Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

StartupRepairFailure


  • This topic is locked This topic is locked
21 replies to this topic

#1 sjohn2776

sjohn2776

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 24 December 2011 - 11:04 PM

I was surfing the internet when suddenly my computer restarted and continued to go through an endless startup repair loop. What's embarrassing is that this happened to me before a few months ago. I've been letting my parents use this computer while theirs is in being repaired and I think they did the same thing I used to do and could use a fix.

So anyway I did the same steps with the Farbar Recovery Scan Tool x64 and stopped right after the scan once again.

Scan result of Farbars's Recovery Tool (FRST written by farbar) Version 2.3.0
Ran by SYSTEM at 2011-12-24 22:25:30
Running from F:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe [617856 2009-07-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [500208 2010-03-05] (Adobe Systems Incorporated)
HKLM\...\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe [161304 2010-08-25] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe [386584 2010-08-25] (Intel Corporation)
HKLM\...\Run: [Persistence] C:\Windows\system32\igfxpers.exe [415256 2010-08-25] (Intel Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [CinemaNowMediaManagerApp] C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe -start [2088296 2009-06-11] (CinemaNow Inc.)
HKLM-x32\...\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r [2244096 2009-07-12] (VIA)
HKLM-x32\...\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [8493624 2009-07-07] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [159744 2009-04-20] (ASUS)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [937920 2011-03-29] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [31072 2008-10-25] (Microsoft Corporation)
HKLM-x32\...\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [646232 2011-09-28] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [254696 2011-04-08] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2011-11-12] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\real\realplayer\update\realsched.exe" -osboot [296056 2011-12-01] (RealNetworks, Inc.)
HKU\Steven\...\Run: [VeohPlugin] "C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe" [2816328 2011-08-25] (Veoh Networks)
HKU\Steven\...\Run: [BitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" [400760 2011-04-27] (BitTorrent, Inc.)
HKU\Steven\...\Run: [AdobeBridge] [x]
HKU\Steven\...\Run: [Akamai NetSession Interface] C:\Users\Steven\AppData\Local\Akamai\netsession_win.exe [3305248 2011-12-06] (Akamai Technologies, Inc)
Winlogon\Notify\igfxcui: igfxdev.dll (Intel Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

==================== Services (Whitelisted) ======

2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-07] ()
2 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [462184 2011-08-30] (Apple Inc.)
2 CinemaNow Service; C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe [127352 2009-06-11] (CinemaNow, Inc.)
2 FastBootAgent; "C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe" [306232 2009-07-23] (ASUSTeK Computer Inc.)
2 Giraffic; C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe --service [2221200 2011-09-19] (Giraffic)
3 Microsoft Office Groove Audit Service; "C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe" [65888 2008-10-25] (Microsoft Corporation)
2 N360; "C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll" /prefetch:1 [262584 2011-03-31] (Symantec Corporation)
2 TabletServicePen; C:\Program Files\Tablet\Pen\Pen_Tablet.exe [6583160 2011-09-08] (Wacom Technology, Corp.)
2 TouchServicePen; C:\Program Files\Tablet\Pen\Pen_TouchService.exe [528760 2011-09-08] (Wacom Technology, Corp.)
2 Updater Service for StartNow Toolbar; C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe [267488 2011-07-27] ()
2 Akamai; c:\program files (x86)\common files\akamai/netsession_win_b427739.dll [x]

========================== Drivers (Whitelisted) =============

2 ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [14904 2007-07-24] ()
1 BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111210.003\BHDrvx64.sys [1156216 2011-11-14] (Symantec Corporation)
1 eeCtrl; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [482936 2011-11-09] (Symantec Corporation)
3 EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138360 2011-11-09] (Symantec Corporation)
1 IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20111216.001\IDSvia64.sys [488568 2011-08-22] (Symantec Corporation)
3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15928 2009-06-18] (Windows ® Win 7 DDK provider)
3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111216.017\ENG64.SYS [117880 2011-11-17] (Symantec Corporation)
3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111216.017\EX64.SYS [2048632 2011-11-17] (Symantec Corporation)
3 sj; \??\C:\AeriaGames\EdenEternal\sjcs64.sys [47224 2011-11-23] ()
3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1799680 2009-05-20] ()
3 SRTSP; C:\Windows\System32\drivers\N360x64\0501000.01D\SRTSP64.SYS [744568 2011-03-30] (Symantec Corporation)
1 SRTSPX; C:\Windows\System32\drivers\N360x64\0501000.01D\SRTSPX64.SYS [40568 2011-03-30] (Symantec Corporation)
0 SymDS; C:\Windows\System32\drivers\N360x64\0501000.01D\SYMDS64.SYS [450680 2011-01-26] (Symantec Corporation)
0 SymEFA; C:\Windows\System32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [912504 2011-03-14] (Symantec Corporation)
3 SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2011-08-11] (Symantec Corporation)
1 SymIRON; C:\Windows\System32\drivers\N360x64\0501000.01D\Ironx64.SYS [171128 2011-01-26] (Symantec Corporation)
1 SymNetS; C:\Windows\System32\drivers\N360x64\0501000.01D\SYMNETS.SYS [386168 2011-07-08] (Symantec Corporation)
3 usbio; C:\Windows\System32\Drivers\dsiarhwprog_x64.sys [51600 2007-02-08] (Thesycon GmbH, Germany)
3 wacmoumonitor; C:\Windows\System32\DRIVERS\wacmoumonitor.sys [13312 2011-09-08] (Wacom Technology)
3 wacommousefilter; C:\Windows\System32\DRIVERS\wacommousefilter.sys [12848 2010-10-11] (Wacom Technology)
3 wacomvhid; C:\Windows\System32\DRIVERS\wacomvhid.sys [16168 2010-10-11] (Wacom Technology)
3 dump_wmimmc; \??\C:\gPotato\Rappelz\GameGuard\dump_wmimmc.sys [x]
3 npggsvc; C:\Windows\system32\GameMon.des -service [x]
3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
3 tmlwf; [x]
3 tmwfp; [x]

