Hey here are the logs
OTL logfile created on: 11/01/2014 4:43:02 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SL!ghtLY St00p!D\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
1.99 Gb Total Physical Memory | 0.81 Gb Available Physical Memory | 40.48% Memory free
4.21 Gb Paging File | 2.47 Gb Available in Paging File | 58.59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 138.96 Gb Total Space | 28.86 Gb Free Space | 20.77% Space Free | Partition Type: NTFS
Computer Name: USER-PC | User Name: SL!ghtLY St00p!D | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2014/01/11 04:41:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SL!ghtLY St00p!D\Desktop\OTL.com
PRC - [2014/01/07 01:27:04 | 003,764,024 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/01/07 01:27:00 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/01/07 01:26:18 | 000,113,704 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\afwServ.exe
PRC - [2014/01/04 14:17:33 | 000,904,272 | ---- | M] (BitTorrent Inc.) -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2013/12/04 11:54:12 | 000,866,256 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013/09/24 18:53:53 | 004,831,680 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
PRC - [2013/09/24 18:53:26 | 007,022,808 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cis.exe
PRC - [2013/09/24 18:53:26 | 001,576,152 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
PRC - [2013/09/24 18:53:25 | 001,857,752 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
PRC - [2013/05/10 04:06:55 | 009,295,664 | RH-- | M] () -- C:\Windows\System32\idle-Threads.exe
PRC - [2012/11/22 20:33:56 | 000,488,752 | -HS- | M] () -- C:\Windows\System32\semaphore-Threads.exe
PRC - [2012/02/03 13:34:58 | 000,793,048 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2012/02/03 13:34:56 | 000,103,896 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
PRC - [2010/07/27 09:37:32 | 000,040,960 | ---- | M] () -- C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe
PRC - [2009/04/11 14:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/08/14 00:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/01/21 10:23:24 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe
PRC - [2007/05/11 21:26:44 | 004,452,352 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
========== Modules (No Company Name) ========== MOD - [2014/01/07 01:27:22 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/12/04 11:54:10 | 000,399,312 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\32.0.1700.41\ppgooglenaclpluginchrome.dll
MOD - [2013/12/04 11:54:07 | 004,054,992 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\32.0.1700.41\pdf.dll
MOD - [2013/12/04 11:53:14 | 001,634,256 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\32.0.1700.41\ffmpegsumo.dll
MOD - [2012/08/27 21:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/27 21:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
========== Services (SafeList) ========== SRV - File not found [Auto | Stopped] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [2014/01/07 01:48:17 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/01/07 01:27:00 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014/01/07 01:26:18 | 000,113,704 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\afwServ.exe -- (avast! Firewall)
SRV - [2013/12/12 03:40:36 | 000,569,768 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/10/23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/09/24 18:53:53 | 004,831,680 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2013/09/24 18:53:27 | 000,131,288 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\Comodo\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV - [2013/05/10 04:06:55 | 009,295,664 | RH-- | M] () [Auto | Running] -- C:\Windows\System32\idle-Threads.exe -- (.Net Main)
SRV - [2012/11/22 20:33:56 | 009,478,448 | RHS- | M] () [Auto | Stopped] -- C:\Windows\System32\latch-Threads.exe -- (.Net Security)
SRV - [2012/11/22 20:33:56 | 009,473,840 | RHS- | M] () [Auto | Stopped] -- C:\Windows\System32\mutex-Threads.exe -- (.Net Crypt)
SRV - [2012/11/22 20:33:56 | 000,488,752 | -HS- | M] () [Auto | Running] -- C:\Windows\System32\semaphore-Threads.exe -- (.Net Semaphore)
SRV - [2012/02/03 13:34:58 | 000,793,048 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010/07/27 09:37:32 | 000,040,960 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe -- (DeviceManager)
SRV - [2008/08/14 00:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter)
SRV - [2008/01/21 10:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/21 10:23:24 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2008/01/21 10:23:24 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbnet.sys -- (ZTEusbnet)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\massfilter.sys -- (massfilter)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\SL!ghtLY St00p!D\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014/01/07 01:27:39 | 000,775,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014/01/07 01:27:39 | 000,180,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014/01/07 01:27:39 | 000,057,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2014/01/07 01:27:37 | 000,410,528 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2014/01/07 01:27:37 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/01/07 01:27:37 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014/01/07 01:27:36 | 000,054,832 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2014/01/07 01:26:50 | 000,026,136 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2014/01/07 01:26:19 | 000,252,336 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswNdis2.sys -- (aswNdis2)
DRV - [2014/01/07 01:26:19 | 000,012,112 | ---- | M] (ALWIL Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswNdis.sys -- (aswNdis)
DRV - [2013/09/24 18:54:03 | 000,085,464 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\inspect.sys -- (inspect)
DRV - [2013/09/24 18:54:03 | 000,043,728 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2013/09/24 18:54:02 | 000,584,496 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmdguard.sys -- (cmdGuard)
