Unknown Issue (WildTangent-Based?)

View previous topic View next topic Go down

Unknown Issue (WildTangent-Based?)

Post by ScarletFBL on 22nd August 2011, 10:16 am

I noticed that BitDefender had an alert in my tray, letting me know that it hadn't been able to run a deep scan on my laptop. I tried running both Deep and Full scans manually, but ut just resulted in my computer freezing on the same file every time:

c:\programdata\wildtangent\53e95f38-82f7-4304-8e82-b6993c2a9fca-extr.exe

So, I went to that folder and tried to right-click the file in order to run BD on it, specifically, and my computer just froze again. I've searched, and seen that there are Trojans related to WildTangent, but I'm unsure which one's affecting my computer. Any help would be much appreciated.

OTL PART #1

OTL logfile created on: 8/22/2011 3:09:13 AM - Run 2
OTL by OldTimer - Version 3.2.17.3 Folder = c:\Users\ScarletFBL\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19120)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 45.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 61.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 137.16 Gb Total Space | 11.06 Gb Free Space | 8.06% Space Free | Partition Type: NTFS
Drive D: | 11.89 Gb Total Space | 1.86 Gb Free Space | 15.66% Space Free | Partition Type: NTFS

Computer Name: SCARLETFBL-PC | User Name: ScarletFBL | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/17 12:26:21 | 000,101,640 | ---- | M] (BitDefender) -- C:\Program Files\BitDefender\BitDefender 2011\downloader.exe
PRC - [2011/06/17 12:26:12 | 000,043,936 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
PRC - [2011/06/17 12:25:28 | 000,064,048 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe
PRC - [2011/06/17 12:25:04 | 002,090,016 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
PRC - [2011/06/17 12:24:18 | 001,451,928 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
PRC - [2011/02/14 19:32:52 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/01/14 13:35:56 | 000,196,912 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
PRC - [2010/11/09 20:59:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- c:\Users\ScarletFBL\Downloads\OTL.com
PRC - [2009/08/19 11:25:52 | 001,589,208 | ---- | M] () -- C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpy.exe
PRC - [2009/06/17 11:49:44 | 000,616,408 | ---- | M] () -- C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe
PRC - [2009/04/11 00:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/11/09 14:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/09/26 07:12:42 | 001,287,424 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\System32\oodag.exe
PRC - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
PRC - [2008/04/24 13:25:22 | 000,202,560 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
PRC - [2008/04/15 18:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007/09/26 13:55:04 | 000,283,912 | ---- | M] (CA, Inc.) -- C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
PRC - [2007/09/15 02:29:10 | 000,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2007/03/09 18:50:02 | 004,390,912 | ---- | M] (Realtek Semiconductor) -- C:\WINDOWS\RtHDVCpl.exe