========================== NetSvcs (Whitelisted) ===========

============ One Month Created Files and Folders ==============

2011-12-24 10:01 - 2011-12-24 10:01 - 0050596 ____A C:\Users\Steven\Desktop\PowerUpRewards.pdf
2011-12-24 01:06 - 2011-12-24 01:13 - 239777306 ____A C:\Users\Steven\Downloads\[T-N]Gosei_Sentai_DaiRanger_36[95F9C7CD]DVD.avi
2011-12-23 13:39 - 2011-12-23 13:39 - 7201593 ____A C:\Users\Steven\Desktop\Giant Step [FULL] - Astronauts (Kamen Rider Fourze).mp3
2011-12-22 22:08 - 2011-12-22 22:28 - 538431475 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.43.[1280x720].[1866FC55].v2.mkv
2011-12-20 23:39 - 2011-12-20 23:52 - 387732275 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_11_HD[41323867].mp4
2011-12-20 00:12 - 2011-12-20 00:23 - 260236444 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act04[005EE7C7]DVD.avi
2011-12-19 00:39 - 2011-12-19 00:39 - 0000000 ___AH C:\Users\Steven\Desktop\vwedcrzhwy.tmp
2011-12-18 23:36 - 2011-12-18 23:56 - 424082921 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_43_[9CD65790].mkv
2011-12-18 23:16 - 2011-12-19 21:34 - 0000000 ____D C:\Users\Steven\AppData\Local\Apps\AppsData
2011-12-18 20:18 - 2011-12-18 22:21 - 3122590672 ____A C:\Users\Steven\Downloads\Macross Frontier - Sayonara no Tsubasa (Central Anime, 720p) [46B35E25].mkv
2011-12-18 17:30 - 2011-12-18 18:12 - 302573335 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_15_[A38C04B2].mkv
2011-12-15 08:57 - 2011-12-15 08:57 - 0000000 ____D C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw
2011-12-15 08:45 - 2011-12-15 08:46 - 10178688 ____A C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Skys_the_Limit.mp3
2011-12-15 08:45 - 2011-12-15 08:45 - 9611392 ____A C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Beauty_of_Destiny.mp3
2011-12-15 08:44 - 2011-12-15 08:54 - 128650995 ____A C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw.rar
2011-12-15 05:50 - 2011-12-15 05:50 - 0000000 ____D C:\Users\Steven\Documents\My Games
2011-12-15 00:37 - 2011-12-15 00:37 - 0000000 ____D C:\Users\Steven\Downloads\[T-N]HeartCatch_Precure
2011-12-14 23:16 - 2011-12-15 01:26 - 296693482 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act03[A993B5D5]DVD.avi
2011-12-14 20:44 - 2011-12-14 21:01 - 445874550 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.42.[1280x720].[17CBF57B].mkv
2011-12-13 22:16 - 2011-12-13 22:16 - 0000000 ____D C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls
2011-12-13 22:08 - 2011-12-13 22:11 - 11533176 ____A C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls.rar
2011-12-13 21:42 - 2011-12-13 22:15 - 387980059 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_10_HD[B0F23941].mp4
2011-12-13 21:42 - 2011-12-13 22:15 - 226242318 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act02[327EAE01]DVD.avi
2011-12-13 21:42 - 2011-12-13 22:02 - 194631134 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act01[52351D5D]DVD.avi
2011-12-13 12:14 - 2011-11-10 22:41 - 12370944 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-12-13 12:14 - 2011-11-10 22:41 - 0247808 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-12-13 12:14 - 2011-11-10 21:50 - 10990080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2011-12-13 12:14 - 2011-11-10 21:50 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2011-12-13 12:14 - 2011-11-04 21:26 - 1501184 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-12-13 12:14 - 2011-11-04 21:26 - 1197568 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-12-13 12:14 - 2011-11-04 21:26 - 0134144 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-12-13 12:14 - 2011-11-04 21:23 - 9332736 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-12-13 12:14 - 2011-11-04 21:23 - 1026560 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2011-12-13 12:14 - 2011-11-04 21:23 - 0703488 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-12-13 12:14 - 2011-11-04 21:23 - 0097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-12-13 12:14 - 2011-11-04 21:23 - 0082944 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2011-12-13 12:14 - 2011-11-04 21:23 - 0057856 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2011-12-13 12:14 - 2011-11-04 21:22 - 2458624 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-12-13 12:14 - 2011-11-04 21:22 - 0445952 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2011-12-13 12:14 - 2011-11-04 21:22 - 0256000 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-12-13 12:14 - 2011-11-04 21:22 - 0064512 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-12-13 12:14 - 2011-11-04 21:19 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2011-12-13 12:14 - 2011-11-04 20:35 - 1230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon(4).dll
2011-12-13 12:14 - 2011-11-04 20:35 - 0981504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2011-12-13 12:14 - 2011-11-04 20:35 - 0132096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 5997568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 2072576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0606208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0599552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0185856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0067072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0064512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0048128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy(2).dll
2011-12-13 12:14 - 2011-11-04 20:34 - 0044544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2011-12-13 12:14 - 2011-11-04 20:33 - 0381440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2011-12-13 12:14 - 2011-11-04 20:32 - 0012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2011-12-13 12:14 - 2011-11-04 20:07 - 0482816 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-12-13 12:14 - 2011-11-04 19:28 - 0386048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2011-12-13 12:14 - 2011-11-04 19:25 - 1638912 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-12-13 12:14 - 2011-11-04 18:55 - 1638912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-12-13 12:14 - 2011-10-25 21:19 - 0043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2011-12-13 12:12 - 2011-11-23 21:00 - 3141632 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-12-13 12:12 - 2011-11-04 21:17 - 0002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2011-12-13 12:12 - 2011-11-04 20:30 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2011-12-13 12:12 - 2011-10-14 22:25 - 0723456 ____A (Microsoft Corporation) C:\Windows\System32\EncDec.dll
2011-12-13 12:12 - 2011-10-14 21:48 - 0534528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2011-12-12 21:19 - 2011-12-12 21:19 - 5980902 ____A C:\Users\Steven\Desktop\Anything Goes! Ballad - Maki Ohguro.mp3
2011-12-12 14:31 - 2011-12-12 14:42 - 327386216 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_14_[527C11D8].mkv
2011-12-11 16:40 - 2011-12-11 16:55 - 376626380 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_42_[AB3228F1].mkv
2011-12-11 15:26 - 2011-12-11 15:26 - 0000000 ____D C:\Users\Steven\Desktop\Garo+High+Res
2011-12-10 23:13 - 2011-12-11 14:36 - 651312237 ____A C:\Users\Steven\Desktop\Garo+High+Res.zip
2011-12-09 20:43 - 2011-12-09 20:49 - 178432000 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.09.[BDE0A9FD].avi
2011-12-09 01:08 - 2011-12-09 01:21 - 448153732 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.41.[1280x720].[72FC60F2].mkv
2011-12-08 18:37 - 2011-12-16 20:14 - 0000000 ____D C:\Users\Steven\Desktop\Knighthood
2011-12-08 18:22 - 2011-12-08 19:42 - 0000328 ____A C:\Users\Steven\AppData\Roaming\wklnhst.dat
2011-12-08 18:22 - 2011-12-08 18:22 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Template
2011-12-08 00:21 - 2011-12-08 00:21 - 0000162 ___AH C:\Users\Steven\Desktop\~$ighthood Dark vs Holy Storyline.doc
2011-12-07 23:51 - 2011-12-24 22:16 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Skype
2011-12-07 23:51 - 2011-12-07 23:51 - 0002515 ____A C:\Users\Public\Desktop\Skype.lnk
2011-12-07 23:51 - 2011-12-07 23:51 - 0000000 ___RD C:\Program Files (x86)\Skype
2011-12-07 23:51 - 2011-12-07 23:51 - 0000000 ____D C:\Users\All Users\Skype
2011-12-07 23:51 - 2011-12-07 23:51 - 0000000 ____D C:\ProgramData\Skype
2011-12-07 23:48 - 2011-12-07 23:48 - 0980104 ____A (Skype Technologies S.A.) C:\Users\Steven\Desktop\SkypeSetup.exe
2011-12-05 10:49 - 2011-12-05 11:06 - 388128170 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_09_HD[35DC6A95].mp4
2011-12-04 20:43 - 2011-12-04 21:16 - 360324277 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_41_[01B75D4A].mkv
2011-12-04 19:21 - 2011-12-04 19:36 - 407824830 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_13_[D7412CAF].mkv
2011-12-02 22:22 - 2011-12-02 22:22 - 3307686 ____A C:\Users\Steven\Desktop\Nijiiro Crystal Sky.mp3
2011-12-01 10:28 - 2011-12-01 10:28 - 0499712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0348160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0198832 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0001042 ____A C:\Users\Public\Desktop\RealPlayer.lnk
2011-11-30 20:04 - 2011-11-30 20:37 - 448184253 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.40.[1280x720].[A6F245B1].mkv
2011-11-30 20:03 - 2011-11-30 20:34 - 406948760 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.39.[1280x720].[AFD28DE9].mkv
2011-11-30 05:40 - 2011-11-30 05:46 - 71927945 ____A C:\Users\Steven\Downloads\[T-N]Garo_CM_HD[AF61E745].mp4
2011-11-30 05:37 - 2011-11-30 06:00 - 387954415 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_08_HD[5488493D].mp4
2011-11-29 22:22 - 2011-11-29 22:22 - 0000769 ____A C:\Users\Steven\Desktop\Shin Megami Tensei Imagine Online.lnk
2011-11-29 19:52 - 2011-11-29 21:55 - 1985027504 ____A C:\Users\Steven\Desktop\megaten_us_install_20111104.exe
2011-11-29 19:45 - 2011-11-29 19:45 - 0322160 ____A C:\Users\Steven\Desktop\megaten_us_downloader_20111104.exe
2011-11-29 14:47 - 2011-11-29 14:50 - 44589681 ___RA C:\Users\Steven\Downloads\[Over-Time]+Super+Hero+Getter+199+Heroes+Edition+[10bit+720p+AAC][FB450851].mkv
2011-11-27 22:52 - 2011-11-27 23:03 - 328524067 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_12_[E3F54B49].mkv
2011-11-27 19:37 - 2011-11-27 19:50 - 415043882 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_40_[17EF31FB].mkv
2011-11-24 20:58 - 2011-11-24 21:25 - 387909120 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_07_HD[7B09A14C].mp4
2011-11-24 10:14 - 2011-11-24 10:14 - 1583480 ____A C:\Users\Steven\Desktop\Switch On! - Anna Tsuchiya.mp3