DRV - [2013/09/24 18:54:01 | 000,020,072 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmderd.sys -- (cmderd)
DRV - [2012/11/22 20:33:44 | 000,019,632 | R--- | M] () [File_System | Boot | Running] -- C:\Windows\System32\Drivers\usbvox32.sys -- (usbvox)
DRV - [2012/11/22 20:33:44 | 000,019,120 | R--- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\scssifilter32.sys -- (scssifilter)
DRV - [2012/11/22 20:33:44 | 000,019,120 | R--- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\usbmp332.sys -- (usbmp3)
DRV - [2012/11/22 20:33:44 | 000,016,048 | R--- | M] () [File_System | Boot | Running] -- C:\Windows\System32\Drivers\usbwav32.sys -- (usbwav)
DRV - [2010/11/06 22:24:32 | 000,020,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\PeerBlock\pbfilter.sys -- (pbfilter)
DRV - [2010/07/27 09:37:24 | 000,103,552 | ---- | M] (TCT International Mobile Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qcusbser.sys -- (qcusbser)
DRV - [2008/06/27 09:52:02 | 000,027,072 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCASp50.sys -- (PCASp50)
DRV - [2007/06/02 14:59:42 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\PeerGuardian2\pgfilter.sys -- (pgfilter)
DRV - [2007/04/29 16:42:24 | 000,228,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express)
DRV - [2006/11/02 15:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006/10/19 02:08:18 | 000,258,048 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006/08/05 08:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://search.shareware.pro/?lang=enIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.shareware.pro/?lang=enIE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DAAU
IE - HKU\.DEFAULT\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_en-GB
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-18\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_en-GB
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.com.au/ig/dell?hl=en& ... bd=1080704IE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
www.bing.comIE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
www.bing.comIE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rlz=1I7GGLL_en-GB&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\SL!ghtLY St00p!D\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
[2013/05/18 01:57:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\mozilla\Extensions
========== Chrome ========== CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
http://www.google.comCHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.41\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.41\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.41\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: My Web Search Plugin Stub (Enabled) = C:\Program Files\MyWebSearch\bar\1.bin\NPMyWebS.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Google Docs = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0\
CHR - Extension: Mac OS X Simple Theme = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\cihohekcekjgjdkeljpkbaaecgfoimbj\1.0.1_0\
CHR - Extension: Google Search = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: WOT Safe Search = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddcihbboebboehpkkdfdkhbodacmmfkk\2_0\
CHR - Extension: AdBlock = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0\
CHR - Extension: avast! Online Security = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0\
CHR - Extension: Google Wallet = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\SL!ghtLY St00p!D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2006/09/19 05:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (NOW!Imaging) - {9AA2F14F-E956-44B8-8694-A5B615CDF341} - C:\Program Files\Dodo Speed Accelerator\components\NOWImaging.dll (SlipStream Data Inc.)
O2 - BHO: (no name) - {A66AA08A-9BF0-4e87-99E6-6972731D6B99} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe (PC Tools)
O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003..\Run: [uTorrent] C:\Users\SL!ghtLY St00p!D\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Dodo Speed Accelerator\sliplsp.dll (SlipStream Data Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Dodo Speed Accelerator\sliplsp.dll (SlipStream Data Inc.)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\..Trusted Domains: dell.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-2874987175-3563903751-1789994896-1003\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258}
http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.45.2)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.45.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 202.136.43.205 202.136.42.205
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0D78302D-01E2-45A5-BB1E-23E6796052EB}: DhcpNameServer = 202.136.43.205 202.136.42.205
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll) - File not found
O24 - Desktop WallPaper: C:\Users\SL!ghtLY St00p!D\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\SL!ghtLY St00p!D\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 05:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ========== [2014/01/11 04:41:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\SL!ghtLY St00p!D\Desktop\OTL.com
[2014/01/10 23:13:31 | 000,000,000 | ---D | C] -- C:\.jagex_cache_32
[2014/01/10 23:11:03 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
[2014/01/10 22:59:03 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsC46EE56FE.exe
[2014/01/10 11:56:12 | 000,000,000 | ---D | C] -- C:\The.Wolf.of.Wall.Street.2013.DVDSCR.XviD-BiDA
[2014/01/09 15:53:08 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\Skype
[2014/01/09 15:52:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014/01/09 15:52:42 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2014/01/09 15:52:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2014/01/09 15:52:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014/01/09 15:41:38 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsA34052808.exe
[2014/01/09 15:34:22 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots646E54FF7.exe
[2014/01/09 15:27:11 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsD331B0222.exe
