Scan result of Farbar Recovery Scan Tool Version: 26-08-2012 01
Ran by SYSTEM at 28-08-2012 00:37:44
Running from F:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet003
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [] [x]
HKLM\...\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE [590256 2011-05-17] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe [296824 2010-09-25] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe [972672 2011-04-27] (TOSHIBA Corporation)
HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [11786344 2011-04-21] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3 /MAXX3 [2207848 2011-04-21] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2679592 2011-02-03] (Synaptics Incorporated)
HKLM\...\Run: [ThpSrv] C:\windows\system32\thpsrv /logon [x]
HKLM\...\Run: [Teco] "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r [1544624 2011-05-24] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe [712096 2011-07-01] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [710560 2011-06-09] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [TosNC] %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe [597936 2011-07-27] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38824 2011-06-28] (TOSHIBA Corporation)
HKLM\...\Run: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe" [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1271168 2012-03-26] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [343168 2011-11-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL [532480 2011-03-10] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP [423936 2011-03-10] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM [34160 2010-08-16] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START [x]
HKLM-x32\...\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [x]
HKLM-x32\...\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60 [1298816 2011-07-11] (TOSHIBA Corporation)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Toshiba\Toshiba Online Backup\Activation\TOBuActivation.exe" UNATTENDED [3218864 2011-06-22] (Toshiba)
HKLM-x32\...\Run: [ToshibaAppPlace] "C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe" [552960 2010-09-23] (Toshiba)
HKLM-x32\...\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2012-02-20] (Apple Inc.)
HKLM-x32\...\Run: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run [167936 2011-03-23] (Applian Technologies, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [1996200 2012-06-27] (LogMeIn Inc.)
HKLM-x32\...\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s [929680 2011-09-29] (Samsung)
HKLM-x32\...\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3508112 2011-09-29] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [254696 2012-01-18] (Sun Microsystems, Inc.)
HKU\Josh\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2012-02-23] (Google Inc.)
HKU\Josh\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17425072 2012-06-07] (Skype Technologies S.A.)
HKU\Josh\...\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart [12218904 2012-07-20] (Google)
HKU\Josh\...\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [20880 2011-09-29] ()
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Startup: C:\Users\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
Startup: C:\Users\All Users\Start Menu\Programs\Startup\Content Manager Assistant for PlayStation(R).lnk
ShortcutTarget: Content Manager Assistant for PlayStation(R).lnk -> C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe (Sony Computer Entertainment Inc.)
==================== Services (Whitelisted) ======
2 Hamachi2Svc; "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s [2369960 2012-06-27] (LogMeIn Inc.)
2 MsMpSvc; "C:\Program Files\Microsoft Security Client\MsMpEng.exe" [12600 2012-03-26] (Microsoft Corporation)
2 NIS; "C:\Program Files (x86)\Norton Internet Security\Engine\19.8.0.14\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\19.8.0.14\diMaster.dll" /prefetch:1 [309688 2012-04-12] (Symantec Corporation)
3 NisSrv; "C:\Program Files\Microsoft Security Client\NisSrv.exe" [291696 2012-03-26] (Microsoft Corporation)
2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\SymcPCCULaunchSvc.exe /s [123320 2011-07-19] (Symantec Corporation)
2 PCCUJobMgr; "C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\ccSvcHst.exe" /s "PCCUJobMgr" /m "C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.13.11\diMaster.dll" /prefetch:1 [132984 2011-07-19] (Symantec Corporation)
2 PnkBstrA; C:\windows\SysWow64\PnkBstrA.exe [76888 2012-04-25] ()
==================== Drivers (Whitelisted) ===================
3 BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120507.001\BHDrvx64.sys [1160824 2012-04-02] (Symantec Corporation)
3 BtFilter; C:\Windows\System32\Drivers\BtFilter.sys [42096 2010-10-18] (Atheros)
3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1308000.00E\ccSetx64.sys [167072 2012-06-06] (Symantec Corporation)
3 eeCtrl; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [482936 2012-04-17] (Symantec Corporation)
3 EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138360 2012-04-17] (Symantec Corporation)
3 hamachi; C:\Windows\System32\Drivers\hamachi.sys [33856 2009-03-18] (LogMeIn, Inc.)