============ 3 Months Modified Files and Folders =============

2011-12-24 22:25 - 2011-06-25 00:09 - 0000000 ____D C:\FRST
2011-12-24 22:18 - 2011-11-16 14:37 - 0000000 ____D C:\Program Files\iTunes
2011-12-24 22:18 - 2011-11-16 14:37 - 0000000 ____D C:\Program Files (x86)\iTunes
2011-12-24 22:18 - 2011-11-03 18:00 - 0000000 ____D C:\Users\Steven\AppData\Local\Akamai
2011-12-24 22:18 - 2011-08-28 07:33 - 0000000 ____D C:\Users\All Users\Giraffic
2011-12-24 22:18 - 2011-08-28 07:33 - 0000000 ____D C:\ProgramData\Giraffic
2011-12-24 22:18 - 2011-08-28 07:33 - 0000000 ____D C:\Program Files (x86)\Giraffic
2011-12-24 22:18 - 2010-08-17 13:51 - 0000000 ____D C:\Users\Steven\AppData\Roaming\BitTorrent
2011-12-24 22:18 - 2010-08-17 13:27 - 0000000 ____D C:\Users\All Users\Norton
2011-12-24 22:18 - 2010-08-17 13:27 - 0000000 ____D C:\ProgramData\Norton
2011-12-24 22:18 - 2010-08-17 13:15 - 0000000 ____D C:\users\Steven
2011-12-24 22:18 - 2009-10-05 22:42 - 0000000 ____D C:\Windows\SysWOW64\Fast Boot
2011-12-24 22:18 - 2009-10-05 22:42 - 0000000 ____D C:\Users\All Users\P4G
2011-12-24 22:18 - 2009-10-05 22:42 - 0000000 ____D C:\ProgramData\P4G
2011-12-24 22:18 - 2009-10-05 22:25 - 0000000 ____D C:\Users\All Users\CinemaNow
2011-12-24 22:18 - 2009-10-05 22:25 - 0000000 ____D C:\ProgramData\CinemaNow
2011-12-24 22:18 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\NDF
2011-12-24 22:17 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\registration
2011-12-24 22:16 - 2011-12-07 23:51 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Skype
2011-12-24 22:16 - 2010-08-17 14:14 - 0000000 ____D C:\Users\All Users\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2011-12-24 22:16 - 2010-08-17 14:14 - 0000000 ____D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2011-12-24 22:16 - 2010-08-17 13:55 - 0000000 ____D C:\Users\All Users\Real
2011-12-24 22:16 - 2010-08-17 13:55 - 0000000 ____D C:\ProgramData\Real
2011-12-24 22:15 - 2011-11-16 14:37 - 0000000 ____D C:\Program Files\iPod
2011-12-24 22:15 - 2009-10-05 22:26 - 0000000 ____D C:\Program Files (x86)\Windows Live
2011-12-24 21:29 - 2011-12-24 21:28 - 0000000 ____D C:\Windows\System32\config\mybackup
2011-12-24 18:35 - 2011-11-18 21:51 - 0000000 ____D C:\Users\Public\Sony Online Entertainment
2011-12-24 14:41 - 2010-08-20 19:11 - 0000000 ____D C:\Users\Steven\AppData\Local\Deployment
2011-12-24 12:37 - 2010-08-17 13:13 - 3193765888 __ASH C:\hiberfil.sys
2011-12-24 10:01 - 2011-12-24 10:01 - 0050596 ____A C:\Users\Steven\Desktop\PowerUpRewards.pdf
2011-12-24 01:13 - 2011-12-24 01:06 - 239777306 ____A C:\Users\Steven\Downloads\[T-N]Gosei_Sentai_DaiRanger_36[95F9C7CD]DVD.avi
2011-12-23 13:39 - 2011-12-23 13:39 - 7201593 ____A C:\Users\Steven\Desktop\Giant Step [FULL] - Astronauts (Kamen Rider Fourze).mp3
2011-12-22 22:28 - 2011-12-22 22:08 - 538431475 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.43.[1280x720].[1866FC55].v2.mkv
2011-12-20 23:52 - 2011-12-20 23:39 - 387732275 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_11_HD[41323867].mp4
2011-12-20 00:23 - 2011-12-20 00:12 - 260236444 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act04[005EE7C7]DVD.avi
2011-12-19 21:34 - 2011-12-18 23:16 - 0000000 ____D C:\Users\Steven\AppData\Local\Apps\AppsData
2011-12-19 00:39 - 2011-12-19 00:39 - 0000000 ___AH C:\Users\Steven\Desktop\vwedcrzhwy.tmp
2011-12-18 23:56 - 2011-12-18 23:36 - 424082921 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_43_[9CD65790].mkv
2011-12-18 22:21 - 2011-12-18 20:18 - 3122590672 ____A C:\Users\Steven\Downloads\Macross Frontier - Sayonara no Tsubasa (Central Anime, 720p) [46B35E25].mkv
2011-12-18 18:12 - 2011-12-18 17:30 - 302573335 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_15_[A38C04B2].mkv
2011-12-17 00:00 - 2009-10-05 22:11 - 1456321 ____A C:\Windows\WindowsUpdate.log
2011-12-16 20:14 - 2011-12-08 18:37 - 0000000 ____D C:\Users\Steven\Desktop\Knighthood
2011-12-16 11:39 - 2009-07-13 20:45 - 0010240 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2011-12-16 11:39 - 2009-07-13 20:45 - 0010240 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2011-12-16 11:29 - 2011-01-23 08:45 - 0045056 ____A C:\Windows\System32\acovcnt.exe
2011-12-16 11:28 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2011-12-16 11:28 - 2009-07-13 20:51 - 0213668 ____A C:\Windows\setupact.log
2011-12-15 08:57 - 2011-12-15 08:57 - 0000000 ____D C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw
2011-12-15 08:54 - 2011-12-15 08:44 - 128650995 ____A C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw.rar
2011-12-15 08:46 - 2011-12-15 08:45 - 10178688 ____A C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Skys_the_Limit.mp3
2011-12-15 08:45 - 2011-12-15 08:45 - 9611392 ____A C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Beauty_of_Destiny.mp3
2011-12-15 05:50 - 2011-12-15 05:50 - 0000000 ____D C:\Users\Steven\Documents\My Games
2011-12-15 01:26 - 2011-12-14 23:16 - 296693482 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act03[A993B5D5]DVD.avi
2011-12-15 00:37 - 2011-12-15 00:37 - 0000000 ____D C:\Users\Steven\Downloads\[T-N]HeartCatch_Precure
2011-12-15 00:14 - 2011-05-14 10:35 - 0000000 ____D C:\Users\Steven\Games
2011-12-14 21:30 - 2011-02-11 11:22 - 0000000 ___HD C:\Windows\msdownld.tmp
2011-12-14 21:30 - 2011-01-02 17:17 - 0000000 ____D C:\Windows\SysWOW64\directx
2011-12-14 21:01 - 2011-12-14 20:44 - 445874550 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.42.[1280x720].[17CBF57B].mkv
2011-12-13 22:16 - 2011-12-13 22:16 - 0000000 ____D C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls
2011-12-13 22:15 - 2011-12-13 21:42 - 387980059 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_10_HD[B0F23941].mp4
2011-12-13 22:15 - 2011-12-13 21:42 - 226242318 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act02[327EAE01]DVD.avi
2011-12-13 22:11 - 2011-12-13 22:08 - 11533176 ____A C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls.rar
2011-12-13 22:02 - 2011-12-13 21:42 - 194631134 ____A C:\Users\Steven\Downloads\[T-N]Bishoujo_Senshi_Sailor_Moon_Act01[52351D5D]DVD.avi
2011-12-13 21:29 - 2009-07-13 20:45 - 5060192 ____A C:\Windows\System32\FNTCACHE.DAT
2011-12-13 12:55 - 2009-10-05 22:07 - 0000000 ____D C:\Users\All Users\Microsoft Help
2011-12-13 12:55 - 2009-10-05 22:07 - 0000000 ____D C:\ProgramData\Microsoft Help
2011-12-12 21:19 - 2011-12-12 21:19 - 5980902 ____A C:\Users\Steven\Desktop\Anything Goes! Ballad - Maki Ohguro.mp3
2011-12-12 14:42 - 2011-12-12 14:31 - 327386216 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_14_[527C11D8].mkv
2011-12-11 16:55 - 2011-12-11 16:40 - 376626380 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_42_[AB3228F1].mkv
2011-12-11 15:26 - 2011-12-11 15:26 - 0000000 ____D C:\Users\Steven\Desktop\Garo+High+Res
2011-12-11 14:36 - 2011-12-10 23:13 - 651312237 ____A C:\Users\Steven\Desktop\Garo+High+Res.zip
2011-12-10 20:51 - 2011-10-21 20:24 - 0000132 ____A C:\Users\Steven\AppData\Roaming\Adobe PNG Format CS5 Prefs
2011-12-10 20:30 - 2010-09-29 06:06 - 0000000 ___RD C:\Users\Steven\Documents\Scanned Documents
2011-12-10 20:21 - 2010-08-20 15:55 - 0001214 ____A C:\Users\Public\Desktop\World of Warcraft.lnk
2011-12-10 18:39 - 2009-10-05 22:33 - 0437210 ____A C:\Windows\PFRO.log
2011-12-09 20:49 - 2011-12-09 20:43 - 178432000 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.09.[BDE0A9FD].avi
2011-12-09 01:21 - 2011-12-09 01:08 - 448153732 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.41.[1280x720].[72FC60F2].mkv
2011-12-08 19:42 - 2011-12-08 18:22 - 0000328 ____A C:\Users\Steven\AppData\Roaming\wklnhst.dat
2011-12-08 19:42 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\System32\FxsTmp
2011-12-08 18:22 - 2011-12-08 18:22 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Template
2011-12-08 00:21 - 2011-12-08 00:21 - 0000162 ___AH C:\Users\Steven\Desktop\~$ighthood Dark vs Holy Storyline.doc
2011-12-07 23:51 - 2011-12-07 23:51 - 0002515 ____A C:\Users\Public\Desktop\Skype.lnk
2011-12-07 23:51 - 2011-12-07 23:51 - 0000000 ___RD C:\Program Files (x86)\Skype
2011-12-07 23:51 - 2011-12-07 23:51 - 0000000 ____D C:\Users\All Users\Skype
2011-12-07 23:51 - 2011-12-07 23:51 - 0000000 ____D C:\ProgramData\Skype
2011-12-07 23:48 - 2011-12-07 23:48 - 0980104 ____A (Skype Technologies S.A.) C:\Users\Steven\Desktop\SkypeSetup.exe
2011-12-07 21:26 - 2010-10-22 16:54 - 0000000 ____D C:\Users\Steven\My Works
2011-12-06 22:59 - 2011-01-30 10:18 - 0000000 ____D C:\Users\Steven\AppData\Local\ElevatedDiagnostics
2011-12-05 11:06 - 2011-12-05 10:49 - 388128170 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_09_HD[35DC6A95].mp4
2011-12-04 21:16 - 2011-12-04 20:43 - 360324277 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_41_[01B75D4A].mkv
2011-12-04 19:36 - 2011-12-04 19:21 - 407824830 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_13_[D7412CAF].mkv
2011-12-02 22:22 - 2011-12-02 22:22 - 3307686 ____A C:\Users\Steven\Desktop\Nijiiro Crystal Sky.mp3
2011-12-01 10:29 - 2010-08-17 13:55 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Real
2011-12-01 10:28 - 2011-12-01 10:28 - 0499712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0348160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0198832 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2011-12-01 10:28 - 2011-12-01 10:28 - 0001042 ____A C:\Users\Public\Desktop\RealPlayer.lnk
2011-12-01 10:28 - 2010-11-17 14:30 - 0000000 ____D C:\Program Files (x86)\real
2011-11-30 20:37 - 2011-11-30 20:04 - 448184253 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.40.[1280x720].[A6F245B1].mkv
2011-11-30 20:34 - 2011-11-30 20:03 - 406948760 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.39.[1280x720].[AFD28DE9].mkv