[2014/01/09 15:19:57 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsB461D0020.exe
[2014/01/09 15:12:46 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsE300A3313.exe
[2014/01/09 15:05:35 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsA461B0222.exe
[2014/01/09 14:58:21 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots1461B0222.exe
[2014/01/09 14:49:48 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots544EB51F1.exe
[2014/01/09 14:42:27 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots9380C3111.exe
[2014/01/09 14:35:16 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsE39082D15.exe
[2014/01/09 14:28:01 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots845173EE6.exe
[2014/01/09 14:20:08 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsC36082D15.exe
[2014/01/09 12:54:04 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsB43EB51F1.exe
[2014/01/09 12:49:08 | 000,097,072 | ---- | C] (Microsoft Corporation) -- C:\bcdbootsA44EA52F2.exe
[2014/01/09 12:26:59 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsB350F361E.exe
[2014/01/09 12:19:10 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots943193CE4.exe
[2014/01/09 12:11:38 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsF36082D15.exe
[2014/01/09 12:04:24 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots643E64EF6.exe
[2014/01/09 11:57:09 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots3360D3010.exe
[2014/01/09 11:49:52 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots430032A0A.exe
[2014/01/09 11:41:52 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsB421B0222.exe
[2014/01/09 11:30:06 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsE310B3212.exe
[2014/01/09 11:22:47 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots032173EE6.exe
[2014/01/08 03:23:38 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots0371B0222.exe
[2014/01/08 03:16:20 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsC360F361E.exe
[2014/01/08 03:09:09 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots833173EE6.exe
[2014/01/08 03:01:56 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots733052808.exe
[2014/01/08 02:54:44 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots230173EE6.exe
[2014/01/08 02:47:33 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsD431E072F.exe
[2014/01/08 02:40:20 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots2390F361E.exe
[2014/01/08 02:33:10 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots831032A0A.exe
[2014/01/08 02:25:57 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots632143919.exe
[2014/01/08 02:18:49 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots834143919.exe
[2014/01/08 02:11:19 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsF35092C14.exe
[2014/01/08 02:04:07 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsE42143919.exe
[2014/01/08 01:56:54 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsF34183DE5.exe
[2014/01/08 01:49:44 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsD42EA52F2.exe
[2014/01/08 01:42:32 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots831072E16.exe
[2014/01/08 01:35:19 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsD461E072F.exe
[2014/01/08 01:27:54 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots941173EE6.exe
[2014/01/08 01:20:36 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots645EB51F1.exe
[2014/01/08 01:13:26 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsC37123B1B.exe
[2014/01/08 01:06:10 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots0441B0222.exe
[2014/01/08 00:58:58 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots435052808.exe
[2014/01/08 00:51:42 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots33101240C.exe
[2014/01/08 00:44:21 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots333052808.exe
[2014/01/08 00:37:09 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsC391C0121.exe
[2014/01/08 00:29:48 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots9390E371F.exe
[2014/01/08 00:22:23 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots535052808.exe
[2014/01/08 00:15:10 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots543143919.exe
[2014/01/08 00:07:56 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsD4211341C.exe
[2014/01/08 00:00:22 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsE340B3212.exe
[2014/01/07 05:48:41 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots442E54FF7.exe
[2014/01/07 05:41:19 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots2351A0323.exe
[2014/01/07 05:33:55 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots7390C3111.exe
[2014/01/07 02:23:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2014/01/07 02:20:15 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014/01/07 02:18:34 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014/01/07 02:18:34 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2014/01/07 01:48:15 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/01/07 01:48:15 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/01/07 01:32:00 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\AVAST Software
[2014/01/07 01:30:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014/01/07 01:28:18 | 000,057,672 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2014/01/07 01:28:16 | 000,775,952 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2014/01/07 01:28:13 | 000,410,528 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014/01/07 01:28:10 | 000,067,824 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2014/01/07 01:28:08 | 000,054,832 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2014/01/07 01:28:05 | 000,252,336 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswNdis2.sys
[2014/01/07 01:28:05 | 000,026,136 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2014/01/07 01:28:01 | 000,270,240 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014/01/07 01:27:28 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/01/07 01:26:19 | 000,012,112 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswNdis.sys