3 IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120516.001\IDSvia64.sys [488568 2012-04-27] (Symantec Corporation)
3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120517.005\ENG64.SYS [120440 2012-05-17] (Symantec Corporation)
3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120517.005\EX64.SYS [2068600 2012-05-17] (Symantec Corporation)
3 SRTSP; C:\Windows\System32\Drivers\NISx64\1308000.00E\SRTSP64.SYS [737952 2012-07-05] (Symantec Corporation)
3 SRTSPX; C:\Windows\system32\drivers\NISx64\1308000.00E\SRTSPX64.SYS [37536 2012-07-05] (Symantec Corporation)
3 SymDS; C:\Windows\system32\drivers\NISx64\1308000.00E\SYMDS64.SYS [451192 2011-07-25] (Symantec Corporation)
3 SymEFA; C:\Windows\system32\drivers\NISx64\1308000.00E\SYMEFA64.SYS [1129120 2012-05-21] (Symantec Corporation)
3 SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2012-04-18] (Symantec Corporation)
3 SymIRON; C:\Windows\system32\drivers\NISx64\1308000.00E\Ironx64.SYS [190072 2012-04-17] (Symantec Corporation)
3 SymNetS; C:\Windows\System32\Drivers\NISx64\1308000.00E\SYMNETS.SYS [405624 2012-04-17] (Symantec Corporation)
==================== NetSvcs (Whitelisted) =================
==================== One Month Created Files and Folders ======================
2012-08-27 22:25 - 2012-08-27 22:25 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.B4583265E66736CA
2012-08-27 22:25 - 2012-08-27 22:25 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\lzmftllz.sys
2012-08-27 22:13 - 2012-08-27 22:13 - 00328704 ____A C:\Windows\System32\services.exe.B106300726C23A4D
2012-08-26 17:32 - 2012-08-26 17:32 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.428C1009BBF8E8B2
2012-08-26 17:29 - 2012-08-26 17:29 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.E3306955B587F984
2012-08-26 14:26 - 2012-08-26 14:26 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.A14C831BAEBAE8BD
2012-08-26 14:23 - 2012-08-26 14:23 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.BA823EB23275F0F7
2012-08-26 14:20 - 2012-08-26 14:20 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.94F855615401EC48
2012-08-26 14:17 - 2012-08-26 14:17 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.5A47134138D585D9
2012-08-25 21:52 - 2012-08-25 21:52 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.95CDE97BC1941194
2012-08-25 21:50 - 2012-08-25 21:50 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.AC42A5D4BBD5F14E
2012-08-25 21:47 - 2012-08-25 21:47 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.F1889ED5956C3462
2012-08-25 21:45 - 2012-08-25 21:45 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.8376C1048FB926D2
2012-08-25 21:41 - 2012-08-25 21:41 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.0A09526DB3C3839D
2012-08-25 21:36 - 2012-08-25 21:36 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.9202D0B93A44CC4C
2012-08-25 21:30 - 2012-08-25 21:30 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.18A06EC7A3FE7FA9
2012-08-25 21:28 - 2012-08-25 21:28 - 00000012 ____A C:\Users\Josh\Desktop\fix.bat
2012-08-25 21:22 - 2012-08-25 21:22 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.BD77DCDFF8E06CFB
2012-08-25 21:22 - 2012-08-25 21:22 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pnqupren.sys
2012-08-25 21:19 - 2012-08-25 21:19 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.CD74D62271D0B52B
2012-08-25 21:04 - 2012-08-25 21:04 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.17B33482AFB4AAF5
2012-08-25 21:00 - 2012-08-25 21:00 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.823BBA40C5D7111B
2012-08-25 20:58 - 2012-08-25 20:58 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.507BF273A7ED5C82
2012-08-22 23:19 - 2012-08-22 23:19 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.F3AD4E73F4D9D483
2012-08-22 23:19 - 2012-08-22 23:19 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\jwtlqgcs.sys
2012-08-22 23:16 - 2012-08-22 23:16 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.144CFDB8DF1DB891
2012-08-22 23:13 - 2012-08-22 23:13 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.B601E775EDD7A35E
2012-08-22 23:11 - 2012-08-22 23:11 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.658927C12B1A8FBE
2012-08-22 23:07 - 2012-08-22 23:07 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.2CD3BAE1DCB56F01
2012-08-22 23:05 - 2012-08-22 23:05 - 00274672 ____A C:\Windows\Minidump\082312-21481-01.dmp
2012-08-22 23:00 - 2012-08-22 23:00 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.99E73EDEF8C3FB49
2012-08-22 22:57 - 2012-08-22 22:57 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.B4B116AE53295004
2012-08-22 22:53 - 2012-08-22 22:53 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.3E0F4C2454944111
2012-08-22 22:53 - 2012-08-22 22:53 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\revaltik.sys
2012-08-22 22:50 - 2012-08-22 22:50 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.12B79291F5720E22
2012-08-22 22:48 - 2012-08-22 22:48 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.19271E685F19FA3E
2012-08-22 22:45 - 2012-08-22 22:45 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.96403AB285F2B340