========== Modules (SafeList) ==========

MOD - [2011/06/17 11:52:49 | 000,276,992 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\plugin_nt.m32
MOD - [2011/03/14 20:36:16 | 000,166,912 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\plugin_extra.m32
MOD - [2011/03/14 20:35:18 | 000,089,600 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\plugin_net.m32
MOD - [2011/03/14 20:35:00 | 000,657,408 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\plugin_fragments.m32
MOD - [2011/03/14 20:34:32 | 000,120,832 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\plugin_registry.m32
MOD - [2011/03/14 20:34:16 | 000,136,704 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\plugin_base.m32
MOD - [2011/03/14 20:29:50 | 000,232,968 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00094_005\midas32.dll
MOD - [2010/11/09 20:59:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- c:\Users\ScarletFBL\Downloads\OTL.com
MOD - [2010/08/31 09:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/08/02 19:15:22 | 003,542,616 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\netsession_win_2da1ebd.dll -- (Akamai)
SRV - [2011/06/17 12:26:12 | 000,043,936 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe -- (Updatesrv)
SRV - [2011/06/17 12:25:04 | 002,090,016 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe -- (VSSERV)
SRV - [2011/02/22 07:33:09 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\System32\FntCache.dll -- (FontCache)
SRV - [2011/01/14 13:35:56 | 000,196,912 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe -- (NitroReaderDriverReadSpool)
SRV - [2010/11/30 07:19:06 | 000,307,544 | ---- | M] (BitDefender) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Update Server)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/11/29 06:16:39 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/08/24 05:36:45 | 000,377,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2009/08/05 23:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009/06/17 11:49:44 | 000,616,408 | ---- | M] () [Auto | Running] -- C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe -- (AntiSpywareService)
SRV - [2008/11/09 14:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/09/26 07:12:42 | 001,287,424 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\WINDOWS\System32\oodag.exe -- (O&O Defrag)
SRV - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe -- (sprtsvc_ddoctorv2) SupportSoft Sprocket Service (ddoctorv2)
SRV - [2008/04/15 18:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008/01/19 01:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/09/26 13:55:04 | 000,283,912 | ---- | M] (CA, Inc.) [Auto | Running] -- C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe -- (ITMRTSVC)
SRV - [2007/08/31 13:15:06 | 000,176,128 | ---- | M] (Starz Entertainment Group LLC) [On_Demand | Stopped] -- C:\Program Files\Vongo\VongoService.exe -- (Vongo Service)
SRV - [2007/03/05 12:30:06 | 000,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2011/06/30 09:43:05 | 000,122,552 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys -- (bdselfpr)
DRV - [2011/06/17 12:26:04 | 000,306,320 | ---- | M] (BitDefender S.R.L.) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\trufos.sys -- (Trufos)
DRV - [2011/03/24 15:36:18 | 000,353,096 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\bdfsfltr.sys -- (bdfsfltr)
DRV - [2010/11/29 14:12:20 | 001,066,232 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\avckf.sys -- (avckf)
DRV - [2010/11/29 14:12:14 | 000,535,824 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\avc3.sys -- (avc3)
DRV - [2010/08/20 18:41:52 | 000,126,800 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (Bdftdif)
DRV - [2010/08/20 15:41:58 | 000,072,784 | ---- | M] (BitDefender) [Kernel | System | Running] -- c:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfndisf6.sys -- (Bdfndisf)
DRV - [2010/05/13 16:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\bdfm.sys -- (bdfm)
DRV - [2010/01/19 19:32:40 | 000,085,128 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\bdvedisk.sys -- (Bdvedisk)
DRV - [2009/08/05 23:48:42 | 000,054,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\fssfltr.sys -- (fssfltr)
DRV - [2009/05/05 13:15:58 | 001,095,808 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\smserial.sys -- (smserial)
DRV - [2008/10/23 03:16:28 | 001,331,192 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\BCMWL6.SYS -- (BCM43XX)
DRV - [2008/10/23 03:16:28 | 001,331,192 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2008/08/14 09:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\adfs.sys -- (adfs)
DRV - [2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2008/03/28 03:06:00 | 000,199,472 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2008/02/11 20:36:10 | 002,302,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2008/02/11 20:36:10 | 002,302,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\igdkmd32.sys -- (ialm)
DRV - [2008/01/18 23:49:16 | 000,019,968 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sermouse.sys -- (sermouse)
DRV - [2007/09/17 17:17:36 | 000,098,816 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2007/07/11 12:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\HpqRemHid.sys -- (HpqRemHid)
DRV - [2007/06/18 19:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007/03/22 00:02:04 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/03/12 20:29:46 | 001,747,936 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/02/24 16:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007/01/23 18:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2006/11/02 03:51:45 | 000,900,712 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 03:51:38 | 000,420,968 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 03:51:34 | 000,316,520 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 03:51:32 | 000,297,576 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 03:51:25 | 000,235,112 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 03:51:25 | 000,232,040 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 03:51:12 | 000,167,528 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\pcmcia.sys -- (pcmcia)
DRV - [2006/11/02 03:51:00 | 000,147,048 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 03:50:45 | 000,115,816 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 03:50:41 | 000,112,232 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 03:50:40 | 000,106,600 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\nv_agp.sys -- (nv_agp)
DRV - [2006/11/02 03:50:35 | 000,106,088 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 03:50:35 | 000,098,408 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 03:50:35 | 000,098,408 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 03:50:24 | 000,088,680 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 03:50:24 | 000,047,208 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\isapnp.sys -- (isapnp)
DRV - [2006/11/02 03:50:19 | 000,045,160 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 03:50:17 | 000,080,488 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\msdsm.sys -- (msdsm)
DRV - [2006/11/02 03:50:17 | 000,041,576 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 03:50:16 | 000,078,952 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mpio.sys -- (mpio)
DRV - [2006/11/02 03:50:16 | 000,076,392 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sbp2port.sys -- (sbp2port)
DRV - [2006/11/02 03:50:16 | 000,071,784 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 03:50:13 | 000,040,040 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 03:50:11 | 000,071,272 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 03:50:10 | 000,067,688 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 03:50:10 | 000,065,640 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 03:50:10 | 000,038,504 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 03:50:10 | 000,037,480 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 03:50:09 | 000,067,688 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 03:50:09 | 000,035,944 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 03:50:07 | 000,035,944 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 03:50:05 | 000,065,640 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 03:50:05 | 000,035,944 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 03:50:04 | 000,065,640 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 03:50:04 | 000,058,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\gagp30kx.sys -- (gagp30kx)
DRV - [2006/11/02 03:50:04 | 000,058,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uliagpkx.sys -- (uliagpkx)
DRV - [2006/11/02 03:50:03 | 000,034,920 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 03:49:59 | 000,056,936 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uagp35.sys -- (uagp35)
DRV - [2006/11/02 03:49:59 | 000,054,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\amdagp.sys -- (amdagp)
DRV - [2006/11/02 03:49:59 | 000,033,384 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 03:49:56 | 000,031,848 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 03:49:53 | 000,028,776 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 03:49:52 | 000,054,376 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\viaagp.sys -- (viaagp)
DRV - [2006/11/02 03:49:52 | 000,053,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\agp440.sys -- (agp440)
DRV - [2006/11/02 03:49:51 | 000,053,352 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sisagp.sys -- (sisagp)
DRV - [2006/11/02 03:49:49 | 000,027,752 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\i2omp.sys -- (i2omp)
DRV - [2006/11/02 03:49:38 | 000,019,560 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wd.sys -- (Wd)
DRV - [2006/11/02 03:49:30 | 000,017,512 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006/11/02 03:49:28 | 000,016,488 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006/11/02 03:49:26 | 000,015,464 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdide.sys -- (amdide)
DRV - [2006/11/02 03:49:20 | 000,014,952 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006/11/02 03:49:20 | 000,013,416 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\pciide.sys -- (pciide)
DRV - [2006/11/02 03:03:00 | 000,242,688 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\rdpdr.sys -- (rdpdr)
DRV - [2006/11/02 02:55:23 | 000,039,936 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\bthmodem.sys -- (BTHMODEM)
DRV - [2006/11/02 02:55:22 | 000,029,184 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hidbth.sys -- (HidBth)
DRV - [2006/11/02 02:55:09 | 000,068,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR)
DRV - [2006/11/02 02:55:08 | 000,035,328 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\circlass.sys -- (circlass)
DRV - [2006/11/02 02:55:05 | 000,019,456 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\usbohci.sys -- (usbohci)
DRV - [2006/11/02 02:55:01 | 000,021,504 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hidir.sys -- (HidIr)
DRV - [2006/11/02 02:52:52 | 000,020,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\wacompen.sys -- (WacomPen)
DRV - [2006/11/02 02:51:40 | 000,013,312 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sfloppy.sys -- (sfloppy)
DRV - [2006/11/02 02:51:40 | 000,012,800 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sffp_mmc.sys -- (sffp_mmc)
DRV - [2006/11/02 02:51:30 | 000,083,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\serial.sys -- (Serial)
DRV - [2006/11/02 02:51:30 | 000,079,360 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\parport.sys -- (Parport)
DRV - [2006/11/02 02:51:25 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\serenum.sys -- (Serenum)
DRV - [2006/11/02 02:51:23 | 000,008,704 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\system32\drivers\parvdm.sys -- (Parvdm)
DRV - [2006/11/02 02:42:03 | 000,065,536 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ipmidrv.sys -- (IPMIDRV)
DRV - [2006/11/02 02:30:19 | 000,039,424 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viac7.sys -- (ViaC7)
DRV - [2006/11/02 02:30:18 | 000,040,960 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdk8.sys -- (AmdK8)
DRV - [2006/11/02 02:30:18 | 000,038,912 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\crusoe.sys -- (Crusoe)
DRV - [2006/11/02 02:30:18 | 000,038,912 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\amdk7.sys -- (AmdK7)
DRV - [2006/11/02 02:30:18 | 000,038,400 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\processr.sys -- (Processor)
DRV - [2006/11/02 02:25:24 | 000,071,808 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 02:24:47 | 000,011,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 02:24:46 | 000,005,248 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 02:24:45 | 000,013,568 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 02:24:44 | 000,062,336 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 02:24:44 | 000,012,160 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 01:41:50 | 000,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\VSTDPV3.SYS -- (HSF_DPV)
DRV - [2006/11/02 01:41:49 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006/11/02 01:41:48 | 000,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\VSTCNXT3.SYS -- (winachsf)
DRV - [2006/11/02 01:36:50 | 000,020,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 01:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "chrf-ytbm"
FF - prefs.js..browser.search.param.yahoo-type: "${8}"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "google.com"
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:9.0.0.736
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.6.2
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:2.1.6
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.0.2
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:2.1
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:3.61
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.6.2
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:2.0.0.20091223
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:3.11.3.15590
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.9.7.3
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.5
FF - prefs.js..extensions.enabledItems: {02450954-cdd9-410f-b1da-db804e18c671}:0.96.3
FF - prefs.js..extensions.enabledItems: {0EFD958A-0827-11da-C687-0001038A43E2}:0.3.3
FF - prefs.js..extensions.enabledItems: {2f17f610-5e97-4fed-828f-9940b7b577a4}:1.6.5
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.1.1
FF - prefs.js..extensions.enabledItems: {4E77EDAD-9566-4089-88D1-C81498CEE770}:3.0
FF - prefs.js..extensions.enabledItems: {AD84B1F3-FED5-4b8d-9EB6-DDF0DE54B95B}:2.1.3
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {d37dc5d0-431d-44e5-8c91-49419370caa1}:2.7.82
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5
FF - prefs.js..extensions.enabledItems: {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.90
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:11.0.1.400
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:4.0
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.2
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {89f8dde0-010a-11da-8cd6-0800200c9a66}:1.0.0.21
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:0.6.2
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:2.1.1


FF - HKLM\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker
FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/07/25 11:09:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011/02/25 11:13:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011/02/25 11:13:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\ [2011/06/24 07:45:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/23 08:38:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/21 20:56:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF - HKLM\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdtbext\ [2011/07/20 07:06:37 | 000,000,000 | ---D | M]

[2009/10/25 18:04:39 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Extensions
[2009/10/06 22:34:29 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org
[2011/08/22 02:20:12 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions
[2010/03/26 11:38:52 | 000,000,000 | ---D | M] (Screengrab) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671}
[2010/01/17 18:11:28 | 000,000,000 | ---D | M] (disablemenu) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{0EFD958A-0827-11da-C687-0001038A43E2}
[2010/04/28 00:02:50 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/08/03 11:21:44 | 000,000,000 | ---D | M] (TV-Fox) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{2f17f610-5e97-4fed-828f-9940b7b577a4}
[2011/03/07 09:10:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}-trash
[2011/03/25 09:43:32 | 000,000,000 | ---D | M] (Comcast Toolbar) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{4E77EDAD-9566-4089-88D1-C81498CEE770}
[2011/03/09 16:36:01 | 000,000,000 | ---D | M] (Yahoo! Mail Notifier) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{89f8dde0-010a-11da-8cd6-0800200c9a66}
[2010/01/17 04:47:45 | 000,000,000 | ---D | M] (Word Count Plus) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{97c7d43c-4182-49b8-9b04-b78fed89d7fb}
[2011/02/03 18:38:48 | 000,000,000 | ---D | M] (Grocery List Generator) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{AD84B1F3-FED5-4b8d-9EB6-DDF0DE54B95B}
[2011/07/13 04:03:19 | 000,000,000 | ---D | M] (FoxClocks) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
[2011/08/11 07:58:22 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2011/02/18 10:18:38 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\illimitux@illimitux.net
[2010/03/24 05:00:35 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\mgDownloadHelper@yevgenyandrov.net
[2011/08/21 00:09:09 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\optout@dubfire.net
[2011/04/02 08:24:06 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\pagezipper@printwhatyoulike.com
[2011/03/14 08:02:53 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\personas@christopher.beard
[2010/01/17 22:48:32 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\plugin@reframeit.com
[2010/08/04 10:46:08 | 000,000,000 | ---D | M] -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\extensions\YoutubeDownloader@PeterOlayev.com
[2010/04/02 19:27:30 | 000,001,490 | ---- | M] () -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\searchplugins\AIM Search.xml
[2011/04/26 04:07:20 | 000,002,557 | ---- | M] () -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\searchplugins\askcom.xml
[2010/01/17 04:32:31 | 000,000,713 | ---- | M] () -- C:\Users\ScarletFBL\AppData\Roaming\Mozilla\Firefox\Profiles\zkukfqyt.default\searchplugins\webster.xml
[2011/06/17 10:36:07 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/07/26 19:11:24 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/06/23 08:38:12 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011/03/18 11:33:21 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2011/03/18 11:33:22 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll
[2010/04/02 19:27:30 | 000,001,490 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\AIM Search.xml
[2009/02/09 16:05:22 | 000,002,236 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\askcom.xml
[2010/01/01 02:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
[2008/12/01 10:50:26 | 000,004,946 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\comcast.xml