[2014/01/07 01:24:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014/01/07 01:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014/01/07 01:07:28 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\Desktop\Key file
[2014/01/07 01:07:28 | 000,000,000 | ---D | C] -- C:\Avast! Internet Security 2014 9.0.2011.263 Final+Keyfile
[2014/01/06 23:20:14 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots2441A0323.exe
[2014/01/06 23:07:34 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots5371A0323.exe
[2014/01/06 23:00:09 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots031032A0A.exe
[2014/01/06 00:15:17 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\Sony
[2014/01/06 00:15:17 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\AppData\Local\Sony
[2014/01/05 22:46:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/01/05 22:46:18 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/01/05 21:36:47 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots931062F17.exe
[2014/01/05 21:30:52 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots046EB51F1.exe
[2014/01/05 21:25:27 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots2451F062E.exe
[2014/01/05 21:19:55 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots4331B0222.exe
[2014/01/05 21:13:16 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots939183DE5.exe
[2014/01/05 21:07:44 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdbootsB30062F17.exe
[2014/01/05 21:00:29 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots039082D15.exe
[2014/01/05 20:51:20 | 000,097,072 | ---- | C] (Microsoft Corporation) -- C:\bcdboots6431E072F.exe
[2014/01/05 20:21:29 | 000,097,072 | RH-- | C] (Microsoft Corporation) -- C:\bcdboots5340F361E.exe
[2014/01/05 16:33:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2014/01/05 16:33:18 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2014/01/04 18:58:41 | 000,104,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/01/04 17:43:06 | 000,000,000 | ---D | C] -- C:\The Legend of Korra
[2014/01/04 17:39:41 | 000,000,000 | ---D | C] -- C:\Avatar The Legend of Korra Season 1 - Air 720p [Extremlym]
[2014/01/04 16:07:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2014/01/04 15:57:07 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/01/04 15:57:05 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/01/04 15:57:05 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/01/04 15:57:05 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/01/04 15:57:05 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/01/04 15:57:04 | 001,806,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/01/04 15:57:04 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/01/04 15:57:02 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/01/04 15:54:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll
[2014/01/04 15:53:57 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winusb.dll
[2014/01/04 15:53:56 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2014/01/04 15:53:56 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2014/01/04 15:53:53 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2014/01/04 15:53:53 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2014/01/04 15:37:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/01/04 15:37:07 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SysFxUI.dll
[2014/01/04 15:37:07 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2014/01/04 15:37:07 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2014/01/04 15:37:02 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2014/01/04 15:37:02 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2014/01/04 15:36:56 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2014/01/04 15:36:55 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2014/01/04 15:36:11 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2014/01/04 15:36:01 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2014/01/04 15:35:55 | 003,603,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014/01/04 15:35:54 | 003,551,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014/01/04 15:35:39 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2014/01/04 15:35:34 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2014/01/04 15:35:34 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshcon.dll
[2014/01/04 15:33:21 | 000,025,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2014/01/04 15:33:15 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2014/01/04 15:21:36 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014/01/04 15:06:47 | 000,000,000 | ---D | C] -- C:\Users\SL!ghtLY St00p!D\Desktop\mbar
[2014/01/04 14:31:00 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2014/01/04 14:30:57 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2014/01/04 14:08:58 | 000,000,000 | ---D | C] -- C:\Dracula 2013 S01E07 HDTV x264-LOL[ettv]
[2014/01/04 00:08:11 | 000,000,000 | ---D | C] -- C:\Bad.Grandpa.2013 HDRip XViD NO1KNOWS
[2013/12/31 12:30:50 | 000,000,000 | ---D | C] -- C:\Lone Survivor 2013 DVDScr x264 NO1KNOWS
[2013/12/30 14:35:30 | 000,000,000 | ---D | C] -- C:\American Hustle 2013 DVDScr XViD AC3-FiNGERBLaST
[2013/12/29 11:52:05 | 000,000,000 | ---D | C] -- C:\The.Hobbit.The.Desolation.of.Smaug.2013.DVDSCR.AAC.x264-P2P
[2013/12/29 10:36:21 | 000,000,000 | ---D | C] -- C:\Voodoo.Possession.2014.DVDRip.XviD juggs
[2013/12/27 15:53:26 | 000,000,000 | ---D | C] -- C:\Avatar The Last Airbender Book 1,2,3[Water,Earth,Fire] Complete episods Salman Sk Silver RG
========== Files - Modified Within 30 Days ========== [2014/01/11 04:50:00 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{864BB057-AA96-4EE4-98A1-10EB1AD35A6E}.job
[2014/01/11 04:41:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SL!ghtLY St00p!D\Desktop\OTL.com
[2014/01/11 04:40:57 | 000,000,024 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\random.dat
[2014/01/11 04:36:06 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/11 04:06:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/11 03:45:06 | 000,000,023 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\jagexappletviewer.preferences