2012-08-22 22:42 - 2012-08-22 22:42 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.FFFE96309A003A47
2012-08-22 22:39 - 2012-08-22 22:39 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.706804C73ECBE336
2012-08-22 22:33 - 2012-08-22 22:33 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.BB805B76E499FB0A
2012-08-22 22:31 - 2012-08-22 22:31 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.1CFFC450570F5CA8
2012-08-22 22:22 - 2012-08-22 22:22 - 00001945 ____A C:\Windows\epplauncher.mif
2012-08-22 22:22 - 2012-08-22 22:22 - 00000000 ____D C:\Program Files\Microsoft Security Client
2012-08-22 22:22 - 2012-08-22 22:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2012-08-22 22:21 - 2012-08-22 22:21 - 12621696 ____A (Microsoft Corporation) C:\Users\Josh\Downloads\mseinstall.exe
2012-08-22 22:20 - 2012-08-22 22:20 - 00477168 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\npdeployJava1.dll
2012-08-22 22:20 - 2012-08-22 22:20 - 00157680 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2012-08-22 22:20 - 2012-08-22 22:20 - 00149488 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2012-08-22 22:20 - 2012-08-22 22:20 - 00149488 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2012-08-22 22:19 - 2012-08-22 22:19 - 00000000 ____D C:\Program Files (x86)\Java
2012-08-22 06:59 - 2012-08-22 13:43 - 00000646 ____A C:\Users\Josh\Desktop\Loss - Brave.lnk
2012-08-22 06:53 - 2012-08-22 13:42 - 00000000 ____D C:\Users\Josh\Desktop\Necros Christos and Loss_2005_(Split)
2012-08-22 06:43 - 2012-08-22 06:49 - 38595095 ____A C:\Users\Josh\Downloads\Necros_Christos_and_Loss_2005__Split_.rar
2012-08-21 23:35 - 2012-08-21 23:35 - 00000000 ____D C:\Users\Josh\Desktop\Four Burials - Otesanek, Loss, Orthodox & Mournful Congregation Split [2008]
2012-08-21 23:27 - 2012-08-21 23:44 - 00000000 ____D C:\Users\Josh\Downloads\[
www.Torrenting.com ] - The.Dictator.2012.Unrated.Ext.Cut.BDRip.XVID.AC3.HQ.Hive-CM8
2012-08-21 23:26 - 2010-04-30 11:59 - 00000000 ____D C:\Users\Josh\Desktop\ORTHODOX - Sentencia (2009)
2012-08-21 22:21 - 2012-08-21 22:50 - 53121645 ____A C:\Users\Josh\Downloads\ORTHODOX_-_Sentencia__2009_.zip
2012-08-21 22:18 - 2012-08-21 22:19 - 71253132 ____A C:\Users\Josh\Downloads\Four Burials [2008].rar
2012-08-21 13:58 - 2012-08-21 13:58 - 00000000 ___RD C:\Users\Josh\Desktop\Orthodox - Amanecer en Puerta Oscura
2012-08-21 13:58 - 2012-08-21 13:58 - 00000000 ____D C:\Users\Josh\Desktop\orthodox-gran poder
2012-08-21 13:58 - 2011-03-23 20:00 - 00000000 ____D C:\Users\Josh\Desktop\Orthodox
2012-08-21 12:15 - 2012-08-21 12:17 - 81496419 ____A C:\Users\Josh\Downloads\Orthodox.zip
2012-08-21 12:13 - 2012-08-21 12:17 - 69256986 ____A C:\Users\Josh\Downloads\Orthodox - Amanecer en Puerta Oscura.rar
2012-08-21 12:12 - 2012-08-21 12:15 - 82111003 ____A C:\Users\Josh\Downloads\orthodox-gran poder.rar
2012-08-21 11:50 - 2012-08-21 11:52 - 00000000 ____D C:\Users\Josh\Downloads\The Inbetweeners Movie 2011 BRRip XviD xTriLL
2012-08-20 14:33 - 2012-08-20 21:36 - 00000000 ____D C:\Users\Josh\Desktop\Bell witch
2012-08-20 14:12 - 2012-08-20 14:13 - 53080660 ____A C:\Users\Josh\Downloads\Bell Witch Demo 2011.ZIP
2012-08-19 22:43 - 2012-08-19 22:45 - 00000000 ____D C:\Users\Josh\Downloads\Lisa.Lampanelli.Long.Live.the.Queen.HDTV.XviD-SYS
2012-08-19 22:36 - 2012-08-19 22:42 - 00000000 ____D C:\Users\Josh\Downloads\[
www.Torrenting.com ] - The.Comedy.Central.Roast.of.Donald.Trump.HDTV.XviD-FQM
2012-08-19 20:47 - 2012-08-19 20:48 - 00000000 ____D C:\Users\Josh\Downloads\Comedy Central Roast of Pamela Anderson - DVDRip.XviD
2012-08-19 19:32 - 2012-08-19 19:36 - 00000000 ____D C:\Users\Josh\Downloads\Comedy Central Roast of Larry The Cable Guy DSRip XviD aAF[nzbmatrix.com]
2012-08-19 14:52 - 2012-08-19 14:52 - 00000000 ____D C:\Users\Josh\Desktop\Beyul
2012-08-19 14:50 - 2012-08-19 14:51 - 92778391 ____A C:\Users\Josh\Downloads\Yakuza - 2007 - Transmutations.rar
2012-08-19 14:29 - 2012-08-19 14:34 - 489490432 ____A C:\Users\Josh\Downloads\Awesomenauts.iso
2012-08-19 14:16 - 2012-08-19 14:16 - 00000000 ____D C:\Users\Josh\Downloads\Sleeping Dogs Limited Edition + 1.4 Patch+ crack fix
2012-08-18 23:56 - 2012-08-19 00:00 - 183641344 ____A C:\Users\Josh\Downloads\Modern.Family.S01E02.HDTV.XviD-2HD.avi
2012-08-18 23:56 - 2012-08-18 23:59 - 182314938 ____A C:\Users\Josh\Downloads\Modern.Family.S01E01.HDTV.XviD-2HD.avi
2012-08-18 09:29 - 2012-08-18 09:32 - 00000000 ____D C:\Users\Josh\Downloads\[
www.TorrentDay.com ] - The.Comedy.Central.Roast.of.Roseanne.UNCENSORED.480p.WEB-DL.x264-mSD
2012-08-17 08:11 - 2012-08-17 08:12 - 102037062 ____A C:\Users\Josh\Downloads\TestOvSubmission.zip
2012-08-16 22:29 - 2012-08-16 22:31 - 00000000 ____D C:\Users\Josh\Downloads\Wilfred.US.S02E09.HDTV.XviD-AFG
2012-08-16 22:17 - 2012-08-16 22:22 - 00000000 ____D C:\Users\Josh\Downloads\The Watch 2012 TS XviD READNFO - MARTiNE
2012-08-14 09:51 - 2012-08-14 10:20 - 71442688 ____A C:\Users\Josh\Downloads\Katatonia - 2012.rar
2012-08-12 23:17 - 2012-08-12 23:21 - 150286717 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E05.HDTV.x264-2HD.mp4
2012-08-11 14:19 - 2012-08-11 14:20 - 00000000 ____D C:\Users\Josh\Downloads\[