O1 HOSTS File: ([2010/07/27 03:18:46 | 000,000,791 | ---- | M]) - C:\WINDOWS\System32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5

ScarletFBL
Novice
Novice

Posts Posts : 15
Joined Joined : 2009-09-25
Gender Gender : Female
OS OS : Vista Home Premium
Points Points : 26358
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Unknown Issue (WildTangent-Based?)

Post by ScarletFBL on 22nd August 2011, 10:21 am

OTL PART #2



CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011/08/10 03:24:58 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/08/10 03:24:51 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/08/10 03:24:49 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/08/10 03:24:48 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/08/10 03:24:48 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/08/10 03:24:47 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/08/10 03:24:47 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/08/10 03:24:46 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/08/10 03:24:46 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/08/10 03:24:45 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/08/10 03:24:45 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/08/10 03:24:45 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/08/10 03:24:44 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/08/10 03:24:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/08/10 03:24:43 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/08/10 03:24:42 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/08/10 03:24:42 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/08/10 03:24:41 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/08/10 03:24:41 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/08/10 03:24:02 | 003,602,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/08/10 03:24:02 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/08/03 11:07:50 | 000,000,000 | -HSD | C] -- C:\found.000
[2011/07/26 08:31:31 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

========== Files - Modified Within 30 Days ==========

[2011/08/22 02:56:45 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/22 02:56:45 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/22 02:56:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/22 02:56:32 | 2137,448,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/22 02:56:29 | 001,251,460 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2011/08/21 01:54:13 | 000,100,618 | ---- | M] () -- C:\Users\ScarletFBL\Documents\vista - Vista Antivirus Security 2012 Removal_1313913250389.png
[2011/08/18 14:47:20 | 000,072,360 | ---- | M] () -- C:\Users\ScarletFBL\Documents\Alpha Tactics - Creed Cascade.pdf
[2011/08/18 14:14:23 | 000,004,178 | ---- | M] () -- C:\Users\ScarletFBL\AppData\Roaming\wklnhst.dat
[2011/08/18 12:58:12 | 000,683,912 | ---- | M] () -- C:\Users\ScarletFBL\Documents\My Love is Like to Ice and I to Fire.pdf
[2011/08/15 11:03:40 | 000,907,652 | ---- | M] () -- C:\Users\ScarletFBL\Documents\Favorites List.wps
[2011/08/07 05:43:42 | 000,000,342 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForScarletFBL.job
[2011/07/26 08:31:31 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/07/23 05:04:18 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011/07/23 05:01:07 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/07/23 05:00:36 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/07/23 05:00:36 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/07/23 05:00:05 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/07/23 04:59:57 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/07/23 04:59:52 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/07/23 04:59:35 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/07/23 04:59:34 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/07/23 04:59:34 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/07/23 04:59:34 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/07/23 04:59:34 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/07/23 04:59:29 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/07/23 04:03:47 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/07/23 03:27:04 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/07/23 03:26:12 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/07/23 03:25:38 | 001,638,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