[2014/01/11 02:54:27 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014/01/11 02:54:27 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014/01/10 23:14:21 | 000,000,055 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\jagex_cl_runescape_LIVE.dat
[2014/01/10 23:11:02 | 000,001,957 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Desktop\RuneScape.lnk
[2014/01/10 22:59:03 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsC46EE56FE.exe
[2014/01/10 22:56:45 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/10 22:54:33 | 000,040,054 | RHS- | M] () -- C:\Windows\System32\masteraclini.enu
[2014/01/10 22:54:16 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/01/10 22:54:12 | 2136,133,632 | -HS- | M] () -- C:\hiberfil.sys
[2014/01/10 19:02:25 | 000,199,168 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/01/10 19:00:00 | 000,000,284 | ---- | M] () -- C:\Windows\tasks\RMSchedule.job
[2014/01/10 18:59:31 | 000,645,088 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/01/10 18:59:31 | 000,123,148 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/01/10 12:24:59 | 000,468,480 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Desktop\CKScanner.exe
[2014/01/09 20:59:37 | 000,480,324 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Desktop\Retards_by_zolosluver.png
[2014/01/09 15:52:44 | 000,001,878 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/01/09 15:41:38 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsA34052808.exe
[2014/01/09 15:34:22 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots646E54FF7.exe
[2014/01/09 15:27:11 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsD331B0222.exe
[2014/01/09 15:19:57 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsB461D0020.exe
[2014/01/09 15:12:46 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsE300A3313.exe
[2014/01/09 15:05:35 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsA461B0222.exe
[2014/01/09 14:58:21 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots1461B0222.exe
[2014/01/09 14:49:48 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots544EB51F1.exe
[2014/01/09 14:42:27 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots9380C3111.exe
[2014/01/09 14:35:16 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsE39082D15.exe
[2014/01/09 14:28:01 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots845173EE6.exe
[2014/01/09 14:20:08 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsC36082D15.exe
[2014/01/09 12:54:04 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsB43EB51F1.exe
[2014/01/09 12:49:08 | 000,097,072 | ---- | M] (Microsoft Corporation) -- C:\bcdbootsA44EA52F2.exe
[2014/01/09 12:26:59 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsB350F361E.exe
[2014/01/09 12:19:10 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots943193CE4.exe
[2014/01/09 12:11:38 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsF36082D15.exe
[2014/01/09 12:04:24 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots643E64EF6.exe
[2014/01/09 11:57:09 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots3360D3010.exe
[2014/01/09 11:49:52 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots430032A0A.exe
[2014/01/09 11:41:52 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsB421B0222.exe
[2014/01/09 11:30:06 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsE310B3212.exe
[2014/01/09 11:22:47 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots032173EE6.exe
[2014/01/08 03:23:38 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots0371B0222.exe
[2014/01/08 03:16:20 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsC360F361E.exe
[2014/01/08 03:09:09 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots833173EE6.exe
[2014/01/08 03:01:56 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots733052808.exe
[2014/01/08 02:54:44 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots230173EE6.exe
[2014/01/08 02:47:33 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsD431E072F.exe
[2014/01/08 02:40:20 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots2390F361E.exe
[2014/01/08 02:33:10 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots831032A0A.exe
[2014/01/08 02:25:57 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots632143919.exe
[2014/01/08 02:18:49 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots834143919.exe
[2014/01/08 02:11:19 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsF35092C14.exe
[2014/01/08 02:04:07 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsE42143919.exe
[2014/01/08 01:56:54 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsF34183DE5.exe
[2014/01/08 01:49:44 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsD42EA52F2.exe
[2014/01/08 01:42:32 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots831072E16.exe
[2014/01/08 01:35:19 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsD461E072F.exe
[2014/01/08 01:27:54 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots941173EE6.exe
[2014/01/08 01:20:36 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots645EB51F1.exe
[2014/01/08 01:13:26 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsC37123B1B.exe
[2014/01/08 01:06:10 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots0441B0222.exe
[2014/01/08 00:58:58 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots435052808.exe
[2014/01/08 00:51:42 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots33101240C.exe
[2014/01/08 00:44:21 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots333052808.exe
[2014/01/08 00:37:09 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsC391C0121.exe
[2014/01/08 00:29:48 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots9390E371F.exe
[2014/01/08 00:22:23 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots535052808.exe
[2014/01/08 00:15:10 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots543143919.exe
[2014/01/08 00:07:56 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsD4211341C.exe
[2014/01/08 00:00:22 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsE340B3212.exe
[2014/01/07 05:48:41 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots442E54FF7.exe
[2014/01/07 05:41:19 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots2351A0323.exe