www.Torrenting.com ] - VHS.2012.VODRip.XviD-AQOS
2012-08-11 14:19 - 2012-08-11 14:20 - 00000000 ____D C:\Users\Josh\Desktop\Demo
2012-08-11 14:17 - 2012-08-11 14:18 - 51885504 ____A C:\Users\Josh\Downloads\Ash Borer - Ash Borer-Fell Voices Split.zip
2012-08-11 14:17 - 2012-08-11 14:17 - 60029829 ____A C:\Users\Josh\Downloads\Ash Borer - Demo.zip
2012-08-10 00:51 - 2012-08-10 00:53 - 19239368 ____A C:\Users\Josh\Downloads\Ash Borer - MMIX by Bad.rar
2012-08-10 00:31 - 2012-08-10 00:50 - 174866616 ____A C:\Users\Josh\Downloads\Ash Borer - MMIX by Bad.rar.part
2012-08-09 21:46 - 2012-08-09 21:51 - 00000000 ____D C:\Users\Josh\Downloads\American.Reunion.2012.UNRATED.1080p.Bluray.x264.anoXmous
2012-08-09 20:45 - 2012-08-09 20:48 - 133172526 ____A C:\Users\Josh\Downloads\Wilfred.US.S02E08.HDTV.x264-ASAP.[VTV].mp4
2012-08-09 13:59 - 2012-08-09 13:59 - 00000000 ____D C:\Users\Josh\Desktop\Winterfylleth
2012-08-09 13:56 - 2012-08-09 13:57 - 103105468 ____A C:\Users\Josh\Downloads\WINTERFYLLETH_-_The_Threnody_Of_Triumph.zip
2012-08-09 00:08 - 2012-08-09 00:08 - 00000000 ____D C:\Users\Josh\Downloads\Breaking Bad S05E03 Hazard Pay HDTV x264-FQM[ettv]
2012-08-09 00:05 - 2012-08-09 00:06 - 143109176 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E04.HDTV.x264-COMPULSiON.mp4
2012-08-08 23:13 - 2012-08-08 23:15 - 130572686 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E03.HDTV.x264-2HD.mp4
2012-08-08 23:10 - 2012-08-08 23:13 - 215160159 ____A C:\Users\Josh\Downloads\Wilfred.US.S02E07.HDTV.x264-EVOLVE.[VTV].mp4
2012-08-08 23:09 - 2012-08-08 23:09 - 00000000 ____D C:\Users\Josh\Desktop\Locrian & Mamiffer - 2012 - Bless Them That Curse You
2012-08-08 22:56 - 2012-08-08 23:09 - 121048210 ____A C:\Users\Josh\Downloads\Locrian.MamifferBTTCY12 by Bad.rar
2012-08-07 13:31 - 2012-08-07 13:31 - 00000000 ____D C:\Users\Josh\Desktop\Oro OpusAlter
2012-08-07 13:20 - 2012-08-07 13:30 - 173058027 ____A C:\Users\Josh\Downloads\UFOMAMMUT_-_ORO__Opus_Alter.zip
2012-08-07 13:17 - 2012-08-07 13:17 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2012-08-07 13:17 - 2012-08-07 13:17 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2012-08-07 13:17 - 2012-08-07 13:17 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2012-08-07 13:17 - 2012-08-07 13:17 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2012-08-06 21:56 - 2012-08-05 17:08 - 00045376 ____A C:\Users\Josh\Desktop\REC.3.Genesis.2012.720p.Bluray.x264.anoXmous_eng.srt
2012-08-06 21:52 - 2012-08-05 17:44 - 555827571 ____A C:\Users\Josh\Desktop\REC.3.Genesis.2012.720p.Bluray.x264.anoXmous.mp4
2012-08-02 22:48 - 2012-08-02 22:55 - 00000000 ____D C:\Users\Josh\Downloads\[
www.TorrentDay.com ] - Wilfred.US.S02E06.Control.480p.WEB-DL.x264-mSD
2012-08-01 13:15 - 2012-08-09 20:46 - 00000000 ____D C:\Users\Josh\Desktop\Flourishing
2012-07-29 16:10 - 2012-07-29 16:10 - 00000000 ____D C:\Users\Josh\Desktop\Krallice 2011 - Diotima
2012-07-29 15:58 - 2012-07-29 15:59 - 02870572 ____A C:\Users\Josh\Downloads\M.C.3.F.N.v1.0.0_androidfield.com.apk
2012-07-29 15:45 - 2012-07-29 15:45 - 00000000 ____D C:\Users\Josh\Downloads\THE DARK KNIGHT RISES BY GAMELOFT V1.0.6 APK GAME FOR ANDROID
2012-07-29 15:21 - 2012-07-29 15:23 - 176663771 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E02.Bullhorn.Nights.or.Mandingos.Got.a.Pink.Toe.HDTV.x264-FQM.mp4
==================== 3 Months Modified Files ================================
2012-08-27 22:25 - 2012-08-27 22:25 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.B4583265E66736CA
2012-08-27 22:25 - 2012-08-27 22:25 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\lzmftllz.sys
2012-08-27 22:17 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-08-27 22:17 - 2009-07-13 20:51 - 00073207 ____A C:\Windows\setupact.log
2012-08-27 22:13 - 2012-08-27 22:13 - 00328704 ____A C:\Windows\System32\services.exe.B106300726C23A4D
2012-08-27 22:12 - 2012-02-23 09:56 - 00000908 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-08-26 17:32 - 2012-08-26 17:32 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.428C1009BBF8E8B2
2012-08-26 17:29 - 2012-08-26 17:29 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.E3306955B587F984
2012-08-26 17:25 - 2012-06-21 13:57 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-08-26 17:25 - 2012-04-23 17:41 - 00000932 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1226115731-3574901421-768655980-1003UA.job
2012-08-26 17:25 - 2012-04-23 17:41 - 00000910 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1226115731-3574901421-768655980-1003Core.job
2012-08-26 17:25 - 2012-02-23 09:56 - 00000912 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-08-26 14:26 - 2012-08-26 14:26 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.A14C831BAEBAE8BD
2012-08-26 14:23 - 2012-08-26 14:23 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.BA823EB23275F0F7
2012-08-26 14:20 - 2012-08-26 14:20 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.94F855615401EC48
2012-08-26 14:17 - 2012-08-26 14:17 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.5A47134138D585D9
2012-08-25 21:52 - 2012-08-25 21:52 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.95CDE97BC1941194
2012-08-25 21:50 - 2012-08-25 21:50 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.AC42A5D4BBD5F14E
2012-08-25 21:47 - 2012-08-25 21:47 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.F1889ED5956C3462
2012-08-25 21:45 - 2012-08-25 21:45 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.8376C1048FB926D2
2012-08-25 21:41 - 2012-08-25 21:41 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.0A09526DB3C3839D
2012-08-25 21:36 - 2012-08-25 21:36 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.9202D0B93A44CC4C
2012-08-25 21:30 - 2012-08-25 21:30 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.18A06EC7A3FE7FA9
2012-08-25 21:28 - 2012-08-25 21:28 - 00000012 ____A C:\Users\Josh\Desktop\fix.bat
2012-08-25 21:22 - 2012-08-25 21:22 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.BD77DCDFF8E06CFB
2012-08-25 21:22 - 2012-08-25 21:22 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pnqupren.sys
2012-08-25 21:19 - 2012-08-25 21:19 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.CD74D62271D0B52B
2012-08-25 21:04 - 2012-08-25 21:04 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.17B33482AFB4AAF5
2012-08-25 21:00 - 2012-08-25 21:00 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.823BBA40C5D7111B
2012-08-25 20:58 - 2012-08-25 20:58 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.507BF273A7ED5C82
2012-08-25 20:56 - 2010-11-20 19:47 - 00016860 ____A C:\Windows\PFRO.log
2012-08-22 23:19 - 2012-08-22 23:19 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.F3AD4E73F4D9D483
2012-08-22 23:19 - 2012-08-22 23:19 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\jwtlqgcs.sys
2012-08-22 23:16 - 2012-08-22 23:16 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.144CFDB8DF1DB891
2012-08-22 23:13 - 2012-08-22 23:13 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.B601E775EDD7A35E
2012-08-22 23:11 - 2012-08-22 23:11 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.658927C12B1A8FBE
2012-08-22 23:07 - 2012-08-22 23:07 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.2CD3BAE1DCB56F01
2012-08-22 23:05 - 2012-08-22 23:05 - 00274672 ____A C:\Windows\Minidump\082312-21481-01.dmp
2012-08-22 23:05 - 2012-07-18 21:00 - 345504555 ____A C:\Windows\MEMORY.DMP
2012-08-22 23:00 - 2012-08-22 23:00 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.99E73EDEF8C3FB49
2012-08-22 22:57 - 2012-08-22 22:57 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.B4B116AE53295004
2012-08-22 22:53 - 2012-08-22 22:53 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.3E0F4C2454944111
2012-08-22 22:53 - 2012-08-22 22:53 - 00049872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\revaltik.sys
2012-08-22 22:50 - 2012-08-22 22:50 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.12B79291F5720E22
2012-08-22 22:48 - 2012-08-22 22:48 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.19271E685F19FA3E
2012-08-22 22:45 - 2012-08-22 22:45 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.96403AB285F2B340
2012-08-22 22:42 - 2012-08-22 22:42 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.FFFE96309A003A47
2012-08-22 22:40 - 2009-07-13 21:13 - 00782986 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-22 22:39 - 2012-08-22 22:39 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.706804C73ECBE336
2012-08-22 22:33 - 2012-08-22 22:33 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.BB805B76E499FB0A
2012-08-22 22:31 - 2012-08-22 22:31 - 00328704 ____A (Microsoft Corporation) C:\Windows\System32\services.exe.1CFFC450570F5CA8
2012-08-22 22:26 - 2009-07-13 20:45 - 00025120 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-08-22 22:26 - 2009-07-13 20:45 - 00025120 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-08-22 22:25 - 2012-02-23 09:08 - 01581260 ____A C:\Windows\WindowsUpdate.log
2012-08-22 22:22 - 2012-08-22 22:22 - 00001945 ____A C:\Windows\epplauncher.mif
2012-08-22 22:22 - 2012-04-20 16:58 - 00797136 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2012-08-22 22:21 - 2012-08-22 22:21 - 12621696 ____A (Microsoft Corporation) C:\Users\Josh\Downloads\mseinstall.exe
2012-08-22 22:20 - 2012-08-22 22:20 - 00477168 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\npdeployJava1.dll
2012-08-22 22:20 - 2012-08-22 22:20 - 00157680 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2012-08-22 22:20 - 2012-08-22 22:20 - 00149488 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2012-08-22 22:20 - 2012-08-22 22:20 - 00149488 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2012-08-22 22:20 - 2011-11-22 23:00 - 00473072 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2012-08-22 13:43 - 2012-08-22 06:59 - 00000646 ____A C:\Users\Josh\Desktop\Loss - Brave.lnk
2012-08-22 06:49 - 2012-08-22 06:43 - 38595095 ____A C:\Users\Josh\Downloads\Necros_Christos_and_Loss_2005__Split_.rar
2012-08-21 22:50 - 2012-08-21 22:21 - 53121645 ____A C:\Users\Josh\Downloads\ORTHODOX_-_Sentencia__2009_.zip
2012-08-21 22:19 - 2012-08-21 22:18 - 71253132 ____A C:\Users\Josh\Downloads\Four Burials [2008].rar