========== Files Created - No Company Name ==========

[2011/08/21 01:54:13 | 000,100,618 | ---- | C] () -- C:\Users\ScarletFBL\Documents\vista - Vista Antivirus Security 2012 Removal_1313913250389.png
[2011/08/18 14:47:20 | 000,072,360 | ---- | C] () -- C:\Users\ScarletFBL\Documents\Alpha Tactics - Creed Cascade.pdf
[2011/08/18 12:58:12 | 000,683,912 | ---- | C] () -- C:\Users\ScarletFBL\Documents\My Love is Like to Ice and I to Fire.pdf
[2011/06/17 16:34:09 | 000,000,000 | ---- | C] () -- C:\ProgramData\search_result.xml
[2011/06/17 10:54:12 | 000,602,464 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2011/03/14 17:41:36 | 000,176,235 | ---- | C] () -- C:\Windows\System32\Primomonnt.dll
[2010/08/18 09:09:29 | 000,815,104 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/08/18 09:09:29 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/07/08 10:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe
[2010/04/01 23:08:34 | 000,000,000 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Local\prvlcl.dat
[2009/11/16 19:02:31 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/11/08 06:19:20 | 000,000,002 | -HS- | C] () -- C:\Users\ScarletFBL\AppData\Roaming\evf2
[2009/09/30 16:20:52 | 006,025,216 | ---- | C] () -- C:\Windows\System32\tliclean21.dll
[2009/09/22 20:20:43 | 000,001,356 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Local\d3d9caps.dat
[2009/09/17 03:51:55 | 000,004,178 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Roaming\wklnhst.dat
[2009/09/13 00:13:02 | 000,049,664 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/12 17:42:46 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/09/12 11:50:02 | 000,019,968 | ---- | C] () -- C:\Windows\System32\drivers\sermouse.sys
[2009/09/12 04:10:28 | 000,000,000 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Local\QSwitch.txt
[2009/09/12 04:10:28 | 000,000,000 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Local\DSwitch.txt
[2009/09/12 04:10:28 | 000,000,000 | ---- | C] () -- C:\Users\ScarletFBL\AppData\Local\AtStart.txt
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2008/02/11 20:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll
[2008/01/20 03:39:33 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2007/11/25 23:08:04 | 000,003,176 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2007/09/13 09:31:06 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1329.dll
[2007/09/13 09:22:46 | 001,238,832 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2007/09/13 09:22:46 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2007/01/31 14:50:32 | 000,913,408 | ---- | C] () -- C:\Windows\System32\xreglib.dll
[2006/11/02 06:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 03:38:56 | 000,013,568 | ---- | C] () -- C:\Windows\System32\drivers\BrFiltLo.sys
[2006/11/02 03:38:00 | 000,011,904 | ---- | C] () -- C:\Windows\System32\drivers\BrUsbSer.sys
[2006/11/02 03:37:31 | 000,012,160 | ---- | C] () -- C:\Windows\System32\drivers\BrUsbMdm.sys
[2006/11/02 03:37:24 | 000,005,248 | ---- | C] () -- C:\Windows\System32\drivers\BrFiltUp.sys
[2006/11/02 03:36:51 | 000,062,336 | ---- | C] () -- C:\Windows\System32\drivers\BrSerWdm.sys
[2006/11/02 03:22:06 | 000,071,808 | ---- | C] () -- C:\Windows\System32\drivers\BrSerId.sys
[2006/11/02 03:03:00 | 000,242,688 | ---- | C] () -- C:\Windows\System32\drivers\rdpdr.sys
[2006/11/02 02:55:23 | 000,039,936 | ---- | C] () -- C:\Windows\System32\drivers\bthmodem.sys
[2006/11/02 02:55:22 | 000,029,184 | ---- | C] () -- C:\Windows\System32\drivers\hidbth.sys
[2006/11/02 02:55:09 | 000,068,608 | ---- | C] () -- C:\Windows\System32\drivers\usbcir.sys
[2006/11/02 02:55:08 | 000,035,328 | ---- | C] () -- C:\Windows\System32\drivers\circlass.sys
[2006/11/02 02:55:05 | 000,019,456 | ---- | C] () -- C:\Windows\System32\drivers\usbohci.sys
[2006/11/02 02:55:01 | 000,021,504 | ---- | C] () -- C:\Windows\System32\drivers\hidir.sys
[2006/11/02 02:54:05 | 000,019,560 | ---- | C] () -- C:\Windows\System32\drivers\wd.sys
[2006/11/02 02:52:52 | 000,020,608 | ---- | C] () -- C:\Windows\System32\drivers\wacompen.sys
[2006/11/02 02:52:40 | 000,080,488 | ---- | C] () -- C:\Windows\System32\drivers\msdsm.sys
[2006/11/02 02:52:38 | 000,078,952 | ---- | C] () -- C:\Windows\System32\drivers\mpio.sys
[2006/11/02 02:51:45 | 000,076,392 | ---- | C] () -- C:\Windows\System32\drivers\sbp2port.sys
[2006/11/02 02:51:40 | 000,013,312 | ---- | C] () -- C:\Windows\System32\drivers\sfloppy.sys
[2006/11/02 02:51:40 | 000,012,800 | ---- | C] () -- C:\Windows\System32\drivers\sffp_mmc.sys
[2006/11/02 02:51:37 | 000,027,752 | ---- | C] () -- C:\Windows\System32\drivers\i2omp.sys
[2006/11/02 02:51:36 | 000,017,512 | ---- | C] () -- C:\Windows\System32\drivers\viaide.sys
[2006/11/02 02:51:36 | 000,015,464 | ---- | C] () -- C:\Windows\System32\drivers\amdide.sys
[2006/11/02 02:51:35 | 000,016,488 | ---- | C] () -- C:\Windows\System32\drivers\cmdide.sys
[2006/11/02 02:51:35 | 000,014,952 | ---- | C] () -- C:\Windows\System32\drivers\aliide.sys
[2006/11/02 02:51:35 | 000,013,416 | ---- | C] () -- C:\Windows\System32\drivers\pciide.sys
[2006/11/02 02:51:30 | 000,083,456 | ---- | C] () -- C:\Windows\System32\drivers\serial.sys
[2006/11/02 02:51:30 | 000,079,360 | ---- | C] () -- C:\Windows\System32\drivers\parport.sys
[2006/11/02 02:51:25 | 000,017,920 | ---- | C] () -- C:\Windows\System32\drivers\serenum.sys
[2006/11/02 02:51:23 | 000,008,704 | ---- | C] () -- C:\Windows\System32\drivers\parvdm.sys
[2006/11/02 02:42:03 | 000,065,536 | ---- | C] () -- C:\Windows\System32\drivers\IPMIDrv.sys
[2006/11/02 02:35:13 | 000,167,528 | ---- | C] () -- C:\Windows\System32\drivers\pcmcia.sys
[2006/11/02 02:35:11 | 000,047,208 | ---- | C] () -- C:\Windows\System32\drivers\isapnp.sys
[2006/11/02 02:35:08 | 000,106,600 | ---- | C] () -- C:\Windows\System32\drivers\NV_AGP.SYS
[2006/11/02 02:35:08 | 000,058,472 | ---- | C] () -- C:\Windows\System32\drivers\ULIAGPKX.SYS
[2006/11/02 02:35:07 | 000,058,984 | ---- | C] () -- C:\Windows\System32\drivers\GAGP30KX.SYS
[2006/11/02 02:35:07 | 000,056,936 | ---- | C] () -- C:\Windows\System32\drivers\UAGP35.SYS
[2006/11/02 02:35:07 | 000,054,376 | ---- | C] () -- C:\Windows\System32\drivers\VIAAGP.SYS
[2006/11/02 02:35:06 | 000,054,888 | ---- | C] () -- C:\Windows\System32\drivers\AMDAGP.SYS
[2006/11/02 02:35:06 | 000,053,864 | ---- | C] () -- C:\Windows\System32\drivers\AGP440.sys
[2006/11/02 02:35:06 | 000,053,352 | ---- | C] () -- C:\Windows\System32\drivers\SISAGP.SYS
[2006/11/02 02:30:19 | 000,039,424 | ---- | C] () -- C:\Windows\System32\drivers\viac7.sys
[2006/11/02 02:30:18 | 000,040,960 | ---- | C] () -- C:\Windows\System32\drivers\amdk8.sys
[2006/11/02 02:30:18 | 000,038,912 | ---- | C] () -- C:\Windows\System32\drivers\crusoe.sys
[2006/11/02 02:30:18 | 000,038,912 | ---- | C] () -- C:\Windows\System32\drivers\amdk7.sys
[2006/11/02 02:30:18 | 000,038,400 | ---- | C] () -- C:\Windows\System32\drivers\processr.sys
[2006/11/02 01:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 01:36:50 | 000,020,608 | ---- | C] () -- C:\Windows\System32\drivers\ntrigdigi.sys
[2006/11/02 01:36:49 | 000,071,272 | ---- | C] () -- C:\Windows\System32\drivers\djsvs.sys
[2006/11/02 01:36:48 | 000,235,112 | ---- | C] () -- C:\Windows\System32\drivers\uliahci.sys
[2006/11/02 01:36:48 | 000,112,232 | ---- | C] () -- C:\Windows\System32\drivers\vsmraid.sys
[2006/11/02 01:36:48 | 000,106,088 | ---- | C] () -- C:\Windows\System32\drivers\ql40xx.sys
[2006/11/02 01:36:48 | 000,071,784 | ---- | C] () -- C:\Windows\System32\drivers\sisraid4.sys
[2006/11/02 01:36:48 | 000,038,504 | ---- | C] () -- C:\Windows\System32\drivers\sisraid2.sys
[2006/11/02 01:36:47 | 000,900,712 | ---- | C] () -- C:\Windows\System32\drivers\ql2300.sys
[2006/11/02 01:36:47 | 000,065,640 | ---- | C] () -- C:\Windows\System32\drivers\lsi_fc.sys
[2006/11/02 01:36:47 | 000,035,944 | ---- | C] () -- C:\Windows\System32\drivers\symc8xx.sys
[2006/11/02 01:36:47 | 000,034,920 | ---- | C] () -- C:\Windows\System32\drivers\sym_u3.sys
[2006/11/02 01:36:47 | 000,031,848 | ---- | C] () -- C:\Windows\System32\drivers\sym_hi.sys
[2006/11/02 01:36:46 | 000,115,816 | ---- | C] () -- C:\Windows\System32\drivers\ulsata2.sys
[2006/11/02 01:36:46 | 000,098,408 | ---- | C] () -- C:\Windows\System32\drivers\ulsata.sys
[2006/11/02 01:36:46 | 000,088,680 | ---- | C] () -- C:\Windows\System32\drivers\nvraid.sys
[2006/11/02 01:36:46 | 000,065,640 | ---- | C] () -- C:\Windows\System32\drivers\lsi_scsi.sys
[2006/11/02 01:36:46 | 000,065,640 | ---- | C] () -- C:\Windows\System32\drivers\lsi_sas.sys
[2006/11/02 01:36:46 | 000,040,040 | ---- | C] () -- C:\Windows\System32\drivers\nvstor.sys
[2006/11/02 01:36:45 | 000,035,944 | ---- | C] () -- C:\Windows\System32\drivers\iteatapi.sys
[2006/11/02 01:36:45 | 000,033,384 | ---- | C] () -- C:\Windows\System32\drivers\Mraid35x.sys
[2006/11/02 01:36:45 | 000,028,776 | ---- | C] () -- C:\Windows\System32\drivers\megasas.sys
[2006/11/02 01:36:44 | 000,316,520 | ---- | C] () -- C:\Windows\System32\drivers\elxstor.sys
[2006/11/02 01:36:44 | 000,232,040 | ---- | C] () -- C:\Windows\System32\drivers\iaStorV.sys
[2006/11/02 01:36:44 | 000,067,688 | ---- | C] () -- C:\Windows\System32\drivers\arcsas.sys
[2006/11/02 01:36:44 | 000,067,688 | ---- | C] () -- C:\Windows\System32\drivers\arc.sys
[2006/11/02 01:36:44 | 000,045,160 | ---- | C] () -- C:\Windows\System32\drivers\nfrd960.sys
[2006/11/02 01:36:44 | 000,041,576 | ---- | C] () -- C:\Windows\System32\drivers\iirsp.sys
[2006/11/02 01:36:44 | 000,037,480 | ---- | C] () -- C:\Windows\System32\drivers\HpCISSs.sys
[2006/11/02 01:36:44 | 000,035,944 | ---- | C] () -- C:\Windows\System32\drivers\iteraid.sys
[2006/11/02 01:36:43 | 000,420,968 | ---- | C] () -- C:\Windows\System32\drivers\adp94xx.sys
[2006/11/02 01:36:43 | 000,297,576 | ---- | C] () -- C:\Windows\System32\drivers\adpahci.sys
[2006/11/02 01:36:43 | 000,147,048 | ---- | C] () -- C:\Windows\System32\drivers\adpu320.sys
[2006/11/02 01:36:43 | 000,098,408 | ---- | C] () -- C:\Windows\System32\drivers\adpu160m.sys
[2006/03/09 16:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2002/10/15 16:54:04 | 000,153,088 | ---- | C] () -- C:\Windows\System32\unrar.dll