[2014/01/07 05:33:55 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots7390C3111.exe
[2014/01/07 02:23:50 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2014/01/07 01:48:16 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/01/07 01:48:15 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/01/07 01:30:50 | 000,001,947 | ---- | M] () -- C:\Users\Public\Desktop\avast! SafeZone.lnk
[2014/01/07 01:30:50 | 000,001,887 | ---- | M] () -- C:\Users\Public\Desktop\avast! Internet Security.lnk
[2014/01/07 01:27:39 | 000,775,952 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2014/01/07 01:27:39 | 000,180,248 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014/01/07 01:27:39 | 000,057,672 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2014/01/07 01:27:37 | 000,410,528 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014/01/07 01:27:37 | 000,067,824 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2014/01/07 01:27:37 | 000,049,944 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014/01/07 01:27:36 | 000,054,832 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2014/01/07 01:27:28 | 000,270,240 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014/01/07 01:27:28 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/01/07 01:26:50 | 000,026,136 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2014/01/07 01:26:19 | 000,252,336 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswNdis2.sys
[2014/01/07 01:26:19 | 000,012,112 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswNdis.sys
[2014/01/06 23:20:14 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots2441A0323.exe
[2014/01/06 23:07:34 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots5371A0323.exe
[2014/01/06 23:00:09 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots031032A0A.exe
[2014/01/06 00:01:37 | 000,003,836 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Documents\cc_20140106_000112.reg
[2014/01/05 22:56:17 | 000,284,644 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Documents\cc_20140105_225555.reg
[2014/01/05 22:46:20 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/01/05 21:36:47 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots931062F17.exe
[2014/01/05 21:30:52 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots046EB51F1.exe
[2014/01/05 21:25:27 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots2451F062E.exe
[2014/01/05 21:19:55 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots4331B0222.exe
[2014/01/05 21:13:16 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots939183DE5.exe
[2014/01/05 21:07:44 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdbootsB30062F17.exe
[2014/01/05 21:00:29 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots039082D15.exe
[2014/01/05 20:51:20 | 000,097,072 | ---- | M] (Microsoft Corporation) -- C:\bcdboots6431E072F.exe
[2014/01/05 20:21:29 | 000,097,072 | RH-- | M] (Microsoft Corporation) -- C:\bcdboots5340F361E.exe
[2014/01/05 20:00:41 | 000,002,420 | RHS- | M] () -- C:\Windows\System32\3logfile.ini
[2014/01/05 19:45:52 | 001,887,536 | RH-- | M] () -- C:\Windows\System32\wLins.exe
[2014/01/05 19:45:52 | 001,887,536 | RH-- | M] () -- C:\Windows\System32\wLin.exe
[2014/01/05 19:45:52 | 000,726,016 | RH-- | M] () -- C:\Windows\System32\7z.dll
[2014/01/05 19:45:52 | 000,583,472 | RH-- | M] () -- C:\Windows\System32\ProgramlicenseRequired.exe
[2014/01/05 19:45:52 | 000,200,704 | R--- | M] () -- C:\Windows\System32\ICSharpCode.SharpZipLib.dll
[2014/01/05 19:45:52 | 000,151,040 | RH-- | M] () -- C:\Windows\System32\SevenZipSharp.dll
[2014/01/05 19:45:52 | 000,061,744 | RH-- | M] () -- C:\Windows\System32\msgPop.exe
[2014/01/05 16:34:47 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2014/01/05 12:25:07 | 000,000,908 | RHS- | M] () -- C:\Windows\System32\2logfile.ini
[2014/01/05 12:24:53 | 008,007,680 | R--- | M] ( ) -- C:\Windows\System32\Microsoft.mshtml.dll
[2014/01/05 12:24:53 | 000,126,976 | R--- | M] ( ) -- C:\Windows\System32\Interop.SHDocVw.dll
[2014/01/05 12:24:53 | 000,097,072 | RHS- | M] () -- C:\Windows\System32\bcdboots.exe
[2014/01/04 19:10:45 | 000,104,664 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/01/04 19:08:29 | 000,000,908 | RHS- | M] () -- C:\Windows\System32\1logfile.ini
[2014/01/04 14:17:33 | 000,000,770 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Desktop\µTorrent.lnk
[2014/01/04 14:17:33 | 000,000,750 | ---- | M] () -- C:\Users\SL!ghtLY St00p!D\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2014/01/03 23:20:21 | 000,000,148 | RH-- | M] () -- C:\Windows\System32\masteraclbini.enu
========== Files Created - No Company Name ========== [2014/01/10 23:11:49 | 000,000,023 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\jagexappletviewer.preferences
[2014/01/10 23:11:02 | 000,001,987 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
[2014/01/10 23:11:02 | 000,001,957 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Desktop\RuneScape.lnk
[2014/01/10 12:24:55 | 000,468,480 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Desktop\CKScanner.exe
[2014/01/09 20:59:37 | 000,480,324 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Desktop\Retards_by_zolosluver.png
[2014/01/09 15:52:44 | 000,001,878 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/01/07 02:23:50 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2014/01/07 01:48:34 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/07 01:30:50 | 000,001,947 | ---- | C] () -- C:\Users\Public\Desktop\avast! SafeZone.lnk
[2014/01/07 01:30:50 | 000,001,887 | ---- | C] () -- C:\Users\Public\Desktop\avast! Internet Security.lnk
[2014/01/07 01:28:18 | 000,180,248 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014/01/07 01:28:12 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014/01/06 00:01:14 | 000,003,836 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Documents\cc_20140106_000112.reg
[2014/01/05 22:56:02 | 000,284,644 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Documents\cc_20140105_225555.reg
[2014/01/05 22:46:20 | 000,000,806 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/01/05 19:44:35 | 000,002,420 | RHS- | C] () -- C:\Windows\System32\3logfile.ini