2012-08-21 12:17 - 2012-08-21 12:15 - 81496419 ____A C:\Users\Josh\Downloads\Orthodox.zip
2012-08-21 12:17 - 2012-08-21 12:13 - 69256986 ____A C:\Users\Josh\Downloads\Orthodox - Amanecer en Puerta Oscura.rar
2012-08-21 12:15 - 2012-08-21 12:12 - 82111003 ____A C:\Users\Josh\Downloads\orthodox-gran poder.rar
2012-08-20 21:50 - 2012-04-25 01:21 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2012-08-20 21:50 - 2012-04-25 01:13 - 00283304 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2012-08-20 21:49 - 2012-04-25 01:13 - 00280904 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2012-08-20 14:13 - 2012-08-20 14:12 - 53080660 ____A C:\Users\Josh\Downloads\Bell Witch Demo 2011.ZIP
2012-08-19 14:51 - 2012-08-19 14:50 - 92778391 ____A C:\Users\Josh\Downloads\Yakuza - 2007 - Transmutations.rar
2012-08-19 14:34 - 2012-08-19 14:29 - 489490432 ____A C:\Users\Josh\Downloads\Awesomenauts.iso
2012-08-19 00:00 - 2012-08-18 23:56 - 183641344 ____A C:\Users\Josh\Downloads\Modern.Family.S01E02.HDTV.XviD-2HD.avi
2012-08-18 23:59 - 2012-08-18 23:56 - 182314938 ____A C:\Users\Josh\Downloads\Modern.Family.S01E01.HDTV.XviD-2HD.avi
2012-08-17 08:12 - 2012-08-17 08:11 - 102037062 ____A C:\Users\Josh\Downloads\TestOvSubmission.zip
2012-08-15 13:46 - 2012-06-21 13:57 - 00426184 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-08-15 13:46 - 2011-11-22 23:00 - 00070344 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-08-14 10:20 - 2012-08-14 09:51 - 71442688 ____A C:\Users\Josh\Downloads\Katatonia - 2012.rar
2012-08-12 23:21 - 2012-08-12 23:17 - 150286717 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E05.HDTV.x264-2HD.mp4
2012-08-11 14:18 - 2012-08-11 14:17 - 51885504 ____A C:\Users\Josh\Downloads\Ash Borer - Ash Borer-Fell Voices Split.zip
2012-08-11 14:17 - 2012-08-11 14:17 - 60029829 ____A C:\Users\Josh\Downloads\Ash Borer - Demo.zip
2012-08-10 00:53 - 2012-08-10 00:51 - 19239368 ____A C:\Users\Josh\Downloads\Ash Borer - MMIX by Bad.rar
2012-08-10 00:50 - 2012-08-10 00:31 - 174866616 ____A C:\Users\Josh\Downloads\Ash Borer - MMIX by Bad.rar.part
2012-08-09 20:48 - 2012-08-09 20:45 - 133172526 ____A C:\Users\Josh\Downloads\Wilfred.US.S02E08.HDTV.x264-ASAP.[VTV].mp4
2012-08-09 13:57 - 2012-08-09 13:56 - 103105468 ____A C:\Users\Josh\Downloads\WINTERFYLLETH_-_The_Threnody_Of_Triumph.zip
2012-08-09 00:06 - 2012-08-09 00:05 - 143109176 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E04.HDTV.x264-COMPULSiON.mp4
2012-08-08 23:15 - 2012-08-08 23:13 - 130572686 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E03.HDTV.x264-2HD.mp4
2012-08-08 23:13 - 2012-08-08 23:10 - 215160159 ____A C:\Users\Josh\Downloads\Wilfred.US.S02E07.HDTV.x264-EVOLVE.[VTV].mp4
2012-08-08 23:09 - 2012-08-08 22:56 - 121048210 ____A C:\Users\Josh\Downloads\Locrian.MamifferBTTCY12 by Bad.rar
2012-08-07 13:30 - 2012-08-07 13:20 - 173058027 ____A C:\Users\Josh\Downloads\UFOMAMMUT_-_ORO__Opus_Alter.zip
2012-08-05 17:44 - 2012-08-06 21:52 - 555827571 ____A C:\Users\Josh\Desktop\REC.3.Genesis.2012.720p.Bluray.x264.anoXmous.mp4
2012-08-05 17:08 - 2012-08-06 21:56 - 00045376 ____A C:\Users\Josh\Desktop\REC.3.Genesis.2012.720p.Bluray.x264.anoXmous_eng.srt
2012-07-29 15:59 - 2012-07-29 15:58 - 02870572 ____A C:\Users\Josh\Downloads\M.C.3.F.N.v1.0.0_androidfield.com.apk
2012-07-29 15:23 - 2012-07-29 15:21 - 176663771 ____A C:\Users\Josh\Downloads\Black.Dynamite.S01E02.Bullhorn.Nights.or.Mandingos.Got.a.Pink.Toe.HDTV.x264-FQM.mp4
2012-07-27 00:09 - 2012-07-26 23:25 - 428973175 ____A C:\Users\Josh\Downloads\SGH-T989_TMB_1_20120608172207_ugy1nehf4g.zip
2012-07-26 22:52 - 2012-07-26 22:51 - 07011675 ____A C:\Users\Josh\Downloads\tmobilegalaxys2rootICS.zip
2012-07-25 21:56 - 2012-07-25 21:56 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2012-07-25 21:54 - 2012-07-25 21:54 - 00001964 ____A C:\Users\Public\Desktop\Samsung Kies.lnk
2012-07-25 21:47 - 2012-07-25 21:48 - 85986424 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Josh\Desktop\Kies_2.0.3.11082_152_4.exe
2012-07-24 13:20 - 2012-07-24 12:34 - 110660373 ____A C:\Users\Josh\Downloads\l-t.rar
2012-07-24 12:38 - 2012-07-24 12:38 - 48952334 ____A C:\Users\Josh\Downloads\DEATHSPELL_OMEGA_-_Drought.zip
2012-07-24 12:38 - 2012-07-24 12:19 - 85444878 ____A C:\Users\Josh\Downloads\DisemTranscendenceintoThePeripheral.zip
2012-07-24 12:31 - 2012-07-24 12:30 - 69677898 ____A C:\Users\Josh\Downloads\CHRISTIAN_MISTRESS_-_Possession.zip
2012-07-24 12:29 - 2012-07-24 12:28 - 79056146 ____A C:\Users\Josh\Downloads\UFOMAMMUT_-_Oro__Opus_Primum.zip
2012-07-24 12:26 - 2012-07-24 12:25 - 74430918 ____A C:\Users\Josh\Downloads\LORD_MANTIS_-_Pervertor.zip
2012-07-23 12:28 - 2012-07-23 11:24 - 115628600 ____A C:\Users\Josh\Downloads\Hammers_of_Misfortune-_Fields_Church_of_Broken_Glass.rar
2012-07-23 09:35 - 2012-07-23 09:17 - 106488999 ____A C:\Users\Josh\Downloads\Hammers_Of_Misfortune-17th_Street-2011-MTD.rar
2012-07-22 01:05 - 2012-07-22 01:03 - 85591329 ____A C:\Users\Josh\Downloads\Snailking - Samsara.zip
2012-07-21 23:45 - 2012-07-21 23:41 - 98546390 ____A C:\Users\Josh\Downloads\Ashes Against the Grain.rar
2012-07-21 21:37 - 2012-04-17 22:45 - 00001056 __ASH C:\Users\All Users\KGyGaAvL.sys
