
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9ECF7817-DB11-4FBA-9DF1-296A578D513A}" = Adobe Shockwave Player 11.5
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.3 MUI
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B8A817D7-AE0F-42BA-AEB9-B5F1F3EFB7AF}" = Sound Forge Pro 10.0
"{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}" = Energy Star Digital Logo
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D13C66DF-CCC4-4F00-84F0-10DD0AFDC732}" = Virtual Villagers - The Tree of Life
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}" = Safari
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.20
"A Magnetic Adventure BFG 1.00" = A Magnetic Adventure BFG 1.00
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Akamai" = Akamai NetSession Interface
"Alarm_is1" = Alarm 2.0.4
"AVG9Uninstall" = AVG 9.0
"Broadcom 802.11 Wireless LAN Adapter" = Broadcom 802.11 Wireless LAN Adapter
"conduitEngine" = Conduit Engine
"Diablo II" = Diablo II
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FLV Player" = FLV Player 2.0 (build 25)
"HDMI" = Intel® Graphics Media Accelerator Driver
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"Internet Download Manager" = Internet Download Manager
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 7.0.0
"Machinarium" = Machinarium
"Magic ISO Maker v5.5 (build 0276)" = Magic ISO Maker v5.5 (build 0276)
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Metacafe" = Metacafe
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MiniLyrics" = Minilyrics(remove only)
"MiPony" = MiPony 1.2.2
"mipony-plugin Toolbar" = mipony-plugin Toolbar
"RealAlt_is1" = Real Alternative 1.7.5
"TeraCopy_is1" = TeraCopy 2.12
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"WildTangent hp Master Uninstall" = HP Games
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WT087361" = FATE
"WT087374" = Jewel Quest - Heritage
"WT087385" = JoJo's Fashion Show
"WT087394" = Penguins!
"WT087396" = Polar Bowler
"WT087408" = Skip-Bo - Castaway Caper
"WT087409" = Tradewinds Legends
"WT087428" = Bejeweled 2 Deluxe
"WT087453" = Chuzzle Deluxe
"WT087467" = Dream Chronicles
"WT087480" = Insaniquarium Deluxe
"WT087485" = Jewel Quest II
"WT087490" = Jewel Quest Solitaire
"WT087495" = Mahjongg Artifacts
"WT087501" = Plants vs. Zombies
"WT087510" = Slingo Deluxe
"WT087513" = Virtual Villagers - The Secret City
"WT087519" = Wedding Dash
"WT087533" = Zuma Deluxe
"WT087536" = Diner Dash 2 Restaurant Rescue
"WTA-62fba8c4-91f5-422a-8c73-9a9be24f6582" = Jojo's Fashion Show World Tour
"WTA-90f1b8eb-b0dc-446c-9297-3a2ad3c2c666" = Virtual Villagers 4 - The Tree of Life
"WTA-d4db3cae-756e-4d9a-81c6-b81cdcb1a2fb" = Double Play - Jojos Fashion Show 1 and 2
"WTA-d7c30b75-b814-4db2-9dcd-412fcb3c9efd" = FATE - The Traitor Soul
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Messenger" = Yahoo! Messenger
"Zelda - Links Awakening PC" = Zelda - Links Awakening PC
"Zombie Bowl-O-Rama" = Zombie Bowl-O-Rama
"ZTE USB Driver" = ZTE USB Driver
"ZumoDrive" = HP CloudDrive

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1501163662-2121101830-3150394390-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 4/21/2011 2:12:06 PM | Computer Name = USER-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 4/21/2011 3:00:57 PM | Computer Name = USER-PC | Source = VSS | ID = 8193
Description =

Error - 4/21/2011 6:15:15 PM | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4cf490bf Faulting module name: ntdll.dll, version: 6.1.7600.16559, time stamp:
0x4ba9b21e Exception code: 0xc0000374 Fault offset: 0x000c2913 Faulting process id:
0x910 Faulting application start time: 0x01cc00717703dac2 Faulting application path:
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: d50f85d3-6c64-11e0-ac8a-0021cc5716e1

Error - 4/21/2011 6:16:28 PM | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4cf490bf Faulting module name: ntdll.dll, version: 6.1.7600.16559, time stamp:
0x4ba9b21e Exception code: 0xc0000374 Fault offset: 0x000c2913 Faulting process id:
0x718 Faulting application start time: 0x01cc0071bb8134bd Faulting application path:
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 0081fc2f-6c65-11e0-ac8a-0021cc5716e1

Error - 4/21/2011 6:17:00 PM | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4cf490bf Faulting module name: ntdll.dll, version: 6.1.7600.16559, time stamp:
0x4ba9b21e Exception code: 0xc0000374 Fault offset: 0x000c2913 Faulting process id:
0x1564 Faulting application start time: 0x01cc0071ccd9eb93 Faulting application path:
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 133e8dfb-6c65-11e0-ac8a-0021cc5716e1

Error - 4/21/2011 6:18:24 PM | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4cf490bf Faulting module name: ntdll.dll, version: 6.1.7600.16559, time stamp:
0x4ba9b21e Exception code: 0xc0000374 Fault offset: 0x000c2913 Faulting process id:
0x10f8 Faulting application start time: 0x01cc0071eb8f166e Faulting application path:
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 453c38fe-6c65-11e0-ac8a-0021cc5716e1

Error - 4/21/2011 6:38:21 PM | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4cf490bf Faulting module name: ntdll.dll, version: 6.1.7600.16559, time stamp:
0x4ba9b21e Exception code: 0xc0000374 Fault offset: 0x000c2913 Faulting process id:
0x11f8 Faulting application start time: 0x01cc007328fd8dd6 Faulting application path:
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 0f04977a-6c68-11e0-ac8a-0021cc5716e1

Error - 4/22/2011 9:18:17 AM | Computer Name = USER-PC | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4cf490bf Faulting module name: ntdll.dll, version: 6.1.7600.16559, time stamp:
0x4ba9b21e Exception code: 0xc0000374 Fault offset: 0x000c2913 Faulting process id:
0xc14 Faulting application start time: 0x01cc00c7dd2b4d14 Faulting application path:
C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: fbb52e72-6ce2-11e0-ac8a-0021cc5716e1

Error - 4/22/2011 12:33:27 PM | Computer Name = USER-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 4/22/2011 3:00:34 PM | Computer Name = USER-PC | Source = VSS | ID = 8193
Description =

[ HP Wireless Assistant Events ]
Error - 10/15/2010 6:26:06 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:27:06 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:27:06 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:28:06 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:28:06 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:29:07 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:29:07 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:30:07 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 10/15/2010 6:30:07 AM | Computer Name = audimarwoto-HP | Source = HP WA Service | ID = 0
Description = System.Runtime.InteropServices.COMException The RPC server is unavailable.
(Exception from HRESULT: 0x800706BA) at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32
errorCode, IntPtr errorInfo) at System.Management.ManagementScope.InitializeGuts(Object
o) at System.Management.ManagementScope.Initialize() at System.Management.ManagementObject.Initialize(Boolean
getObject) at System.Management.ManagementBaseObject.get_Properties() at System.Management.ManagementBaseObject.GetPropertyValue(String
propertyName) at System.Management.ManagementBaseObject.get_Item(String propertyName)

at HPPA_Service.CurrentConfiguration.<ReloadRadioList>b__c()

Error - 11/5/2010 9:05:37 AM | Computer Name = audibinmarwoto | Source = HP WA Application | ID = 0
Description = System.Exception HardwareAccess hasn't been instantiated properly.
at HardwareAccess.Hardware.Instance() at PAProgramAccess.Impl.UpdatePowerSchemeInformation(PowerScheme
powerScheme)

[ System Events ]
Error - 12/31/2008 12:01:00 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd

Error - 12/31/2008 6:45:53 PM | Computer Name = USER-PC | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .

Error - 12/31/2008 6:46:39 PM | Computer Name = USER-PC | Source = DCOM | ID = 10005
Description =

Error - 12/31/2008 6:46:38 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd

Error - 12/31/2008 6:46:38 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7038
Description = The netprofm service was unable to log on as NT AUTHORITY\LocalService
with the currently configured password due to the following error: %%1352 To ensure
that the service is configured properly, use the Services snap-in in Microsoft
Management Console (MMC).

Error - 12/31/2008 6:46:38 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7000
Description = The Network List Service service failed to start due to the following
error: %%1069

Error - 12/31/2008 6:46:39 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7038
Description = The WdiServiceHost service was unable to log on as NT AUTHORITY\LocalService
with the currently configured password due to the following error: %%50 To ensure
that the service is configured properly, use the Services snap-in in Microsoft
Management Console (MMC).

Error - 12/31/2008 6:46:39 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7000
Description = The Diagnostic Service Host service failed to start due to the following
error: %%1069

Error - 12/31/2008 6:46:39 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7038
Description = The bthserv service was unable to log on as NT AUTHORITY\LocalService
with the currently configured password due to the following error: %%50 To ensure
that the service is configured properly, use the Services snap-in in Microsoft
Management Console (MMC).

Error - 12/31/2008 6:46:39 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7000
Description = The Bluetooth Support Service service failed to start due to the following
error: %%1069


< End of report >

#4 SweetTech

SweetTech

    Agent ST


  • Members
  • 13,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Antarctica
  • Local time:09:52 PM

Posted 05 May 2011 - 02:54 PM

Hi!

The issues you are experiencing with your browser is due to the infection you had.

What Anti-Virus program do you plan on using? AVG or ESET Smart Security?

The main infection that you were infected with is called TDL3.

See the snippet of text below:

2011/05/05 20:27:40.0344 5272 Detected object count: 1
2011/05/05 20:27:55.0422 5272 iaStor (e2bc821db5f2a26b4ae5ecc4ddc7297f) C:\Windows\system32\DRIVERS\iaStor.sys
2011/05/05 20:27:55.0425 5272 Suspicious file (Forged): C:\Windows\system32\DRIVERS\iaStor.sys. Real md5: e2bc821db5f2a26b4ae5ecc4ddc7297f, Fake md5: 0baa4115dfffd6a6d809a89d65e1281a
2011/05/05 20:27:55.0655 5272 Backup copy found, using it..
2011/05/05 20:27:56.0217 5272 C:\Windows\system32\DRIVERS\iaStor.sys - will be cured after reboot
2011/05/05 20:27:56.0217 5272 Rootkit.Win32.TDSS.tdl3(iaStor) - User select action: Cure
2011/05/05 20:32:08.0998 5996 Deinitialize success


You can read more about this infection here:

Special thanks to quietman7 for providing the above links.



NEXT:



OTL Fix

We need to run an OTL Fix
  • Please reopen Posted Image on your desktop.
  • Copy and Paste the following code into the Posted Image textbox.
    :Services
    :OTL
    SRV - File not found [On_Demand | Stopped] -- -- (TuneUp.Defrag)
    SRV - File not found [On_Demand | Stopped] -- -- (hpqwmiex)
    SRV - File not found [Auto | Stopped] -- -- (HP Health Check Service)
    IE - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
    O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
    O3 - HKU\S-1-5-21-1501163662-2121101830-3150394390-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O33 - MountPoints2\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\Shell - "" = AutoRun
    O33 - MountPoints2\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\Shell\AutoRun\command - "" = F:\SETUP.EXE
    O33 - MountPoints2\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\Shell - "" = AutoRun
    O33 - MountPoints2\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\Shell\AutoRun\command - "" = G:\AutoRun.exe
    O33 - MountPoints2\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\Shell - "" = AutoRun
    O33 - MountPoints2\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\Shell\AutoRun\command - "" = E:\SETUP.EXE -- [2001/05/01 01:33:00 | 000,032,768 | R--- | M] ()
    O33 - MountPoints2\G\Shell - "" = AutoRun
    O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
    [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
    
    :Reg
    
    :Files
    ipconfig /flushdns /c
    :Commands
    [purity]
    [resethosts]
    [CreateRestorePoint]
    [emptytemp]
    [EMPTYFLASH]
    
  • Push Posted Image
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click the OK button.
  • A report will open. Copy and Paste that report in your next reply.
  • If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss is the date of the tool run.


NEXT:



Malwarebytes' Anti-Malware

I see that you have Malwarebytes' Anti-Malware installed on your computer could you please do a scan using these settings:

  • Open Malwarebytes' Anti-Malware
  • Select the Update tab
  • Click Check for Updates
  • After the update have been completed, Select the Scanner tab.
  • Select Perform quick scan, then click on Scan
  • Leave the default options as it is and click on Start Scan
  • When done, you will be prompted. Click OK, then click on Show Results
  • Checked (ticked) all items and click on Remove Selected
  • After it has removed the items, Notepad will open. Please post this log in your next reply. You can also find the log in the Logs tab. The bottom most log is the latest
Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.



NEXT:



What issues are you currently experiencing with your computer?

Have I helped you? If you'd like to assist in the fight against malware, click here Posted Image


The instructions seen in this post have been specifically tailored to this user and the issues they are experiencing with their computer. If you think you have a similar problem, please first read this topic, and then begin your own, new thread. I do not offer private support via Private Message.