[2014/01/05 12:24:38 | 000,000,908 | RHS- | C] () -- C:\Windows\System32\2logfile.ini
[2014/01/04 19:07:49 | 000,000,908 | RHS- | C] () -- C:\Windows\System32\1logfile.ini
[2014/01/04 15:54:13 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014/01/04 15:33:15 | 000,218,228 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2014/01/04 14:17:33 | 000,000,770 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Desktop\µTorrent.lnk
[2014/01/04 14:17:33 | 000,000,750 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/10/29 02:24:46 | 000,000,034 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\mbam.context.scan
[2013/09/03 17:01:20 | 000,000,982 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\AppData\Roaming\wklnhst.dat
[2013/05/25 15:07:41 | 000,000,671 | -HS- | C] () -- C:\Windows\System32\settings.ini
[2013/05/25 14:20:01 | 000,583,472 | RH-- | C] () -- C:\Windows\System32\ProgramlicenseRequired.exe
[2013/05/25 14:20:01 | 000,061,744 | RH-- | C] () -- C:\Windows\System32\msgPop.exe
[2013/05/21 05:26:14 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/05/21 05:26:14 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/05/21 05:26:14 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/05/21 05:26:14 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/05/21 05:26:14 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/05/18 20:46:59 | 000,184,924 | ---- | C] () -- C:\Windows\System32\drivers\fvstore.dat
[2013/05/18 02:19:05 | 000,000,736 | ---- | C] () -- C:\Windows\DigimaxMaster.INI
[2013/05/04 20:46:28 | 000,000,680 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\AppData\Local\d3d9caps.dat
[2013/04/06 15:30:16 | 000,000,055 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\jagex_cl_runescape_LIVE.dat
[2013/04/06 15:30:16 | 000,000,024 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\random.dat
[2013/04/05 21:38:26 | 000,199,168 | ---- | C] () -- C:\Users\SL!ghtLY St00p!D\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/11/22 20:34:59 | 001,887,536 | RH-- | C] () -- C:\Windows\System32\wLins.exe
[2012/11/22 20:34:59 | 001,887,536 | RH-- | C] () -- C:\Windows\System32\wLin.exe
[2012/03/20 16:36:34 | 000,097,072 | RHS- | C] () -- C:\Windows\System32\bcdboots.exe
[2012/03/20 16:33:06 | 009,295,664 | RH-- | C] () -- C:\Windows\System32\idle-Threads.exe
[2012/03/20 16:33:02 | 000,488,752 | -HS- | C] () -- C:\Windows\System32\semaphore-Threads.exe
[2012/03/20 16:33:01 | 009,478,448 | RHS- | C] () -- C:\Windows\System32\latch-Threads.exe
[2012/03/20 16:33:01 | 009,473,840 | RHS- | C] () -- C:\Windows\System32\mutex-Threads.exe
[2012/03/20 16:32:49 | 000,019,632 | R--- | C] () -- C:\Windows\System32\drivers\usbvox32.sys
[2012/03/20 16:32:49 | 000,019,120 | R--- | C] () -- C:\Windows\System32\drivers\usbmp332.sys
[2012/03/20 16:32:49 | 000,016,048 | R--- | C] () -- C:\Windows\System32\drivers\usbwav32.sys
[2012/03/06 20:37:02 | 000,037,336 | ---- | C] () -- C:\Windows\System32\CleanMFT32.exe
========== ZeroAccess Check ========== [2006/11/02 20:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 01:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 14:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 14:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== Alternate Data Streams ========== @Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:D1B5B4F1
< End of report >
OTL Extras logfile created on: 11/01/2014 4:43:02 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SL!ghtLY St00p!D\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
1.99 Gb Total Physical Memory | 0.81 Gb Available Physical Memory | 40.48% Memory free
4.21 Gb Paging File | 2.47 Gb Available in Paging File | 58.59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 138.96 Gb Total Space | 28.86 Gb Free Space | 20.77% Space Free | Partition Type: NTFS
Computer Name: USER-PC | User Name: SL!ghtLY St00p!D | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-2874987175-3563903751-1789994896-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02A6F915-FBE6-48A2-9FAC-5DB09F095D66}" = rport=445 | protocol=6 | dir=out | app=system |
"{03F8C47F-D3C6-4208-94DA-597C824BFBA2}" = lport=445 | protocol=6 | dir=in | app=system |
"{14F3AF46-753C-4F57-9320-B9693A7BBA23}" = lport=139 | protocol=6 | dir=in | app=system |
"{1DE827B7-0C39-4328-985E-2A285AD9A5B8}" = rport=139 | protocol=6 | dir=out | app=system |
"{6EE31BBC-4BA0-4931-A514-07C2DC931E22}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{7405A459-AF2C-4795-92A9-83A7F986341A}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{811FB42F-ACD4-4737-AE2C-1C0A4DDFE607}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss |
name=@firewallapi.dll,-28539 |
"{8B21BE17-C604-4F2F-B1F1-CB386367CBD3}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8BD5F0CD-52A7-4889-8FA9-0F092FCD90F9}" = rport=138 | protocol=17 | dir=out | app=system |
"{A8919D3D-D669-4F36-9A06-79B8CA17B389}" = lport=137 | protocol=17 | dir=in | app=system |
"{AF06F637-7744-40DE-A965-57080BADD354}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{B91D3212-DFA9-4646-A1AF-628B911080A3}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{E3659994-F44A-40CB-AC1C-26CA34CCF74E}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{E46AE0B3-B383-4344-BE1B-2A3B7D3627D1}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F80FEC63-EF7F-429E-88A0-627F24111A22}" = lport=138 | protocol=17 | dir=in | app=system |
"{F9733137-DE74-454C-93D2-3EFB980669D2}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{FE73A4C5-A474-4811-9A46-303511836F8C}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{085FEEFA-B143-4019-ADB3-A5627ADC0295}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{13D7AE8E-16AA-4A07-9EE6-AD6022B1D3F5}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{1AE22AF0-1EAC-426D-8024-E4F06900DD4A}" = protocol=1 | dir=out |
name=@firewallapi.dll,-28544 |
"{4AF6191D-D74A-4AB0-AF07-A1255C4F3A40}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{557019FD-1584-4431-BE01-016572F83F7C}" = protocol=58 | dir=out |
name=@firewallapi.dll,-28546 |