2012-07-21 21:36 - 2012-07-21 21:36 - 04319352 ____A C:\Users\Josh\Downloads\keypack.exe
2012-07-21 18:41 - 2012-07-21 18:39 - 147764225 ____A C:\Users\Josh\Downloads\Agalloch - Marrow of the Spirit [320kps] v0.rar
2012-07-21 18:33 - 2012-07-21 18:33 - 51895620 ____A C:\Users\Josh\Downloads\Agalloch-FE(EP)[2012]{IsraMetal}.rar
2012-07-20 00:54 - 2012-07-20 00:31 - 213480235 ____A C:\Users\Josh\Downloads\Swans-by-Bad.rar
2012-07-19 23:00 - 2012-07-19 22:59 - 00274728 ____A C:\Windows\Minidump\072012-33914-01.dmp
2012-07-18 22:42 - 2012-07-18 22:42 - 00001705 ____A C:\Users\Josh\Desktop\Google Drive.lnk
2012-07-18 21:01 - 2012-07-18 21:01 - 00274728 ____A C:\Windows\Minidump\071812-52229-01.dmp
2012-07-15 11:36 - 2012-07-15 11:34 - 177162704 ____A C:\Users\Josh\Desktop\Wilfred.US.S02E02.HDTV.XviD-AFG.avi
2012-07-15 11:33 - 2012-07-15 11:32 - 157017924 ____A C:\Users\Josh\Desktop\Wilfred.US.S02E04.HDTV.x264-LOL.[VTV].mp4
2012-07-14 21:50 - 2012-07-14 21:49 - 152320972 ____A C:\Users\Josh\Desktop\Wilfred.US.S02E03.HDTV.x264-LOL.mp4
2012-07-13 10:34 - 2009-07-13 21:08 - 00032538 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-07-11 10:38 - 2009-07-13 20:45 - 00275352 ____A C:\Windows\System32\FNTCACHE.DAT
2012-07-08 19:39 - 2012-07-08 19:39 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01007.Wdf
2012-06-12 09:26 - 2012-07-26 22:52 - 00426496 ____A (Samsung Electronics Co., Ltd.) C:\Users\Josh\Desktop\odin3 v1.85.exe
2012-06-12 09:26 - 2012-07-26 22:52 - 00000182 ____A C:\Users\Josh\Desktop\Odin3.ini
2012-06-11 19:08 - 2012-07-11 01:02 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-06-08 21:43 - 2012-07-10 21:50 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-08 20:41 - 2012-07-10 21:50 - 12873728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2012-06-06 20:52 - 2012-06-06 20:49 - 102028914 ____A C:\Users\Josh\Desktop\update-cm-7.1.0-Vibrant-signed.zip
2012-06-05 22:06 - 2012-07-10 21:50 - 02004480 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-06-05 22:06 - 2012-07-10 21:50 - 01881600 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2012-06-05 22:02 - 2012-07-10 21:50 - 01133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2012-06-05 21:05 - 2012-07-10 21:50 - 01390080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2012-06-05 21:05 - 2012-07-10 21:50 - 01236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2012-06-05 21:03 - 2012-07-10 21:50 - 00805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2012-06-02 14:19 - 2012-06-22 08:57 - 02428952 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2012-06-02 14:19 - 2012-06-22 08:57 - 00057880 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2012-06-02 14:19 - 2012-06-22 08:57 - 00044056 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2012-06-02 14:19 - 2012-06-22 08:56 - 00701976 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2012-06-02 14:19 - 2012-06-22 08:56 - 00038424 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2012-06-02 14:15 - 2012-06-22 08:57 - 02622464 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2012-06-02 14:15 - 2012-06-22 08:56 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2012-06-02 13:19 - 2012-06-22 08:56 - 00186752 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2012-06-02 13:15 - 2012-06-22 08:56 - 00036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2012-06-02 04:49 - 2012-07-11 01:00 - 17807360 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-06-02 04:17 - 2012-07-11 01:00 - 10924032 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-06-02 04:12 - 2012-07-11 01:00 - 02311680 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-06-02 04:05 - 2012-07-11 01:01 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-06-02 04:05 - 2012-07-11 01:00 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-06-02 04:04 - 2012-07-11 01:01 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-06-02 04:04 - 2012-07-11 01:00 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-06-02 04:03 - 2012-07-11 01:00 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-06-02 04:01 - 2012-07-11 01:01 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-06-02 04:00 - 2012-07-11 01:00 - 00818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-06-02 03:59 - 2012-07-11 01:01 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-06-02 03:57 - 2012-07-11 01:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-06-02 03:57 - 2012-07-11 01:01 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-06-02 03:54 - 2012-07-11 01:01 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-06-02 01:07 - 2012-07-11 01:00 - 12314624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-06-02 00:43 - 2012-07-11 01:00 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-06-02 00:33 - 2012-07-11 01:00 - 01800192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-06-02 00:26 - 2012-07-11 01:01 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-06-02 00:25 - 2012-07-11 01:01 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-06-02 00:25 - 2012-07-11 01:00 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-06-02 00:23 - 2012-07-11 01:01 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-06-02 00:21 - 2012-07-11 01:00 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-06-02 00:20 - 2012-07-11 01:01 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-06-02 00:19 - 2012-07-11 01:01 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-06-02 00:19 - 2012-07-11 01:00 - 00716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-06-02 00:17 - 2012-07-11 01:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-06-02 00:16 - 2012-07-11 01:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-06-02 00:14 - 2012-07-11 01:01 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-06-01 21:50 - 2012-07-10 21:50 - 00458704 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2012-06-01 21:48 - 2012-07-10 21:50 - 00151920 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2012-06-01 21:48 - 2012-07-10 21:50 - 00095600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2012-06-01 21:45 - 2012-07-10 21:50 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2012-06-01 21:44 - 2012-07-10 21:50 - 00307200 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2012-06-01 20:40 - 2012-07-10 21:50 - 00225280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2012-06-01 20:40 - 2012-07-10 21:50 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2012-06-01 20:39 - 2012-07-10 21:50 - 00219136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2012-06-01 20:34 - 2012-07-10 21:50 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
ZeroAccess:
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\@
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\L
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\n
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\U
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\L\00000004.@
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\L\201d3dde
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\U\00000004.@
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\U\00000008.@
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\U\000000cb.@
C:\Windows\Installer\{90408e0e-9ec7-cc9d-a730-09e92a78a17c}\U\80000000.@
ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini
ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini
Type 00 partition infection:
C:\Windows\svchost.exe
==================== Known DLLs (Whitelisted) =================
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe 014A9CB92514E27C0107614DF764BC06 ZeroAccess <==== ATTENTION!.
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
TDL4: custom:26000022 <===== ATTENTION!
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points =========================
Restore point made on: 2012-07-20 01:48:53
Restore point made on: 2012-07-25 21:50:17
Restore point made on: 2012-08-02 23:48:11
Restore point made on: 2012-08-14 22:32:47
Restore point made on: 2012-08-22 22:18:54
==================== Memory info ===========================
Percentage of memory in use: 12%
Total physical RAM: 5608.67 MB
Available physical RAM: 4903.31 MB
Total Pagefile: 5606.82 MB
Available Pagefile: 4902.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB
==================== Partitions ============================
1 Drive c: (TI106327W0C) (Fixed) (Total:580.1 GB) (Free:276.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]
2 Drive d: (System) (Fixed) (Total:1.46 GB) (Free:1.27 GB) NTFS ==>[System with boot components (obtained from reading drive)]
3 Drive e: (GRMCHPXFRER_EN_DVD) (CDROM) (Total:3 GB) (Free:0 GB) UDF
4 Drive f: () (Removable) (Total:3.76 GB) (Free:3.76 GB) FAT32
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 596 GB 0 B
Disk 1 Online 3856 MB 0 B
Partitions of Disk 0:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Recovery 1500 MB 1024 KB
Partition 2 Primary 580 GB 1501 MB
Partition 3 Primary 14 GB 581 GB
==================================================================================
Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: Yes
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 D System NTFS Partition 1500 MB Healthy Hidden
==================================================================================
Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No
Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C TI106327W0C NTFS Partition 580 GB Healthy
==================================================================================
Disk: 0
Partition 3
Type : 17 (Suspicious Type)
Hidden: Yes
Active: No
There is no volume associated with this partition.
==================================================================================
Partitions of Disk 1:
===============
Partition ### Type Size Offset
------------- ---------------- ------- -------
* Partition 1 Primary 3856 MB 0 B
==================================================================================
Disk: 1
There is no partition selected.
There is no partition selected.
Please select a partition and try again.
==================================================================================
Last Boot: 2012-08-18 16:38
==================== End Of Log =============================