========== Custom Scans ==========


< %APPDATA%\Microsoft\*.* >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %USERPROFILE%\Desktop\*.exe >

< %PROGRAMFILES%\Common Files\*.* >
[2010/07/08 10:37:14 | 000,101,544 | ---- | M] () -- C:\Program Files\Common Files\LinkInstaller.exe

< %systemroot%\winn32\*.* >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >
[2009/12/20 13:30:00 | 000,103,784 | ---- | M] () -- C:\Users\ScarletFBL\GoToAssistDownloadHelper.exe

< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2011/06/23 08:38:12 | 000,125,912 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2011/06/23 08:37:56 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
[2011/06/23 08:37:54 | 000,265,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe

< %ProgramFiles%\TinyProxy. >

< %systemroot%\system32\*.* /lockedfiles >
[2011/08/22 02:56:45 | 000,003,168 | -H-- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/22 02:56:45 | 000,003,168 | -H-- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/04/11 00:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\System32\rsaenh.dll
[2009/04/11 00:28:23 | 000,228,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\System32\SLC.dll
[2006/11/02 01:29:16 | 000,016,896 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\System32\stdole2.tlb
[2011/06/17 11:52:29 | 000,000,415 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\user_gensett.xml

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.* /lockedfiles >
[2006/11/02 03:51:38 | 000,420,968 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\adp94xx.sys
[2006/11/02 03:51:32 | 000,297,576 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\adpahci.sys
[2006/11/02 03:50:35 | 000,098,408 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\adpu160m.sys
[2006/11/02 03:51:00 | 000,147,048 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\adpu320.sys
[2006/11/02 03:49:52 | 000,053,864 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\AGP440.sys
[2006/11/02 03:49:20 | 000,014,952 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\aliide.sys
[2006/11/02 03:49:59 | 000,054,888 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\AMDAGP.SYS
[2006/11/02 03:49:26 | 000,015,464 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\amdide.sys
[2006/11/02 02:30:18 | 000,038,912 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\amdk7.sys
[2006/11/02 02:30:18 | 000,040,960 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\amdk8.sys
[2006/11/02 03:50:09 | 000,067,688 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\arc.sys
[2006/11/02 03:50:10 | 000,067,688 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\arcsas.sys
[2010/11/29 14:12:14 | 000,535,824 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\avc3.sys
[2010/11/29 14:12:20 | 001,066,232 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\avckf.sys
[2010/05/13 16:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\bdfm.sys
[2011/03/24 15:36:18 | 000,353,096 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\bdfsfltr.sys
[2010/05/13 16:52:30 | 000,105,808 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\bdhv.sys
[2006/11/02 02:24:45 | 000,013,568 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\BrFiltLo.sys
[2006/11/02 02:24:46 | 000,005,248 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\BrFiltUp.sys
[2006/11/02 02:25:24 | 000,071,808 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\BrSerId.sys
[2006/11/02 02:24:44 | 000,062,336 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\BrSerWdm.sys
[2006/11/02 02:24:44 | 000,012,160 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\BrUsbMdm.sys
[2006/11/02 02:24:47 | 000,011,904 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\BrUsbSer.sys
[2006/11/02 02:55:23 | 000,039,936 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\bthmodem.sys
[2006/11/02 02:55:08 | 000,035,328 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\circlass.sys
[2006/11/02 03:49:28 | 000,016,488 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\cmdide.sys
[2006/11/02 02:30:18 | 000,038,912 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\crusoe.sys
[2006/11/02 03:50:11 | 000,071,272 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\djsvs.sys
[2006/11/02 03:51:34 | 000,316,520 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\elxstor.sys
[2006/11/02 03:50:04 | 000,058,984 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\GAGP30KX.SYS
[2006/11/02 02:55:22 | 000,029,184 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\hidbth.sys
[2006/11/02 02:55:01 | 000,021,504 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\hidir.sys
[2006/11/02 03:50:10 | 000,037,480 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\HpCISSs.sys
[2006/11/02 03:49:49 | 000,027,752 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\i2omp.sys
[2006/11/02 03:51:25 | 000,232,040 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\iaStorV.sys
[2006/11/02 03:50:17 | 000,041,576 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\iirsp.sys
[2006/11/02 02:42:03 | 000,065,536 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\IPMIDrv.sys
[2006/11/02 03:50:24 | 000,047,208 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\isapnp.sys
[2006/11/02 03:50:07 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\iteatapi.sys
[2006/11/02 03:50:09 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\iteraid.sys
[2006/11/02 03:50:04 | 000,065,640 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\lsi_fc.sys
[2006/11/02 03:50:05 | 000,065,640 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\lsi_sas.sys
[2006/11/02 03:50:10 | 000,065,640 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\lsi_scsi.sys
[2006/11/02 03:49:53 | 000,028,776 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\megasas.sys
[2006/11/02 03:50:16 | 000,078,952 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\mpio.sys
[2006/11/02 03:49:59 | 000,033,384 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\Mraid35x.sys
[2006/11/02 03:50:17 | 000,080,488 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\msdsm.sys
[2006/11/02 03:50:19 | 000,045,160 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\nfrd960.sys
[2006/11/02 01:36:50 | 000,020,608 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\ntrigdigi.sys
[2006/11/02 03:50:24 | 000,088,680 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\nvraid.sys
[2006/11/02 03:50:13 | 000,040,040 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\nvstor.sys
[2006/11/02 03:50:40 | 000,106,600 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\NV_AGP.SYS
[2006/11/02 02:51:30 | 000,079,360 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\parport.sys
[2006/11/02 02:51:23 | 000,008,704 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\parvdm.sys
[2006/11/02 03:49:20 | 000,013,416 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\pciide.sys
[2006/11/02 03:51:12 | 000,167,528 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\pcmcia.sys
[2006/11/02 02:30:18 | 000,038,400 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\processr.sys
[2006/11/02 03:51:45 | 000,900,712 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\ql2300.sys
[2006/11/02 03:50:35 | 000,106,088 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\ql40xx.sys
[2006/11/02 03:03:00 | 000,242,688 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\rdpdr.sys
[2006/11/02 03:50:16 | 000,076,392 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sbp2port.sys
[2006/11/02 02:51:25 | 000,017,920 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\serenum.sys
[2006/11/02 02:51:30 | 000,083,456 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\serial.sys
[2008/01/18 23:49:16 | 000,019,968 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sermouse.sys
[2006/11/02 02:51:40 | 000,012,800 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sffp_mmc.sys
[2006/11/02 02:51:40 | 000,013,312 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sfloppy.sys
[2006/11/02 03:49:51 | 000,053,352 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\SISAGP.SYS
[2006/11/02 03:50:10 | 000,038,504 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sisraid2.sys
[2006/11/02 03:50:16 | 000,071,784 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sisraid4.sys
[2006/11/02 03:50:05 | 000,035,944 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\symc8xx.sys
[2006/11/02 03:49:56 | 000,031,848 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sym_hi.sys
[2006/11/02 03:50:03 | 000,034,920 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\sym_u3.sys
[2011/06/17 12:26:04 | 000,306,320 | ---- | M] (BitDefender S.R.L.) Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\trufos.sys
[2006/11/02 03:49:59 | 000,056,936 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\UAGP35.SYS
[2006/11/02 03:50:04 | 000,058,472 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\ULIAGPKX.SYS
[2006/11/02 03:51:25 | 000,235,112 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\uliahci.sys
[2006/11/02 03:50:35 | 000,098,408 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\ulsata.sys
[2006/11/02 03:50:45 | 000,115,816 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\ulsata2.sys
[2006/11/02 02:55:09 | 000,068,608 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\usbcir.sys
[2006/11/02 02:55:05 | 000,019,456 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\usbohci.sys
[2006/11/02 03:49:52 | 000,054,376 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\VIAAGP.SYS
[2006/11/02 02:30:19 | 000,039,424 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\viac7.sys
[2006/11/02 03:49:30 | 000,017,512 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\viaide.sys
[2006/11/02 03:50:41 | 000,112,232 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\vsmraid.sys
[2006/11/02 02:52:52 | 000,020,608 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\wacompen.sys
[2006/11/02 03:49:38 | 000,019,560 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\wd.sys