"{6410496E-B1BF-4F3E-9542-D9BC83AB3028}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{6602A9A9-FB7D-4AA6-9C38-0FA52F79DBD5}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{704C594F-EB0C-41DA-92C8-3AEF8304EEDE}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\counter-strike source\hl2.exe |
"{7639E264-8F42-4894-A3A6-017E0B9734D7}" = protocol=58 | dir=in |
name=@firewallapi.dll,-28545 |
"{86488AD0-4F51-492F-BF84-1C0687D5CF78}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{93CBF219-7D44-4490-8439-8D06ECECEEDF}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{95FFD91F-CE50-4351-AD83-3205AF17444C}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{9BF4B75F-E095-4F88-933D-07D921FC173D}" = protocol=1 | dir=in |
name=@firewallapi.dll,-28543 |
"{A8134CA0-C9C7-426D-A897-CE10989C745E}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\counter-strike source\hl2.exe |
"{BFE989BC-0E61-4DA0-A831-6DE6A6E71AB4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{D152225C-BD20-4687-947B-4D2E5E1ECD6E}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{E507365E-B8E5-4A20-8FD7-41206A7244A3}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{E6E52944-1584-4474-8138-96601D35BBAA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{F811126C-2554-4EBD-A624-CFA0C2F2ECB2}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"TCP Query User{3ADEF4D9-ABDE-4D7C-97E8-046E1AF38C6F}C:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{BA18CE72-3629-4B92-BBF2-CEDF7180C394}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{DA44617A-4192-465E-9B04-2D3E2A671614}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{F108A79F-1F8F-42C1-A1F9-216F13E29C9A}C:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{258E1237-B344-4531-A9F5-7E9D12FB37A3}C:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{93461748-7004-4A12-B5B6-DB1D409F11E4}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{A9D43C36-7A1A-4AE3-9471-CFE46D8F2949}C:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\sl!ghtly st00p!d\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{B015CDDF-B1CD-4577-A3BB-999A63FB7BAC}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.1 (r518)
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 45
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}" = Intel(R) PRO Network Connections 12.1.11.0
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{86D6A20D-3910-4441-A3E5-EB6977251C86}" = Samsung USB Driver
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC190334-B52F-41AC-A25C-CB89AC1AA8DE}" = 99 Puzzle & Logic
"{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.0
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{C197BC08-3D82-4651-8886-E68C21578A38}" = iTunes
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{ECA1A3B6-898F-4DCE-9F04-714CF3BA126B}" = Adobe Flash Player 10 Plugin
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1EC4151-805B-4097-B9BB-7D71A417AAF1}" = COMODO Firewall
"{F63A3748-B93D-4360-9AD4-B064481A5C7B}" = Modem Diagnostic Tool
"{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}" = RuneScape Launcher 1.2.3
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Avast" = avast! Internet Security
"CCleaner" = CCleaner
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2013-03-25
"Free Window Registry Repair" = Free Window Registry Repair
"Google Chrome" = Google Chrome
"Google Desktop" = Google Desktop
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HSPA USB MODEM ALCATEL_is1" = HSPA USB MODEM
"LockHunter_is1" = LockHunter 3.0, 32/64 bit
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Minecraft1.5.2" = Minecraft1.5.2
"PeerGuardian_is1" = PeerGuardian 2.0
"PROSetDX" = Intel(R) PRO Network Connections 12.1.11.0
"Registry Mechanic_is1" = PC Tools Registry Mechanic 11.0
"Security Task Manager" = Security Task Manager 1.8g
"Speccy" = Speccy
"Steam App 240" = Counter-Strike: Source
"WinRAR archiver" = WinRAR 4.20 (32-bit)
========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-2874987175-3563903751-1789994896-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"9204f5692a8faf3b" = Dell System Detect
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ========== [ Application Events ]
Error - 9/01/2014 3:22:22 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 6442
Error - 9/01/2014 3:22:22 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 6442
Error - 9/01/2014 3:22:23 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 9/01/2014 3:22:23 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 7441
Error - 9/01/2014 3:22:23 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 7441
Error - 9/01/2014 3:22:24 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 9/01/2014 3:22:24 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 8439
Error - 9/01/2014 3:22:24 PM | Computer Name = USER-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 8439
Error - 9/01/2014 11:44:22 PM | Computer Name = USER-PC | Source = WinMgmt | ID = 10
Description =
Error - 10/01/2014 10:55:58 AM | Computer Name = USER-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 9/01/2014 5:09:35 PM | Computer Name = USER-PC | Source = Tcpip | ID = 4199
Description = The system detected an address conflict for IP address 192.168.1.10
with the system having network hardware address 20-E5-2A-44-48-84. Network operations
on this system may be disrupted as a result.
Error - 9/01/2014 11:44:36 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 9/01/2014 11:44:36 PM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 10/01/2014 12:44:07 AM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7034
Description =
Error - 10/01/2014 1:21:18 AM | Computer Name = USER-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 122.151.19.222
on the Network Card with network address 001D099A86E0.
Error - 10/01/2014 5:46:53 AM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7011
Description =
Error - 10/01/2014 10:55:58 AM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 10/01/2014 10:55:58 AM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 10/01/2014 11:00:42 AM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7031
Description =
Error - 10/01/2014 11:56:53 AM | Computer Name = USER-PC | Source = Service Control Manager | ID = 7034
Description =
< End of report >