#5 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 06 May 2011 - 04:28 AM

wow..that was quick. thanks so much ST and quietman7. i'll stick with AVG for now. but i read somewhere Avast is good too...which one u suggest??for ur info, my browser wont crash anymore when i search from Google.com. thnks again. :thumbsup: :thumbsup:
and my friends suggest i use VirusGuard. it protects the log if malware invade and try to change the log.what do you suggest??and i want to know how i can maintain my laptop malware free?
below is the log u requested:



All processes killed
========== SERVICES/DRIVERS ==========
========== OTL ==========
Service TuneUp.Defrag stopped successfully!
Service TuneUp.Defrag deleted successfully!
Service hpqwmiex stopped successfully!
Service hpqwmiex deleted successfully!
Service HP Health Check Service stopped successfully!
Service HP Health Check Service deleted successfully!
Registry value HKEY_USERS\S-1-5-21-1501163662-2121101830-3150394390-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{472734EA-242A-422b-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422b-ADF8-83D1E48CC825}\ not found.
Registry value HKEY_USERS\S-1-5-21-1501163662-2121101830-3150394390-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
Registry value HKEY_USERS\S-1-5-21-1501163662-2121101830-3150394390-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422B-ADF8-83D1E48CC825}\ not found.
Registry value HKEY_USERS\S-1-5-21-1501163662-2121101830-3150394390-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{57be1f97-0cbe-11e0-9d23-70f395698bbe}\ not found.
File F:\SETUP.EXE not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{abcb4fc6-35f3-11e0-b5fe-70f395698bbe}\ not found.
File G:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b8d6c7fa-02e6-11e0-8118-70f395698bbe}\ not found.
File move failed. E:\SETUP.EXE scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ not found.
File G:\setup_vmc_lite.exe /checkApplicationPresence not found.
C:\Windows\msdownld.tmp folder deleted successfully.
========== REGISTRY ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\audi bin marwoto\Desktop\cmd.bat deleted successfully.
C:\Users\audi bin marwoto\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully


[EMPTYTEMP]

User: All Users

User: audi bin marwoto
->Temp folder emptied: 525020 bytes
->Temporary Internet Files folder emptied: 82180010 bytes
->Java cache emptied: 23295 bytes
->FireFox cache emptied: 53541716 bytes
->Google Chrome cache emptied: 40125750 bytes
->Apple Safari cache emptied: 1025024 bytes
->Flash cache emptied: 136698 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41044 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: TEMP

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 527455 bytes
RecycleBin emptied: 52222354 bytes

Total Files Cleaned = 220.00 mb


[EMPTYFLASH]

User: All Users

User: audi bin marwoto
->Flash cache emptied: 0 bytes

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: TEMP

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.22.3 log created on 05062011_162434

Files\Folders moved on Reboot...
File move failed. E:\SETUP.EXE scheduled to be moved on reboot.

Registry entries deleted on Reboot...




Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6518

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

6/5/2011 5:11:36 PM
mbam-log-2011-05-06 (17-11-36).txt

Scan type: Quick scan
Objects scanned: 152570
Time elapsed: 9 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#6 SweetTech

SweetTech

    Agent ST


  • Members
  • 13,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Antarctica
  • Local time:09:52 PM

Posted 06 May 2011 - 11:10 AM

Hello!

I haven't been a big fan of AVG lately. I've heard a lot of users complaining that the latest version of AVG has slowed down their computer.

Avast isn't a bad choice. Some other good ones are Avira and Microsoft Security Essentials.

All 3 of the above are free.

I'm not familiar with VirusGuard.


NEXT:


ESET Online Scanner
I'd like us to scan your machine with ESET Online Scan

Note: It is recommended to disable on-board anti-virus program and anti-spyware programs while performing scans so there are no conflicts and it will speed up scan time.
Please don't go surfing while your resident protection is disabled!
Once the scan is finished remember to re-enable your anti-virus along with your anti-spyware programs.



  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Check Posted Image
  • Make sure that the option "Remove found threats" is Unchecked
  • When the Computer scan settings display shows, click the Advanced option, the place a check next to the following (if it is not already checked):
    • Enable Anti-Stealth technology
  • Push the Start button.
  • ESET will then download updates for itself, install itself, and begin
    scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as
    ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NEXT:



Security Check
Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Have I helped you? If you'd like to assist in the fight against malware, click here Posted Image


The instructions seen in this post have been specifically tailored to this user and the issues they are experiencing with their computer. If you think you have a similar problem, please first read this topic, and then begin your own, new thread. I do not offer private support via Private Message.


#7 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 07 May 2011 - 10:20 AM

Mr ST..the ESET Online Scanner cannot be updated. there is an unexpected error.

i to have another problem. it seems my laptop can't install mozilla firefox. after double clicking, it just stop after extracting. i even try with my friends installer and even downloading the installer from the official mozilla website.nothing happened.

2ndly, im thinking of converting to linux but fyi, im not familiar with the command line.
im looking for a linux with some GUI. which one u suggest? :busy:



Results of screen317's Security Check version 0.99.10
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
AVG 9.0
ESET Online Scanner v3
ESET Smart Security
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
TuneUp Utilities 2011
Java™ 6 Update 23
Out of date Java installed!
Adobe Flash Player 10.1.102.64
Adobe Reader 9.3 MUI
Out of date Adobe Reader installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent

AVG avgwdsvc.exe
AVG avgtray.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
``````````End of Log````````````

#8 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 07 May 2011 - 10:24 AM

Mr ST..the ESET Online Scanner cannot be updated. there is an unexpected error.

i to have another problem. it seems my laptop can't install mozilla firefox. after double clicking, it just stop after extracting. i even try with my friends installer and even downloading the installer from the official mozilla website.nothing happened.

2ndly, im thinking of converting to linux but fyi, im not familiar with the command line.
im looking for a linux with some GUI. which one u suggest? :busy:



Results of screen317's Security Check version 0.99.10
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
AVG 9.0
ESET Online Scanner v3
ESET Smart Security
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
TuneUp Utilities 2011
Java™ 6 Update 23
Out of date Java installed!
Adobe Flash Player 10.1.102.64
Adobe Reader 9.3 MUI
Out of date Adobe Reader installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent

AVG avgwdsvc.exe
AVG avgtray.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
``````````End of Log````````````

#9 SweetTech

SweetTech

    Agent ST


  • Members
  • 13,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Antarctica
  • Local time:09:52 PM

Posted 07 May 2011 - 10:34 AM

Hi audio9!

Mr ST..the ESET Online Scanner cannot be updated. there is an unexpected error.

It could be related to the fact that you already have ESET Smart Security. No worries. We can try running a different utility.

i to have another problem. it seems my laptop can't install mozilla firefox. after double clicking, it just stop after extracting. i even try with my friends installer and even downloading the installer from the official mozilla website.nothing happened.

Did you right click on the installer and run it as an Administrator?

2ndly, im thinking of converting to linux but fyi, im not familiar with the command line.
im looking for a linux with some GUI. which one u suggest?

I have not used Linux in quite a few years now, but a fellow colleague uses Ubuntu.


AVP Tool by Kaspersky

Please download AVPTool to your desktop using this link here

Double-Click on the program you just downloaded to your desktop. (it will be have a name similar to this one: setup_9.0.0.722_04.05.2011_19-37)

We are going to run a virus scan with this tool.

You should be on the AutoScan tab. If you're not please click on it now.

We want to place a check mark next to all of the items under the AutoScan tab.

After placing a checkmark next to the items it should look similar to the image below:

Posted Image

Ensure that AVPTool has the following settings in the image below set:

Posted Image

If no changes need to be made with the settings, than please click on the SCAN button and allow the tool to scan your computer. It may take some time to run completely, so you may want to go and so something else while it's running.

If changes need to be made to those settings please click on them and change them to the correct setting as indicated in the image.

When the scan is done scanning please click on the Posted Image button.

A new window should appear called Detailed Report.

Click on the Posted Image button.

A save window should appear asking you where you'd like to save the log file to. Please save it to your desktop.

Post the log in your next reply.

Special Note: If the AVPTool is exited out of /closed then it will self-uninstall. If it does uninstall please re-run the setup file that should still be on your desktop.



NEXT:


Registry Cleaners + "Tweak" Tools

Re. TuneUp Utilities 2011

I don't personally recommend the use of ANY Registry Cleaners or "Tweak" Tools

They are marketed as ways to make your machine run faster and more efficiently ...... Some will actually achieve this .... IF you know how to use them correctly.
Removing "Orphaned/Old/Obsolete" registry entries is fine ..... as long as they actually are "Orphaned/Old/Obsolete", it won't speed up your machine though
Stopping services and setting policies can speed up your machine ..... as long as you stop and set the right ones, and even then it's debatable if you will notice the improvement.

Remove the wrong registry entry, or stop the wrong service, and not only can you slow your machine .... you could kill it !

To use a Registry Cleaner or "Tweak" tool to its full advantage, you really need to know what it is they are doing and what else the changes may affect.
In short, if you know how to use them safely ----- you don't actually need them.

discussion on regcleaners >> http://forums.whatthetech.com/Regcleaner_t42862.html
And for more good information see what Miekiemoes has to say >> http://miekiemoes.blogspot.com/2008/02/registry-cleaners-and-system-tweaking_13.html


NEXT:



Java Outdated
Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 6 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform.
    • 32-bit Select: Windows x86 Offline.
    • 64-bit Select: Windows x64.
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-6u25-windows-i586.exe to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
-- Starting with Java 6u10, the uninstaller incorporated in each new release uses Enhanced Auto update to automatically remove the previous version when updating to a later update release. It will not remove older versions, so they will need to be removed manually.
-- Java is updated frequently. If you want to be automatically notified of future updates, just turn on the Java Automatic Update feature and you will not have to remember to update when Java releases a new version.


Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


NEXT



Update Adobe Reader
Earlier versions of Adobe Reader have known security flaws so it is recommended that you update your copy
  • Go to Start > Control Panel > Add/Remove Programs
  • Remove ALL instances of Adobe Reader
  • Re-boot your computer as required.
  • Once ALL versions of Adobe Reader have been uninstalled, visit: <<here>> and download the latest version of Adobe Reader
Alternative Option: after uninstalling Adobe Reader, you could try installing Foxit Reader from >here< Foxit Reader has fewer add-ons therefore loads more quickly.



NEXT:



OTL Custom Scan

We need to run an OTL Custom Scan
  • Please reopen Posted Image on your desktop.
  • Copy and Paste the following code into the Posted Image textbox.


    netsvcs
    drivers32
    hklm\software\clients\startmenuinternet|command /rs
    %USERPROFILE%\AppData\Local\Google\Chrome\User Data\*.* /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs

  • Push the Posted Image button.
  • A report will open. Copy and Paste that report in your next reply.


NEXT:



What outstanding issues (if any) are you still experiencing with your computer?

Have I helped you? If you'd like to assist in the fight against malware, click here Posted Image


The instructions seen in this post have been specifically tailored to this user and the issues they are experiencing with their computer. If you think you have a similar problem, please first read this topic, and then begin your own, new thread. I do not offer private support via Private Message.


#10 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 07 May 2011 - 11:01 AM

Hi ST,
after i formatted my other laptop, i can't copy or paste files. it just pop up an error says "file integrity violated".
Why is that?

#11 SweetTech

SweetTech

    Agent ST


  • Members
  • 13,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Antarctica
  • Local time:09:52 PM

Posted 07 May 2011 - 11:36 AM

after i formatted my other laptop, i can't copy or paste files. it just pop up an error says "file integrity violated".

Not sure. I'm not finding anything useful via Google. You may want to post in the Operating System forum here at BC and see what others have to say about it.

Have I helped you? If you'd like to assist in the fight against malware, click here Posted Image


The instructions seen in this post have been specifically tailored to this user and the issues they are experiencing with their computer. If you think you have a similar problem, please first read this topic, and then begin your own, new thread. I do not offer private support via Private Message.


#12 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 07 May 2011 - 11:55 AM

im sorry mr ST, but which button to click after i copy and paste the codes in OTL??[Run Fix] or [Run Scan]???it just show the iced frog..... :wacko: lol

im still downloading the AVP tool by Kaspersky. The TDSSKiller is one neat program. can i use it if i hv a virus or an infection??

#13 SweetTech

SweetTech

    Agent ST


  • Members
  • 13,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Antarctica
  • Local time:09:52 PM

Posted 07 May 2011 - 02:00 PM

Hi!

Please click on the Quick Scan button.

im still downloading the AVP tool by Kaspersky. The TDSSKiller is one neat program. can i use it if i hv a virus or an infection??

TDSSKiller is not a tool that should be used on just any infection. It's used for a specific infection.

Please follow the instructions in my previous post in the exact order given. :)

Edited by SweetTech, 07 May 2011 - 02:00 PM.

Have I helped you? If you'd like to assist in the fight against malware, click here Posted Image


The instructions seen in this post have been specifically tailored to this user and the issues they are experiencing with their computer. If you think you have a similar problem, please first read this topic, and then begin your own, new thread. I do not offer private support via Private Message.


#14 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 08 May 2011 - 08:19 AM

Hello ST!!

I m afraid to update Java and Adobe Reader cos i tot it is a malware doing. :lol:
During the Kaspersly scan, there is a lot of files that is password protected, just so u know.
I have done all u ask. Now my laptop is faster and running smoothly. Thank u so very much for all ur help. im very greatful. I will recommend BC to all my friend from now on. I m officially a BC fan!! :thumbup2: :thumbup2:

Below is the Kaspersky log u requested:


Autoscan: completed 28 minutes ago (events: 2, objects: 907011, time: 06:33:50)
8/5/2011 1:51:10 AM Task started
8/5/2011 8:25:02 AM Task completed


ps: OTL log is in another post :busy:

#15 audio9

audio9
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:09:52 AM

Posted 08 May 2011 - 08:22 AM

========== Custom Scans ==========


< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe" --show-icons [2010/12/01 07:02:35 | 000,991,800 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe" --hide-icons [2010/12/01 07:02:35 | 000,991,800 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe" --make-default-browser [2010/12/01 07:02:35 | 000,991,800 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\Application\chrome.exe" [2010/12/01 07:02:35 | 000,991,800 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2009/07/14 09:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2009/07/14 09:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2009/07/14 09:14:21 | 000,176,128 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/02/24 13:32:52 | 000,673,040 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/02/24 13:32:52 | 000,673,040 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\ReinstallCommand: "C:\Program Files\Safari\Safari.exe" /reinstall [2009/11/05 21:14:44 | 001,794,848 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\HideIconsCommand: "C:\Program Files\Safari\Safari.exe" /hideicons [2009/11/05 21:14:44 | 001,794,848 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\InstallInfo\\ShowIconsCommand: "C:\Program Files\Safari\Safari.exe" /showicons [2009/11/05 21:14:44 | 001,794,848 | ---- | M] (Apple Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Safari.exe\shell\open\command\\: "C:\Program Files\Safari\Safari.exe" [2009/11/05 21:14:44 | 001,794,848 | ---- | M] (Apple Inc.)

< %USERPROFILE%\AppData\Local\Google\Chrome\User Data\*.* /s >
[2011/04/03 19:12:45 | 000,001,757 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\.ChromotingConfig.json
[2011/05/08 21:06:37 | 000,011,171 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Local State
[2011/05/08 20:46:22 | 005,650,116 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom
[2011/05/08 20:46:25 | 002,097,321 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Filter 2
[2011/04/16 22:51:05 | 000,000,055 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Service State
[1 C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\*.tmp files -> C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\*.tmp -> ]
[2011/05/03 22:46:09 | 000,061,440 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Archived History
[2011/01/21 11:41:02 | 000,000,997 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Bookmarks
[2011/01/21 11:41:02 | 000,000,997 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak
[2011/05/08 21:09:01 | 000,317,440 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cookies
[2011/05/08 20:01:10 | 000,059,715 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Current Session
[2011/05/08 19:27:58 | 000,780,224 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
[2011/01/22 00:20:47 | 000,006,144 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies
[2011/04/16 23:09:42 | 000,016,384 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Favicons
[2011/05/08 19:28:24 | 008,007,680 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History
[2011/04/17 00:05:45 | 000,036,864 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2010-12
[2011/04/28 19:15:45 | 000,036,864 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-01
[2011/05/03 22:46:09 | 000,036,864 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-02
[2011/04/17 00:05:45 | 000,061,440 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-03
[2011/05/07 23:12:27 | 021,807,104 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-04
[2011/05/07 23:12:27 | 000,025,136 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-04-journal
[2011/05/08 19:28:24 | 009,244,672 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-05
[2011/05/08 19:28:24 | 001,674,944 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History Index 2011-05-journal
[2011/05/08 19:28:24 | 000,176,984 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\History-journal
[2011/05/07 19:31:03 | 000,615,793 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Last Session
[2011/05/07 19:31:03 | 000,254,050 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Last Tabs
[2011/05/08 12:52:35 | 000,020,480 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Login Data
[2011/05/08 12:52:35 | 000,010,792 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal
[2011/05/08 19:02:48 | 000,020,394 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Preferences
[2011/05/08 19:28:24 | 011,993,088 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Thumbnails
[2011/05/08 19:28:24 | 000,041,552 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Thumbnails-journal
[2011/04/16 23:09:10 | 000,057,344 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Top Sites
[2011/05/07 19:31:03 | 000,131,072 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Visited Links
[2011/04/16 23:12:09 | 000,079,872 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Web Data
[4 C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\*.tmp files -> C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\*.tmp -> ]
[2011/04/16 22:53:44 | 000,036,864 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Index
[2011/04/16 23:01:24 | 000,045,056 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache\data_0
[2011/04/16 23:01:24 | 000,270,336 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache\data_1
[2011/04/16 23:01:24 | 001,056,768 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache\data_2
[2011/04/16 23:01:24 | 004,202,496 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache\data_3
[2011/01/21 11:32:59 | 000,524,656 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache\index
[2011/05/08 18:44:35 | 000,561,152 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
[2011/05/08 20:21:23 | 012,066,816 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
[2011/05/08 18:04:03 | 015,736,832 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
[2011/05/08 17:38:22 | 050,339,840 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
[2011/05/06 16:33:15 | 000,069,148 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000001
[2011/05/06 16:33:17 | 000,018,686 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000002
[2011/05/06 16:33:17 | 000,026,209 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000003
[2011/05/06 16:33:18 | 000,019,756 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000004
[2011/05/06 16:33:18 | 000,026,027 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000005
[2011/05/06 16:33:18 | 000,039,268 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000006
[2011/05/06 16:33:22 | 000,039,794 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000007
[2011/05/06 16:33:24 | 000,045,233 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000009
[2011/05/06 16:33:28 | 000,026,756 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000a
[2011/05/06 16:33:32 | 000,033,851 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000c
[2011/05/06 16:33:40 | 000,030,421 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000e
[2011/05/06 16:33:45 | 000,038,701 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000f
[2011/05/06 16:33:46 | 000,026,944 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000010
[2011/05/06 16:33:48 | 000,101,335 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000011
[2011/05/06 16:34:02 | 000,182,984 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000012
[2011/05/06 16:53:41 | 000,019,336 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000013
[2011/05/06 16:53:43 | 000,018,570 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000014
[2011/05/06 16:53:43 | 000,018,451 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000015
[2011/05/06 16:53:48 | 000,018,642 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000016
[2011/05/06 16:53:49 | 000,060,309 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000017
[2011/05/06 16:53:55 | 000,031,717 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000018
[2011/05/06 16:54:05 | 000,030,692 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000019
[2011/05/06 16:54:12 | 000,070,843 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001a
[2011/05/06 16:54:13 | 000,019,516 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001b
[2011/05/06 16:54:14 | 000,128,465 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001c
[2011/05/06 16:54:15 | 000,033,455 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001d
[2011/05/06 16:54:26 | 000,114,223 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001e
[2011/05/06 16:54:27 | 000,060,310 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001f
[2011/05/06 16:54:53 | 000,063,228 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000022
[2011/05/06 16:55:14 | 000,208,752 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000023
[2011/05/06 16:56:38 | 000,045,097 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000024
[2011/05/06 16:56:48 | 000,053,338 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000025
[2011/05/06 16:57:37 | 000,069,404 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000026
[2011/05/06 16:57:39 | 000,017,644 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000027
[2011/05/06 16:58:24 | 000,058,052 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000029
[2011/05/06 16:58:24 | 000,066,786 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00002a
[2011/05/06 16:58:25 | 000,057,568 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00002b
[2011/05/06 16:58:27 | 000,058,425 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00002c
[2011/05/06 16:58:30 | 000,045,193 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00002d
[2011/05/06 16:58:41 | 000,967,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00002e
[2011/05/06 16:59:00 | 000,048,437 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00002f
[2011/05/06 16:59:18 | 000,018,387 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000030
[2011/05/06 16:59:25 | 000,016,634 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000031
[2011/05/06 16:59:49 | 000,017,636 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000032
[2011/05/06 17:00:23 | 000,879,385 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000033
[2011/05/06 17:00:46 | 000,186,745 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000034
[2011/05/06 17:08:44 | 005,971,990 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000036
[2011/05/06 17:05:46 | 001,487,197 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000037
[2011/05/06 17:08:04 | 000,017,760 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000038
[2011/05/06 17:08:17 | 000,079,714 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000039
[2011/05/06 17:08:46 | 000,079,714 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00003a
[2011/05/06 17:08:47 | 000,053,399 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00003b
[2011/05/06 17:09:10 | 000,025,803 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00003c
[2011/05/06 17:09:59 | 000,025,160 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00003d
[2011/05/06 17:13:54 | 003,699,050 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00003e
[2011/05/06 17:11:20 | 000,034,246 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00003f
[2011/05/06 17:11:28 | 000,041,042 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000040
[2011/05/06 17:11:29 | 000,038,797 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000041
[2011/05/06 17:12:35 | 000,050,807 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000042
[2011/05/06 17:14:55 | 000,044,568 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000043
[2011/05/06 17:14:58 | 000,030,137 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000044
[2011/05/06 17:15:03 | 000,055,181 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000045
[2011/05/06 17:23:23 | 000,057,219 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000046
[2011/05/06 17:28:09 | 000,056,444 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000047
[2011/05/06 17:28:30 | 000,061,872 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000048
[2011/05/06 17:28:30 | 000,036,316 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000049
[2011/05/06 17:32:02 | 000,046,759 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00004b
[2011/05/06 17:32:05 | 000,037,440 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00004c
[2011/05/06 17:32:07 | 000,041,360 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00004d
[2011/05/06 18:03:04 | 000,058,982 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00004e
[2011/05/06 18:03:33 | 000,054,143 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00004f
[2011/05/06 18:03:33 | 000,048,366 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000050
[2011/05/06 18:03:33 | 000,038,642 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000051
[2011/05/06 18:03:34 | 000,037,750 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000052
[2011/05/06 18:03:37 | 000,045,963 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000053
[2011/05/06 18:04:15 | 000,021,301 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000054
[2011/05/06 18:06:33 | 000,019,957 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000055
[2011/05/06 18:06:36 | 000,021,041 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000056
[2011/05/06 18:06:46 | 000,021,436 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000057
[2011/05/06 18:07:15 | 000,021,932 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000058
[2011/05/06 18:07:18 | 000,029,567 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000059
[2011/05/06 18:11:48 | 000,035,059 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00005a
[2011/05/06 18:12:08 | 000,026,319 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00005b
[2011/05/06 18:12:29 | 000,055,141 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00005c
[2011/05/06 18:24:54 | 000,019,670 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00005e
[2011/05/06 18:24:59 | 000,061,271 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00005f
[2011/05/06 18:28:21 | 000,035,777 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000060
[2011/05/06 18:28:30 | 000,024,678 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000061
[2011/05/06 18:28:32 | 000,044,855 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000062
[2011/05/06 18:28:34 | 000,023,560 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000063
[2011/05/06 18:28:35 | 000,022,198 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000064
[2011/05/06 18:28:37 | 000,078,646 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000065
[2011/05/06 18:28:38 | 000,096,102 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000066
[2011/05/06 18:28:39 | 000,035,390 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000067
[2011/05/06 18:28:46 | 000,042,090 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000068
[2011/05/06 18:28:48 | 000,024,678 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000069
[2011/05/06 18:35:21 | 000,060,023 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00006a
[2011/05/06 18:47:06 | 000,037,231 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00006b
[2011/05/06 18:47:06 | 000,036,016 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00006c
[2011/05/06 19:10:28 | 000,042,210 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00006d
[2011/05/06 19:10:29 | 000,034,889 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00006e
[2011/05/06 19:10:31 | 000,051,710 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00006f
[2011/05/06 19:45:51 | 000,044,391 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000070
[2011/05/06 21:37:21 | 000,025,131 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000071
[2011/05/06 21:37:23 | 000,035,380 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000072
[2011/05/06 21:37:27 | 000,064,076 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000073
[2011/05/06 21:37:33 | 000,021,791 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000074
[2011/05/06 21:37:39 | 000,020,089 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000075
[2011/05/06 21:37:58 | 000,023,708 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000076
[2011/05/06 21:38:04 | 000,078,601 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000077
[2011/05/06 22:25:08 | 000,019,190 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000078
[2011/05/06 22:28:15 | 000,045,320 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000079
[2011/05/06 22:28:23 | 000,044,414 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00007a
[2011/05/06 22:30:34 | 000,050,588 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00007b
[2011/05/06 22:31:34 | 000,046,432 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00007c
[2011/05/06 22:46:04 | 000,036,319 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00007e
[2011/05/06 22:46:22 | 000,030,679 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00007f
[2011/05/06 22:47:15 | 000,045,299 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000080
[2011/05/06 22:50:40 | 000,021,590 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000081
[2011/05/06 22:51:02 | 000,039,152 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000082
[2011/05/06 22:52:06 | 000,019,831 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000084
[2011/05/06 22:54:27 | 000,033,556 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000085
[2011/05/06 22:57:19 | 000,031,055 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000086
[2011/05/06 22:57:39 | 000,049,486 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000087
[2011/05/07 00:01:04 | 000,026,320 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000088
[2011/05/07 00:01:09 | 000,062,161 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000089
[2011/05/07 00:01:18 | 000,024,094 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00008a
[2011/05/07 00:05:29 | 000,025,169 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00008b
[2011/05/07 00:07:26 | 000,016,477 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00008c
[2011/05/07 00:07:56 | 000,080,482 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00008d
[2011/05/07 00:09:47 | 000,036,726 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00008e
[2011/05/07 00:10:00 | 000,094,098 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00008f
[2011/05/07 00:10:15 | 000,050,818 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000090
[2011/05/07 00:10:55 | 000,137,658 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000091
[2011/05/07 00:11:36 | 000,047,634 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000092
[2011/05/07 00:12:09 | 000,034,566 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000093
[2011/05/07 00:12:18 | 000,017,920 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000094
[2011/05/07 00:13:41 | 000,037,470 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000095
[2011/05/07 00:13:52 | 000,017,142 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000096
[2011/05/07 00:14:20 | 000,035,003 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000097
[2011/05/07 00:14:45 | 000,033,114 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000098
[2011/05/07 00:15:28 | 000,022,605 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000099
[2011/05/07 00:16:03 | 000,111,522 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00009a
[2011/05/07 00:16:29 | 000,022,950 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00009b
[2011/05/07 00:17:02 | 000,133,302 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00009c
[2011/05/07 00:18:15 | 000,139,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00009d
[2011/05/07 00:19:24 | 000,057,254 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00009e
[2011/05/07 20:57:42 | 000,047,199 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00009f
[2011/05/07 00:19:14 | 000,130,398 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a0
[2011/05/07 00:20:10 | 000,016,789 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a1
[2011/05/07 00:20:12 | 000,034,093 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a2
[2011/05/07 00:20:17 | 000,021,498 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a3
[2011/05/07 00:20:30 | 000,079,588 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a4
[2011/05/07 00:20:36 | 000,040,374 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a5
[2011/05/07 00:21:26 | 000,017,105 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a6
[2011/05/07 00:21:55 | 000,099,906 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a7
[2011/05/07 00:21:56 | 000,055,587 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a8
[2011/05/07 00:22:33 | 000,070,866 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a9
[2011/05/07 00:24:31 | 000,044,730 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000aa
[2011/05/07 00:24:52 | 000,030,210 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ac
[2011/05/07 00:25:58 | 000,249,462 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ad
[2011/05/07 00:26:49 | 000,038,922 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ae
[2011/05/07 00:28:08 | 000,107,166 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000af
[2011/05/07 00:28:16 | 000,018,594 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b0
[2011/05/07 00:28:27 | 000,043,278 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b1
[2011/05/07 00:29:31 | 000,024,402 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b2
[2011/05/07 00:42:33 | 001,487,197 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b4
[2011/05/07 01:22:02 | 001,487,197 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b5
[2011/05/07 01:24:27 | 000,029,667 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b6
[2011/05/07 01:24:29 | 000,020,227 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b7
[2011/05/07 01:24:39 | 000,036,683 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b8
[2011/05/07 01:24:43 | 000,040,286 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000b9
[2011/05/07 01:24:43 | 000,034,858 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ba
[2011/05/07 01:24:53 | 000,034,044 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000bb
[2011/05/07 06:02:12 | 000,023,961 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000bc
[2011/05/08 06:02:26 | 000,031,033 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000bd
[2011/05/07 10:18:01 | 000,216,066 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000be
[2011/05/07 10:19:05 | 000,134,754 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c0
[2011/05/07 10:19:48 | 000,136,206 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c1
[2011/05/07 10:20:04 | 000,040,374 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c2
[2011/05/07 10:23:28 | 000,967,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c3
[2011/05/07 10:24:27 | 000,033,635 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c4
[2011/05/07 10:51:55 | 003,699,050 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c5
[2011/05/07 10:39:11 | 000,030,590 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c6
[2011/05/07 10:40:00 | 000,017,537 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c7
[2011/05/07 10:40:30 | 000,040,970 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c8
[2011/05/07 10:46:14 | 000,840,426 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c9
[2011/05/07 10:48:49 | 000,967,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ca
[2011/05/07 10:49:37 | 000,035,141 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000cb
[2011/05/07 11:16:16 | 000,017,109 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000cc
[2011/05/07 11:16:17 | 000,017,856 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000cd
[2011/05/07 11:25:51 | 000,023,031 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ce
[2011/05/07 12:29:59 | 000,487,590 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000d3
[2011/05/07 12:31:19 | 000,200,094 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000d4
[2011/05/07 12:32:13 | 000,163,794 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000d5
[2011/05/07 12:33:24 | 000,149,274 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000d6
[2011/05/07 12:35:39 | 000,967,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000d7
[2011/05/07 12:38:40 | 000,634,237 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000d9
[2011/05/07 12:42:05 | 001,487,197 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000da
[2011/05/07 17:33:45 | 000,020,803 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000db
[2011/05/07 17:34:01 | 000,028,033 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000dc
[2011/05/07 17:34:19 | 000,020,968 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000de
[2011/05/07 20:41:58 | 000,018,473 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e0
[2011/05/07 20:42:12 | 000,040,970 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e1
[2011/05/07 20:45:21 | 000,078,121 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e3
[2011/05/07 20:47:00 | 000,445,477 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e4
[2011/05/07 20:47:24 | 000,041,821 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e5
[2011/05/07 20:53:37 | 000,018,350 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e7
[2011/05/07 20:53:38 | 000,019,103 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e8
[2011/05/07 20:54:03 | 000,033,264 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000e9
[2011/05/07 20:54:07 | 000,097,427 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ea
[2011/05/07 20:56:31 | 000,030,655 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000eb
[2011/05/07 20:56:59 | 000,035,852 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ec
[2011/05/07 20:57:23 | 000,026,752 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ed
[2011/05/07 20:57:33 | 000,021,791 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ee
[2011/05/07 20:58:18 | 000,033,608 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ef
[2011/05/07 20:58:33 | 000,021,442 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f0
[2011/05/07 21:05:15 | 000,128,941 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f1
[2011/05/07 21:05:55 | 000,248,005 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f2
[2011/05/07 21:08:01 | 000,410,629 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f3
[2011/05/07 21:11:50 | 000,022,528 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f4
[2011/05/07 21:12:11 | 000,021,643 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f5
[2011/05/07 21:12:31 | 000,017,480 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f6
[2011/05/07 23:02:46 | 000,017,142 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f8
[2011/05/07 23:03:17 | 000,070,866 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000f9
[2011/05/07 23:03:54 | 000,112,426 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000fa
[2011/05/07 23:04:27 | 000,043,278 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000fb
[2011/05/07 23:04:58 | 000,236,394 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000fc
[2011/05/07 23:07:05 | 000,114,426 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000fd
[2011/05/07 23:07:05 | 000,041,826 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000fe
[2011/05/07 23:08:04 | 000,020,563 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000ff
[2011/05/07 23:08:31 | 000,147,822 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000100
[2011/05/07 23:11:00 | 000,298,830 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000101
[2011/05/07 23:13:19 | 000,172,038 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000102
[2011/05/07 23:13:44 | 000,041,826 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000103
[2011/05/07 23:13:48 | 000,029,906 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000104
[2011/05/07 23:14:07 | 000,369,978 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000105
[2011/05/07 23:14:10 | 000,041,978 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000106
[2011/05/07 23:15:40 | 000,108,618 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000107
[2011/05/07 23:16:20 | 000,044,730 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000108
[2011/05/07 23:16:43 | 000,179,218 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000109
[2011/05/07 23:17:10 | 000,041,826 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00010a
[2011/05/07 23:17:38 | 000,091,194 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00010b
[2011/05/07 23:17:57 | 000,049,086 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00010c
[2011/05/07 23:19:52 | 000,020,169 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00010d
[2011/05/07 23:19:52 | 000,018,146 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00010e
[2011/05/07 23:20:46 | 000,555,614 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00010f
[2011/05/07 23:20:53 | 000,019,148 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000110
[2011/05/07 23:20:59 | 000,025,063 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000111
[2011/05/07 23:21:50 | 000,063,988 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000112
[2011/05/07 23:22:41 | 000,019,871 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000113
[2011/05/07 23:24:59 | 000,064,145 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000114
[2011/05/07 23:29:19 | 000,019,446 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000115
[2011/05/07 23:31:32 | 000,040,374 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000116
[2011/05/07 23:31:39 | 000,072,318 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000117
[2011/05/07 23:32:39 | 000,223,326 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000118
[2011/05/07 23:32:53 | 000,028,758 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000119
[2011/05/07 23:33:59 | 000,046,248 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00011a
[2011/05/07 23:34:39 | 000,252,366 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00011b
[2011/05/07 23:34:42 | 000,020,046 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00011c
[2011/05/07 23:35:23 | 000,102,810 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00011d
[2011/05/07 23:36:45 | 000,140,014 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00011e
[2011/05/07 23:37:33 | 000,041,826 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00011f
[2011/05/07 23:43:38 | 000,082,482 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000120
[2011/05/07 23:44:58 | 000,207,354 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000121
[2011/05/07 23:45:26 | 000,054,346 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000122
[2011/05/07 23:46:30 | 000,091,194 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000123
[2011/05/07 23:49:00 | 000,724,266 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000124
[2011/05/07 23:50:44 | 000,271,242 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000125
[2011/05/07 23:52:38 | 000,493,398 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000126
[2011/05/07 23:53:31 | 000,134,754 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000128
[2011/05/07 23:54:40 | 000,133,302 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000129
[2011/05/07 23:58:24 | 000,445,482 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00012b
[2011/05/07 23:59:19 | 000,067,414 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00012c
[2011/05/08 00:00:18 | 000,046,182 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00012d
[2011/05/08 00:01:47 | 000,326,418 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00012e
[2011/05/08 00:02:23 | 000,034,566 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00012f
[2011/05/08 00:02:42 | 000,030,210 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000130
[2011/05/08 00:03:03 | 000,027,306 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000131
[2011/05/08 00:03:42 | 000,067,962 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000132
[2011/05/08 00:03:48 | 000,068,837 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000133
[2011/05/08 00:10:48 | 000,020,102 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000134
[2011/05/08 00:15:03 | 000,084,446 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000136
[2011/05/08 00:16:09 | 000,094,276 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000137
[2011/05/08 00:17:07 | 000,026,872 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000138
[2011/05/08 00:22:46 | 000,084,139 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000139
[2011/05/08 00:26:28 | 000,020,736 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00013b
[2011/05/08 00:26:29 | 000,016,494 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00013c
[2011/05/08 00:37:53 | 000,025,391 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00013e
[2011/05/08 00:38:59 | 000,064,126 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000142
[2011/05/08 18:10:15 | 000,033,822 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000144
[2011/05/08 00:39:32 | 000,020,153 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000145
[2011/05/08 00:47:33 | 000,124,601 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000147
[2011/05/08 00:55:57 | 000,069,377 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000148
[2011/05/08 01:17:31 | 000,067,921 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000149
[2011/05/08 01:17:33 | 000,031,866 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00014a
[2011/05/08 01:17:35 | 000,049,333 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00014b
[2011/05/08 01:17:39 | 000,044,999 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00014c
[2011/05/08 01:29:38 | 000,040,743 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00014e
[2011/05/08 01:57:06 | 000,039,701 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00014f
[2011/05/08 01:57:07 | 000,031,727 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000150
[2011/05/08 01:57:07 | 000,032,095 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000151
[2011/05/08 06:02:32 | 000,017,002 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000152
[2011/05/08 06:02:38 | 000,027,816 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000153
[2011/05/08 06:02:50 | 000,047,122 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000154
[2011/05/08 06:02:51 | 000,059,506 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000155
[2011/05/08 06:02:55 | 000,019,230 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000156
[2011/05/08 06:02:56 | 000,064,244 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000157
[2011/05/08 06:02:57 | 000,058,286 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000158
[2011/05/08 06:02:57 | 000,045,204 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000159
[2011/05/08 06:02:57 | 000,063,139 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015a
[2011/05/08 06:02:57 | 000,059,543 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015b
[2011/05/08 06:03:01 | 000,038,269 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015c
[2011/05/08 06:03:03 | 000,031,716 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015d
[2011/05/08 06:03:03 | 000,036,228 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015e
[2011/05/08 06:03:11 | 000,074,627 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015f
[2011/05/08 06:03:11 | 000,080,232 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000160
[2011/05/08 06:03:11 | 000,043,901 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000161
[2011/05/08 06:03:12 | 000,149,976 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000162
[2011/05/08 06:03:12 | 000,028,267 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000163
[2011/05/08 06:03:41 | 000,291,472 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000164
[2011/05/08 07:23:10 | 000,046,868 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000165
[2011/05/08 07:43:50 | 000,029,750 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000166
[2011/05/08 07:45:20 | 000,020,291 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000167
[2011/05/08 07:47:13 | 000,032,012 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000168
[2011/05/08 07:48:56 | 000,027,235 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000169
[2011/05/08 07:53:04 | 000,018,933 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00016a
[2011/05/08 07:54:14 | 000,025,799 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00016b
[2011/05/08 12:03:01 | 000,042,375 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00016c
[2011/05/08 12:03:18 | 000,057,094 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00016d
[2011/05/08 12:06:30 | 000,019,834 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00016e
[2011/05/08 12:06:32 | 000,017,754 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00016f
[2011/05/08 12:06:33 | 000,017,664 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000170
[2011/05/08 12:06:37 | 000,017,327 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000171
[2011/05/08 12:06:38 | 000,022,098 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000172
[2011/05/08 12:06:39 | 000,021,262 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000173
[2011/05/08 12:06:39 | 000,021,623 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000174
[2011/05/08 12:06:44 | 000,016,765 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000175
[2011/05/08 12:06:46 | 000,020,376 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000176
[2011/05/08 12:06:46 | 000,027,588 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000177
[2011/05/08 12:06:46 | 000,017,672 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000178
[2011/05/08 12:06:47 | 000,018,466 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000179
[2011/05/08 12:06:54 | 000,016,977 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00017a
[2011/05/08 12:06:55 | 000,019,379 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00017b
[2011/05/08 12:06:58 | 000,019,619 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00017c
[2011/05/08 12:10:47 | 000,100,945 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00017d
[2011/05/08 12:14:29 | 000,017,100 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00017e
[2011/05/08 12:14:30 | 000,017,609 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00017f
[2011/05/08 12:14:31 | 000,021,609 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000180
[2011/05/08 12:14:31 | 000,019,734 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000181
[2011/05/08 12:14:33 | 000,017,252 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000182
[2011/05/08 12:14:33 | 000,017,641 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000183
[2011/05/08 12:14:33 | 000,016,867 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000184
[2011/05/08 12:14:35 | 000,017,101 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000185
[2011/05/08 12:14:36 | 000,018,901 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000186
[2011/05/08 12:14:37 | 000,017,445 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000187
[2011/05/08 12:14:37 | 000,020,360 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000188
[2011/05/08 12:14:37 | 000,019,586 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000189
[2011/05/08 12:46:03 | 000,018,182 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00018a
[2011/05/08 12:46:24 | 000,017,405 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00018b
[2011/05/08 12:46:35 | 000,018,487 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00018c
[2011/05/08 12:47:42 | 000,033,721 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00018d
[2011/05/08 12:47:51 | 000,018,115 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00018e
[2011/05/08 12:47:54 | 000,019,228 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00018f
[2011/05/08 12:48:07 | 000,017,487 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000190
[2011/05/08 12:48:11 | 000,019,207 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000191
[2011/05/08 12:48:25 | 000,098,143 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000192
[2011/05/08 12:48:30 | 000,053,959 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000193
[2011/05/08 12:49:06 | 000,060,342 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000194
[2011/05/08 12:49:34 | 000,019,850 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000195
[2011/05/08 12:49:34 | 000,018,984 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000196
[2011/05/08 12:49:36 | 000,020,974 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000197
[2011/05/08 12:50:19 | 000,026,215 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000198
[2011/05/08 12:50:23 | 000,017,638 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000199
[2011/05/08 12:51:05 | 000,018,644 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00019a
[2011/05/08 12:51:56 | 000,022,028 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00019b
[2011/05/08 12:52:57 | 000,020,195 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00019c
[2011/05/08 12:53:21 | 000,075,859 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00019d
[2011/05/08 12:53:29 | 000,101,633 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00019e
[2011/05/08 12:54:40 | 000,017,098 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00019f
[2011/05/08 12:54:49 | 000,020,343 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a0
[2011/05/08 12:54:58 | 000,068,467 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a1
[2011/05/08 12:56:09 | 000,049,277 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a2
[2011/05/08 12:57:13 | 000,018,096 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a3
[2011/05/08 12:59:00 | 000,016,421 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a4
[2011/05/08 12:59:31 | 000,153,909 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a5
[2011/05/08 13:01:04 | 000,020,193 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a6
[2011/05/08 13:01:05 | 000,017,654 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a7
[2011/05/08 13:01:09 | 000,017,605 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a8
[2011/05/08 13:01:17 | 000,016,999 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001a9
[2011/05/08 13:01:19 | 000,019,405 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001aa
[2011/05/08 13:01:19 | 000,029,954 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ab
[2011/05/08 13:01:20 | 000,016,778 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ac
[2011/05/08 13:01:21 | 000,021,397 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ad
[2011/05/08 13:01:21 | 000,021,686 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ae
[2011/05/08 13:01:22 | 000,038,316 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001af
[2011/05/08 13:01:23 | 000,019,284 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b0
[2011/05/08 13:01:24 | 000,017,230 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b1
[2011/05/08 13:01:25 | 000,020,033 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b2
[2011/05/08 13:01:26 | 000,016,690 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b3
[2011/05/08 13:01:34 | 000,018,636 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b4
[2011/05/08 13:01:35 | 000,020,453 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b5
[2011/05/08 13:01:36 | 000,016,635 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b6
[2011/05/08 13:01:38 | 000,025,592 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b7
[2011/05/08 13:01:38 | 000,021,610 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b8
[2011/05/08 13:01:38 | 000,018,320 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001b9
[2011/05/08 13:01:40 | 000,018,577 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ba
[2011/05/08 13:01:41 | 000,029,546 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001bb
[2011/05/08 13:01:44 | 000,019,509 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001bc
[2011/05/08 13:01:44 | 000,021,094 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001bd
[2011/05/08 13:01:45 | 000,018,347 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001be
[2011/05/08 13:02:48 | 000,022,641 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001bf
[2011/05/08 13:02:49 | 000,017,937 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c0
[2011/05/08 13:02:51 | 000,018,036 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c1
[2011/05/08 13:02:52 | 000,019,860 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c2
[2011/05/08 13:02:52 | 000,021,707 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c3
[2011/05/08 13:02:54 | 000,016,656 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c4
[2011/05/08 13:02:54 | 000,017,370 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c5
[2011/05/08 13:02:55 | 000,017,701 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c6
[2011/05/08 13:02:55 | 000,017,007 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c7
[2011/05/08 13:02:57 | 000,019,325 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c8
[2011/05/08 13:02:57 | 000,020,238 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001c9
[2011/05/08 13:02:59 | 000,017,109 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ca
[2011/05/08 13:03:00 | 000,018,337 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001cb
[2011/05/08 13:03:01 | 000,018,456 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001cc
[2011/05/08 13:03:03 | 000,019,036 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001cd
[2011/05/08 13:03:04 | 000,016,609 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ce
[2011/05/08 13:03:05 | 000,019,705 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001cf
[2011/05/08 13:03:08 | 000,016,601 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d0
[2011/05/08 13:03:12 | 000,017,073 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d1
[2011/05/08 13:03:17 | 000,021,016 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d2
[2011/05/08 13:03:18 | 000,016,704 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d3
[2011/05/08 13:03:20 | 000,019,771 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d4
[2011/05/08 13:03:21 | 000,017,306 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d5
[2011/05/08 13:03:22 | 000,018,920 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d6
[2011/05/08 13:04:38 | 000,017,453 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d7
[2011/05/08 13:04:40 | 000,020,966 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d8
[2011/05/08 13:04:41 | 000,019,125 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001d9
[2011/05/08 13:04:41 | 000,021,297 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001da
[2011/05/08 13:04:43 | 000,017,048 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001db
[2011/05/08 13:04:43 | 000,016,654 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001dc
[2011/05/08 13:04:46 | 000,021,912 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001dd
[2011/05/08 13:04:47 | 000,020,977 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001de
[2011/05/08 13:04:47 | 000,017,193 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001df
[2011/05/08 13:04:50 | 000,016,522 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e0
[2011/05/08 13:04:52 | 000,017,887 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e1
[2011/05/08 13:04:53 | 000,020,835 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e2
[2011/05/08 13:04:54 | 000,017,434 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e3
[2011/05/08 13:04:54 | 000,017,876 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e4
[2011/05/08 13:04:58 | 000,022,165 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e5
[2011/05/08 13:04:59 | 000,017,438 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e6
[2011/05/08 13:04:59 | 000,018,556 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e7
[2011/05/08 13:05:00 | 000,018,501 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e8
[2011/05/08 13:05:01 | 000,017,427 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001e9
[2011/05/08 13:05:32 | 000,018,312 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ea
[2011/05/08 13:05:47 | 000,016,444 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001eb
[2011/05/08 13:06:37 | 000,153,909 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ec
[2011/05/08 13:08:09 | 000,016,813 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ed
[2011/05/08 13:08:10 | 000,018,519 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ee
[2011/05/08 13:08:11 | 000,016,958 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ef
[2011/05/08 13:08:13 | 000,019,184 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f0
[2011/05/08 13:08:15 | 000,016,727 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f1
[2011/05/08 13:08:19 | 000,018,021 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f2
[2011/05/08 13:08:23 | 000,018,887 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f3
[2011/05/08 13:08:23 | 000,018,021 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f4
[2011/05/08 13:08:24 | 000,017,959 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f5
[2011/05/08 13:09:20 | 000,018,767 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f6
[2011/05/08 13:09:22 | 000,024,215 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f7
[2011/05/08 13:09:25 | 000,016,550 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f8
[2011/05/08 13:11:29 | 000,016,753 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001f9
[2011/05/08 13:16:02 | 000,021,366 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001fa
[2011/05/08 13:16:02 | 000,016,900 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001fb
[2011/05/08 13:16:03 | 000,019,314 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001fc
[2011/05/08 13:16:05 | 000,018,682 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001fd
[2011/05/08 13:16:07 | 000,017,357 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001fe
[2011/05/08 13:16:11 | 000,023,966 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0001ff
[2011/05/08 13:16:12 | 000,023,790 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000200
[2011/05/08 13:16:14 | 000,018,079 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000201
[2011/05/08 13:16:15 | 000,022,041 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000202
[2011/05/08 13:16:17 | 000,017,151 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000203
[2011/05/08 13:16:17 | 000,027,610 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000204
[2011/05/08 13:16:18 | 000,033,849 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000205
[2011/05/08 13:16:18 | 000,020,115 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000206
[2011/05/08 13:16:18 | 000,017,455 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000207
[2011/05/08 13:16:22 | 000,018,484 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000208
[2011/05/08 13:16:59 | 000,024,651 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000209
[2011/05/08 13:17:05 | 000,017,717 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00020a
[2011/05/08 13:17:06 | 000,019,521 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00020b
[2011/05/08 13:17:07 | 000,021,733 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00020c
[2011/05/08 13:17:07 | 000,022,738 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00020d
[2011/05/08 13:17:12 | 000,017,014 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00020e
[2011/05/08 13:17:22 | 000,017,628 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00020f
[2011/05/08 13:17:23 | 000,016,956 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000210
[2011/05/08 13:17:23 | 000,019,826 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000211
[2011/05/08 13:17:23 | 000,017,562 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000212
[2011/05/08 13:17:24 | 000,016,758 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000213
[2011/05/08 13:17:24 | 000,016,593 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000214
[2011/05/08 13:17:29 | 000,017,958 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000215
[2011/05/08 13:17:30 | 000,016,525 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000216
[2011/05/08 13:17:31 | 000,016,419 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000217
[2011/05/08 13:17:31 | 000,016,931 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000218
[2011/05/08 13:17:35 | 000,016,525 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000219
[2011/05/08 13:18:37 | 000,024,026 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00021a
[2011/05/08 13:18:39 | 000,025,243 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00021b
[2011/05/08 13:18:47 | 000,019,653 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00021c
[2011/05/08 13:18:48 | 000,018,094 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00021d
[2011/05/08 13:18:53 | 000,019,772 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00021e
[2011/05/08 13:18:53 | 000,017,171 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00021f
[2011/05/08 13:18:57 | 000,020,311 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000220
[2011/05/08 13:19:14 | 000,018,651 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000221
[2011/05/08 13:19:15 | 000,017,528 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000222
[2011/05/08 13:19:16 | 000,016,605 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000223
[2011/05/08 13:19:19 | 000,028,330 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000224
[2011/05/08 13:19:20 | 000,017,182 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000225
[2011/05/08 13:19:21 | 000,017,591 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000226
[2011/05/08 13:19:22 | 000,020,344 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000227
[2011/05/08 13:19:23 | 000,019,841 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000228
[2011/05/08 13:19:24 | 000,020,683 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000229
[2011/05/08 13:19:27 | 000,023,255 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00022a
[2011/05/08 13:19:28 | 000,016,534 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00022b
[2011/05/08 13:19:47 | 000,016,717 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00022c
[2011/05/08 13:19:49 | 000,016,962 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00022d
[2011/05/08 13:19:51 | 000,017,087 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00022e
[2011/05/08 13:19:51 | 000,016,716 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00022f
[2011/05/08 13:19:53 | 000,018,067 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000230
[2011/05/08 13:19:54 | 000,016,949 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000231
[2011/05/08 13:19:58 | 000,021,579 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000232
[2011/05/08 13:21:08 | 000,152,878 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000233
[2011/05/08 13:22:55 | 000,018,124 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000234
[2011/05/08 13:22:56 | 000,027,418 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000235
[2011/05/08 13:23:01 | 000,020,245 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000236
[2011/05/08 13:23:03 | 000,019,200 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000237
[2011/05/08 13:23:28 | 000,016,833 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000238
[2011/05/08 13:23:30 | 000,019,129 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000239
[2011/05/08 13:23:33 | 000,017,704 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00023a
[2011/05/08 13:24:24 | 000,018,513 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00023b
[2011/05/08 13:24:25 | 000,016,444 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00023c
[2011/05/08 13:24:27 | 000,016,864 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00023d
[2011/05/08 13:24:32 | 000,020,777 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00023e
[2011/05/08 13:24:33 | 000,018,803 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00023f
[2011/05/08 13:24:34 | 000,016,907 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000240
[2011/05/08 13:24:34 | 000,020,495 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000241
[2011/05/08 13:24:34 | 000,016,702 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000242
[2011/05/08 13:24:37 | 000,019,409 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000243
[2011/05/08 13:24:38 | 000,016,414 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000244
[2011/05/08 13:24:38 | 000,017,394 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000245
[2011/05/08 13:24:40 | 000,017,975 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000246
[2011/05/08 13:24:40 | 000,017,663 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000247
[2011/05/08 13:24:40 | 000,026,546 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000248
[2011/05/08 13:24:43 | 000,019,656 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000249
[2011/05/08 13:25:29 | 000,153,207 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00024b
[2011/05/08 13:25:58 | 000,022,713 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00024c
[2011/05/08 13:26:01 | 000,017,651 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00024d
[2011/05/08 13:26:04 | 000,019,477 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00024e
[2011/05/08 13:26:04 | 000,017,405 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00024f
[2011/05/08 13:26:05 | 000,021,810 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000250
[2011/05/08 13:26:06 | 000,027,666 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000251
[2011/05/08 13:26:07 | 000,019,830 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000252
[2011/05/08 13:26:09 | 000,016,515 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000253
[2011/05/08 13:26:11 | 000,018,021 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000254
[2011/05/08 13:26:11 | 000,018,808 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000255
[2011/05/08 13:26:11 | 000,016,925 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000256
[2011/05/08 13:26:12 | 000,016,931 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000257
[2011/05/08 13:26:13 | 000,016,446 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000258
[2011/05/08 13:26:13 | 000,020,945 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000259
[2011/05/08 13:26:15 | 000,023,944 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00025a
[2011/05/08 13:26:18 | 000,024,843 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00025b
[2011/05/08 13:26:18 | 000,016,906 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00025c
[2011/05/08 13:29:20 | 000,017,256 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00025d
[2011/05/08 13:29:20 | 000,022,942 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00025e
[2011/05/08 13:29:22 | 000,019,662 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00025f
[2011/05/08 13:29:24 | 000,026,266 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000260
[2011/05/08 13:29:25 | 000,018,161 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000261
[2011/05/08 13:29:25 | 000,017,956 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000262
[2011/05/08 13:29:28 | 000,018,937 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000263
[2011/05/08 13:29:28 | 000,021,913 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000264
[2011/05/08 13:29:30 | 000,021,958 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000265
[2011/05/08 13:29:31 | 000,025,663 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000266
[2011/05/08 13:29:34 | 000,018,442 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000267
[2011/05/08 13:29:34 | 000,026,369 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000268
[2011/05/08 13:29:35 | 000,016,431 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000269
[2011/05/08 13:29:35 | 000,018,181 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00026a
[2011/05/08 13:29:54 | 000,017,212 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00026b
[2011/05/08 13:29:54 | 000,021,668 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00026c
[2011/05/08 13:29:56 | 000,017,897 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00026d
[2011/05/08 13:31:20 | 000,017,108 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00026e
[2011/05/08 13:31:23 | 000,018,739 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00026f
[2011/05/08 13:31:25 | 000,021,574 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000270
[2011/05/08 13:31:26 | 000,019,210 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000271
[2011/05/08 13:31:27 | 000,019,932 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000272
[2011/05/08 13:31:27 | 000,016,850 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000273
[2011/05/08 13:31:29 | 000,022,121 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000274
[2011/05/08 13:31:30 | 000,019,293 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000275
[2011/05/08 13:31:31 | 000,016,514 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000276
[2011/05/08 13:31:32 | 000,019,684 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000277
[2011/05/08 13:31:32 | 000,019,662 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000278
[2011/05/08 13:31:33 | 000,017,154 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000279
[2011/05/08 13:32:02 | 000,016,964 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00027a
[2011/05/08 13:32:03 | 000,018,018 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00027b
[2011/05/08 13:32:04 | 000,018,319 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00027c
[2011/05/08 13:32:06 | 000,021,547 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00027d
[2011/05/08 13:32:07 | 000,019,909 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00027e
[2011/05/08 13:32:10 | 000,022,862 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00027f
[2011/05/08 13:32:11 | 000,020,070 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000280
[2011/05/08 13:32:12 | 000,018,655 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000281
[2011/05/08 13:32:13 | 000,018,201 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000282
[2011/05/08 13:32:13 | 000,017,347 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000283
[2011/05/08 13:32:14 | 000,018,115 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000284
[2011/05/08 13:32:15 | 000,018,978 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000285
[2011/05/08 13:32:15 | 000,020,247 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000286
[2011/05/08 13:32:15 | 000,018,228 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000287
[2011/05/08 13:32:16 | 000,020,149 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000288
[2011/05/08 13:32:17 | 000,037,966 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000289
[2011/05/08 13:32:33 | 000,018,714 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00028a
[2011/05/08 13:33:06 | 000,154,123 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00028b
[2011/05/08 13:33:47 | 000,022,578 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00028c
[2011/05/08 13:33:52 | 000,016,506 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00028d
[2011/05/08 13:33:53 | 000,018,871 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00028e
[2011/05/08 13:34:15 | 000,018,682 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00028f
[2011/05/08 13:36:04 | 000,023,930 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000290
[2011/05/08 13:36:04 | 000,016,626 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000291
[2011/05/08 13:36:06 | 000,016,801 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000292
[2011/05/08 13:36:06 | 000,019,085 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000293
[2011/05/08 13:36:08 | 000,019,358 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000294
[2011/05/08 13:36:13 | 000,023,504 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000295
[2011/05/08 13:36:15 | 000,018,904 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000296
[2011/05/08 13:36:15 | 000,018,549 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000297
[2011/05/08 13:36:16 | 000,016,737 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000298
[2011/05/08 13:36:16 | 000,017,766 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000299
[2011/05/08 13:36:28 | 000,019,657 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00029a
[2011/05/08 13:36:30 | 000,019,628 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00029b
[2011/05/08 13:36:33 | 000,021,478 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00029c
[2011/05/08 13:36:33 | 000,017,949 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00029d
[2011/05/08 13:36:38 | 000,022,365 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00029e
[2011/05/08 13:36:39 | 000,019,642 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00029f
[2011/05/08 13:36:40 | 000,022,952 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a0
[2011/05/08 13:36:40 | 000,017,387 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a1
[2011/05/08 13:36:40 | 000,017,201 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a2
[2011/05/08 13:36:41 | 000,016,450 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a3
[2011/05/08 13:36:42 | 000,021,992 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a4
[2011/05/08 13:36:44 | 000,029,367 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a5
[2011/05/08 13:36:45 | 000,017,953 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a6
[2011/05/08 13:36:47 | 000,018,306 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a7
[2011/05/08 13:36:48 | 000,020,730 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a8
[2011/05/08 13:36:49 | 000,017,025 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002a9
[2011/05/08 13:36:49 | 000,019,297 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002aa
[2011/05/08 13:36:50 | 000,017,042 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ab
[2011/05/08 13:36:51 | 000,017,247 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ac
[2011/05/08 13:36:52 | 000,018,370 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ad
[2011/05/08 13:37:13 | 000,017,418 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ae
[2011/05/08 13:37:35 | 000,022,350 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002af
[2011/05/08 13:37:56 | 000,037,891 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b0
[2011/05/08 13:39:13 | 000,027,121 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b1
[2011/05/08 13:39:14 | 000,018,904 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b2
[2011/05/08 13:39:16 | 000,022,601 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b3
[2011/05/08 13:39:16 | 000,021,285 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b4
[2011/05/08 13:39:17 | 000,020,226 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b5
[2011/05/08 13:39:17 | 000,020,201 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b6
[2011/05/08 13:39:18 | 000,017,631 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b7
[2011/05/08 13:39:20 | 000,023,697 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b8
[2011/05/08 13:39:20 | 000,027,775 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002b9
[2011/05/08 13:39:21 | 000,022,709 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ba
[2011/05/08 13:39:22 | 000,024,534 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002bb
[2011/05/08 13:39:22 | 000,017,670 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002bc
[2011/05/08 13:39:23 | 000,023,242 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002bd
[2011/05/08 13:39:24 | 000,019,049 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002be
[2011/05/08 13:39:27 | 000,020,744 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002bf
[2011/05/08 13:39:28 | 000,018,827 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c0
[2011/05/08 13:39:29 | 000,021,518 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c1
[2011/05/08 13:39:32 | 000,017,672 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c2
[2011/05/08 13:39:35 | 000,021,420 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c3
[2011/05/08 13:41:19 | 000,059,567 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c4
[2011/05/08 17:32:34 | 000,076,304 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c5
[2011/05/08 13:41:46 | 000,047,098 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c6
[2011/05/08 13:41:50 | 000,081,041 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c7
[2011/05/08 13:43:00 | 000,153,880 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c8
[2011/05/08 13:43:36 | 000,054,129 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002c9
[2011/05/08 13:43:37 | 000,021,995 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ca
[2011/05/08 13:43:38 | 000,026,046 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002cb
[2011/05/08 13:43:38 | 000,020,597 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002cc
[2011/05/08 13:43:39 | 000,020,505 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002cd
[2011/05/08 13:43:41 | 000,041,827 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ce
[2011/05/08 13:43:42 | 000,019,741 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002cf
[2011/05/08 13:43:48 | 000,055,404 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d0
[2011/05/08 13:43:49 | 000,026,807 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d1
[2011/05/08 13:43:50 | 000,030,865 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d2
[2011/05/08 13:43:51 | 000,024,605 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d3
[2011/05/08 13:43:53 | 000,026,402 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d4
[2011/05/08 13:43:53 | 000,091,099 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d5
[2011/05/08 13:43:56 | 000,493,903 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d6
[2011/05/08 13:43:59 | 000,123,676 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d7
[2011/05/08 13:44:02 | 000,135,185 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d8
[2011/05/08 13:44:03 | 000,020,342 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002d9
[2011/05/08 13:44:03 | 000,032,052 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002da
[2011/05/08 13:44:05 | 000,050,661 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002db
[2011/05/08 13:44:05 | 000,102,707 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002dc
[2011/05/08 13:44:08 | 000,048,165 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002dd
[2011/05/08 13:44:08 | 000,167,807 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002de
[2011/05/08 13:44:09 | 000,044,928 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002df
[2011/05/08 13:44:10 | 000,051,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e0
[2011/05/08 13:44:20 | 000,031,578 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e1
[2011/05/08 13:44:21 | 000,028,147 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e2
[2011/05/08 13:44:24 | 000,059,955 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e3
[2011/05/08 13:44:24 | 000,034,353 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e4
[2011/05/08 13:44:26 | 000,027,322 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e5
[2011/05/08 13:44:26 | 000,061,673 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e6
[2011/05/08 13:44:28 | 000,033,490 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e7
[2011/05/08 13:44:32 | 000,030,088 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e8
[2011/05/08 13:44:32 | 000,083,502 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002e9
[2011/05/08 13:44:33 | 000,044,151 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ea
[2011/05/08 13:44:33 | 000,026,026 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002eb
[2011/05/08 13:44:34 | 000,026,749 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ec
[2011/05/08 13:44:34 | 000,141,870 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ed
[2011/05/08 13:44:35 | 000,057,254 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ee
[2011/05/08 13:44:37 | 000,033,561 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ef
[2011/05/08 13:44:41 | 000,032,820 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f0
[2011/05/08 13:44:41 | 000,049,220 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f1
[2011/05/08 13:44:42 | 000,026,711 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f2
[2011/05/08 13:44:44 | 000,078,419 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f3
[2011/05/08 13:44:45 | 000,023,542 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f4
[2011/05/08 13:44:48 | 000,119,473 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f5
[2011/05/08 13:44:54 | 000,054,129 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f6
[2011/05/08 13:44:57 | 000,025,901 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f7
[2011/05/08 13:45:01 | 000,036,214 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f8
[2011/05/08 13:45:11 | 000,017,189 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002f9
[2011/05/08 13:45:17 | 000,222,157 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002fa
[2011/05/08 13:45:24 | 000,039,170 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002fb
[2011/05/08 13:45:37 | 000,017,230 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002fc
[2011/05/08 13:45:38 | 000,020,201 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002fd
[2011/05/08 13:45:38 | 000,025,118 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002fe
[2011/05/08 13:45:45 | 000,018,434 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0002ff
[2011/05/08 13:45:51 | 000,060,648 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000300
[2011/05/08 13:45:53 | 000,033,063 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000301
[2011/05/08 13:45:55 | 000,021,360 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000302
[2011/05/08 13:45:57 | 000,027,211 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000303
[2011/05/08 13:45:59 | 000,030,137 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000304
[2011/05/08 13:46:04 | 000,030,137 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000305
[2011/05/08 13:46:05 | 000,049,038 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000306
[2011/05/08 13:46:07 | 000,062,336 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000307
[2011/05/08 13:46:13 | 000,023,239 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000308
[2011/05/08 13:46:36 | 000,017,163 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000309
[2011/05/08 13:47:22 | 000,017,178 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00030a
[2011/05/08 13:47:24 | 000,066,779 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00030b
[2011/05/08 13:47:43 | 000,056,563 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00030c
[2011/05/08 14:26:57 | 000,023,794 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00030d
[2011/05/08 14:27:00 | 000,016,817 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00030e
[2011/05/08 14:27:13 | 000,023,794 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00030f
[2011/05/08 14:27:20 | 000,022,477 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000310
[2011/05/08 14:27:21 | 000,019,565 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000311
[2011/05/08 14:27:24 | 000,017,813 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000312
[2011/05/08 14:28:05 | 000,085,545 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000313
[2011/05/08 14:28:19 | 000,087,949 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000314
[2011/05/08 14:28:23 | 000,096,811 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000315
[2011/05/08 14:28:24 | 000,082,713 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000316
[2011/05/08 14:28:28 | 000,103,588 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000317
[2011/05/08 14:28:37 | 000,103,419 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000318
[2011/05/08 14:29:11 | 000,064,987 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000319
[2011/05/08 14:30:02 | 000,098,293 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00031a
[2011/05/08 14:30:21 | 000,076,520 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00031b
[2011/05/08 14:30:31 | 000,036,036 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00031c
[2011/05/08 14:30:31 | 000,070,884 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00031d
[2011/05/08 14:30:31 | 000,063,386 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00031e
[2011/05/08 17:25:54 | 000,035,604 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00031f
[2011/05/08 17:26:15 | 000,049,732 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000320
[2011/05/08 17:26:29 | 000,025,432 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000321
[2011/05/08 17:26:48 | 000,018,582 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000322
[2011/05/08 17:28:07 | 000,123,073 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000323
[2011/05/08 17:29:14 | 000,023,943 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000324
[2011/05/08 17:29:20 | 000,018,469 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000325
[2011/05/08 17:29:42 | 000,016,421 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000326
[2011/05/08 17:29:45 | 000,016,424 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000327
[2011/05/08 17:29:50 | 000,017,062 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000328
[2011/05/08 17:29:52 | 000,016,955 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000329
[2011/05/08 17:29:53 | 000,019,999 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00032a
[2011/05/08 17:29:56 | 000,019,945 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00032b
[2011/05/08 17:30:05 | 000,048,991 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00032c
[2011/05/08 17:30:23 | 000,036,053 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00032d
[2011/05/08 17:34:50 | 000,055,133 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00032e
[2011/05/08 17:35:11 | 000,061,756 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00032f
[2011/05/08 17:35:21 | 000,058,444 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000330
[2011/05/08 17:35:31 | 000,016,715 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000331
[2011/05/08 17:35:31 | 000,016,906 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000332
[2011/05/08 17:35:32 | 000,016,603 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000333
[2011/05/08 17:35:32 | 000,016,784 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000334
[2011/05/08 17:35:33 | 000,018,076 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000335
[2011/05/08 17:35:38 | 000,016,726 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000336
[2011/05/08 17:35:42 | 000,018,424 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000337
[2011/05/08 17:35:50 | 000,016,685 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000338
[2011/05/08 17:35:54 | 000,016,507 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000339
[2011/05/08 17:36:01 | 000,061,005 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00033a
[2011/05/08 17:36:13 | 000,063,340 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00033b
[2011/05/08 17:36:32 | 000,081,466 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00033c
[2011/05/08 17:37:04 | 000,076,099 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00033d
[2011/05/08 17:37:30 | 000,017,001 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00033e
[2011/05/08 17:53:09 | 000,036,552 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00033f
[2011/05/08 17:53:33 | 000,020,399 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000340
[2011/05/08 17:53:36 | 000,068,518 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000341
[2011/05/08 17:53:45 | 000,041,382 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000342
[2011/05/08 17:54:00 | 000,095,760 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000343
[2011/05/08 17:55:11 | 000,016,579 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000344
[2011/05/08 17:56:01 | 000,055,990 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000345
[2011/05/08 17:56:12 | 000,071,705 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000346
[2011/05/08 17:56:16 | 000,036,470 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000347
[2011/05/08 17:56:20 | 000,056,416 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000348
[2011/05/08 17:56:22 | 000,043,216 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000349
[2011/05/08 17:56:45 | 000,017,158 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00034a
[2011/05/08 17:57:07 | 000,019,798 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00034b
[2011/05/08 17:57:09 | 000,019,873 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00034c
[2011/05/08 17:57:15 | 000,017,633 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00034d
[2011/05/08 17:57:24 | 000,018,275 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00034e
[2011/05/08 17:57:25 | 000,016,718 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00034f
[2011/05/08 17:57:45 | 000,083,590 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000350
[2011/05/08 17:58:38 | 000,068,427 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000351
[2011/05/08 17:58:40 | 000,031,043 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000352
[2011/05/08 17:58:53 | 000,050,160 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000353
[2011/05/08 17:58:55 | 000,038,276 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000354
[2011/05/08 17:58:55 | 000,037,076 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000355
[2011/05/08 17:58:57 | 000,031,748 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000356
[2011/05/08 17:58:58 | 000,031,336 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000357
[2011/05/08 17:58:59 | 000,018,207 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000358
[2011/05/08 17:59:00 | 000,054,996 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000359
[2011/05/08 17:59:01 | 000,044,045 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00035a
[2011/05/08 17:59:05 | 000,030,656 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00035b
[2011/05/08 17:59:18 | 000,016,659 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00035c
[2011/05/08 17:59:20 | 000,065,121 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00035d
[2011/05/08 17:59:20 | 000,078,551 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00035e
[2011/05/08 17:59:43 | 000,017,065 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00035f
[2011/05/08 17:59:47 | 000,050,554 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000360
[2011/05/08 17:59:49 | 000,022,755 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000361
[2011/05/08 17:59:51 | 000,092,189 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000362
[2011/05/08 18:00:27 | 000,467,592 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000363
[2011/05/08 18:00:28 | 000,320,623 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000364
[2011/05/08 18:00:36 | 000,022,905 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000365
[2011/05/08 18:00:42 | 000,037,033 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000366
[2011/05/08 18:00:51 | 000,109,487 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000367
[2011/05/08 18:01:10 | 000,018,573 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000368
[2011/05/08 18:02:55 | 000,042,929 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000369
[2011/05/08 18:03:02 | 000,089,188 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00036a
[2011/05/08 18:03:13 | 000,084,877 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00036b
[2011/05/08 18:08:55 | 000,069,676 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00036c
[2011/05/08 18:10:12 | 000,024,142 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00036d
[2011/05/08 18:10:44 | 000,278,701 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000373
[2011/05/08 18:10:56 | 000,030,137 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000374
[2011/05/08 19:29:22 | 000,967,110 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000375
[2011/05/08 18:11:34 | 000,026,136 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000376
[2011/05/08 18:11:35 | 000,032,358 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000377
[2011/05/08 18:11:38 | 000,039,503 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000378
[2011/05/08 18:11:41 | 000,024,231 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000379
[2011/05/08 18:11:50 | 000,126,132 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00037a
[2011/05/08 18:12:10 | 000,094,238 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00037b
[2011/05/08 18:12:42 | 000,760,566 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00037c
[2011/05/08 18:13:32 | 000,172,506 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00037d
[2011/05/08 18:14:38 | 000,095,550 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00037e
[2011/05/08 18:15:32 | 000,149,274 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00037f
[2011/05/08 18:16:24 | 000,058,702 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000380
[2011/05/08 18:17:12 | 000,242,202 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000381
[2011/05/08 18:26:29 | 000,029,194 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000382
[2011/05/08 18:26:40 | 000,021,794 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000383
[2011/05/08 18:27:20 | 000,019,903 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000384
[2011/05/08 18:27:22 | 000,024,251 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000385
[2011/05/08 18:40:54 | 000,042,565 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000386
[2011/05/08 18:41:00 | 000,030,590 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000387
[2011/05/08 18:43:16 | 000,017,608 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000388
[2011/05/08 18:43:55 | 000,040,970 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000389
[2011/05/08 18:45:28 | 000,021,298 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00038a
[2011/05/08 19:30:24 | 000,102,805 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00038b
[2011/05/08 19:34:03 | 001,487,197 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00038c
[2011/05/08 19:38:00 | 003,699,050 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00038d
[2011/05/06 16:32:57 | 000,524,656 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Cache\index
[2011/01/22 00:20:47 | 000,009,216 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db
[2011/04/18 20:38:34 | 001,139,719 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\Cached Theme.pak
[2011/04/18 20:38:29 | 000,001,731 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\manifest.json
[2011/04/18 20:38:30 | 000,005,546 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUY0vEEDA
[2011/04/18 20:38:30 | 000,000,464 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUY1fEEDA
[2011/04/18 20:38:30 | 000,000,469 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUY8ukEDA
[2011/04/18 20:38:30 | 000,000,464 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUY9OkEDA
[2011/04/18 20:38:30 | 000,059,516 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUYnIEFDA
[2011/04/18 20:38:30 | 000,059,105 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUYnYEFDA
[2011/04/18 20:38:32 | 000,632,433 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUYr-4FDA
[2011/04/18 20:38:32 | 000,003,669 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmemmjoiahegfgfcenggecfhoedchfdl\3_0\i\agxjaHJvbWV0aGVtZXNyDAsSBEZpbGUYufkEDA
[2011/04/30 10:42:17 | 000,001,241 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\background.html
[2011/04/30 10:42:17 | 000,000,985 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\manifest.json
[2011/04/30 10:42:17 | 000,002,947 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\popup.html
[2011/04/30 10:42:17 | 000,002,958 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\images\icon-loggedout.png
[2011/04/30 10:42:17 | 000,007,815 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\images\icon128.png
[2011/04/30 10:42:17 | 000,000,211 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\images\icon16.png
[2011/04/30 10:42:17 | 000,002,976 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\images\icon19.png
[2011/04/30 10:42:17 | 000,001,040 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\images\icon32.png
[2011/04/30 10:42:17 | 000,001,810 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\images\icon48.png
[2011/04/30 10:42:17 | 000,001,726 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.12_1\js\options.js
[13 C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\*.tmp files -> C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\*.tmp -> ]
[13 C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\JumpListIconsOld\*.tmp files -> C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\JumpListIconsOld\*.tmp -> ]
[2011/04/29 14:33:54 | 000,003,072 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nmameahlembdcigphohgiodcgjomcgeo_0.localstorage
[2011/05/04 13:32:18 | 000,003,072 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cdn.applifier.com_0.localstorage
[2011/04/22 14:30:41 | 000,003,072 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fb-tc-3.farmville.com_0.localstorage
[2011/04/16 22:53:42 | 000,008,192 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0
[2011/04/30 11:00:00 | 000,270,336 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1
[2011/04/16 22:53:42 | 000,008,192 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_2
[2011/04/16 22:53:42 | 000,008,192 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_3
[2011/04/16 22:53:42 | 000,524,656 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Media Cache\index
[2011/01/21 15:56:38 | 000,017,408 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Plugin Data\Google Gears\localserver.db
[2011/01/21 15:56:38 | 000,019,456 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\Plugin Data\Google Gears\permissions.db
[2011/01/21 11:32:34 | 000,000,000 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\Google\Chrome\User Data\Default\User StyleSheets\Custom.css