2011-11-30 06:00 - 2011-11-30 05:37 - 387954415 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_08_HD[5488493D].mp4
2011-11-30 05:46 - 2011-11-30 05:40 - 71927945 ____A C:\Users\Steven\Downloads\[T-N]Garo_CM_HD[AF61E745].mp4
2011-11-29 22:22 - 2011-11-29 22:22 - 0000769 ____A C:\Users\Steven\Desktop\Shin Megami Tensei Imagine Online.lnk
2011-11-29 22:00 - 2011-03-03 14:52 - 0000000 ____D C:\AeriaGames
2011-11-29 21:55 - 2011-11-29 19:52 - 1985027504 ____A C:\Users\Steven\Desktop\megaten_us_install_20111104.exe
2011-11-29 19:45 - 2011-11-29 19:45 - 0322160 ____A C:\Users\Steven\Desktop\megaten_us_downloader_20111104.exe
2011-11-29 19:04 - 2011-10-17 19:53 - 0000000 ____D C:\Program Files (x86)\NCSoft
2011-11-29 19:04 - 2009-10-05 22:17 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2011-11-29 19:03 - 2010-08-25 22:31 - 0000000 ____D C:\Users\Steven\AppData\Local\CrashDumps
2011-11-29 14:50 - 2011-11-29 14:47 - 44589681 ___RA C:\Users\Steven\Downloads\[Over-Time]+Super+Hero+Getter+199+Heroes+Edition+[10bit+720p+AAC][FB450851].mkv
2011-11-27 23:03 - 2011-11-27 22:52 - 328524067 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_12_[E3F54B49].mkv
2011-11-27 19:50 - 2011-11-27 19:37 - 415043882 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_40_[17EF31FB].mkv
2011-11-26 11:57 - 2010-08-27 11:14 - 0000000 ____D C:\Users\Steven\dwhelper
2011-11-24 21:25 - 2011-11-24 20:58 - 387909120 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_07_HD[7B09A14C].mp4
2011-11-24 10:14 - 2011-11-24 10:14 - 1583480 ____A C:\Users\Steven\Desktop\Switch On! - Anna Tsuchiya.mp3
2011-11-23 21:00 - 2011-12-13 12:12 - 3141632 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-11-23 01:50 - 2011-11-23 01:50 - 0000000 ____D C:\Users\Steven\Desktop\[Yomikiri] Harusuke (Harugoya) - Harubon 7 [ENG]
2011-11-23 01:49 - 2011-11-23 01:49 - 17856214 ____A C:\Users\Steven\Desktop\[Yomikiri] Harusuke (Harugoya) - Harubon 7 [ENG].zip
2011-11-20 22:48 - 2011-11-20 22:13 - 295502272 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_11_[CEE0ED2D].mkv
2011-11-20 22:39 - 2011-11-20 22:17 - 448368756 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.38.[1280x720].[3CAD8F00].mkv
2011-11-20 17:53 - 2011-11-20 17:18 - 395873459 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_39_[E2BB9E97].mkv
2011-11-19 11:42 - 2011-11-19 11:42 - 0000000 ____D C:\Users\Steven\Desktop\an_mudstomp_ride
2011-11-19 11:41 - 2010-09-10 10:10 - 0000000 ____D C:\Users\Steven\AppData\Roaming\vlc
2011-11-18 22:44 - 2011-11-18 22:43 - 22830110 ____A C:\Users\Steven\Desktop\an_mudstomp_ride.zip
2011-11-18 21:57 - 2011-11-18 21:57 - 0000000 ____D C:\Users\Steven\AppData\Local\SCE
2011-11-18 21:57 - 2011-05-16 12:42 - 0404640 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2011-11-18 21:57 - 2010-08-17 13:15 - 0000000 ____D C:\Users\Steven\AppData\LocalLow
2011-11-18 21:51 - 2009-07-13 19:20 - 0000000 ___RD C:\users\Public
2011-11-18 21:49 - 2011-11-18 21:49 - 8980224 ____A C:\Users\Steven\Desktop\DCUO_setup.exe
2011-11-17 21:55 - 2011-11-17 21:55 - 0000000 ____D C:\Users\Steven\Desktop\??XW?
2011-11-17 21:53 - 2011-11-17 21:52 - 32812927 ____A C:\Users\Steven\Desktop\??XW?.rar
2011-11-17 21:52 - 2011-11-17 21:52 - 0000000 ____D C:\Users\Steven\Desktop\[Kurohane Karasu] Watashi no Yuusha-sama, Tsundere no Yuusha-sama (My hero, sweat and sour hero)[Eng]
2011-11-17 21:51 - 2011-11-17 21:50 - 3426224 ____A C:\Users\Steven\Desktop\[Kurohane Karasu] Watashi no Yuusha-sama, Tsundere no Yuusha-sama (My hero, sweat and sour hero)[Eng].zip
2011-11-17 17:29 - 2011-11-17 17:23 - 182388736 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.08.[2CA9591C].avi
2011-11-17 15:17 - 2011-11-17 15:17 - 1807395 ____A C:\Users\Steven\Desktop\Nuku-Flexible-Survival-8ebbec5.zip
2011-11-17 15:17 - 2011-11-17 15:17 - 0000000 ____D C:\Users\Steven\Desktop\Nuku-Flexible-Survival-8ebbec5
2011-11-16 20:47 - 2011-11-16 20:14 - 387896580 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_06_HD[83BB7844].mp4
2011-11-16 14:42 - 2011-11-16 14:42 - 0001847 ____A C:\Users\Public\Desktop\QuickTime Player.lnk
2011-11-16 14:42 - 2010-12-16 10:54 - 0000000 ____D C:\Program Files (x86)\QuickTime
2011-11-16 14:38 - 2011-11-16 14:38 - 0001785 ____A C:\Users\Public\Desktop\iTunes.lnk
2011-11-15 06:21 - 2011-11-15 05:32 - 1450822157 ____A C:\Users\Steven\Downloads\[Over-Time]_Gokaiger_Goseiger_-_Super_Sentai_199_Hero_Grand_Battle_[2D7F70D9].mkv
2011-11-15 05:16 - 2011-11-15 05:16 - 0000000 ____D C:\Windows\System32\Macromed
2011-11-13 21:56 - 2010-08-17 14:10 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Media Player Classic
2011-11-13 21:39 - 2011-11-13 21:25 - 292201293 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_10_[98DD04FA].mkv
2011-11-13 21:30 - 2011-09-04 21:12 - 0000000 ____D C:\Program Files (x86)\Combined Community Codec Pack
2011-11-13 21:27 - 2011-11-13 21:27 - 9889896 ____A (CCCP Project ) C:\Users\Steven\Desktop\Combined-Community-Codec-Pack-2011-11-11.exe
2011-11-13 19:55 - 2011-11-13 19:55 - 0367057 ____A C:\Users\Steven\Desktop\Florida_Atlantic_University_completion.pdf
2011-11-13 18:38 - 2011-11-13 18:13 - 411997003 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_38_[D02060D0].mkv
2011-11-12 22:18 - 2011-11-07 23:12 - 0000000 ____D C:\Users\Steven\Downloads\w.i.t.c.h. comics and specials
2011-11-12 22:02 - 2011-11-12 21:56 - 183154688 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.07.[E6B01739].avi
2011-11-11 22:18 - 2011-11-11 21:58 - 387706940 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_05_HD[0BDFE57D].mp4
2011-11-10 22:41 - 2011-12-13 12:14 - 12370944 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-11-10 22:41 - 2011-12-13 12:14 - 0247808 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-11-10 21:50 - 2011-12-13 12:14 - 10990080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2011-11-10 21:50 - 2011-12-13 12:14 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2011-11-10 01:01 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\System
2011-11-08 20:07 - 2010-08-17 13:35 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2011-11-08 09:47 - 2011-11-08 09:32 - 0000000 ____D C:\Users\Steven\Downloads\W.I.T.C.H.-OST
2011-11-07 16:28 - 2009-07-13 21:13 - 0726316 ____A C:\Windows\System32\PerfStringBackup.INI
2011-11-07 14:20 - 2011-11-07 14:06 - 407969995 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_37_[F2FD905B].mkv
2011-11-04 21:26 - 2011-12-13 12:14 - 1501184 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-11-04 21:26 - 2011-12-13 12:14 - 1197568 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-11-04 21:26 - 2011-12-13 12:14 - 0134144 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-11-04 21:23 - 2011-12-13 12:14 - 9332736 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-11-04 21:23 - 2011-12-13 12:14 - 1026560 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2011-11-04 21:23 - 2011-12-13 12:14 - 0703488 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-11-04 21:23 - 2011-12-13 12:14 - 0097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-11-04 21:23 - 2011-12-13 12:14 - 0082944 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2011-11-04 21:23 - 2011-12-13 12:14 - 0057856 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2011-11-04 21:22 - 2011-12-13 12:14 - 2458624 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-11-04 21:22 - 2011-12-13 12:14 - 0445952 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2011-11-04 21:22 - 2011-12-13 12:14 - 0256000 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-11-04 21:22 - 2011-12-13 12:14 - 0064512 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-11-04 21:19 - 2011-12-13 12:14 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2011-11-04 21:17 - 2011-12-13 12:12 - 0002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2011-11-04 20:35 - 2011-12-13 12:14 - 1230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon(4).dll
2011-11-04 20:35 - 2011-12-13 12:14 - 0981504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2011-11-04 20:35 - 2011-12-13 12:14 - 0132096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 5997568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 2072576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0606208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0599552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0185856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0067072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0064512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0048128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy(2).dll
2011-11-04 20:34 - 2011-12-13 12:14 - 0044544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2011-11-04 20:33 - 2011-12-13 12:14 - 0381440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2011-11-04 20:32 - 2011-12-13 12:14 - 0012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2011-11-04 20:30 - 2011-12-13 12:12 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2011-11-04 20:07 - 2011-12-13 12:14 - 0482816 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-11-04 19:28 - 2011-12-13 12:14 - 0386048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2011-11-04 19:25 - 2011-12-13 12:14 - 1638912 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-11-04 18:55 - 2011-12-13 12:14 - 1638912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-11-04 09:40 - 2009-10-05 22:46 - 0001880 ____A C:\Windows\System32\AutoRunFilter.ini
2011-11-03 17:47 - 2011-11-03 17:32 - 495004227 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.37.[1280x720].[94460B97].mkv
2011-11-02 09:23 - 2011-11-02 00:23 - 388098716 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_04_HD[7F177B57].mp4
2011-10-31 09:58 - 2011-10-31 00:52 - 419463512 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_36_[2AEB8FC1].mkv
2011-10-30 21:52 - 2011-10-30 20:20 - 287540598 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_09SD_[BD65D950].mp4
2011-10-29 09:27 - 2011-10-29 09:27 - 0000000 ____D C:\Users\Steven\AppData\Local\Conduit
2011-10-29 09:27 - 2010-11-19 20:45 - 0000000 ____D C:\Program Files (x86)\BitTorrentBar
2011-10-28 11:43 - 2011-10-28 11:17 - 185245696 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.04.[B193813D].avi
2011-10-28 11:30 - 2011-10-28 11:18 - 184086528 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.05.[30F38034].avi
2011-10-28 11:28 - 2011-10-28 11:17 - 185618432 ____A C:\Users\Steven\Downloads\[Doremi].Ojamajo.Doremi.Dokkaan!.06.[78EEED4D].avi
2011-10-27 20:07 - 2011-10-13 17:45 - 0218540 ___AH C:\Windows\SysWOW64\mlfcache.dat
2011-10-26 18:05 - 2011-10-26 17:46 - 387562702 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_03_HD[D43DAE1D].mp4
2011-10-26 15:08 - 2011-10-04 12:07 - 0000000 ____D C:\Users\Steven\Desktop\jhk
2011-10-26 13:54 - 2011-10-26 13:49 - 0000000 ____D C:\Program Files (x86)\Pandora Recovery
2011-10-26 13:49 - 2011-10-26 13:49 - 0002008 ____A C:\Users\Public\Desktop\Pandora Recovery.lnk
2011-10-26 13:49 - 2011-10-26 13:49 - 0000000 ____D C:\Users\Steven\AppData\Roaming\PandoraRecovery
2011-10-26 13:48 - 2011-10-26 13:48 - 3267488 ____A C:\Users\Steven\Desktop\PandoraRecovery2.1.1Setup.exe
2011-10-26 13:16 - 2010-08-17 13:16 - 0126080 ____A C:\Users\Steven\AppData\Local\GDIPFONTCACHEV1.DAT
2011-10-26 12:47 - 2011-10-26 12:47 - 0000000 ____D C:\Users\Steven\Documents\Inform
2011-10-26 12:44 - 2011-10-26 12:44 - 0000000 ____D C:\Program Files (x86)\Inform 7
2011-10-26 12:43 - 2011-10-26 12:43 - 7328239 ____A C:\Users\Steven\Desktop\I7_6G60_Windows.exe
2011-10-26 12:43 - 2011-10-26 12:43 - 0000000 ____D C:\Program Files (x86)\Gargoyle
2011-10-26 12:42 - 2011-10-26 12:42 - 3975047 ____A C:\Users\Steven\Desktop\gargoyle-2010.1-windows.exe
2011-10-25 21:19 - 2011-12-13 12:14 - 0043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2011-10-25 18:25 - 2011-10-25 18:25 - 0000000 ____D C:\Users\Steven\Downloads\Mahou Shoujo Madoka Magica - OST [MP3-VBR]
2011-10-25 16:18 - 2011-10-25 16:12 - 188088320 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.36.[704x396].[2165F8BA].avi
2011-10-24 11:29 - 2011-10-24 11:29 - 0094208 ____A (Apple Inc.) C:\Windows\SysWOW64\QuickTimeVR.qtx
2011-10-24 11:29 - 2011-10-24 11:29 - 0069632 ____A (Apple Inc.) C:\Windows\SysWOW64\QuickTime.qts
2011-10-23 18:21 - 2011-10-23 18:10 - 273362995 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_08SD_[FB9AF782].mp4
2011-10-23 17:51 - 2011-10-23 17:30 - 403097390 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_35_[A6792657].mkv
2011-10-22 21:56 - 2011-10-22 21:56 - 7882183 ____A C:\Users\Steven\Desktop\[Mikazuki Karasu] Pokemon Doujins.zip
2011-10-22 21:56 - 2011-10-22 21:56 - 0000000 ____D C:\Users\Steven\Desktop\[Mikazuki Karasu] Pokemon Doujins
2011-10-22 21:55 - 2011-10-22 21:54 - 0000000 ____D C:\Users\Steven\Desktop\CS5
2011-10-22 19:18 - 2011-10-22 19:15 - 0000000 ____D C:\users\TEMP.Steven-PC.001
2011-10-21 10:42 - 2011-10-21 10:01 - 387989830 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki_02_HD[D28F3E3C].mp4
2011-10-19 13:33 - 2011-10-19 13:33 - 0000000 ____D C:\Program Files\Bonjour
2011-10-19 13:33 - 2011-10-19 13:33 - 0000000 ____D C:\Program Files (x86)\Bonjour
2011-10-19 10:23 - 2011-10-19 09:27 - 1887365076 ____A C:\Users\Steven\Downloads\[O-T-KIT]_OOO_Den-O_All_Riders_Let's_Go_Kamen_Riders_[96D1B281].mkv
2011-10-17 20:18 - 2011-10-17 20:18 - 0000000 ____D C:\Users\Steven\AppData\Local\NCSoft
2011-10-17 19:51 - 2010-09-28 04:52 - 0000000 ____D C:\Users\Steven\AppData\Roaming\GetRightToGo
2011-10-17 19:49 - 2011-10-17 19:49 - 0421200 ____A (NCsoft) C:\Users\Steven\Desktop\COH_Installer.exe
2011-10-17 15:45 - 2011-10-17 15:30 - 493153866 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.35.[1280x720].[EDFE4142].mkv
2011-10-17 10:11 - 2011-10-17 09:46 - 274829262 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_07SD_[8F32A987].mp4
2011-10-16 20:29 - 2011-10-16 20:10 - 519642039 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.34.[1280x720].[966DA995].mkv
2011-10-16 18:06 - 2011-10-16 17:48 - 341841109 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_34_[3B9C6D24].mkv
2011-10-14 22:25 - 2011-12-13 12:12 - 0723456 ____A (Microsoft Corporation) C:\Windows\System32\EncDec.dll
2011-10-14 21:48 - 2011-12-13 12:12 - 0534528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2011-10-14 20:16 - 2011-10-14 20:16 - 0000000 ____D C:\Users\Steven\Desktop\[ThisArmor] ?????
2011-10-14 20:16 - 2011-10-14 20:16 - 0000000 ____D C:\Users\Steven\Desktop\[SweetTaste] SweetTaste?????vol.1
2011-10-12 11:58 - 2011-10-12 11:57 - 0120231 ____A C:\Users\Steven\Desktop\Carlisle John Auto.pdf
2011-10-12 11:39 - 2009-10-05 22:29 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2011-10-11 15:19 - 2011-10-11 15:01 - 245098944 ____A C:\Users\Steven\Downloads\[T-N]Garo_Makai_Senki01SD[A1E2D251].avi
2011-10-11 10:54 - 2009-07-13 21:08 - 0032542 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2011-10-10 23:14 - 2011-10-10 22:55 - 349140302 ____A C:\Users\Steven\Downloads\[Shini-subs] Persona 4 - 01 (1280x720 h264 AAC) [7CD67CD9].mkv
2011-10-10 23:12 - 2011-10-10 22:56 - 233240968 ____A C:\Users\Steven\Downloads\[sage]_Mobile_Suit_Gundam_AGE_-_01_[480p][E17068D4].mkv
2011-10-10 13:32 - 2011-10-10 13:32 - 0277592 ____A C:\Windows\Minidump\101011-29905-01.dmp
2011-10-10 13:32 - 2011-06-24 21:49 - 693792447 ____A C:\Windows\MEMORY.DMP
2011-10-10 13:32 - 2011-06-24 21:49 - 0000000 ____D C:\Windows\Minidump
2011-10-10 08:22 - 2011-10-10 07:59 - 300754854 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_06SD_[85196382].mp4
2011-10-10 08:16 - 2011-10-10 07:54 - 469154944 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_33_[627A40B5].mkv
2011-10-06 23:15 - 2011-10-06 23:15 - 0000000 ____D C:\Users\Steven\Downloads\Megaranger OST Pack_www.tokufriends.com
2011-10-06 23:05 - 2011-10-06 23:00 - 75237138 ____A C:\Users\Steven\Downloads\Megaranger OST Pack_www.tokufriends.com.zip
2011-10-06 21:45 - 2011-10-06 21:00 - 174348353 ____A C:\Users\Steven\Downloads\[OMFG]+Chouriki+Sentai+Ohranger+-+04.mp4
2011-10-06 21:21 - 2011-09-20 06:14 - 0000000 ____D C:\Users\Steven\Downloads\[T-N]Denji_Sentai_MegaRanger
2011-10-06 20:35 - 2011-10-06 20:28 - 174372643 ____A C:\Users\Steven\Downloads\_OMFG__Chouriki_Sentai_Ohranger_-_03.mp4
2011-10-05 19:54 - 2011-10-05 19:42 - 355576535 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.33.[1280x720].[7633F222].mkv
2011-10-03 13:24 - 2011-10-03 13:14 - 380336027 ____A C:\Users\Steven\Downloads\[T-N]Kaizoku_Sentai_Gokaiger_31_HD[38E48B69].mp4
2011-10-02 21:45 - 2011-10-02 21:26 - 266423717 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_05SD_[5CE21864].mp4
2011-10-02 14:45 - 2011-10-02 14:30 - 391595981 ____A C:\Users\Steven\Downloads\[Over-Time]_Pirate_Sentai_Gokaiger_-_32_[379F7F34].mkv
2011-10-01 19:29 - 2010-08-25 20:02 - 0000000 ____D C:\Users\Steven\AppData\Local\Adobe
2011-10-01 18:51 - 2010-08-17 13:38 - 0000000 ____D C:\Users\Steven\AppData\Roaming\Adobe
2011-09-30 20:18 - 2011-09-30 20:04 - 366953003 ____A C:\Users\Steven\Downloads\[T-N]Kamen_Rider_Fourze_04_HD[4CD4F94F].mp4
2011-09-29 08:24 - 2011-11-09 12:36 - 1897328 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2011-09-28 21:34 - 2011-09-28 21:13 - 439475742 ____A C:\Users\Steven\Downloads\[Doremi-CureCom].Suite.PreCure!.32.[1280x720].[CCD1388E].mkv
2011-09-28 10:00 - 2010-10-05 00:53 - 0002016 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2011-09-28 09:51 - 2011-08-25 14:58 - 0000000 ____D C:\Program Files (x86)\TabletPlugins
2011-09-28 09:51 - 2011-08-25 14:56 - 0000000 ____D C:\Program Files\Tablet
2011-09-28 09:35 - 2011-08-25 15:01 - 0001031 ____A C:\Users\Public\Desktop\Bamboo Dock.lnk
2011-09-28 09:35 - 2011-08-25 15:01 - 0000000 ____D C:\Users\All Users\Wacom
2011-09-28 09:35 - 2011-08-25 15:01 - 0000000 ____D C:\ProgramData\Wacom
2011-09-28 09:35 - 2011-08-25 15:00 - 0000000 ____D C:\Program Files (x86)\Bamboo Dock
2011-09-27 16:11 - 2009-10-05 22:20 - 0000000 ____D C:\Program Files (x86)\Adobe
2011-09-27 16:10 - 2011-09-27 16:10 - 0000000 ____D C:\Users\Steven\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2011-09-27 14:37 - 2009-07-13 18:34 - 0001755 ____A C:\Windows\System32\Drivers\etc\hosts
2011-09-27 14:34 - 2010-08-25 20:42 - 0000000 ____D C:\Users\All Users\regid.1986-12.com.adobe
2011-09-27 14:34 - 2010-08-25 20:42 - 0000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2011-09-27 14:13 - 2009-10-05 22:20 - 0000000 ____D C:\Users\All Users\Adobe
2011-09-27 14:13 - 2009-10-05 22:20 - 0000000 ____D C:\ProgramData\Adobe
2011-09-27 14:11 - 2010-08-25 21:35 - 0000000 ____D C:\Program Files\Common Files\Adobe
2011-09-27 14:10 - 2010-08-25 21:39 - 0000000 ____D C:\Program Files\Adobe
2011-09-27 14:07 - 2011-09-27 14:07 - 0000000 ____D C:\Users\All Users\ALM
2011-09-27 14:07 - 2011-09-27 14:07 - 0000000 ____D C:\ProgramData\ALM
2011-09-27 14:02 - 2011-09-27 14:02 - 0000000 ____D C:\Users\Steven\Adobe Flash Builder 4
2011-09-27 13:58 - 2011-09-27 13:58 - 0000000 ____D C:\Users\Public\Documents\Adobe
2011-09-27 13:45 - 2011-09-27 13:45 - 0000000 ____D C:\Program Files (x86)\My Company Name
2011-09-27 13:32 - 2011-09-27 13:21 - 0000000 ____D C:\Users\Steven\Desktop\MasterCollection_CS5_LS1
2011-09-26 10:26 - 2011-09-26 09:27 - 258459500 ____A C:\Users\Steven\Downloads\[Over-Time]_Kamen_Rider_Fourze_-_04SD_[51B3753F].mp4