< %PROGRAMFILES%\*. >
[2010/01/01 05:30:01 | 000,000,000 | ---D | M] -- C:\Program Files\7-Zip
[2007/11/25 23:05:42 | 000,000,000 | ---D | M] -- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[2009/11/29 06:28:46 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2009/11/29 05:27:32 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe Media Player
[2010/04/02 19:27:26 | 000,000,000 | ---D | M] -- C:\Program Files\AIM
[2009/09/29 11:43:31 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2010/09/01 17:38:26 | 000,000,000 | ---D | M] -- C:\Program Files\Audacity 1.3 Beta (Unicode)
[2010/03/26 21:22:25 | 000,000,000 | ---D | M] -- C:\Program Files\AVG
[2007/11/25 23:21:40 | 000,000,000 | ---D | M] -- C:\Program Files\AWS
[2011/06/17 11:45:50 | 000,000,000 | ---D | M] -- C:\Program Files\BitDefender
[2009/09/12 03:58:11 | 000,000,000 | ---D | M] -- C:\Program Files\Broadcom
[2010/07/25 10:11:32 | 000,000,000 | ---D | M] -- C:\Program Files\CA
[2011/07/22 17:05:22 | 000,000,000 | ---D | M] -- C:\Program Files\Calibre2
[2009/11/29 06:07:46 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2010/03/26 21:27:21 | 000,000,000 | ---D | M] -- C:\Program Files\CheckPoint
[2009/12/20 13:30:41 | 000,000,000 | ---D | M] -- C:\Program Files\Citrix
[2009/09/12 20:53:49 | 000,000,000 | ---D | M] -- C:\Program Files\Combined Community Codec Pack
[2010/07/25 10:12:06 | 000,000,000 | ---D | M] -- C:\Program Files\Comcast
[2010/07/25 10:11:49 | 000,000,000 | ---D | M] -- C:\Program Files\comcasttb
[2010/07/25 10:04:53 | 000,000,000 | ---D | M] -- C:\Program Files\ComcastUI
[2011/06/20 19:47:29 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2011/05/21 21:01:10 | 000,000,000 | ---D | M] -- C:\Program Files\Coupons
[2009/11/16 20:17:38 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2011/02/25 11:14:05 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2010/01/11 14:05:11 | 000,000,000 | ---D | M] -- C:\Program Files\DivXLand
[2010/08/15 13:48:44 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Flick
[2007/11/25 23:20:32 | 000,000,000 | ---D | M] -- C:\Program Files\earthlink totalaccess
[2009/09/12 04:05:49 | 000,000,000 | ---D | M] -- C:\Program Files\Electronic Arts
[2010/01/17 10:08:17 | 000,000,000 | ---D | M] -- C:\Program Files\ESET
[2011/05/12 10:57:56 | 000,000,000 | ---D | M] -- C:\Program Files\FanFictionDownloader
[2010/01/11 15:19:32 | 000,000,000 | ---D | M] -- C:\Program Files\Gabest
[2009/09/14 04:24:03 | 000,000,000 | ---D | M] -- C:\Program Files\GIMP-2.0
[2010/08/20 16:56:32 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2009/09/23 01:23:06 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard
[2011/07/03 10:46:02 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2008/01/20 03:57:14 | 000,000,000 | ---D | M] -- C:\Program Files\HP Games
[2008/01/20 03:48:10 | 000,000,000 | ---D | M] -- C:\Program Files\HPQ
[2009/09/14 19:27:57 | 000,000,000 | ---D | M] -- C:\Program Files\InfraRecorder
[2011/06/18 09:11:30 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2008/01/20 03:41:53 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2011/08/11 03:42:54 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2009/09/12 10:41:55 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2009/12/31 08:43:49 | 000,000,000 | ---D | M] -- C:\Program Files\KeyHoleTV
[2010/12/24 14:13:40 | 000,000,000 | ---D | M] -- C:\Program Files\Last.fm
[2010/01/28 04:17:21 | 000,000,000 | ---D | M] -- C:\Program Files\LimeWire
[2010/05/31 13:30:45 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2006/11/02 06:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2007/11/25 23:04:29 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2011/06/17 10:44:45 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2009/09/19 04:45:10 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011/02/21 04:07:04 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2010/06/27 03:05:35 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2008/01/20 03:39:10 | 000,000,000 | ---D | M] -- C:\Program Files\Motorola
[2010/08/12 18:53:13 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2011/06/23 08:38:17 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2006/11/02 06:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2011/06/20 19:47:19 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Games
[2009/11/05 01:35:21 | 000,000,000 | ---D | M] -- C:\Program Files\MSSOAP
[2009/09/12 08:07:40 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2007/11/25 22:51:58 | 000,000,000 | ---D | M] -- C:\Program Files\muvee Technologies
[2011/03/14 17:52:59 | 000,000,000 | ---D | M] -- C:\Program Files\Nitro PDF
[2009/09/16 03:19:11 | 000,000,000 | ---D | M] -- C:\Program Files\Nvu
[2011/06/20 19:47:19 | 000,000,000 | ---D | M] -- C:\Program Files\Oberon Media
[2009/09/12 04:07:35 | 000,000,000 | R--D | M] -- C:\Program Files\Online Services
[2009/09/13 01:22:11 | 000,000,000 | ---D | M] -- C:\Program Files\OO Software
[2011/03/14 18:06:02 | 000,000,000 | ---D | M] -- C:\Program Files\Prince
[2011/04/14 08:27:30 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2010/05/18 23:34:17 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2006/11/02 06:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2010/02/12 22:09:00 | 000,000,000 | ---D | M] -- C:\Program Files\ReflexiveArcade
[2009/11/16 19:00:18 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2011/06/18 09:11:26 | 000,000,000 | ---D | M] -- C:\Program Files\Sling Media
[2009/11/03 21:28:51 | 000,000,000 | ---D | M] -- C:\Program Files\Sony
[2009/10/01 04:03:05 | 000,000,000 | ---D | M] -- C:\Program Files\SUPERAntiSpyware
[2008/01/20 03:38:18 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2009/12/06 06:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Topaz Labs
[2009/09/13 05:58:32 | 000,000,000 | ---D | M] -- C:\Program Files\Trend Micro
[2006/11/02 07:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2011/06/19 07:45:59 | 000,000,000 | ---D | M] -- C:\Program Files\uTorrent
[2009/09/14 04:59:35 | 000,000,000 | ---D | M] -- C:\Program Files\VideoLAN
[2007/11/25 22:28:40 | 000,000,000 | ---D | M] -- C:\Program Files\Viewpoint
[2007/11/25 23:22:13 | 000,000,000 | ---D | M] -- C:\Program Files\Vongo
[2009/11/05 01:33:33 | 000,000,000 | ---D | M] -- C:\Program Files\Webroot
[2009/09/12 18:06:29 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2009/09/12 18:06:25 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2009/09/12 18:06:13 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/09/12 18:06:25 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2010/03/01 15:18:30 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2009/09/19 04:43:44 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live SkyDrive
[2011/08/11 03:42:54 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2010/10/16 08:58:47 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2006/11/02 06:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/09/12 18:06:21 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2009/10/30 00:35:51 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2010/08/10 12:14:05 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2009/09/12 18:33:10 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2008/01/20 03:42:55 | 000,000,000 | ---D | M] -- C:\Program Files\WinTV
[2011/01/07 10:14:43 | 000,000,000 | ---D | M] -- C:\Program Files\Xvid
[2009/11/16 18:36:17 | 000,000,000 | ---D | M] -- C:\Program Files\Yahoo!