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-05-05 19:04:56

========== Alternate Data Streams ==========

@Alternate Data Stream - 94 bytes -> C:\ProgramData\Temp:DE7902AF
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:DFC5A2B2
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:04756BD8
@Alternate Data Stream - 104 bytes -> C:\ProgramData\Temp:D1B5B4F1
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:ADF211B1

< End of report >

OTL logfile created on: 5/8/2011 8:57:24 PM - Run 5
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\audi bin marwoto\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

1,012.00 Mb Total Physical Memory | 140.00 Mb Available Physical Memory | 14.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 36.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.01 Gb Total Space | 44.98 Gb Free Space | 20.63% Space Free | Partition Type: NTFS
Drive D: | 14.58 Gb Total Space | 2.06 Gb Free Space | 14.11% Space Free | Partition Type: NTFS
Drive E: | 512.96 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: USER-PC | User Name: audi bin marwoto | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/05 20:30:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
PRC - [2011/04/17 07:11:42 | 002,071,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011/04/17 03:42:21 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2011/04/17 03:42:21 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2011/04/17 03:42:15 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2011/04/17 03:42:13 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2011/04/17 03:42:12 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2011/04/17 03:42:11 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2011/03/10 09:15:08 | 003,278,232 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idman.exe
PRC - [2011/02/26 13:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/10/27 18:24:42 | 000,645,952 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
PRC - [2010/10/27 18:23:16 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010/06/24 09:27:12 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010/06/24 09:27:06 | 002,202,704 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010/06/09 14:04:02 | 000,828,704 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2010/06/09 14:04:02 | 000,656,672 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
PRC - [2010/05/25 23:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2009/10/14 02:25:54 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/10/14 02:25:30 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2009/07/14 09:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 09:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/01/09 09:54:26 | 000,081,920 | ---- | M] () -- C:\Windows\System32\SupportAppXL\cdrom_mon.exe


========== Modules (SafeList) ==========

MOD - [2011/05/05 20:30:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
MOD - [2011/04/17 03:42:21 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
MOD - [2010/08/21 13:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/05/03 16:54:54 | 003,274,328 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\netsession_win_3f211bc.dll -- (Akamai)
SRV - [2011/04/17 03:42:15 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/12/30 18:52:53 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/10/27 18:23:16 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/10/27 18:21:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/10/13 01:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/06/24 09:27:54 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010/06/24 09:27:12 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2010/06/09 17:06:18 | 000,237,650 | ---- | M] (IDT, Inc.) [Disabled | Stopped] -- C:\Program Files\IDT\WDM\stacsv.exe -- (STacSV)
SRV - [2010/06/09 14:04:02 | 000,656,672 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009/10/14 02:25:30 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2009/07/14 09:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 09:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 09:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/03/03 18:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Disabled | Stopped] -- C:\Program Files\IDT\WDM\AEstSrv.exe -- (AESTFilters)
SRV - [2009/01/09 09:54:26 | 000,081,920 | ---- | M] () [Auto | Running] -- C:\Windows\System32\SupportAppXL\cdrom_mon.exe -- (Autorun CDROM Monitor)