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 17%
Total physical RAM: 4061.09 MB
Available physical RAM: 3366.46 MB
Total Pagefile: 4059.23 MB
Available Pagefile: 3368.34 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

======================= Partitions =========================

1 Drive c: (OS) (Fixed) (Total:283.44 GB) (Free:69.92 GB) NTFS ==>[Drive with boot components]
3 Drive f: (GLOVANA) (Removable) (Total:1.92 GB) (Free:1.84 GB) FAT
4 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
5 Drive y: (RECOVERY) (Fixed) (Total:14.63 GB) (Free:9.37 GB) FAT32 ==>[Drive with boot components]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 298 GB 0 B
Disk 1 Online 1968 MB 0 B

Partitions of Disk 0:

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 14 GB 1024 KB
Partition 2 Primary 283 GB 14 GB

Disk: 0
Partition 1
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 Y RECOVERY FAT32 Partition 14 GB Healthy

==========================================================

Last Boot: 2011-08-26 09:50

======================= End Of Log ==========================



BC AdBot (Login to Remove)

 


#2 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 27 December 2011 - 05:16 PM

Hello sjohn2776,

It doesn't look a little problem.:)

I need to look at other things.

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste). Save it on the flashdrive as fixlist.txt

start
2 Updater Service for StartNow Toolbar; C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe [267488 2011-07-27] ()
cmd: bcdedit /enum all
end

On Vista or Windows 7: Now please enter System Recovery Options.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

#3 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 28 December 2011 - 09:24 AM

Fix result of Farbars's Recovery Tool (FRST written by farbar Version 2.3.0)
Ran by SYSTEM at 2011-12-28 09:21:25 R:2
Running from F:\

==============================================

Updater Service for StartNow Toolbar service deleted successfully.

========= bcdedit /enum all =========


Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=Y:
path \bootmgr
description Windows Boot Manager
locale en-US
default {default}
resumeobject {cbc73ce0-9eee-11e0-98a1-806e6f6e6963}
displayorder {default}
timeout 30

Windows Boot Loader
-------------------
identifier {default}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7 Home Premium (recovered)
locale en-US
recoverysequence {current}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {cbc73ce0-9eee-11e0-98a1-806e6f6e6963}
winpe No

Windows Boot Loader
-------------------
identifier {current}
device ramdisk=[C:]\Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\Winre.wim,{fcab42d6-9ece-11e0-a549-954894285817}
path \windows\system32\winload.exe
description Windows Recovery Environment (recovered)
locale
osdevice ramdisk=[C:]\Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\Winre.wim,{fcab42d6-9ece-11e0-a549-954894285817}
systemroot \windows
winpe Yes

Resume from Hibernate
---------------------
identifier {cbc73ce0-9eee-11e0-98a1-806e6f6e6963}
device partition=C:
path \Windows\system32\winresume.exe
description Windows 7 Home Premium (recovered)
locale en-US
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No

Windows Memory Tester
---------------------
identifier {memdiag}
device partition=Y:
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-US

Device options
--------------
identifier {fcab42d6-9ece-11e0-a549-954894285817}
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\boot.sdi

========= End of CMD: =========


==== End of Fixlog ====



#4 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 28 December 2011 - 10:46 AM

There is nothing unusual there. We need to try the usual things.

Start in Safe Mode Using the F8 key:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until the boot menu appears.
  • Use the arrow keys to select the Last Known Good Configuration menu item.
  • Press the Enter key and let it boot.


#5 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 28 December 2011 - 12:55 PM

No matter what I do I can't even access the Advanced Boot Options.

#6 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 28 December 2011 - 12:58 PM

Let's try this first.

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste). Save it on the flashdrive as fixlist.txt

start
cmd: bootrec /FixMbr
end

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

On Vista or Windows 7: Now please enter System Recovery Options.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

#7 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 28 December 2011 - 01:07 PM

Fix result of Farbars's Recovery Tool (FRST written by farbar Version 2.3.0)
Ran by SYSTEM at 2011-12-28 13:07:06 R:3
Running from F:\

==============================================


========= bootrec /FixMbr =========

˙ūT h e o p e r a t i o n c o m p l e t e d s u c c e s s f u l l y .

========= End of CMD: =========


==== End of Fixlog ====



#8 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 28 December 2011 - 01:27 PM

Please reboot to check the result.

#9 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 28 December 2011 - 01:34 PM

It's starting up normally now.

#10 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 28 December 2011 - 01:56 PM

Great. :thumbsup:

Please uninstall your p2p software for now.

Please download Malwarebytes' Anti-Malware from one of these locations:
malwarebytes.org
majorgeeks.com
  • Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the MBAM log.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.


#11 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 28 December 2011 - 02:30 PM

Okay I've done as you said and removed the p2p, installed and ran the Anti Malware and here are the results.

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2011.12.28.03

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Steven :: STEVEN-PC [administrator]

12/28/2011 2:09:08 PM
mbam-log-2011-12-28 (14-09-08).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 201462
Time elapsed: 10 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



#12 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 28 December 2011 - 02:40 PM

It looks good. :thumbup2:

It is going to take a while, but we need to make sure your what parents have downloaded is not there any more.

  • If you don't have it, this small application you may want to keep and use to keep the computer clean.
    Download CCleaner from here http://www.ccleaner.com/

    • Run the installer to install the application.
    • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
    • Run CCleaner. (make sure under Windows tab all the boxes of Internet Explorer and Windows explorer are checked. Under System check Empty Recycle Bin and Temporary Files. Under Application tab all the boxes should be checked).
    • Click Run Cleaner.
    • Close CCleaner.
  • ESET Online Scanner:

    Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

    Vista users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

    • Please go here then click on: Posted Image

      Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
      All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.

    • Select the option YES, I accept the Terms of Use then click on: Posted Image
    • When prompted allow the Add-On/Active X to install.
    • Make sure that the option Remove found threats and the option Scan archives are checked.
    • Now click on Advanced Settings and select the following:
    • Enable Anti-Stealth Technology
    • Now click on: Posted Image
    • The virus signature database... will begin to download. Be patient this may take some time depending on the speed of your Internet Connection.
    • When completed the Online Scan will begin automatically.
    • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
    • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
    • Now click on: Posted Image
    • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
    • Copy and paste that log as a reply to this topic.
    Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


#13 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 28 December 2011 - 07:28 PM

This was all I found:

C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe a variant of Win32/Toolbar.Zugo application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\OCSetupHlp.dll Win32/OpenCandy application cleaned by deleting - quarantined
C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\qlps-qlipso-sntb.exe a variant of Win32/Toolbar.Zugo application deleted - quarantined
C:\Users\Steven\AppData\Local\Temp\NOD9ACD.tmp a variant of Win32/Toolbar.Zugo application cleaned by deleting (after the next restart) - quarantined
C:\Users\Steven\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\27e8c01-68b26e42 a variant of Java/TrojanDownloader.OpenStream.NBF trojan deleted - quarantined
C:\Users\Steven\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\55065cf2-5336ecd2 a variant of Win32/Kryptik.XRA trojan cleaned by deleting - quarantined
C:\Users\Steven\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\18396c39-375126f5 a variant of Java/TrojanDownloader.OpenStream.NBF trojan deleted - quarantined



#14 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:07:17 PM

Posted 29 December 2011 - 06:21 AM

Let's do a final check.

Please download OTL by OldTimer.
  • Save it to your desktop.
  • Double click on the OTL icon on your desktop.
  • Check the "Scan All Users" checkbox.
  • Check the "Standard Output".
  • Click Run Scan button.
  • Two reports will open:
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized
  • Copy and paste OTL.txt and attach Extra.txt to your reply.


#15 sjohn2776

sjohn2776
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 29 December 2011 - 03:25 PM

I only got the OTL File.

OTL logfile created on: 12/29/2011 3:11:31 PM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Steven\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.97 Gb Total Physical Memory | 1.78 Gb Available Physical Memory | 44.83% Memory free
7.93 Gb Paging File | 5.65 Gb Available in Paging File | 71.19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.44 Gb Total Space | 68.26 Gb Free Space | 24.08% Space Free | Partition Type: NTFS
Drive F: | 14.63 Gb Total Space | 9.37 Gb Free Space | 64.05% Space Free | Partition Type: FAT32

Computer Name: STEVEN-PC | User Name: Steven | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/12/29 15:10:42 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Steven\Desktop\OTL.exe
PRC - [2011/12/12 23:20:56 | 003,305,760 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Steven\AppData\Local\Akamai\netsession_win.exe
PRC - [2011/12/01 13:28:04 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\real\realplayer\Update\realsched.exe
PRC - [2011/11/08 23:06:06 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/10/21 15:23:42 | 000,196,176 | ---- | M] (Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
PRC - [2011/10/13 17:21:52 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/09/28 12:34:08 | 000,646,232 | ---- | M] () -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
PRC - [2011/09/19 05:31:10 | 002,221,200 | ---- | M] (Giraffic) -- C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe
PRC - [2011/09/19 05:30:52 | 003,663,488 | ---- | M] (Giraffic) -- C:\Program Files (x86)\Giraffic\Veoh_Giraffic.exe
PRC - [2011/08/25 06:13:10 | 002,816,328 | ---- | M] (Veoh Networks) -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
PRC - [2011/04/16 19:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
PRC - [2011/04/08 11:59:52 | 000,507,624 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2009/10/06 01:42:09 | 003,054,136 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2009/07/24 12:32:50 | 001,593,344 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2009/07/23 19:13:38 | 000,306,232 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe
PRC - [2009/07/22 19:58:46 | 000,017,976 | ---- | M] () -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
PRC - [2009/07/16 12:07:54 | 000,178,744 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
PRC - [2009/07/07 13:20:56 | 008,493,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
PRC - [2009/06/24 14:30:18 | 000,272,952 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
PRC - [2009/06/19 12:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
PRC - [2009/06/19 12:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
PRC - [2009/06/15 19:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
PRC - [2009/06/11 17:13:40 | 000,158,584 | ---- | M] () -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CNRpc.exe
PRC - [2009/06/11 17:13:40 | 000,127,352 | ---- | M] (CinemaNow, Inc.) -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
PRC - [2009/06/11 17:13:30 | 002,088,296 | ---- | M] (CinemaNow Inc.) -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe
PRC - [2009/05/18 17:59:10 | 000,428,600 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
PRC - [2009/05/18 17:58:38 | 000,305,720 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
PRC - [2009/04/20 13:09:30 | 000,159,744 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
PRC - [2008/12/22 19:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
PRC - [2008/08/13 23:00:08 | 000,113,208 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
PRC - [2008/08/13 22:59:56 | 000,301,624 | ---- | M] () -- C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
PRC - [2008/07/18 21:52:16 | 000,104,936 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2008/03/31 04:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007/11/30 13:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
PRC - [2007/08/08 02:08:40 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe


========== Modules (No Company Name) ==========

MOD - [2011/11/15 08:16:57 | 008,527,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/08 23:06:05 | 001,989,592 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011/10/12 14:53:47 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\5672e6b9d976feca51deb06d8dd1df0e\PresentationFramework.Aero.ni.dll
MOD - [2011/10/12 14:53:05 | 014,322,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\09e39322b47f9b4e8dd2199ff03acb2e\PresentationFramework.ni.dll
MOD - [2011/10/12 14:52:29 | 012,216,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\d2dc021a8311197516e4fa325b292f21\PresentationCore.ni.dll
MOD - [2011/10/12 14:52:13 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\3136e12cfb8809d39813e76c766c782c\WindowsBase.ni.dll
MOD - [2011/10/12 14:51:58 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\95b9866ab6e4437ef5dc5855ebab4e33\System.ni.dll
MOD - [2011/10/12 14:51:51 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\1b31ced9bb880d94fff1c6d47c16a81e\mscorlib.ni.dll
MOD - [2011/09/28 12:34:08 | 000,646,232 | ---- | M] () -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/06/21 08:48:28 | 000,910,336 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtNetwork4.dll
MOD - [2011/06/20 08:37:16 | 010,836,992 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtWebKit4.dll
MOD - [2011/06/20 06:52:20 | 001,283,584 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtScript4.dll
MOD - [2011/06/20 06:32:40 | 000,266,752 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\phonon4.dll
MOD - [2011/06/20 06:21:50 | 007,994,880 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtGui4.dll
MOD - [2011/06/20 06:04:56 | 002,233,344 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtCore4.dll
MOD - [2011/05/26 04:38:06 | 000,120,320 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\imageformats\qjpeg4.dll
MOD - [2011/05/26 04:38:06 | 000,022,016 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\imageformats\qgif4.dll
MOD - [2009/07/24 12:32:50 | 001,593,344 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
MOD - [2009/07/22 19:58:46 | 000,017,976 | ---- | M] () -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
MOD - [2009/06/11 17:13:40 | 000,158,584 | ---- | M] () -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CNRpc.exe
MOD - [2008/08/27 18:32:36 | 000,619,816 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2008/06/09 11:55:08 | 000,013,096 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
MOD - [2007/11/30 13:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
MOD - [2007/06/15 12:28:36 | 000,147,456 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll
MOD - [2007/06/01 19:08:18 | 000,143,360 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/09/08 16:48:36 | 006,583,160 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2011/09/08 16:48:36 | 000,528,760 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen)
SRV:64bit: - [2009/09/15 15:21:58 | 000,359,552 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007/08/08 02:08:40 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2011/12/14 21:10:48 | 003,316,000 | ---- | M] () [Auto | Running] -- c:\program files (x86)\common files\akamai/netsession_win_b427739.dll -- (Akamai)
SRV - [2011/10/21 15:23:42 | 000,196,176 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/10/13 17:21:52 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2011/09/19 05:31:10 | 002,221,200 | ---- | M] (Giraffic) [Auto | Running] -- C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe -- (Giraffic)
SRV - [2011/04/16 19:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
SRV - [2010/11/04 05:39:24 | 003,904,976 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWow64\GameMon.des -- (npggsvc)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/23 19:13:38 | 000,306,232 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe -- (FastBootAgent)
SRV - [2009/06/15 19:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2009/06/11 17:13:40 | 000,127,352 | ---- | M] (CinemaNow, Inc.) [Auto | Running] -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe -- (CinemaNow Service)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/03/31 04:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) [On_Demand | Running] -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/09/08 16:49:36 | 000,013,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor)
DRV:64bit: - [2011/08/11 23:13:25 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2011/07/08 16:45:12 | 000,386,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\symnets.sys -- (SymNetS)
DRV:64bit: - [2011/07/06 11:44:00 | 000,034,288 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2011/05/10 07:06:08 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/03/30 22:00:09 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2011/03/30 22:00:09 | 000,040,568 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2011/03/14 21:31:23 | 000,912,504 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymEFA64.sys -- (SymEFA)
DRV:64bit: - [2011/03/11 01:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/27 01:47:10 | 000,450,680 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymDS64.sys -- (SymDS)
DRV:64bit: - [2011/01/27 00:07:06 | 000,171,128 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Ironx64.sys -- (SymIRON)
DRV:64bit: - [2010/10/11 14:19:28 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV:64bit: - [2010/10/11 14:19:26 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2010/08/25 19:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/10/06 01:42:03 | 000,035,384 | ---- | M] (ASUSTek Computer Inc) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\AsDsm.sys -- (AsDsm)
DRV:64bit: - [2009/10/05 18:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/07/20 04:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:11:31 | 001,222,144 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2009/07/09 02:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/07/08 22:11:41 | 000,140,800 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2009/06/18 14:18:10 | 000,015,928 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\lullaby.sys -- (lullaby)
DRV:64bit: - [2009/06/10 15:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/08 23:38:23 | 000,055,296 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E)
DRV:64bit: - [2009/06/04 05:54:35 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/26 08:32:37 | 000,040,448 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2009/05/20 03:11:05 | 001,799,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2009/05/12 20:07:19 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)
DRV:64bit: - [2008/12/08 19:35:52 | 000,061,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2008/05/23 19:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:64bit: - [2007/07/24 13:11:32 | 000,014,904 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
DRV:64bit: - [2007/02/08 09:48:04 | 000,051,600 | ---- | M] (Thesycon GmbH, Germany) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dsiarhwprog_x64.sys -- (usbio)
DRV - [2011/12/28 13:37:34 | 002,048,632 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111228.033\EX64.SYS -- (NAVEX15)
DRV - [2011/12/28 13:37:33 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111228.033\ENG64.SYS -- (NAVENG)
DRV - [2011/12/26 18:23:24 | 000,488,568 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20111228.001\IDSviA64.sys -- (IDSVia64)
DRV - [2011/12/21 22:50:32 | 001,156,216 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111221.003_f46\BHDrvx64.sys -- (BHDrvx64)
DRV - [2011/11/23 21:35:21 | 000,047,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\AeriaGames\EdenEternal\sjcs64.sys -- (sj)
DRV - [2011/11/09 14:45:11 | 000,482,936 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2011/11/09 14:45:11 | 000,138,360 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2005/01/03 19:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBit2.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
IE - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=Z164&install_date=20110828
IE - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://search.conduit.com?SearchSource=10&ctid=CT2790392
IE - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.defaultthis.engineName: " "
FF - prefs.js..browser.search.defaulturl: "Bing"
FF - prefs.js..browser.search.order.1: "Bing"
FF - prefs.js..browser.search.selectedEngine: "Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.msn.com/?pc=Z164&install_date=20110828"
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.6.2
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..keyword.URL: "http://www.gisly.com/search/?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&rls=VfbA0o7v&q="

FF - user.js..browser.search.selectedEngine: "Search"
FF - user.js..keyword.URL: "http://www.gisly.com/search/?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&rls=VfbA0o7v&q="

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.0.198: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.0.198: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.0.198: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.0.198: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.0.198: c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.10: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.1: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Steven\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2011/09/27 12:28:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn_2011_7_3_6 [2011/12/29 15:01:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2011/09/27 16:52:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/12/28 15:23:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/12/01 13:27:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/12/01 13:29:04 | 000,000,000 | ---D | M]

[2010/08/17 16:36:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\Mozilla\Extensions
[2011/12/28 15:22:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\extensions
[2011/08/25 18:31:00 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2011/08/28 10:33:56 | 000,000,000 | ---D | M] (StartNow Toolbar) -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F}
[2011/12/28 15:23:44 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011/12/24 21:36:41 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\extensions\{fa5dc9f3-7c35-47eb-a2f2-b5ef9929d3d1}
[2011/03/12 14:40:34 | 000,000,000 | ---D | M] (Personas) -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\extensions\personas@christopher.beard
[2011/08/28 10:33:55 | 000,001,945 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\searchplugins\bing-zugo.xml
[2010/11/19 23:45:48 | 000,000,863 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\searchplugins\conduit.xml
[2011/08/17 12:21:10 | 000,002,469 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\4c5ns6a9.default\searchplugins\safesearch.xml
[2011/11/08 23:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/12/29 15:01:50 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\COFFPLGN_2011_7_3_6
[2011/09/27 12:28:37 | 000,000,000 | ---D | M] (Symantec IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPLGN
[2011/12/28 15:23:42 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/11/08 23:06:06 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/09/16 01:18:45 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2009/11/09 20:30:56 | 000,189,592 | ---- | M] (MGame) -- C:\Program Files (x86)\mozilla firefox\plugins\NPMFireLauncher.dll
[2010/01/01 03:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml.old
[2011/03/04 14:40:17 | 000,002,197 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google-search.xml
[2011/11/08 23:06:06 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2011/09/27 17:37:20 | 000,001,755 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 2 more lines...
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBit2.dll (Conduit Ltd.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files (x86)\BitTorrentBar\prxtbBit2.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..\Toolbar\WebBrowser: (BitTorrentBar Toolbar) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - C:\Program Files (x86)\BitTorrentBar\prxtbBit2.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.)
O4:64bit: - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe ()
O4 - HKLM..\Run: [CinemaNowMediaManagerApp] C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowShell.exe (CinemaNow Inc.)
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000..\Run: [Akamai NetSession Interface] C:\Users\Steven\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000..\Run: [VeohPlugin] C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: cinemanow.com ([]http in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: cinemanow.com ([]https in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: cinemanow.com ([]http in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: cinemanow.com ([]https in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..Trusted Domains: cinemanow.com ([]http in Trusted sites)
O15 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..Trusted Domains: cinemanow.com ([]https in Trusted sites)
O15 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-2061997185-862170242-4064282783-1000\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} http://www.netgame.com/mplugin/mglaunch_USAv1005.cab (MGLaunch_v1004 Class)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{794AC701-C5D9-4DB7-B17D-FAA788782F36}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7C2AA5BC-93A4-4F0E-8D01-06535E89031F}: DhcpNameServer = 10.104.2.135 192.168.251.123
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{5f18b3b8-120d-11e0-85b9-90e6ba682005}\Shell - "" = AutoRun
O33 - MountPoints2\{5f18b3b8-120d-11e0-85b9-90e6ba682005}\Shell\AutoRun\command - "" = G:\install.exe
O33 - MountPoints2\{983df925-27de-11e0-bea6-90e6ba682005}\Shell - "" = AutoRun
O33 - MountPoints2\{983df925-27de-11e0-bea6-90e6ba682005}\Shell\AutoRun\command - "" = D:\install.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/12/29 15:10:40 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Steven\Desktop\OTL.exe
[2011/12/28 14:59:08 | 002,322,184 | ---- | C] (ESET) -- C:\Users\Steven\Desktop\esetsmartinstaller_enu.exe
[2011/12/28 14:45:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/12/28 14:45:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/12/28 14:43:36 | 003,562,624 | ---- | C] (Piriform Ltd) -- C:\Users\Steven\Desktop\ccsetup314.exe
[2011/12/28 14:06:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/12/28 14:06:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/12/28 14:06:19 | 010,847,608 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Steven\Desktop\mbam-setup-1.60.0.1800.exe
[2011/12/15 11:57:16 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw
[2011/12/15 08:50:50 | 000,000,000 | ---D | C] -- C:\Users\Steven\Documents\My Games
[2011/12/15 08:49:26 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2011/12/14 01:16:32 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls
[2011/12/13 15:14:59 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2011/12/13 15:14:37 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\urlmon(3).dll
[2011/12/13 15:14:35 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/12/13 15:14:34 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011/12/13 15:14:34 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011/12/13 15:14:33 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/12/13 15:14:33 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/12/13 15:14:33 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/12/13 15:14:32 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/12/13 15:14:31 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/12/13 15:14:31 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/12/13 15:14:30 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/12/13 15:14:30 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/12/13 15:14:30 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011/12/13 15:14:30 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011/12/13 15:14:30 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/12/13 15:14:30 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/12/13 15:12:39 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2011/12/13 15:12:38 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2011/12/11 18:26:32 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\Garo+High+Res
[2011/12/08 21:37:24 | 000,000,000 | ---D | C] -- C:\Users\Steven\Desktop\Knighthood
[2011/12/08 21:22:22 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Template
[2011/12/08 02:51:43 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Roaming\Skype
[2011/12/08 02:51:15 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2011/12/08 02:51:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/12/08 02:51:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/12/08 02:48:17 | 000,980,104 | ---- | C] (Skype Technologies S.A.) -- C:\Users\Steven\Desktop\SkypeSetup.exe
[2011/12/01 13:28:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2011/12/01 13:28:25 | 000,198,832 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2011/12/01 13:28:08 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2011/12/01 13:28:08 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2011/12/01 13:28:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2011/12/01 13:28:07 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2008/08/11 23:45:20 | 000,155,648 | ---- | C] (ASUS) -- C:\Program Files (x86)\Common Files\MSIactionall.dll
[2 C:\Users\Steven\Desktop\*.tmp files -> C:\Users\Steven\Desktop\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/12/29 15:13:21 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/12/29 15:13:21 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/12/29 15:10:42 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Steven\Desktop\OTL.exe
[2011/12/29 15:00:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/12/29 15:00:43 | 3193,765,888 | -HS- | M] () -- C:\hiberfil.sys
[2011/12/28 14:59:11 | 002,322,184 | ---- | M] (ESET) -- C:\Users\Steven\Desktop\esetsmartinstaller_enu.exe
[2011/12/28 14:45:04 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/12/28 14:43:37 | 003,562,624 | ---- | M] (Piriform Ltd) -- C:\Users\Steven\Desktop\ccsetup314.exe
[2011/12/28 14:08:45 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/12/28 14:08:45 | 000,624,178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/12/28 14:08:45 | 000,106,522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/12/28 14:06:48 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2011/12/28 14:04:12 | 010,847,608 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Steven\Desktop\mbam-setup-1.60.0.1800.exe
[2011/12/24 13:01:44 | 000,050,596 | ---- | M] () -- C:\Users\Steven\Desktop\PowerUpRewards.pdf
[2011/12/23 16:39:55 | 007,201,593 | ---- | M] () -- C:\Users\Steven\Desktop\Giant Step [FULL] - Astronauts (Kamen Rider Fourze).mp3
[2011/12/16 14:29:12 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe
[2011/12/15 11:54:44 | 128,650,995 | ---- | M] () -- C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw.rar
[2011/12/15 11:46:15 | 010,178,688 | ---- | M] () -- C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Skys_the_Limit.mp3
[2011/12/15 11:45:33 | 009,611,392 | ---- | M] () -- C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Beauty_of_Destiny.mp3
[2011/12/14 01:11:57 | 011,533,176 | ---- | M] () -- C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls.rar
[2011/12/14 00:29:42 | 005,060,192 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/12/13 00:19:44 | 005,980,902 | ---- | M] () -- C:\Users\Steven\Desktop\Anything Goes! Ballad - Maki Ohguro.mp3
[2011/12/11 17:36:44 | 651,312,237 | ---- | M] () -- C:\Users\Steven\Desktop\Garo+High+Res.zip
[2011/12/10 23:51:59 | 000,000,132 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/12/10 23:21:52 | 000,001,214 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2011/12/10 15:24:08 | 000,023,152 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/12/08 22:42:32 | 000,000,328 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\wklnhst.dat
[2011/12/08 02:51:16 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/12/08 02:48:20 | 000,980,104 | ---- | M] (Skype Technologies S.A.) -- C:\Users\Steven\Desktop\SkypeSetup.exe
[2011/12/03 01:22:27 | 003,307,686 | ---- | M] () -- C:\Users\Steven\Desktop\Nijiiro Crystal Sky.mp3
[2011/12/01 13:28:53 | 000,001,042 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2011/12/01 13:28:25 | 000,198,832 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2011/12/01 13:28:08 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2011/12/01 13:28:08 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2011/12/01 13:28:07 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2011/11/30 01:22:06 | 000,000,769 | ---- | M] () -- C:\Users\Steven\Desktop\Shin Megami Tensei Imagine Online.lnk
[2011/11/30 00:55:24 | 1985,027,504 | ---- | M] () -- C:\Users\Steven\Desktop\megaten_us_install_20111104.exe
[2011/11/29 22:45:39 | 000,322,160 | ---- | M] () -- C:\Users\Steven\Desktop\megaten_us_downloader_20111104.exe
[2 C:\Users\Steven\Desktop\*.tmp files -> C:\Users\Steven\Desktop\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/12/28 14:45:04 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/12/28 14:06:48 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2011/12/24 13:01:39 | 000,050,596 | ---- | C] () -- C:\Users\Steven\Desktop\PowerUpRewards.pdf
[2011/12/23 16:39:45 | 007,201,593 | ---- | C] () -- C:\Users\Steven\Desktop\Giant Step [FULL] - Astronauts (Kamen Rider Fourze).mp3
[2011/12/15 11:45:53 | 010,178,688 | ---- | C] () -- C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Skys_the_Limit.mp3
[2011/12/15 11:45:14 | 009,611,392 | ---- | C] () -- C:\Users\Steven\Desktop\Persona_4_The_Animation_-_Beauty_of_Destiny.mp3
[2011/12/15 11:44:24 | 128,650,995 | ---- | C] () -- C:\Users\Steven\Desktop\Never More -Reincarnation:PERSONA4- (MP3)-Soaragmw.rar
[2011/12/15 00:30:01 | 000,002,515 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC Universe Online Live.lnk
[2011/12/14 01:08:07 | 011,533,176 | ---- | C] () -- C:\Users\Steven\Desktop\Mayumi Gojo and Sister MAYO - Pirate Girls.rar
[2011/12/13 00:19:43 | 005,980,902 | ---- | C] () -- C:\Users\Steven\Desktop\Anything Goes! Ballad - Maki Ohguro.mp3
[2011/12/11 02:13:01 | 651,312,237 | ---- | C] () -- C:\Users\Steven\Desktop\Garo+High+Res.zip
[2011/12/08 21:22:19 | 000,000,328 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\wklnhst.dat
[2011/12/08 02:51:15 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/12/03 01:22:14 | 003,307,686 | ---- | C] () -- C:\Users\Steven\Desktop\Nijiiro Crystal Sky.mp3
[2011/12/01 13:28:53 | 000,001,042 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2011/11/30 01:22:05 | 000,000,769 | ---- | C] () -- C:\Users\Steven\Desktop\Shin Megami Tensei Imagine Online.lnk
[2011/11/29 22:52:29 | 1985,027,504 | ---- | C] () -- C:\Users\Steven\Desktop\megaten_us_install_20111104.exe
[2011/11/29 22:45:39 | 000,322,160 | ---- | C] () -- C:\Users\Steven\Desktop\megaten_us_downloader_20111104.exe
[2011/10/21 23:24:42 | 000,000,132 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/10/13 20:45:49 | 000,218,540 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2011/05/18 16:16:19 | 000,001,940 | ---- | C] () -- C:\Users\Steven\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/03/21 18:05:58 | 000,007,680 | ---- | C] () -- C:\Users\Steven\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/31 19:07:59 | 000,000,738 | ---- | C] () -- C:\Windows\gmud32.INI
[2010/09/01 07:40:32 | 000,000,024 | ---- | C] () -- C:\ProgramData\CinemaNowSvc.ini
[2010/08/25 19:34:30 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2010/08/25 19:34:30 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2010/08/25 19:34:30 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2010/08/25 18:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2010/08/25 18:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2010/08/21 02:22:41 | 000,000,262 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2009/10/06 01:42:07 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\LogonStart.dll
[2009/08/19 03:33:09 | 000,018,432 | ---- | C] () -- C:\Windows\OOBEPlayer.exe
[2009/08/19 03:33:09 | 000,000,031 | ---- | C] () -- C:\Windows\OOBEPlayer.ini
[2009/07/29 00:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini
[2009/07/28 02:34:11 | 000,134,592 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
[2009/07/14 00:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 21:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 21:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 19:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/04/08 12:31:56 | 000,106,496 | ---- | C] () -- C:\Program Files (x86)\Common Files\CPInstallAction.dll
[2008/10/07 11:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008/10/07 11:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008/10/07 11:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2008/05/22 10:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files (x86)\Common Files\banner.jpg
[2006/05/18 22:39:57 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini

========== Files - Unicode (All) ==========
[2011/11/18 00:55:08 | 000,000,000 | ---D | M](C:\Users\Steven\Desktop\??XW?) -- C:\Users\Steven\Desktop\デジXW本
[2011/11/18 00:55:08 | 000,000,000 | ---D | C](C:\Users\Steven\Desktop\??XW?) -- C:\Users\Steven\Desktop\デジXW本
[2011/11/18 00:53:13 | 032,812,927 | ---- | M] ()(C:\Users\Steven\Desktop\??XW?.rar) -- C:\Users\Steven\Desktop\デジXW本.rar
[2011/11/18 00:52:04 | 032,812,927 | ---- | C] ()(C:\Users\Steven\Desktop\??XW?.rar) -- C:\Users\Steven\Desktop\デジXW本.rar
[2011/10/14 23:16:24 | 000,000,000 | ---D | M](C:\Users\Steven\Desktop\[SweetTaste] SweetTaste?????vol.1) -- C:\Users\Steven\Desktop\[SweetTaste] SweetTasteイラスト集vol.1
[2011/10/14 23:16:24 | 000,000,000 | ---D | C](C:\Users\Steven\Desktop\[SweetTaste] SweetTaste?????vol.1) -- C:\Users\Steven\Desktop\[SweetTaste] SweetTasteイラスト集vol.1
[2011/10/14 23:16:19 | 000,000,000 | ---D | M](C:\Users\Steven\Desktop\[ThisArmor] ?????) -- C:\Users\Steven\Desktop\[ThisArmor] ケモなの?
[2011/10/14 23:16:19 | 000,000,000 | ---D | C](C:\Users\Steven\Desktop\[ThisArmor] ?????) -- C:\Users\Steven\Desktop\[ThisArmor] ケモなの?

========== Alternate Data Streams ==========

@Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:5EFB4536

< End of report >






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users