< MD5 for: AGP440.SYS >
[2008/01/19 01:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/19 01:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/19 01:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/19 01:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\WINDOWS\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2007/11/25 23:26:58 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=313FF294978EA6AF715722D708FB249F -- C:\WINDOWS\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.20494_none_b858f78adaed51b3\AGP440.sys
[2007/11/25 23:26:58 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=CE71AFD6738AA025D742CDBCFBDC8B9C -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_f2490cb0\AGP440.sys
[2007/11/25 23:26:58 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=CE71AFD6738AA025D742CDBCFBDC8B9C -- C:\WINDOWS\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.16399_none_b7d45c31c1cb309c\AGP440.sys
[2006/11/02 03:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\WINDOWS\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
[2006/11/02 03:49:52 | 000,053,864 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/04/11 00:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\System32\drivers\atapi.sys
[2009/04/11 00:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/11 00:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/19 01:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/19 01:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 03:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2009/09/12 08:40:36 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\WINDOWS\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2009/09/12 08:40:36 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2009/09/12 08:40:35 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\WINDOWS\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys

< MD5 for: DISK.SYS >
[2009/04/11 00:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\WINDOWS\System32\drivers\disk.sys
[2009/04/11 00:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\WINDOWS\System32\DriverStore\FileRepository\disk.inf_5c850fad\disk.sys
[2009/04/11 00:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\WINDOWS\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6002.18005_none_fbb1faf0714e4ea6\disk.sys
[2008/01/19 01:42:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\WINDOWS\System32\DriverStore\FileRepository\disk.inf_90722180\disk.sys
[2008/01/19 01:42:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\WINDOWS\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6001.18000_none_f9c681e4742c835a\disk.sys
[2006/11/02 03:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) MD5=841AF4C4D41D3E3B2F244E976B0F7963 -- C:\WINDOWS\System32\DriverStore\FileRepository\disk.inf_e0b0b355\disk.sys

< MD5 for: IASTOR.SYS >
[2007/07/12 22:35:02 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\SWSETUP\Drivers\ITM\Winall\Driver\iastor.sys
[2007/07/12 22:35:02 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\WINDOWS\System32\DriverStore\FileRepository\iaahci.inf_cfa1dde4\iaStor.sys
[2008/04/15 18:54:16 | 000,388,120 | ---- | M] (Intel Corporation) MD5=8D58627FEF3F8767665D9F4DC91CBD97 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\iastor.sys
[2007/07/12 22:35:44 | 000,381,976 | ---- | M] (Intel Corporation) MD5=CEB53BB804B41C52AB0782505C8E2994 -- C:\SWSETUP\Drivers\ITM\Winall\Driver64\iastor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\iastor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\WINDOWS\System32\drivers\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\WINDOWS\System32\DriverStore\FileRepository\iaahci.inf_77c04a30\iaStor.sys

< MD5 for: NETLOGON.DLL >
[2006/11/02 03:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\WINDOWS\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009/04/11 00:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\WINDOWS\System32\netlogon.dll
[2009/04/11 00:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\WINDOWS\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/19 01:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\WINDOWS\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2006/11/02 03:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\WINDOWS\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/19 01:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\WINDOWS\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/19 01:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\WINDOWS\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
[2006/11/02 03:50:13 | 000,040,040 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\System32\drivers\nvstor.sys

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-08-22 09:05:34

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/06/23 08:37:55 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/06/23 08:37:55 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/06/23 08:37:55 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/07/23 05:02:27 | 000,638,232 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/07/23 05:02:27 | 000,638,232 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/06/23 08:37:55 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/06/23 08:37:55 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/06/23 08:37:55 | 000,712,976 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/06/23 08:38:11 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/07/23 03:26:52 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/07/23 05:02:27 | 000,638,232 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/07/23 05:02:27 | 000,638,232 | ---- | M] (Microsoft Corporation)

========== Files - Unicode (All) ==========
[2011/06/16 11:22:42 | 000,065,575 | ---- | M] ()(C:\Users\ScarletFBL\Documents\OMONA THEY DIDN'T! Endless charms, endless possibilities ?_1308244958867.png) -- C:\Users\ScarletFBL\Documents\OMONA THEY DIDN'T! Endless charms, endless possibilities ♥_1308244958867.png
[2011/06/16 11:22:42 | 000,065,575 | ---- | C] ()(C:\Users\ScarletFBL\Documents\OMONA THEY DIDN'T! Endless charms, endless possibilities ?_1308244958867.png) -- C:\Users\ScarletFBL\Documents\OMONA THEY DIDN'T! Endless charms, endless possibilities ♥_1308244958867.png
[2010/01/07 18:51:19 | 000,200,827 | ---- | M] ()(C:\Users\ScarletFBL\Documents\??.jpg) -- C:\Users\ScarletFBL\Documents\효연.jpg
[2010/01/07 18:51:19 | 000,200,827 | ---- | C] ()(C:\Users\ScarletFBL\Documents\??.jpg) -- C:\Users\ScarletFBL\Documents\효연.jpg

========== Alternate Data Streams ==========

@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:38020A20
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:D1B5B4F1