========== Driver Services (SafeList) ==========

DRV - [2011/05/06 08:29:36 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2011/04/17 03:42:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/04/17 03:42:13 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2011/04/16 23:30:42 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2011/01/25 18:40:06 | 000,085,768 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2010/11/29 00:48:36 | 000,685,816 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/10/07 13:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010/06/24 09:04:14 | 000,136,120 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2010/06/09 17:06:18 | 000,431,616 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2010/05/08 01:18:10 | 000,230,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV - [2010/04/28 08:17:46 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfw.sys -- (epfw)
DRV - [2010/04/28 08:17:46 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010/04/28 08:17:46 | 000,041,312 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfp.sys -- (epfwwfp)
DRV - [2010/04/28 08:17:46 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2009/12/30 11:21:16 | 000,027,192 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/11/12 04:09:22 | 000,018,136 | -H-- | M] (DeviceVM, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\dvmio.sys -- (DVMIO)
DRV - [2009/10/22 13:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\69264582.sys -- (69264582)
DRV - [2009/10/09 23:31:02 | 000,311,312 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\6926458.sys -- (setup_9.0.0.722_07.05.2011_17-42drv)
DRV - [2009/09/25 17:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\System32\drivers\69264581.sys -- (69264581)
DRV - [2009/07/21 14:04:04 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009/07/21 14:04:04 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009/07/21 14:04:04 | 000,105,088 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2009/07/21 09:16:40 | 000,114,688 | ---- | M] (ZTE Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2009/07/14 07:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 07:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\serial.sys -- (Serial)
DRV - [2009/07/14 06:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009/07/14 06:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel®
DRV - [2009/02/24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/08/12 10:11:36 | 000,007,168 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.jp.msn.com/HPALL/32
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myfacesounds.com
IE - HKLM\..\URLSearchHook: {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.jp.msn.com/HPALL/32
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=0&l=dir
IE - HKCU\..\URLSearchHook: {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "mipony-plugin Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "mipony-plugin Customized Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:7.2.8
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="


FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011/04/07 01:40:04 | 000,000,000 | ---D | M]

[2010/11/11 19:38:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Extensions
[2011/04/09 23:31:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions
[2011/03/18 21:07:08 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/01/27 09:05:35 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2011/03/29 19:03:15 | 000,000,000 | ---D | M] (IDM CC) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\mozilla_cc@internetdownloadmanager.com
[2011/03/29 19:03:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\audi bin marwoto\AppData\Roaming\mozilla\Firefox\Profiles\b48g0cem.default\extensions\mozilla_cc@internetdownloadmanager.com-trash
[2011/02/12 11:11:48 | 000,002,255 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Mozilla\Firefox\Profiles\b48g0cem.default\searchplugins\askcom.xml
[2011/02/10 17:29:18 | 000,000,929 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Mozilla\Firefox\Profiles\b48g0cem.default\searchplugins\conduit.xml
[2010/12/31 12:17:49 | 000,002,260 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Mozilla\Firefox\Profiles\b48g0cem.default\searchplugins\myfacesounds-powered-by-google.xml
[2011/03/30 14:56:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/01/07 23:01:13 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/12/16 20:13:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

O1 HOSTS File: ([2011/05/06 16:25:00 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (mipony-plugin Toolbar) - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (mipony-plugin Toolbar) - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (mipony-plugin Toolbar) - {90D46C30-9F25-4104-AEA9-35C3F84477FF} - C:\Program Files\mipony-plugin\tbmipo.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - Startup: C:\Users\audi bin marwoto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_07.05.2011_17-42.lnk = C:\Users\audi bin marwoto\Desktop\Virus Removal Tool\setup_9.0.0.722_07.05.2011_17-42\startup.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Download with Mipony - C:\Program Files\MiPony\Browser\IEContext.htm ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O27 - HKLM IFEO\setup.exe: Debugger - "C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe" (TuneUp Software)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 05:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2001/04/18 23:23:00 | 000,000,041 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.ac3acm - C:\Windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\Windows\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\System32\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\System32\yv12vfw.dll (www.helixcommunity.org)

========== Files/Folders - Created Within 30 Days ==========

[2011/05/08 19:35:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/05/08 19:31:33 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/05/08 18:25:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/05/08 18:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/05/08 01:49:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/05/08 01:42:19 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\69264582.sys
[2011/05/08 01:42:18 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\69264581.sys
[2011/05/08 01:42:17 | 000,311,312 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\6926458.sys
[2011/05/08 01:42:12 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\Virus Removal Tool
[2011/05/07 21:44:38 | 000,526,184 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\Windows\System32\XceedCry.dll
[2011/05/07 21:44:38 | 000,456,536 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\Windows\System32\XCEEDZIP.DLL
[2011/05/07 21:44:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Magician
[2011/05/07 21:44:33 | 000,000,000 | ---D | C] -- C:\Program Files\Driver Magician
[2011/05/07 11:48:55 | 002,322,184 | ---- | C] (ESET) -- C:\Users\audi bin marwoto\Desktop\esetsmartinstaller_enu.exe
[2011/05/06 16:24:34 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/05/05 20:28:39 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
[2011/05/05 20:25:53 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\tdsskiller
[2011/05/03 01:20:55 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Documents\Maharaja Lawak
[2011/04/30 02:03:49 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\Media Player Classic
[2011/04/26 13:41:30 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\gmer
[2011/04/26 12:49:25 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2011/04/26 12:49:24 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2011/04/26 12:48:54 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2011/04/20 01:25:09 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\SendSpace
[2011/04/17 08:43:50 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/04/17 07:13:47 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2011/04/17 03:42:21 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2011/04/17 00:50:56 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\Apple Computer
[2011/04/17 00:50:56 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Local\Apple Computer
[2011/04/17 00:45:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari
[2011/04/17 00:44:56 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2011/04/17 00:44:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/04/17 00:43:53 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/04/17 00:43:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011/04/17 00:43:23 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Local\Apple
[2011/04/17 00:43:14 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/04/17 00:43:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/04/17 00:03:36 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\AppData\Roaming\AVG9
[2011/04/16 23:30:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 9.0
[2011/04/16 23:30:41 | 000,243,152 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2011/04/16 23:30:41 | 000,052,872 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2011/04/16 23:30:26 | 000,216,400 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2011/04/16 23:30:25 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2011/04/16 23:30:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg
[2011/04/16 23:29:43 | 000,000,000 | ---D | C] -- C:\ProgramData\avg9
[2011/04/16 23:27:50 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011/04/15 12:39:34 | 000,000,000 | ---D | C] -- C:\Users\audi bin marwoto\Desktop\Guerrilla Bob
[2011/04/15 00:36:52 | 000,000,000 | ---D | C] -- C:\ProgramData\NFS Underground
[2011/04/15 00:14:21 | 000,000,000 | ---D | C] -- C:\Game
[2011/04/12 20:57:16 | 000,000,000 | ---D | C] -- C:\Program Files\Virus Guard v1.8
[2011/04/10 00:32:42 | 000,000,000 | ---D | C] -- C:\Virus Guard
[2009/10/19 06:11:08 | 131,459,490 | ---- | C] (Igor Pavlov) -- C:\Users\audi bin marwoto\AppData\Roaming\soundforgepro10.0a.exe

========== Files - Modified Within 30 Days ==========

[2011/05/08 20:35:08 | 000,628,460 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/08 20:35:08 | 000,110,612 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/08 19:36:44 | 000,001,949 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011/05/08 19:36:06 | 000,018,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/08 19:36:06 | 000,018,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/08 05:27:38 | 075,723,685 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/05/08 01:49:37 | 000,002,282 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_07.05.2011_17-42.lnk
[2011/05/07 20:39:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/07 20:38:58 | 795,787,264 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/07 11:51:20 | 002,322,184 | ---- | M] (ESET) -- C:\Users\audi bin marwoto\Desktop\esetsmartinstaller_enu.exe
[2011/05/07 11:30:05 | 000,879,081 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\SecurityCheck.exe
[2011/05/06 22:12:58 | 000,107,008 | ---- | M] () -- C:\Users\audi bin marwoto\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/06 16:25:00 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011/05/06 08:29:36 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2011/05/05 20:30:14 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\audi bin marwoto\Desktop\OTL_2.exe
[2011/04/29 18:12:22 | 158,367,726 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/04/28 03:09:55 | 000,000,173 | ---- | M] () -- C:\Windows\System32\MRT.INI
[2011/04/26 13:41:02 | 000,293,019 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\gmer.zip
[2011/04/26 13:24:36 | 000,625,664 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\dds.scr
[2011/04/17 03:42:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2011/04/17 03:42:21 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2011/04/17 03:42:13 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2011/04/17 00:45:11 | 000,002,503 | ---- | M] () -- C:\Users\audi bin marwoto\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/04/17 00:45:11 | 000,002,479 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2011/04/17 00:05:42 | 000,002,333 | ---- | M] () -- C:\Users\audi bin marwoto\Desktop\Google Chrome.lnk
[2011/04/16 23:30:43 | 000,001,776 | ---- | M] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
[2011/04/16 23:30:42 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2011/04/16 23:30:25 | 000,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2011/04/14 09:21:08 | 000,409,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2011/05/08 19:36:43 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/05/08 19:36:43 | 000,001,949 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011/05/08 01:49:37 | 000,002,282 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_07.05.2011_17-42.lnk
[2011/05/07 21:44:38 | 000,110,602 | ---- | C] () -- C:\Windows\System32\xcdsfx32.bin
[2011/05/07 11:29:07 | 000,879,081 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\SecurityCheck.exe
[2011/04/26 13:40:42 | 000,293,019 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\gmer.zip
[2011/04/26 13:22:44 | 000,625,664 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\dds.scr
[2011/04/26 12:52:04 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/04/26 12:49:21 | 000,810,496 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/04/26 12:49:21 | 000,183,808 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/04/26 12:49:14 | 000,080,896 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/04/17 00:45:11 | 000,002,503 | ---- | C] () -- C:\Users\audi bin marwoto\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/04/17 00:45:11 | 000,002,479 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2011/04/17 00:43:15 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/04/17 00:05:42 | 000,002,333 | ---- | C] () -- C:\Users\audi bin marwoto\Desktop\Google Chrome.lnk
[2011/04/16 23:30:43 | 000,001,776 | ---- | C] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
[2011/04/16 23:30:25 | 000,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2011/04/16 23:30:23 | 075,723,685 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/04/14 09:19:32 | 158,367,726 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011/02/13 03:10:40 | 000,000,173 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2011/02/06 19:28:24 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011/02/06 19:28:20 | 000,019,968 | ---- | C] () -- C:\Windows\System32\cpuinf32.dll
[2011/01/07 23:02:45 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/12/31 10:18:53 | 000,000,017 | ---- | C] () -- C:\Windows\System32\shortcut_ex.dat
[2010/12/21 15:35:22 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2010/12/21 15:35:22 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2010/12/21 15:35:22 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2010/12/21 15:31:13 | 000,036,208 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2010/12/09 16:19:26 | 000,082,944 | ---- | C] () -- C:\Windows\System32\infinst.exe
[2010/11/25 07:04:44 | 000,053,248 | ---- | C] () -- C:\Windows\System32\PhysXLoader.dll
[2010/11/13 19:49:08 | 000,107,008 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/15 14:12:48 | 000,000,138 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Local\mv_Photo.xml
[2010/10/15 14:12:48 | 000,000,129 | ---- | C] () -- C:\Users\audi bin marwoto\AppData\Local\mv_music.xml
[2010/09/10 02:41:04 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2010/09/10 02:39:14 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/09/10 02:33:43 | 000,000,292 | ---- | C] () -- C:\Windows\System32\RStoneLog2.ini
[2010/09/10 02:33:43 | 000,000,233 | ---- | C] () -- C:\Windows\System32\RStoneLog.ini
[2009/07/14 12:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 12:33:53 | 000,409,640 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 10:05:48 | 000,628,460 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 10:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 10:05:48 | 000,110,612 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 10:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 10:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 10:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 08:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/07/14 07:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 07:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 07:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/14 06:09:19 | 001,498,564 | ---- | C] () -- C:\Windows\System32\igkrng400.bin
[2009/07/10 12:03:56 | 000,370,312 | ---- | C] () -- C:\Windows\System32\sqlite3.dll
[2009/06/11 05:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== LOP Check ==========

[2011/04/17 00:03:36 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\AVG9
[2011/05/07 19:31:13 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\DMCache
[2010/12/15 13:06:43 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\ESET
[2010/11/22 15:42:30 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Frogwares
[2011/03/22 20:21:52 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\funkitron
[2010/12/19 18:35:26 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Gamelab
[2011/01/07 18:14:20 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Hive Cluster
[2011/04/25 00:43:33 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\IDM
[2011/02/06 12:16:36 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\iWin
[2011/03/12 17:18:26 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Magnet's Story
[2011/04/03 19:04:16 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Metacafe
[2011/05/02 17:36:53 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\MiniLyrics
[2011/03/25 15:47:23 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Mipony
[2010/12/19 22:24:57 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\PlayFirst
[2011/01/15 08:11:23 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Publish Providers
[2010/11/18 19:05:37 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Registry Mechanic
[2011/04/20 13:09:45 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\SendSpace
[2010/12/29 22:52:10 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Skip-Bo
[2011/01/28 22:58:00 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\SoftGrid Client
[2011/01/15 08:11:32 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Sony
[2011/03/18 03:27:25 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\SpinTop
[2010/12/09 12:13:48 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Systweak
[2011/05/07 11:52:20 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\TeraCopy
[2011/03/26 17:29:38 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Thinstall
[2010/11/13 10:43:37 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Tific
[2010/11/23 20:28:28 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\TP
[2011/01/28 19:22:06 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\TuneUp Software
[2010/11/22 11:46:13 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\UNOUndercover
[2011/01/11 12:34:35 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\Windows Live Writer
[2011/04/03 19:16:03 | 000,000,000 | ---D | M] -- C:\Users\audi bin marwoto\AppData\Roaming\ZumoDrive
[2011/02/24 22:31:25 | 000,032,610 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users