< End of report >


aswMBR LOG

aswMBR version 0.9.8.978 Copyright(c) 2011 AVAST Software
Run date: 2011-08-22 03:49:52
-----------------------------
03:49:52.692 OS Version: Windows 6.0.6002 Service Pack 2
03:49:52.692 Number of processors: 2 586 0xF0D
03:49:52.695 ComputerName: SCARLETFBL-PC UserName: ScarletFBL
03:49:59.371 Initialize success
03:50:17.200 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
03:50:17.209 Disk 0 Vendor: ST916082 3.BH Size: 152627MB BusType: 3
03:50:17.227 Disk 0 MBR read successfully
03:50:17.235 Disk 0 MBR scan
03:50:17.242 Disk 0 unknown MBR code
03:50:17.260 Disk 0 scanning sectors +312576705
03:50:17.337 Disk 0 scanning C:\Windows\system32\drivers
03:50:28.508 Service scanning
03:50:30.539 Service adp94xx C:\Windows\system32\drivers\adp94xx.sys **LOCKED** 32
03:50:30.545 Service adpahci C:\Windows\system32\drivers\adpahci.sys **LOCKED** 32
03:50:30.573 Service adpu160m C:\Windows\system32\drivers\adpu160m.sys **LOCKED** 32
03:50:30.580 Service adpu320 C:\Windows\system32\drivers\adpu320.sys **LOCKED** 32
03:50:30.595 Service agp440 C:\Windows\system32\drivers\agp440.sys **LOCKED** 32
03:50:30.605 Service aic78xx C:\Windows\system32\drivers\djsvs.sys **LOCKED** 32
03:50:30.617 Service aliide C:\Windows\system32\drivers\aliide.sys **LOCKED** 32
03:50:30.626 Service amdagp C:\Windows\system32\drivers\amdagp.sys **LOCKED** 32
03:50:30.634 Service amdide C:\Windows\system32\drivers\amdide.sys **LOCKED** 32
03:50:30.643 Service AmdK7 C:\Windows\system32\drivers\amdk7.sys **LOCKED** 32
03:50:30.651 Service AmdK8 C:\Windows\system32\drivers\amdk8.sys **LOCKED** 32
03:50:30.663 Service arc C:\Windows\system32\drivers\arc.sys **LOCKED** 32
03:50:30.672 Service arcsas C:\Windows\system32\drivers\arcsas.sys **LOCKED** 32
03:50:30.739 Service BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys **LOCKED** 32
03:50:30.749 Service BrFiltUp C:\Windows\system32\drivers\brfiltup.sys **LOCKED** 32
03:50:30.758 Service Brserid C:\Windows\system32\drivers\brserid.sys **LOCKED** 32
03:50:30.768 Service BrSerWdm C:\Windows\system32\drivers\brserwdm.sys **LOCKED** 32
03:50:30.778 Service BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys **LOCKED** 32
03:50:30.788 Service BrUsbSer C:\Windows\system32\drivers\brusbser.sys **LOCKED** 32
03:50:30.797 Service BTHMODEM C:\Windows\system32\drivers\bthmodem.sys **LOCKED** 32
03:50:30.810 Service circlass C:\Windows\system32\drivers\circlass.sys **LOCKED** 32
03:50:30.824 Service cmdide C:\Windows\system32\drivers\cmdide.sys **LOCKED** 32
03:50:30.837 Service Crusoe C:\Windows\system32\drivers\crusoe.sys **LOCKED** 32
03:50:30.869 Service elxstor C:\Windows\system32\drivers\elxstor.sys **LOCKED** 32
03:50:30.943 Service gagp30kx C:\Windows\system32\drivers\gagp30kx.sys **LOCKED** 32
03:50:30.958 Service HidBth C:\Windows\system32\drivers\hidbth.sys **LOCKED** 32
03:50:30.970 Service HidIr C:\Windows\system32\drivers\hidir.sys **LOCKED** 32
03:50:30.984 Service HpCISSs C:\Windows\system32\drivers\hpcisss.sys **LOCKED** 32
03:50:31.007 Service i2omp C:\Windows\system32\drivers\i2omp.sys **LOCKED** 32
03:50:31.042 Service iaStorV C:\Windows\system32\drivers\iastorv.sys **LOCKED** 32
03:50:31.055 Service iirsp C:\Windows\system32\drivers\iirsp.sys **LOCKED** 32
03:50:31.071 Service IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys **LOCKED** 32
03:50:31.082 Service isapnp C:\Windows\system32\drivers\isapnp.sys **LOCKED** 32
03:50:31.095 Service iteatapi C:\Windows\system32\drivers\iteatapi.sys **LOCKED** 32
03:50:31.105 Service iteraid C:\Windows\system32\drivers\iteraid.sys **LOCKED** 32
03:50:31.157 Service LSI_FC C:\Windows\system32\drivers\lsi_fc.sys **LOCKED** 32
03:50:31.172 Service LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys **LOCKED** 32
03:50:31.184 Service LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys **LOCKED** 32
03:50:31.195 Service megasas C:\Windows\system32\drivers\megasas.sys **LOCKED** 32
03:50:31.211 Service mpio C:\Windows\system32\drivers\mpio.sys **LOCKED** 32
03:50:31.224 Service Mraid35x C:\Windows\system32\drivers\mraid35x.sys **LOCKED** 32
03:50:31.236 Service msdsm C:\Windows\system32\drivers\msdsm.sys **LOCKED** 32
03:50:31.281 Service nfrd960 C:\Windows\system32\drivers\nfrd960.sys **LOCKED** 32
03:50:31.296 Service ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys **LOCKED** 32
03:50:31.306 Service nvraid C:\Windows\system32\drivers\nvraid.sys **LOCKED** 32
03:50:31.316 Service nvstor C:\Windows\system32\drivers\nvstor.sys **LOCKED** 32
03:50:31.325 Service nv_agp C:\Windows\system32\drivers\nv_agp.sys **LOCKED** 32
03:50:31.341 Service Parport C:\Windows\system32\drivers\parport.sys **LOCKED** 32
03:50:31.353 Service Parvdm C:\Windows\system32\drivers\parvdm.sys **LOCKED** 32
03:50:31.364 Service pciide C:\Windows\system32\drivers\pciide.sys **LOCKED** 32
03:50:31.373 Service pcmcia C:\Windows\system32\drivers\pcmcia.sys **LOCKED** 32
03:50:31.391 Service Processor C:\Windows\system32\drivers\processr.sys **LOCKED** 32
03:50:31.418 Service ql2300 C:\Windows\system32\drivers\ql2300.sys **LOCKED** 32
03:50:31.427 Service ql40xx C:\Windows\system32\drivers\ql40xx.sys **LOCKED** 32
03:50:31.467 Service rdpdr C:\Windows\system32\drivers\rdpdr.sys **LOCKED** 32
03:50:31.496 Service sbp2port C:\Windows\system32\drivers\sbp2port.sys **LOCKED** 32
03:50:31.513 Service Serenum C:\Windows\system32\drivers\serenum.sys **LOCKED** 32
03:50:31.524 Service Serial C:\Windows\system32\drivers\serial.sys **LOCKED** 32
03:50:31.533 Service sermouse C:\Windows\system32\drivers\sermouse.sys **LOCKED** 32
03:50:31.547 Service sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys **LOCKED** 32
03:50:31.557 Service sfloppy C:\Windows\system32\drivers\sfloppy.sys **LOCKED** 32
03:50:31.571 Service sisagp C:\Windows\system32\drivers\sisagp.sys **LOCKED** 32
03:50:31.580 Service SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys **LOCKED** 32
03:50:31.590 Service SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys **LOCKED** 32
03:50:31.614 Service Symc8xx C:\Windows\system32\drivers\symc8xx.sys **LOCKED** 32
03:50:31.625 Service Sym_hi C:\Windows\system32\drivers\sym_hi.sys **LOCKED** 32
03:50:31.641 Service Sym_u3 C:\Windows\system32\drivers\sym_u3.sys **LOCKED** 32
03:50:31.673 Service uagp35 C:\Windows\system32\drivers\uagp35.sys **LOCKED** 32
03:50:31.683 Service uliagpkx C:\Windows\system32\drivers\uliagpkx.sys **LOCKED** 32
03:50:31.692 Service uliahci C:\Windows\system32\drivers\uliahci.sys **LOCKED** 32
03:50:31.707 Service UlSata C:\Windows\system32\drivers\ulsata.sys **LOCKED** 32
03:50:31.727 Service ulsata2 C:\Windows\system32\drivers\ulsata2.sys **LOCKED** 32
03:50:31.746 Service usbcir C:\Windows\system32\drivers\usbcir.sys **LOCKED** 32
03:50:31.761 Service usbohci C:\Windows\system32\drivers\usbohci.sys **LOCKED** 32
03:50:31.790 Service viaagp C:\Windows\system32\drivers\viaagp.sys **LOCKED** 32
03:50:31.814 Service ViaC7 C:\Windows\system32\drivers\viac7.sys **LOCKED** 32
03:50:31.836 Service viaide C:\Windows\system32\drivers\viaide.sys **LOCKED** 32
03:50:31.860 Service vsmraid C:\Windows\system32\drivers\vsmraid.sys **LOCKED** 32
03:50:31.879 Service WacomPen C:\Windows\system32\drivers\wacompen.sys **LOCKED** 32
03:50:31.900 Service Wd C:\Windows\system32\drivers\wd.sys **LOCKED** 32
03:50:32.572 Modules scanning
03:50:54.209 Disk 0 trace - called modules:
03:50:54.234 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll iaStor.sys
03:50:54.244 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x879b4ac8]
03:50:54.254 3 CLASSPNP.SYS[89fa88b3] -> nt!IofCallDriver -> [0x873aa258]
03:50:54.263 5 acpi.sys[8069b6bc] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86e03028]
03:50:54.273 Scan finished successfully
03:59:40.986 Disk 0 MBR has been saved successfully to "C:\Users\ScarletFBL\Desktop\MBR.dat"
03:59:41.027 The log file has been saved successfully to "C:\Users\ScarletFBL\Desktop\aswMBR.txt"


Results of screen317's Security Check version 0.99.18
Windows Vista Service Pack 2 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
BitDefender Total Security 2011
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

HijackThis 2.0.2
CCleaner
Java(TM) 6 Update 15
Java(TM) 6 Update 2
Out of date Java installed!
Adobe Flash Player 10.3.181.34
````````````````````````````````
Process Check:
objlist.exe by Laurent

BitDefender BitDefender 2011 bdagent.exe
BitDefender BitDefender 2011 pchooklaunch32.exe
``````````End of Log````````````

ScarletFBL
Novice
Novice

Posts Posts : 15
Joined Joined : 2009-09-25
Gender Gender : Female
OS OS : Vista Home Premium
Points Points : 26358
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Unknown Issue (WildTangent-Based?)

Post by Dr Jay on 23rd August 2011, 11:31 am

Please visit this webpage for a tutorial on downloading and running ComboFix:

[You must be registered and logged in to see this link.]

See the area: Using ComboFix, and when done, post the log back here.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13743
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302211
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Unknown Issue (WildTangent-Based?)

Post by ScarletFBL on 25th August 2011, 5:13 pm

DragonMaster Jay wrote:Please visit this webpage for a tutorial on downloading and running ComboFix:

[You must be registered and logged in to see this link.]

See the area: Using ComboFix, and when done, post the log back here.

Hi, I've tried running ComboFix, but Bitdefender keeps blocking it. I've disabled it (turned off all safety featured and deactivated the shield), but it must still be running, somehow. :/

ScarletFBL
Novice
Novice

Posts Posts : 15
Joined Joined : 2009-09-25
Gender Gender : Female
OS OS : Vista Home Premium
Points Points : 26358
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Unknown Issue (WildTangent-Based?)

Post by Dr Jay on 26th August 2011, 12:41 am

Scan for malware

Please download Malwarebytes Anti-Malware from [You must be registered and logged in to see this link.].
Alternate link: [You must be registered and logged in to see this link.].
(Note: if you already have the program installed, just follow the directions. No need to re-download or re-install!)

Double Click mbam-setup.exe to install the application.

(Note: if you already have the program installed, open Malwarebytes from the Start Menu or Desktop shortcut, click the Update tab, and click Check for Updates, before doing the scan as instructed below!)

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. If you are prompted to restart, please allow it to restart your computer. Failure to do this, will cause the infection to still be active on the computer.
  • Please save the log to a location you will remember.
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • The log can also be found at C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Copy and paste the entire report in your next reply.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13743
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302211
# Likes # Likes : 10

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum