Hello, I've spent the past 24 hours trying to remove what I'm now 100 percent, sure is malware, I've done system restore, installed new anitvirus, anitmalware programs, but none seem to have worked. unfortunately I stumbled onto this site a lot later, than what I should have. I'm positive I still have it, because malwarebytes still tells me I have various ip's attempting to connect, mainly ips like 213.136.89.104 ,105 106, etc. I have read the 8 step guide, and I've attached the logs, but the gmer program I've attempted running for hours now. I've tried in normal windows mode and in safe mode, and with the devices box checked and unchecked, but it always freezes typically when it gets to program files, and when I've tried to save whatever I could, it also freezes then says not enough resources and freezes again. I''ve tried pasting my ddS file, after trying to attach just takes me too page cannot be displayed, and strangely enough it doesn't upload to any file hosting site, just takes me to same page cannot be displayed, I've tried changing the title , putting it in new text file, but nothing worked. Please any help would be so greatly appreciated.
Inactive Malware interfering with connection
- Thread starter DDSM90
- Start date
- Status
Broni
Posts: 56,041 +516
Please download ComboFix from Here or Here to your Desktop.
**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
Make sure, you re-enable your security programs, when you're done with Combofix.
DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
- Please, never rename Combofix unless instructed.
- Close any open browsers.
- Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
- Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
- Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
NOTE 2. If Combofix asks you to update the program, always do so.- Close any open browsers.
- WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
- Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
- If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
- Double click on combofix.exe & follow the prompts.
- When finished, it will produce a report for you.
- Please post the "C:\ComboFix.txt"
Make sure, you re-enable your security programs, when you're done with Combofix.
DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
Broni
Posts: 56,041 +516
Stop the process.
Delete your Combofix file, download fresh one, but rename combofix.exe to broni.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.
There are 4 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click Rkill and choose Run as Administrator
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
* Rkill.com
* Rkill.scr
* Rkill.pif
* Rkill.exe
Once you've gotten one of them to run then try to immediately run the following.
Now download and run exeHelper.
Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).
Now, run broni.exe
If still a problem, run all three tools from safe mode.
Delete your Combofix file, download fresh one, but rename combofix.exe to broni.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.
There are 4 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click Rkill and choose Run as Administrator
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
* Rkill.com
* Rkill.scr
* Rkill.pif
* Rkill.exe
* Double-click on the Rkill desktop icon to run the tool.
* If using Vista or Windows 7 right-click on it and choose Run As Administrator.
* A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
* If not, delete the file, then download and use the one provided in Link 2.
* If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
* Do not reboot until instructed.
* If the tool does not run from any of the links provided, please let me know.
Once you've gotten one of them to run then try to immediately run the following.
Now download and run exeHelper.
* Please download exeHelper from Raktor to your desktop.
* Double-click on exeHelper.com to run the fix.
* A black window should pop up, press any key to close once the fix is completed.
* A log file named log.txt will be created in the directory where you ran exeHelper.com
* Attach the log.txt file to your next message.
Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).
Now, run broni.exe
If still a problem, run all three tools from safe mode.
Okay, broni it worked, here are is the first attachemnt which was exehelper file, bu then the combofix is too big to upload as an attachment it's 237kb, so I uploaded it to 2shared file hosting place, link is
http://www.2shared.com/document/-IDoSYeR/log.html
let me know if it worked?
Thanks
http://www.2shared.com/document/-IDoSYeR/log.html
let me know if it worked?
Thanks
Broni
Posts: 56,041 +516
Good job 
What is your current AV program, AVG, or BitDefender?
How are the issues?
Download OTL to your Desktop.
* Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
* Under the Custom Scan box paste this in:
netsvcs
drivers32 /all
%SYSTEMDRIVE%\*.*
%systemroot%\system32\Spool\prtprocs\w32x86\*.dll
%systemroot%\system32\*.wt
%systemroot%\system32\*.ruy
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\system32\spool\prtprocs\w32x86\*.tmp
%systemroot%\*. /mp /s
/md5start
/md5stop
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\user32.dll /md5
%systemroot%\system32\ws2_32.dll /md5
%systemroot%\system32\ws2help.dll /md5
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
* Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
What is your current AV program, AVG, or BitDefender?
How are the issues?
Download OTL to your Desktop.
* Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
* Under the Custom Scan box paste this in:
netsvcs
drivers32 /all
%SYSTEMDRIVE%\*.*
%systemroot%\system32\Spool\prtprocs\w32x86\*.dll
%systemroot%\system32\*.wt
%systemroot%\system32\*.ruy
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\system32\spool\prtprocs\w32x86\*.tmp
%systemroot%\*. /mp /s
/md5start
/md5stop
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\user32.dll /md5
%systemroot%\system32\ws2_32.dll /md5
%systemroot%\system32\ws2help.dll /md5
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
* Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows: OTL.txt and Extras.txt. These are saved in the same location as OTL.
- Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them back here.
OTL logfile created on: 8/4/2010 8:26:58 PM - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Deigo\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 65.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 3932 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 389.00 Gb Free Space | 41.76% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 1397.26 Gb Total Space | 912.03 Gb Free Space | 65.27% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465.65 Gb Total Space | 257.56 Gb Free Space | 55.31% Space Free | Partition Type: FAT32
Computer Name: DIEGO-96CBBBCE6
Current User Name: Deigo
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2010/08/04 20:25:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
PRC - [2010/07/20 13:47:12 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010/07/15 14:59:40 | 002,065,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2010/07/15 14:59:37 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/15 14:59:36 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/07/15 14:59:34 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/15 14:58:52 | 000,723,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/07/15 14:58:51 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2010/04/26 15:01:54 | 001,615,688 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
PRC - [2010/04/19 17:15:08 | 009,999,080 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\Program Files\Advanced System Optimizer 3.1\systemprotector.exe
PRC - [2010/04/19 17:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\Program Files\Advanced System Optimizer 3.1\ASO3DefragSrv.exe
PRC - [2010/04/19 14:01:32 | 001,291,600 | ---- | M] (Sunbelt Software) -- C:\Program Files\Sunbelt Software\CounterSpy\SBAMTray.exe
PRC - [2010/04/19 13:48:54 | 002,726,000 | ---- | M] (Sunbelt Software) -- C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe
PRC - [2010/04/19 13:47:50 | 000,181,584 | ---- | M] (Sunbelt Software) -- C:\Program Files\Sunbelt Software\CounterSpy\SBPIMSvc.exe
PRC - [2010/03/18 16:25:08 | 001,123,360 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
PRC - [2010/03/18 16:04:52 | 001,091,984 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
PRC - [2010/03/04 06:31:32 | 001,632,776 | ---- | M] (M-Audio) -- C:\Program Files\M-Audio\Oxygen\AudioDevMon.exe
PRC - [2010/02/26 11:19:54 | 003,623,424 | ---- | M] (Native Instruments GmbH) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
PRC - [2010/01/21 02:40:42 | 000,883,200 | ---- | M] (ActMask Co.,Ltd - http://www.all2pdf.com) -- C:\WINDOWS\system32\PrintDisp.exe
PRC - [2010/01/11 14:02:46 | 000,308,552 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
PRC - [2009/10/29 11:59:48 | 000,065,536 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\system32\PrintCtrl.exe
PRC - [2009/10/06 09:30:02 | 000,643,592 | ---- | M] (Avid Technology, Inc.) -- C:\WINDOWS\system32\M-AudioTaskBarIcon.exe
PRC - [2008/06/19 19:40:54 | 000,442,433 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008/06/19 19:40:51 | 000,221,239 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\IntelXPV_v100\WDM\stacsv.exe
PRC - [2008/05/30 13:21:04 | 029,290,496 | ---- | M] ( ) -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\wirelesscm.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/12/13 20:12:02 | 000,467,028 | ---- | M] (Atheros) -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\acs.exe
PRC - [2007/10/31 01:35:10 | 000,077,824 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) -- C:\Program Files\Digidesign\Drivers\MMERefresh.exe
PRC - [2003/11/26 16:44:19 | 000,061,440 | ---- | M] (CrypKey (Canada) Ltd.) -- C:\WINDOWS\system32\Crypserv.exe
========== Modules (SafeList) ==========
MOD - [2010/08/04 20:25:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
MOD - [2008/04/13 19:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Program Files\Blaze Media Pro\NMSAccess32.exe -- (NMSAccess)
SRV - [2010/07/20 13:47:12 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/07/15 14:59:34 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/26 15:01:54 | 001,615,688 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe -- (VSSERV)
SRV - [2010/04/19 17:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) [Auto | Running] -- C:\Program Files\Advanced System Optimizer 3.1\ASO3DefragSrv.exe -- (ASO3DiskOptimizer)
SRV - [2010/04/19 13:48:54 | 002,726,000 | ---- | M] (Sunbelt Software) [Auto | Running] -- C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe -- (SBAMSvc)
SRV - [2010/04/19 13:47:50 | 000,181,584 | ---- | M] (Sunbelt Software) [Auto | Running] -- C:\Program Files\Sunbelt Software\CounterSpy\SBPIMSvc.exe -- (SBPIMSvc)
SRV - [2010/03/12 16:40:10 | 000,315,392 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\scan.dll -- (scan)
SRV - [2010/03/04 06:31:32 | 001,632,776 | ---- | M] (M-Audio) [Auto | Running] -- C:\Program Files\M-Audio\Oxygen\AudioDevMon.exe -- (OxygenAudioDevMon)
SRV - [2010/02/26 11:19:54 | 003,623,424 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010/01/11 14:02:46 | 000,308,552 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe -- (LIVESRV)
SRV - [2009/11/14 20:53:37 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/10/29 11:59:48 | 000,065,536 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [Auto | Running] -- C:\WINDOWS\system32\PrintCtrl.exe -- (Printer Control)
SRV - [2009/10/19 17:06:10 | 000,183,880 | ---- | M] (BitDefender S.R.L. http://www.bitdefender.com) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Arrakis3)
SRV - [2008/06/19 19:40:51 | 000,221,239 | ---- | M] (IDT, Inc.) [Auto | Running] -- c:\Program Files\IDT\IntelXPV_v100\WDM\stacsv.exe -- (STacSV)
SRV - [2008/04/16 15:52:18 | 000,356,434 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\jswpsapi.exe -- (jswpsapi)
SRV - [2007/12/13 20:12:02 | 000,467,028 | ---- | M] (Atheros) [Auto | Running] -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\acs.exe -- (ACS)
SRV - [2007/10/31 01:35:10 | 000,077,824 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [Auto | Running] -- C:\Program Files\Digidesign\Drivers\MMERefresh.exe -- (DigiRefresh)
SRV - [2007/10/31 01:02:58 | 000,159,744 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [On_Demand | Stopped] -- C:\Program Files\Digidesign\Pro Tools\digiSPTIService.exe -- (digiSPTIService)
SRV - [2003/11/26 16:44:19 | 000,061,440 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\WINDOWS\System32\Crypserv.exe -- (Crypkey License)
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Deigo\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 65.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 3932 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 389.00 Gb Free Space | 41.76% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 1397.26 Gb Total Space | 912.03 Gb Free Space | 65.27% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465.65 Gb Total Space | 257.56 Gb Free Space | 55.31% Space Free | Partition Type: FAT32
Computer Name: DIEGO-96CBBBCE6
Current User Name: Deigo
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2010/08/04 20:25:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
PRC - [2010/07/20 13:47:12 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010/07/15 14:59:40 | 002,065,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2010/07/15 14:59:37 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/15 14:59:36 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/07/15 14:59:34 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/15 14:58:52 | 000,723,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/07/15 14:58:51 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2010/04/26 15:01:54 | 001,615,688 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
PRC - [2010/04/19 17:15:08 | 009,999,080 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\Program Files\Advanced System Optimizer 3.1\systemprotector.exe
PRC - [2010/04/19 17:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\Program Files\Advanced System Optimizer 3.1\ASO3DefragSrv.exe
PRC - [2010/04/19 14:01:32 | 001,291,600 | ---- | M] (Sunbelt Software) -- C:\Program Files\Sunbelt Software\CounterSpy\SBAMTray.exe
PRC - [2010/04/19 13:48:54 | 002,726,000 | ---- | M] (Sunbelt Software) -- C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe
PRC - [2010/04/19 13:47:50 | 000,181,584 | ---- | M] (Sunbelt Software) -- C:\Program Files\Sunbelt Software\CounterSpy\SBPIMSvc.exe
PRC - [2010/03/18 16:25:08 | 001,123,360 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
PRC - [2010/03/18 16:04:52 | 001,091,984 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
PRC - [2010/03/04 06:31:32 | 001,632,776 | ---- | M] (M-Audio) -- C:\Program Files\M-Audio\Oxygen\AudioDevMon.exe
PRC - [2010/02/26 11:19:54 | 003,623,424 | ---- | M] (Native Instruments GmbH) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
PRC - [2010/01/21 02:40:42 | 000,883,200 | ---- | M] (ActMask Co.,Ltd - http://www.all2pdf.com) -- C:\WINDOWS\system32\PrintDisp.exe
PRC - [2010/01/11 14:02:46 | 000,308,552 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
PRC - [2009/10/29 11:59:48 | 000,065,536 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\system32\PrintCtrl.exe
PRC - [2009/10/06 09:30:02 | 000,643,592 | ---- | M] (Avid Technology, Inc.) -- C:\WINDOWS\system32\M-AudioTaskBarIcon.exe
PRC - [2008/06/19 19:40:54 | 000,442,433 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008/06/19 19:40:51 | 000,221,239 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\IntelXPV_v100\WDM\stacsv.exe
PRC - [2008/05/30 13:21:04 | 029,290,496 | ---- | M] ( ) -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\wirelesscm.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/12/13 20:12:02 | 000,467,028 | ---- | M] (Atheros) -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\acs.exe
PRC - [2007/10/31 01:35:10 | 000,077,824 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) -- C:\Program Files\Digidesign\Drivers\MMERefresh.exe
PRC - [2003/11/26 16:44:19 | 000,061,440 | ---- | M] (CrypKey (Canada) Ltd.) -- C:\WINDOWS\system32\Crypserv.exe
========== Modules (SafeList) ==========
MOD - [2010/08/04 20:25:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
MOD - [2008/04/13 19:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Program Files\Blaze Media Pro\NMSAccess32.exe -- (NMSAccess)
SRV - [2010/07/20 13:47:12 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/07/15 14:59:34 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/26 15:01:54 | 001,615,688 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe -- (VSSERV)
SRV - [2010/04/19 17:15:00 | 000,238,824 | ---- | M] (Systweak Inc., (www.systweak.com)) [Auto | Running] -- C:\Program Files\Advanced System Optimizer 3.1\ASO3DefragSrv.exe -- (ASO3DiskOptimizer)
SRV - [2010/04/19 13:48:54 | 002,726,000 | ---- | M] (Sunbelt Software) [Auto | Running] -- C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe -- (SBAMSvc)
SRV - [2010/04/19 13:47:50 | 000,181,584 | ---- | M] (Sunbelt Software) [Auto | Running] -- C:\Program Files\Sunbelt Software\CounterSpy\SBPIMSvc.exe -- (SBPIMSvc)
SRV - [2010/03/12 16:40:10 | 000,315,392 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\scan.dll -- (scan)
SRV - [2010/03/04 06:31:32 | 001,632,776 | ---- | M] (M-Audio) [Auto | Running] -- C:\Program Files\M-Audio\Oxygen\AudioDevMon.exe -- (OxygenAudioDevMon)
SRV - [2010/02/26 11:19:54 | 003,623,424 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010/01/11 14:02:46 | 000,308,552 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe -- (LIVESRV)
SRV - [2009/11/14 20:53:37 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/10/29 11:59:48 | 000,065,536 | ---- | M] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [Auto | Running] -- C:\WINDOWS\system32\PrintCtrl.exe -- (Printer Control)
SRV - [2009/10/19 17:06:10 | 000,183,880 | ---- | M] (BitDefender S.R.L. http://www.bitdefender.com) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Arrakis3)
SRV - [2008/06/19 19:40:51 | 000,221,239 | ---- | M] (IDT, Inc.) [Auto | Running] -- c:\Program Files\IDT\IntelXPV_v100\WDM\stacsv.exe -- (STacSV)
SRV - [2008/04/16 15:52:18 | 000,356,434 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\jswpsapi.exe -- (jswpsapi)
SRV - [2007/12/13 20:12:02 | 000,467,028 | ---- | M] (Atheros) [Auto | Running] -- C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\acs.exe -- (ACS)
SRV - [2007/10/31 01:35:10 | 000,077,824 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [Auto | Running] -- C:\Program Files\Digidesign\Drivers\MMERefresh.exe -- (DigiRefresh)
SRV - [2007/10/31 01:02:58 | 000,159,744 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [On_Demand | Stopped] -- C:\Program Files\Digidesign\Pro Tools\digiSPTIService.exe -- (digiSPTIService)
SRV - [2003/11/26 16:44:19 | 000,061,440 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\WINDOWS\System32\Crypserv.exe -- (Crypkey License)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\nstation.sys -- (NSTATION)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\mausb.sys -- (MAUSBFTP) Service for M-Audio Fast Track Pro (WDM)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\LogMeIn\x86\RaInfo.sys -- (LMIInfo)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\FILESPY.sys -- (FILESPY)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Deigo\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys -- (ADASPROT)
DRV - [2010/07/15 14:59:38 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/07/15 14:58:52 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/02 10:04:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/04/23 17:43:52 | 000,058,368 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2010\bdselfpr.sys -- (BDSelfPr)
DRV - [2010/03/04 16:13:36 | 000,037,920 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2010/03/04 06:31:28 | 000,112,136 | ---- | M] (M-Audio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioOxygen.sys -- (OXYGEN)
DRV - [2010/02/22 14:58:40 | 000,291,352 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\bdfsfltr.sys -- (bdfsfltr)
DRV - [2010/02/04 02:09:33 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/02/03 13:57:36 | 000,153,448 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfm.sys -- (bdfm)
DRV - [2010/01/12 13:32:06 | 000,046,472 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys -- (Trufos)
DRV - [2010/01/12 13:32:02 | 000,021,384 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys -- (Profos)
DRV - [2010/01/04 19:41:22 | 000,119,304 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (bdftdif)
DRV - [2010/01/04 06:29:42 | 000,069,720 | ---- | M] (Sunbelt Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\sbapifs.sys -- (sbapifs)
DRV - [2010/01/04 06:29:40 | 000,013,400 | ---- | M] (Sunbelt Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sbaphd.sys -- (sbaphd)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys -- (WsAudio_DeviceS(5)) WsAudio_DeviceS(5)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)) WsAudio_DeviceS(4)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)) WsAudio_DeviceS(3)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)) WsAudio_DeviceS(2)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)) WsAudio_DeviceS(1)
DRV - [2009/11/09 14:56:10 | 000,158,600 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioFastTrackPro.sys -- (MAUSBFASTTRACKPRO)
DRV - [2009/10/13 09:02:36 | 000,095,024 | ---- | M] (Sunbelt Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SBREDrv.sys -- (SBRE)
DRV - [2009/10/06 10:29:54 | 000,042,120 | ---- | M] (M-Audio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioFastTrackUltra8R_DFU.sys -- (MADFUFTU8R)
DRV - [2009/10/06 09:29:50 | 000,135,816 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioFastTrackUltra8R.sys -- (MAUSBFASTTRACKULTRA8R)
DRV - [2009/09/28 20:34:48 | 000,083,288 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2009/09/27 16:12:22 | 007,655,872 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009/09/09 19:24:14 | 000,062,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\xusb21.sys -- (xusb21)
DRV - [2009/02/24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/08/11 13:41:00 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2008/07/02 18:03:06 | 000,086,528 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\tpkd.sys -- (TPkd)
DRV - [2008/06/19 19:42:43 | 000,244,368 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1y5132.sys -- (e1yexpress) Intel(R)
DRV - [2008/06/19 19:40:52 | 001,294,984 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 13:40:10 | 000,080,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\parport.sys -- (Parport)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/02/20 03:47:44 | 000,765,440 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athr.sys -- (athr)
DRV - [2008/01/27 12:29:36 | 000,010,880 | ---- | M] (nerds.de) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\loopbe1.sys -- (LoopBeMidi1) nerds.de LoopBe1 - Internal Midi Port SvcDesc(WDM)
DRV - [2008/01/17 12:25:46 | 001,331,136 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2007/12/13 20:31:02 | 000,057,408 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)
DRV - [2007/08/28 21:46:02 | 000,057,344 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\jswscimd.sys -- (JSWSCIMD)
DRV - [2006/12/10 02:08:30 | 001,447,040 | ---- | M] (TASCAM) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew.sys -- (EWAVE)
DRV - [2006/12/08 23:50:28 | 000,016,384 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\DigiFilt.sys -- (DigiFilter)
DRV - [2003/07/29 08:18:32 | 000,028,518 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\ckldrv.sys -- (NetworkX)
DRV - [2002/04/16 12:10:52 | 000,004,899 | ---- | M] (MAGIX AG) [File_System | On_Demand | Stopped] -- C:\Program Files\MAGIX\Samplitude_11\mxasio.sys -- (MagixASIODrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared
FF - HKLM\software\mozilla\Firefox\extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010/08/03 05:11:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2010/08/02 02:45:55 | 000,000,000 | ---D | M]
[2010/08/02 01:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions
[2010/08/02 00:34:13 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] (Ad blocker) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3612C}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2)
[2010/08/02 00:34:13 | 000,000,000 | ---D | M] (Password Exporter) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\imageblock@hemantvats(2).com
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\nstation.sys -- (NSTATION)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\mausb.sys -- (MAUSBFTP) Service for M-Audio Fast Track Pro (WDM)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\LogMeIn\x86\RaInfo.sys -- (LMIInfo)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\FILESPY.sys -- (FILESPY)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Deigo\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys -- (ADASPROT)
DRV - [2010/07/15 14:59:38 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/07/15 14:58:52 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/02 10:04:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/04/23 17:43:52 | 000,058,368 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2010\bdselfpr.sys -- (BDSelfPr)
DRV - [2010/03/04 16:13:36 | 000,037,920 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2010/03/04 06:31:28 | 000,112,136 | ---- | M] (M-Audio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioOxygen.sys -- (OXYGEN)
DRV - [2010/02/22 14:58:40 | 000,291,352 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\bdfsfltr.sys -- (bdfsfltr)
DRV - [2010/02/04 02:09:33 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/02/03 13:57:36 | 000,153,448 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfm.sys -- (bdfm)
DRV - [2010/01/12 13:32:06 | 000,046,472 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys -- (Trufos)
DRV - [2010/01/12 13:32:02 | 000,021,384 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys -- (Profos)
DRV - [2010/01/04 19:41:22 | 000,119,304 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (bdftdif)
DRV - [2010/01/04 06:29:42 | 000,069,720 | ---- | M] (Sunbelt Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\sbapifs.sys -- (sbapifs)
DRV - [2010/01/04 06:29:40 | 000,013,400 | ---- | M] (Sunbelt Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sbaphd.sys -- (sbaphd)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys -- (WsAudio_DeviceS(5)) WsAudio_DeviceS(5)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)) WsAudio_DeviceS(4)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)) WsAudio_DeviceS(3)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)) WsAudio_DeviceS(2)
DRV - [2009/12/04 11:33:50 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)) WsAudio_DeviceS(1)
DRV - [2009/11/09 14:56:10 | 000,158,600 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioFastTrackPro.sys -- (MAUSBFASTTRACKPRO)
DRV - [2009/10/13 09:02:36 | 000,095,024 | ---- | M] (Sunbelt Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SBREDrv.sys -- (SBRE)
DRV - [2009/10/06 10:29:54 | 000,042,120 | ---- | M] (M-Audio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioFastTrackUltra8R_DFU.sys -- (MADFUFTU8R)
DRV - [2009/10/06 09:29:50 | 000,135,816 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MAudioFastTrackUltra8R.sys -- (MAUSBFASTTRACKULTRA8R)
DRV - [2009/09/28 20:34:48 | 000,083,288 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2009/09/27 16:12:22 | 007,655,872 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009/09/09 19:24:14 | 000,062,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\xusb21.sys -- (xusb21)
DRV - [2009/02/24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/08/11 13:41:00 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2008/07/02 18:03:06 | 000,086,528 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\tpkd.sys -- (TPkd)
DRV - [2008/06/19 19:42:43 | 000,244,368 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1y5132.sys -- (e1yexpress) Intel(R)
DRV - [2008/06/19 19:40:52 | 001,294,984 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2008/04/13 13:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 13:40:10 | 000,080,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\parport.sys -- (Parport)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/02/20 03:47:44 | 000,765,440 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athr.sys -- (athr)
DRV - [2008/01/27 12:29:36 | 000,010,880 | ---- | M] (nerds.de) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\loopbe1.sys -- (LoopBeMidi1) nerds.de LoopBe1 - Internal Midi Port SvcDesc(WDM)
DRV - [2008/01/17 12:25:46 | 001,331,136 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2007/12/13 20:31:02 | 000,057,408 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)
DRV - [2007/08/28 21:46:02 | 000,057,344 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\jswscimd.sys -- (JSWSCIMD)
DRV - [2006/12/10 02:08:30 | 001,447,040 | ---- | M] (TASCAM) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew.sys -- (EWAVE)
DRV - [2006/12/08 23:50:28 | 000,016,384 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\DigiFilt.sys -- (DigiFilter)
DRV - [2003/07/29 08:18:32 | 000,028,518 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\ckldrv.sys -- (NetworkX)
DRV - [2002/04/16 12:10:52 | 000,004,899 | ---- | M] (MAGIX AG) [File_System | On_Demand | Stopped] -- C:\Program Files\MAGIX\Samplitude_11\mxasio.sys -- (MagixASIODrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared
FF - HKLM\software\mozilla\Firefox\extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010/08/03 05:11:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2010/08/02 02:45:55 | 000,000,000 | ---D | M]
[2010/08/02 01:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions
[2010/08/02 00:34:13 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] (Ad blocker) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3612C}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2)
[2010/08/02 00:34:13 | 000,000,000 | ---D | M] (Password Exporter) -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}(2)
[2010/08/02 00:34:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Mozilla\Firefox\Profiles(2)\m189gjn5.default\extensions\imageblock@hemantvats(2).com
O1 HOSTS File: ([2010/08/04 01:09:37 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2010\ietoolbar.dll (BitDefender S.R.L.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\ShellBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [DigidesignMMERefresh] C:\Program Files\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [manager] C:\WINDOWS\System32\drivers\setup\manager.exe File not found
O4 - HKLM..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\system32\M-AudioTaskBarIcon.exe (Avid Technology, Inc.)
O4 - HKLM..\Run: [MOD] C:\Program Files\Microangelo\muamgr.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe File not found
O4 - HKLM..\Run: [PrintDisp] C:\WINDOWS\system32\PrintDisp.exe (ActMask Co.,Ltd - http://www.all2pdf.com)
O4 - HKLM..\Run: [SBAMTray] C:\Program Files\Sunbelt Software\CounterSpy\SBAMTray.exe (Sunbelt Software)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SystemProtector] C:\Program Files\Advanced System Optimizer 3.1\SystemProtector.exe (Systweak Inc., (www.systweak.com))
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd)
O4 - HKCU..\Run: [manager] C:\WINDOWS\System32\drivers\setup\manager.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk = C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\wirelesscm.exe ( )
O4 - Startup: C:\Documents and Settings\Deigo\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: line6.net ([]* in Trusted sites)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1255729506265 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1255932144484 (MUWebControl Class)
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx (CRLDownloadWrapper Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Deigo\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Deigo\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/10/16 16:12:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008/04/01 13:53:24 | 000,000,071 | ---- | M] () - J:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sasnative32) - C:\WINDOWS\System32\sasnative32.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: aux - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: aux1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: Midi - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: Midi1 - C:\WINDOWS\System32\gmidi.dll (TASCAM)
Drivers32: midi2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi4 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi5 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi6 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi7 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi8 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi9 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\WINDOWS\System32\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer4 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer5 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer6 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer7 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer8 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer9 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.imaadpcm - C:\WINDOWS\System32\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - C:\WINDOWS\System32\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msaudio1 - C:\WINDOWS\System32\msaud32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\WINDOWS\System32\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msg723 - C:\WINDOWS\System32\msg723.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\WINDOWS\System32\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.I420 - C:\WINDOWS\System32\msh263.drv (Microsoft Corporation)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.iyuv - C:\WINDOWS\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.M261 - C:\WINDOWS\System32\msh261.drv (Microsoft Corporation)
Drivers32: vidc.M263 - C:\WINDOWS\System32\msh263.drv (Microsoft Corporation)
Drivers32: vidc.mrle - C:\WINDOWS\System32\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\WINDOWS\System32\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.uyvy - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yuy2 - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yvu9 - C:\WINDOWS\System32\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvyu - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave4 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave5 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave6 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave7 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave8 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave9 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\WINDOWS\System32\msacm32.drv (Microsoft Corporation)
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2010\ietoolbar.dll (BitDefender S.R.L.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\ShellBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [DigidesignMMERefresh] C:\Program Files\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [manager] C:\WINDOWS\System32\drivers\setup\manager.exe File not found
O4 - HKLM..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\system32\M-AudioTaskBarIcon.exe (Avid Technology, Inc.)
O4 - HKLM..\Run: [MOD] C:\Program Files\Microangelo\muamgr.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe File not found
O4 - HKLM..\Run: [PrintDisp] C:\WINDOWS\system32\PrintDisp.exe (ActMask Co.,Ltd - http://www.all2pdf.com)
O4 - HKLM..\Run: [SBAMTray] C:\Program Files\Sunbelt Software\CounterSpy\SBAMTray.exe (Sunbelt Software)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SystemProtector] C:\Program Files\Advanced System Optimizer 3.1\SystemProtector.exe (Systweak Inc., (www.systweak.com))
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd)
O4 - HKCU..\Run: [manager] C:\WINDOWS\System32\drivers\setup\manager.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Connection Manager.lnk = C:\Program Files\D-Link\D-Link DWA-552 Xtreme N Desktop Adapter\wirelesscm.exe ( )
O4 - Startup: C:\Documents and Settings\Deigo\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: line6.net ([]* in Trusted sites)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1255729506265 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1255932144484 (MUWebControl Class)
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx (CRLDownloadWrapper Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Deigo\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Deigo\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/10/16 16:12:22 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008/04/01 13:53:24 | 000,000,071 | ---- | M] () - J:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sasnative32) - C:\WINDOWS\System32\sasnative32.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: aux - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: aux1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: Midi - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: Midi1 - C:\WINDOWS\System32\gmidi.dll (TASCAM)
Drivers32: midi2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi4 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi5 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi6 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi7 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi8 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi9 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\WINDOWS\System32\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer4 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer5 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer6 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer7 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer8 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer9 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.imaadpcm - C:\WINDOWS\System32\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - C:\WINDOWS\System32\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msaudio1 - C:\WINDOWS\System32\msaud32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\WINDOWS\System32\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msg723 - C:\WINDOWS\System32\msg723.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\WINDOWS\System32\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.I420 - C:\WINDOWS\System32\msh263.drv (Microsoft Corporation)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.iyuv - C:\WINDOWS\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.M261 - C:\WINDOWS\System32\msh261.drv (Microsoft Corporation)
Drivers32: vidc.M263 - C:\WINDOWS\System32\msh263.drv (Microsoft Corporation)
Drivers32: vidc.mrle - C:\WINDOWS\System32\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\WINDOWS\System32\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.uyvy - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yuy2 - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yvu9 - C:\WINDOWS\System32\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvyu - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave4 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave5 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave6 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave7 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave8 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave9 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\WINDOWS\System32\msacm32.drv (Microsoft Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)
========== Files/Folders - Created Within 90 Days ==========
[2010/08/04 20:25:27 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
[2010/08/04 02:06:51 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/08/04 01:56:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/08/04 01:35:48 | 000,000,000 | ---D | C] -- C:\broni
[2010/08/03 22:03:17 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/08/03 21:50:56 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/08/03 21:50:56 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/08/03 21:50:56 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/08/03 21:50:56 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/08/03 21:50:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/08/03 21:47:08 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/08/03 05:20:42 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/08/02 10:59:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Deployment
[2010/08/02 03:27:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/08/02 03:27:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/08/02 03:27:08 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/08/02 02:45:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\BitDefender
[2010/08/02 02:34:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\BitDefender
[2010/08/02 02:27:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BitDefender
[2010/08/02 02:14:36 | 000,069,720 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys
[2010/08/02 02:14:35 | 000,013,400 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys
[2010/08/02 01:08:55 | 000,000,000 | ---D | C] -- C:\Program Files\Nebula3
[2010/08/02 01:03:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Research
[2010/08/02 01:03:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Deigo\Recent
[2010/08/01 22:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\BitDefender
[2010/08/01 15:26:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Malwarebytes
[2010/08/01 15:26:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/08/01 14:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\NL_Plt#1
[2010/08/01 14:36:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\NL_Spr#1
[2010/08/01 14:34:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\NL_Roo#1
[2010/08/01 02:08:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\BitDefender(2)
[2010/08/01 01:40:54 | 000,000,000 | ---D | C] -- C:\Program Files\BitDefender(2)
[2010/08/01 00:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\The Melody's Studio Session Info
[2010/07/31 01:02:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\PreSonus
[2010/07/31 01:01:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010/07/31 01:00:54 | 000,000,000 | ---D | C] -- C:\Program Files\PreSonus
[2010/07/30 18:14:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Sunbelt
[2010/07/30 18:14:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sunbelt
[2010/07/30 18:13:37 | 000,000,000 | ---D | C] -- C:\Program Files\Sunbelt Software
[2010/07/29 21:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/07/28 22:09:01 | 000,000,000 | ---D | C] -- C:\Program Files\Nebula3(2)
[2010/07/28 20:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\My Documents\My Received Files
[2010/07/28 19:52:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe
[2010/07/26 15:16:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\ProTools8
[2010/07/26 08:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Apple Computer
[2010/07/26 08:36:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2010/07/26 00:12:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
[2010/07/24 17:53:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia
[2010/07/24 17:51:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe
[2010/07/24 15:42:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple Computer
[2010/07/24 15:42:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Apple Computer
[2010/07/22 14:57:25 | 000,423,656 | ---- | C] (Oracle) -- C:\WINDOWS\System32\deployJava1.dll
[2010/07/21 03:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
[2010/07/21 03:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
[2010/07/20 15:21:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared
[2010/07/20 14:58:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe Systems
[2010/07/18 14:11:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010/07/18 14:11:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Office Genuine Advantage
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-TW
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-HK
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr-TR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sv-SE
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nl-NL
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nb-NO
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ko-KR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\it-IT
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\he-IL
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fi-FI
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\es-ES
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\el-GR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de-DE
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\da-DK
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ar-SA
[2010/07/15 14:59:37 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/13 23:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Microsoft_Research
[2010/07/13 23:41:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\My Documents\WWT Collections
[2010/07/13 18:04:07 | 000,663,552 | ---- | C] (MAGIX AG) -- C:\WINDOWS\System32\mgxoschk.dll
[2010/07/13 18:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Xara
[2010/07/13 18:01:31 | 000,000,000 | ---D | C] -- C:\Program Files\MAGIX
[2010/07/13 06:25:52 | 000,000,000 | ---D | C] -- C:\Program Files\Massey
[2010/07/11 06:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\2 ingregal bundle
[2010/07/03 20:34:39 | 000,000,000 | ---D | C] -- C:\Program Files\iZotope2
[2010/06/28 18:22:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Novation
[2010/06/28 17:59:11 | 000,000,000 | ---D | C] -- C:\Program Files\Sonnox
[2010/06/28 17:57:15 | 000,000,000 | ---D | C] -- C:\Program Files\Focusrite Guitar FX Plug-in Suite
[2010/06/28 17:55:15 | 000,000,000 | ---D | C] -- C:\Program Files\Focusrite
[2010/06/28 17:54:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Arturia
Restore point Set: OTL Restore Point (16902109354000384)
========== Files/Folders - Created Within 90 Days ==========
[2010/08/04 20:25:27 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
[2010/08/04 02:06:51 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/08/04 01:56:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/08/04 01:35:48 | 000,000,000 | ---D | C] -- C:\broni
[2010/08/03 22:03:17 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/08/03 21:50:56 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/08/03 21:50:56 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/08/03 21:50:56 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/08/03 21:50:56 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/08/03 21:50:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/08/03 21:47:08 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/08/03 05:20:42 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/08/02 10:59:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Deployment
[2010/08/02 03:27:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/08/02 03:27:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/08/02 03:27:08 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/08/02 02:45:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\BitDefender
[2010/08/02 02:34:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\BitDefender
[2010/08/02 02:27:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BitDefender
[2010/08/02 02:14:36 | 000,069,720 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys
[2010/08/02 02:14:35 | 000,013,400 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys
[2010/08/02 01:08:55 | 000,000,000 | ---D | C] -- C:\Program Files\Nebula3
[2010/08/02 01:03:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Research
[2010/08/02 01:03:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Deigo\Recent
[2010/08/01 22:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\BitDefender
[2010/08/01 15:26:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Malwarebytes
[2010/08/01 15:26:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/08/01 14:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\NL_Plt#1
[2010/08/01 14:36:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\NL_Spr#1
[2010/08/01 14:34:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\NL_Roo#1
[2010/08/01 02:08:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\BitDefender(2)
[2010/08/01 01:40:54 | 000,000,000 | ---D | C] -- C:\Program Files\BitDefender(2)
[2010/08/01 00:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\The Melody's Studio Session Info
[2010/07/31 01:02:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\PreSonus
[2010/07/31 01:01:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010/07/31 01:00:54 | 000,000,000 | ---D | C] -- C:\Program Files\PreSonus
[2010/07/30 18:14:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Sunbelt
[2010/07/30 18:14:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sunbelt
[2010/07/30 18:13:37 | 000,000,000 | ---D | C] -- C:\Program Files\Sunbelt Software
[2010/07/29 21:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/07/28 22:09:01 | 000,000,000 | ---D | C] -- C:\Program Files\Nebula3(2)
[2010/07/28 20:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\My Documents\My Received Files
[2010/07/28 19:52:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe
[2010/07/26 15:16:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Desktop\ProTools8
[2010/07/26 08:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Apple Computer
[2010/07/26 08:36:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2010/07/26 00:12:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
[2010/07/24 17:53:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia
[2010/07/24 17:51:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe
[2010/07/24 15:42:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple Computer
[2010/07/24 15:42:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Apple Computer
[2010/07/22 14:57:25 | 000,423,656 | ---- | C] (Oracle) -- C:\WINDOWS\System32\deployJava1.dll
[2010/07/21 03:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
[2010/07/21 03:16:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
[2010/07/20 15:21:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared
[2010/07/20 14:58:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe Systems
[2010/07/18 14:11:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010/07/18 14:11:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Office Genuine Advantage
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-TW
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-HK
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr-TR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sv-SE
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nl-NL
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nb-NO
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ko-KR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\it-IT
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\he-IL
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fi-FI
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\es-ES
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\el-GR
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de-DE
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\da-DK
[2010/07/18 13:46:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ar-SA
[2010/07/15 14:59:37 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/13 23:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Microsoft_Research
[2010/07/13 23:41:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\My Documents\WWT Collections
[2010/07/13 18:04:07 | 000,663,552 | ---- | C] (MAGIX AG) -- C:\WINDOWS\System32\mgxoschk.dll
[2010/07/13 18:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Xara
[2010/07/13 18:01:31 | 000,000,000 | ---D | C] -- C:\Program Files\MAGIX
[2010/07/13 06:25:52 | 000,000,000 | ---D | C] -- C:\Program Files\Massey
[2010/07/11 06:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\2 ingregal bundle
[2010/07/03 20:34:39 | 000,000,000 | ---D | C] -- C:\Program Files\iZotope2
[2010/06/28 18:22:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Novation
[2010/06/28 17:59:11 | 000,000,000 | ---D | C] -- C:\Program Files\Sonnox
[2010/06/28 17:57:15 | 000,000,000 | ---D | C] -- C:\Program Files\Focusrite Guitar FX Plug-in Suite
[2010/06/28 17:55:15 | 000,000,000 | ---D | C] -- C:\Program Files\Focusrite
[2010/06/28 17:54:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Arturia
[2010/06/27 17:21:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\lhsp
[2010/06/27 17:21:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\speech
[2010/06/27 17:13:46 | 000,000,000 | ---D | C] -- C:\Program Files\NaturalSoft
[2010/06/27 17:00:08 | 000,000,000 | ---D | C] -- C:\Program Files\NCT
[2010/06/27 17:00:01 | 000,000,000 | ---D | C] -- C:\Program Files\Text to Speech Maker
[2010/06/26 01:42:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony Corporation
[2010/06/26 01:42:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Sony Corporation
[2010/06/26 01:40:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared
[2010/06/26 01:38:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Downloaded Installations
[2010/06/26 01:13:10 | 000,719,872 | ---- | C] (Abysmal Software) -- C:\WINDOWS\System32\devil.dll
[2010/06/26 01:13:09 | 000,308,224 | ---- | C] (The Public) -- C:\WINDOWS\System32\avisynth.dll
[2010/06/26 01:05:40 | 000,000,000 | ---D | C] -- C:\Program Files\WMR14
[2010/06/17 21:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\iVisit Data
[2010/06/17 20:56:42 | 000,897,024 | ---- | C] (ActMask http://www.all2pdf.com) -- C:\WINDOWS\System32\SaveTo.dll
[2010/06/17 20:56:19 | 000,883,200 | ---- | C] (ActMask Co.,Ltd - http://www.all2pdf.com) -- C:\WINDOWS\System32\PrintDisp.exe
[2010/06/17 20:56:19 | 000,065,536 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\PrintCtrl.exe
[2010/06/17 20:56:17 | 002,535,424 | ---- | C] (DynaForms GmbH) -- C:\WINDOWS\System32\CPDF.dll
[2010/06/17 20:56:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Temp
[2010/06/17 20:55:52 | 001,170,944 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\PrtClient.exe
[2010/06/17 20:55:52 | 000,826,880 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\SetupDrv.exe
[2010/06/17 20:55:52 | 000,740,864 | ---- | C] (ActMask - http://www.all2pdf.com) -- C:\WINDOWS\System32\PrtTools.exe
[2010/06/17 20:55:52 | 000,724,480 | ---- | C] (ActMask Co.,Ltd http://www.all2pdf.com) -- C:\WINDOWS\System32\MergePDF.exe
[2010/06/17 20:55:52 | 000,708,608 | ---- | C] (ActMask Co.,Ltd http://www.all2pdf.com) -- C:\WINDOWS\System32\MergeImage.exe
[2010/06/17 20:55:52 | 000,375,808 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\SetPrinter.exe
[2010/06/17 20:55:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\iVisit Virtual Printer
[2010/06/17 20:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\iVisit
[2010/06/16 16:39:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\VirSyn Software Synthesizer
[2010/06/15 14:01:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{5EBCE76E-C69D-4C20-AF60-2E9DA59F03C8}
[2010/06/08 14:46:29 | 000,000,000 | ---D | C] -- C:\Program Files\NOTION Music
[2010/06/04 15:14:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iZotope
[2010/06/02 23:10:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Antares
[2010/06/02 18:28:05 | 000,000,000 | ---D | C] -- C:\Program Files\Flux
[2010/06/02 18:26:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\VirSyn Software Synthesizer
[2010/06/02 18:24:40 | 000,000,000 | ---D | C] -- C:\Program Files\Sonalksis
[2010/06/02 18:23:27 | 000,000,000 | ---D | C] -- C:\Program Files\RNDigital
[2010/06/02 18:19:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\My Documents\iZotope Ozone Presets
[2010/06/02 18:19:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\iZotope
[2010/06/02 18:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Elysia
[2010/05/30 21:57:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\VST3 Presets
[2010/05/30 21:37:19 | 016,138,240 | ---- | C] (Steinberg Media Technologies) -- C:\HALionOne.dll
[2010/05/30 18:27:32 | 000,000,000 | ---D | C] -- C:\Program Files\Alfred Interactive
[2010/05/28 00:58:58 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent2
[2010/05/27 19:52:05 | 000,000,000 | ---D | C] -- C:\Program Files\Xiph.Org
[2010/05/26 02:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Opera
[2010/05/26 02:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Opera
[2010/05/26 02:56:29 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010/05/26 02:55:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Temp
[2010/05/25 15:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Google
[2010/05/25 15:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Google
[2010/05/25 14:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Google Earth Pro 4.2
[2010/05/25 14:59:33 | 000,000,000 | ---D | C] -- C:\Program Files\Google Earth Pro 4.2
[2010/05/21 17:25:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/05/21 17:11:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ALM
[2010/05/21 16:49:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Adobe Flash Builder 4
[2010/05/21 16:42:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Adobe
[2010/05/21 16:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\My Company Name
[2010/05/21 14:58:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Library
[2010/05/21 14:58:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\com.adobe.ExMan
[2010/05/17 13:42:40 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced System Optimizer 3.1
[2010/05/16 02:34:17 | 000,135,688 | ---- | C] (Avid Technology, Inc.) -- C:\WINDOWS\System32\drivers\mausbft8r.sys
[2010/05/13 15:15:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Ahead
[2010/05/11 21:17:54 | 000,112,136 | ---- | C] (M-Audio) -- C:\WINDOWS\System32\drivers\MAudioOxygen.sys
[2010/05/09 23:50:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Brass 2
[2010/05/09 23:48:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2010/05/09 23:47:56 | 000,000,000 | ---D | C] -- C:\Program Files\Syncrosoft
[2010/05/09 23:47:56 | 000,000,000 | ---D | C] -- C:\Program Files\eLicenser
[2010/05/09 23:47:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\eLicenser
[2010/05/09 23:47:53 | 001,261,568 | ---- | C] (Steinberg Media Technologies GmbH) -- C:\WINDOWS\System32\SYNSOACC.dll
[2010/05/09 23:47:27 | 000,000,000 | ---D | C] -- C:\Program Files\Arturia
[2010/05/09 23:43:48 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{8095496E-A8F0-4840-832A-6E88144E2FBC}
[2010/05/09 23:39:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{3FC66E2C-85B6-4398-82FB-C13C51DE9DD8}
[2010/05/09 23:33:43 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{D565E85A-7602-4965-8B03-55D249C138D6}
[2010/05/09 23:30:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2010/05/09 23:28:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2010/05/09 21:16:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\AdobeTemp
========== Files - Modified Within 90 Days ==========
[2010/08/04 20:25:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
[2010/08/04 18:06:52 | 062,936,754 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/08/04 14:14:51 | 000,253,748 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010/08/04 14:14:11 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/04 14:14:02 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job
[2010/08/04 13:16:09 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/04 13:16:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/04 07:13:50 | 000,000,052 | ---- | M] () -- C:\WINDOWS\System32\ashttpstats.csv
[2010/08/04 07:13:37 | 024,117,248 | ---- | M] () -- C:\Documents and Settings\Deigo\ntuser.dat
[2010/08/04 07:13:37 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Deigo\ntuser.ini
[2010/08/04 01:54:06 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/08/04 01:10:53 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Dataprivacy.xml
[2010/08/04 01:09:37 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/08/04 00:50:58 | 000,294,400 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\exeHelper.com
[2010/08/04 00:48:49 | 000,363,520 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\rkill.com
[2010/08/04 00:48:02 | 003,749,631 | R--- | M] () -- C:\Documents and Settings\Deigo\Desktop\broni.exe
[2010/08/03 22:04:15 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/08/03 22:03:23 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010/08/03 05:19:57 | 002,672,312 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\esetsmartinstaller_enu.exe
[2010/08/03 02:50:11 | 000,000,107 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Data\netstat.bat
[2010/08/03 02:00:06 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DIEGO-96CBBBCE6-Deigo.job
[2010/08/02 03:27:17 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/02 02:46:29 | 000,001,869 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\BitDefender Antivirus 2010.lnk
[2010/08/02 02:42:22 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100803-041523.backup
[2010/08/02 02:12:21 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CounterSpy.lnk
[2010/08/02 01:52:26 | 000,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin
[2010/08/01 23:35:45 | 000,000,850 | ---- | M] () -- C:\WINDOWS\System32\ProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\Deigo\Application DataProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Datauser_gensett.xml
[2010/08/01 18:57:57 | 003,639,446 | -H-- | M] () -- C:\Documents and Settings\Deigo\Local Settings\Application Data\IconCache.db
[2010/08/01 18:52:12 | 000,000,385 | ---- | M] () -- C:\WINDOWS\System32\user_gensett.xml
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\wsbl.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\phar_unmip.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\phar_histprot.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_white.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_summ.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_spoof.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_sign.slf
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_fuzzy.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_black.dat
[2010/08/01 02:41:43 | 000,030,796 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\password-export-2010-08-01.xml
[2010/08/01 02:41:17 | 000,000,016 | ---- | M] () -- C:\WINDOWS\System32\asdict.dat
[2010/08/01 02:41:17 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\aspdict-en.dat
[2010/08/01 02:40:31 | 000,150,113 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks.html
[2010/08/01 02:40:23 | 000,192,580 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks-2010-08-01.json
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pcwords2.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pcwords.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_webproxy.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_video.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_tabloids.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_socialnetworks.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_sign.slf
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_searchengines.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_regionaltlds.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_pornography.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlineshop.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlinepay.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlinedating.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_news.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_im.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_illegal.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_hate.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_games.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_gambling.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_drugs.dat
[2010/07/31 19:28:05 | 000,002,568 | ---- | M] () -- C:\WINDOWS\System32\ASOROSet.bin
[2010/07/31 19:23:46 | 024,117,248 | ---- | M] () -- C:\Documents and Settings\Deigo\ntuser.dat.bak
[2010/07/31 19:23:29 | 000,000,815 | ---- | M] () -- C:\rtsr_eml_sr.dat
[2010/07/31 19:23:29 | 000,000,141 | ---- | M] () -- C:\dwl.dat
[2010/07/31 19:23:29 | 000,000,132 | ---- | M] () -- C:\httpdwl.dat
[2010/07/31 02:45:47 | 000,000,450 | ---- | M] () -- C:\WINDOWS\System32\BDUpdateV1.xml
[2010/07/31 01:10:58 | 000,000,352 | ---- | M] () -- C:\WINDOWS\System32\w3data.vss
[2010/07/31 01:10:58 | 000,000,352 | ---- | M] () -- C:\WINDOWS\msocreg32.dat
[2010/07/30 22:21:37 | 000,000,608 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/29 20:11:21 | 000,415,577 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100729-205717.backup
[2010/07/29 16:03:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/07/26 03:16:00 | 240,483,626 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\SetupNebula3 Free.exe
[2010/07/26 03:12:16 | 037,454,812 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\Setup AcquaVox.exe
[2010/06/27 17:21:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\speech
[2010/06/27 17:13:46 | 000,000,000 | ---D | C] -- C:\Program Files\NaturalSoft
[2010/06/27 17:00:08 | 000,000,000 | ---D | C] -- C:\Program Files\NCT
[2010/06/27 17:00:01 | 000,000,000 | ---D | C] -- C:\Program Files\Text to Speech Maker
[2010/06/26 01:42:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony Corporation
[2010/06/26 01:42:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Sony Corporation
[2010/06/26 01:40:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared
[2010/06/26 01:38:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Downloaded Installations
[2010/06/26 01:13:10 | 000,719,872 | ---- | C] (Abysmal Software) -- C:\WINDOWS\System32\devil.dll
[2010/06/26 01:13:09 | 000,308,224 | ---- | C] (The Public) -- C:\WINDOWS\System32\avisynth.dll
[2010/06/26 01:05:40 | 000,000,000 | ---D | C] -- C:\Program Files\WMR14
[2010/06/17 21:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\iVisit Data
[2010/06/17 20:56:42 | 000,897,024 | ---- | C] (ActMask http://www.all2pdf.com) -- C:\WINDOWS\System32\SaveTo.dll
[2010/06/17 20:56:19 | 000,883,200 | ---- | C] (ActMask Co.,Ltd - http://www.all2pdf.com) -- C:\WINDOWS\System32\PrintDisp.exe
[2010/06/17 20:56:19 | 000,065,536 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\PrintCtrl.exe
[2010/06/17 20:56:17 | 002,535,424 | ---- | C] (DynaForms GmbH) -- C:\WINDOWS\System32\CPDF.dll
[2010/06/17 20:56:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Temp
[2010/06/17 20:55:52 | 001,170,944 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\PrtClient.exe
[2010/06/17 20:55:52 | 000,826,880 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\SetupDrv.exe
[2010/06/17 20:55:52 | 000,740,864 | ---- | C] (ActMask - http://www.all2pdf.com) -- C:\WINDOWS\System32\PrtTools.exe
[2010/06/17 20:55:52 | 000,724,480 | ---- | C] (ActMask Co.,Ltd http://www.all2pdf.com) -- C:\WINDOWS\System32\MergePDF.exe
[2010/06/17 20:55:52 | 000,708,608 | ---- | C] (ActMask Co.,Ltd http://www.all2pdf.com) -- C:\WINDOWS\System32\MergeImage.exe
[2010/06/17 20:55:52 | 000,375,808 | ---- | C] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) -- C:\WINDOWS\System32\SetPrinter.exe
[2010/06/17 20:55:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\iVisit Virtual Printer
[2010/06/17 20:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\iVisit
[2010/06/16 16:39:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\VirSyn Software Synthesizer
[2010/06/15 14:01:59 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{5EBCE76E-C69D-4C20-AF60-2E9DA59F03C8}
[2010/06/08 14:46:29 | 000,000,000 | ---D | C] -- C:\Program Files\NOTION Music
[2010/06/04 15:14:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iZotope
[2010/06/02 23:10:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Antares
[2010/06/02 18:28:05 | 000,000,000 | ---D | C] -- C:\Program Files\Flux
[2010/06/02 18:26:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\VirSyn Software Synthesizer
[2010/06/02 18:24:40 | 000,000,000 | ---D | C] -- C:\Program Files\Sonalksis
[2010/06/02 18:23:27 | 000,000,000 | ---D | C] -- C:\Program Files\RNDigital
[2010/06/02 18:19:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\My Documents\iZotope Ozone Presets
[2010/06/02 18:19:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\iZotope
[2010/06/02 18:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Elysia
[2010/05/30 21:57:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\VST3 Presets
[2010/05/30 21:37:19 | 016,138,240 | ---- | C] (Steinberg Media Technologies) -- C:\HALionOne.dll
[2010/05/30 18:27:32 | 000,000,000 | ---D | C] -- C:\Program Files\Alfred Interactive
[2010/05/28 00:58:58 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent2
[2010/05/27 19:52:05 | 000,000,000 | ---D | C] -- C:\Program Files\Xiph.Org
[2010/05/26 02:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Opera
[2010/05/26 02:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Opera
[2010/05/26 02:56:29 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010/05/26 02:55:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Temp
[2010/05/25 15:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Google
[2010/05/25 15:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Google
[2010/05/25 14:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Google Earth Pro 4.2
[2010/05/25 14:59:33 | 000,000,000 | ---D | C] -- C:\Program Files\Google Earth Pro 4.2
[2010/05/21 17:25:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/05/21 17:11:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ALM
[2010/05/21 16:49:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Adobe Flash Builder 4
[2010/05/21 16:42:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Adobe
[2010/05/21 16:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\My Company Name
[2010/05/21 14:58:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Library
[2010/05/21 14:58:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\com.adobe.ExMan
[2010/05/17 13:42:40 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced System Optimizer 3.1
[2010/05/16 02:34:17 | 000,135,688 | ---- | C] (Avid Technology, Inc.) -- C:\WINDOWS\System32\drivers\mausbft8r.sys
[2010/05/13 15:15:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Local Settings\Application Data\Ahead
[2010/05/11 21:17:54 | 000,112,136 | ---- | C] (M-Audio) -- C:\WINDOWS\System32\drivers\MAudioOxygen.sys
[2010/05/09 23:50:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Deigo\Application Data\Brass 2
[2010/05/09 23:48:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2010/05/09 23:47:56 | 000,000,000 | ---D | C] -- C:\Program Files\Syncrosoft
[2010/05/09 23:47:56 | 000,000,000 | ---D | C] -- C:\Program Files\eLicenser
[2010/05/09 23:47:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\eLicenser
[2010/05/09 23:47:53 | 001,261,568 | ---- | C] (Steinberg Media Technologies GmbH) -- C:\WINDOWS\System32\SYNSOACC.dll
[2010/05/09 23:47:27 | 000,000,000 | ---D | C] -- C:\Program Files\Arturia
[2010/05/09 23:43:48 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{8095496E-A8F0-4840-832A-6E88144E2FBC}
[2010/05/09 23:39:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{3FC66E2C-85B6-4398-82FB-C13C51DE9DD8}
[2010/05/09 23:33:43 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{D565E85A-7602-4965-8B03-55D249C138D6}
[2010/05/09 23:30:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2010/05/09 23:28:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2010/05/09 21:16:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\AdobeTemp
========== Files - Modified Within 90 Days ==========
[2010/08/04 20:25:27 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Deigo\Desktop\OTL.exe
[2010/08/04 18:06:52 | 062,936,754 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/08/04 14:14:51 | 000,253,748 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010/08/04 14:14:11 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/04 14:14:02 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job
[2010/08/04 13:16:09 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/04 13:16:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/04 07:13:50 | 000,000,052 | ---- | M] () -- C:\WINDOWS\System32\ashttpstats.csv
[2010/08/04 07:13:37 | 024,117,248 | ---- | M] () -- C:\Documents and Settings\Deigo\ntuser.dat
[2010/08/04 07:13:37 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Deigo\ntuser.ini
[2010/08/04 01:54:06 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/08/04 01:10:53 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Dataprivacy.xml
[2010/08/04 01:09:37 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/08/04 00:50:58 | 000,294,400 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\exeHelper.com
[2010/08/04 00:48:49 | 000,363,520 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\rkill.com
[2010/08/04 00:48:02 | 003,749,631 | R--- | M] () -- C:\Documents and Settings\Deigo\Desktop\broni.exe
[2010/08/03 22:04:15 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/08/03 22:03:23 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010/08/03 05:19:57 | 002,672,312 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\esetsmartinstaller_enu.exe
[2010/08/03 02:50:11 | 000,000,107 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Data\netstat.bat
[2010/08/03 02:00:06 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DIEGO-96CBBBCE6-Deigo.job
[2010/08/02 03:27:17 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/02 02:46:29 | 000,001,869 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\BitDefender Antivirus 2010.lnk
[2010/08/02 02:42:22 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100803-041523.backup
[2010/08/02 02:12:21 | 000,001,769 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CounterSpy.lnk
[2010/08/02 01:52:26 | 000,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin
[2010/08/01 23:35:45 | 000,000,850 | ---- | M] () -- C:\WINDOWS\System32\ProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\Deigo\Application DataProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Datauser_gensett.xml
[2010/08/01 18:57:57 | 003,639,446 | -H-- | M] () -- C:\Documents and Settings\Deigo\Local Settings\Application Data\IconCache.db
[2010/08/01 18:52:12 | 000,000,385 | ---- | M] () -- C:\WINDOWS\System32\user_gensett.xml
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\wsbl.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\phar_unmip.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\phar_histprot.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_white.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_summ.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_spoof.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_sign.slf
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_fuzzy.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\ph_black.dat
[2010/08/01 02:41:43 | 000,030,796 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\password-export-2010-08-01.xml
[2010/08/01 02:41:17 | 000,000,016 | ---- | M] () -- C:\WINDOWS\System32\asdict.dat
[2010/08/01 02:41:17 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\aspdict-en.dat
[2010/08/01 02:40:31 | 000,150,113 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks.html
[2010/08/01 02:40:23 | 000,192,580 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks-2010-08-01.json
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pcwords2.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pcwords.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_webproxy.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_video.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_tabloids.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_socialnetworks.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_sign.slf
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_searchengines.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_regionaltlds.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_pornography.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlineshop.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlinepay.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_onlinedating.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_news.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_im.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_illegal.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_hate.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_games.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_gambling.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\pc_drugs.dat
[2010/07/31 19:28:05 | 000,002,568 | ---- | M] () -- C:\WINDOWS\System32\ASOROSet.bin
[2010/07/31 19:23:46 | 024,117,248 | ---- | M] () -- C:\Documents and Settings\Deigo\ntuser.dat.bak
[2010/07/31 19:23:29 | 000,000,815 | ---- | M] () -- C:\rtsr_eml_sr.dat
[2010/07/31 19:23:29 | 000,000,141 | ---- | M] () -- C:\dwl.dat
[2010/07/31 19:23:29 | 000,000,132 | ---- | M] () -- C:\httpdwl.dat
[2010/07/31 02:45:47 | 000,000,450 | ---- | M] () -- C:\WINDOWS\System32\BDUpdateV1.xml
[2010/07/31 01:10:58 | 000,000,352 | ---- | M] () -- C:\WINDOWS\System32\w3data.vss
[2010/07/31 01:10:58 | 000,000,352 | ---- | M] () -- C:\WINDOWS\msocreg32.dat
[2010/07/30 22:21:37 | 000,000,608 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/07/29 20:11:21 | 000,415,577 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100729-205717.backup
[2010/07/29 16:03:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/07/26 03:16:00 | 240,483,626 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\SetupNebula3 Free.exe
[2010/07/26 03:12:16 | 037,454,812 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\Setup AcquaVox.exe
[2010/07/26 02:21:06 | 000,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/07/25 01:30:08 | 000,000,049 | ---- | M] () -- C:\WINDOWS\SamControlpanel95.INI
[2010/07/24 15:57:22 | 004,074,273 | ---- | M] () -- C:\WINDOWS\System32\TmpA2676031
[2010/07/24 15:57:03 | 001,743,625 | ---- | M] () -- C:\WINDOWS\System32\TmpA2657218
[2010/07/24 15:56:52 | 001,743,625 | ---- | M] () -- C:\WINDOWS\System32\TmpA2646234
[2010/07/24 15:56:38 | 004,074,273 | ---- | M] () -- C:\WINDOWS\System32\TmpA2632531
[2010/07/23 19:58:35 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100729-201121.backup
[2010/07/21 02:48:46 | 003,572,792 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/07/21 02:41:27 | 000,000,150 | ---- | M] () -- C:\zrpt.xml
[2010/07/20 15:23:48 | 000,075,112 | ---- | M] () -- C:\Documents and Settings\Deigo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/07/19 01:53:29 | 000,038,400 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\Visions to Life.doc
[2010/07/18 14:02:11 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/07/18 13:48:51 | 000,501,282 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/07/18 13:48:51 | 000,441,014 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/07/18 13:48:51 | 000,071,206 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/07/17 01:05:46 | 000,022,528 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\About Love.doc
[2010/07/15 14:59:38 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/07/15 14:59:37 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/15 14:58:52 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/28 17:58:06 | 006,617,600 | ---- | M] () -- C:\WINDOWS\System32\PSP VintageWarmer2.dll
[2010/06/28 17:58:06 | 006,610,432 | ---- | M] () -- C:\WINDOWS\System32\PSP VintageWarmer.dll
[2010/06/28 17:58:06 | 006,578,688 | ---- | M] () -- C:\WINDOWS\System32\PSP MicroWarmer.dll
[2010/06/28 17:56:35 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\SYNSOPOS.exe.cfg
[2010/06/22 04:36:29 | 000,423,656 | ---- | M] (Oracle) -- C:\WINDOWS\System32\deployJava1.dll
[2010/06/18 12:16:26 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Data\Adobe IllExport Filter CS5 Prefs
[2010/06/10 01:19:44 | 000,053,648 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/06/05 13:28:07 | 000,000,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100721-030919.backup
[2010/06/03 02:47:57 | 000,044,544 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\In this chapter you have learned.doc
[2010/06/02 18:24:47 | 000,033,760 | ---- | M] () -- C:\WINDOWS\unins002.dat
[2010/06/02 18:24:17 | 000,678,746 | ---- | M] () -- C:\WINDOWS\unins002.exe
[2010/06/02 18:20:09 | 000,678,912 | ---- | M] () -- C:\WINDOWS\System32\PSP StereoController.dll
[2010/06/02 18:20:09 | 000,606,208 | ---- | M] () -- C:\WINDOWS\System32\PSP StereoAnalyser.dll
[2010/06/02 18:20:09 | 000,591,872 | ---- | M] () -- C:\WINDOWS\System32\PSP StereoEnhancer.dll
[2010/06/02 18:20:09 | 000,580,608 | ---- | M] () -- C:\WINDOWS\System32\PSP PseudoStereo.dll
[2010/06/02 10:04:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010/05/31 02:28:56 | 000,024,576 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\song.doc
[2010/05/25 14:23:46 | 000,000,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100605-131912.backup
[2010/05/24 06:01:38 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\The world appears to be getting smaller and social changes come at every minute.doc
[2010/05/21 17:28:03 | 000,057,344 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\Book 1.indb
[2010/05/17 13:54:50 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced System Optimizer.lnk
[2010/05/09 23:48:49 | 000,002,892 | ---- | M] () -- C:\WINDOWS\System32\audcon.sys
========== Files Created - No Company Name ==========
[2010/08/04 00:50:58 | 000,294,400 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\exeHelper.com
[2010/08/04 00:48:49 | 000,363,520 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\rkill.com
[2010/08/04 00:47:59 | 003,749,631 | R--- | C] () -- C:\Documents and Settings\Deigo\Desktop\broni.exe
[2010/08/03 22:03:23 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010/08/03 22:03:19 | 000,260,272 | ---- | C] () -- C:\cmldr
[2010/08/03 21:50:56 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/08/03 21:50:56 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/08/03 21:50:56 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/08/03 21:50:56 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/08/03 21:50:56 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/08/03 05:19:50 | 002,672,312 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\esetsmartinstaller_enu.exe
[2010/08/03 01:57:54 | 000,000,107 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Data\netstat.bat
[2010/08/02 03:27:17 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/02 02:46:29 | 000,001,869 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\BitDefender Antivirus 2010.lnk
[2010/08/02 02:12:21 | 000,001,769 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CounterSpy.lnk
[2010/08/01 23:35:45 | 000,000,850 | ---- | C] () -- C:\WINDOWS\System32\ProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\Deigo\Application DataProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Datauser_gensett.xml
[2010/08/01 18:52:12 | 000,000,385 | ---- | C] () -- C:\WINDOWS\System32\user_gensett.xml
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\wsbl.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\phar_unmip.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\phar_histprot.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_white.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_summ.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_spoof.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_sign.slf
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_fuzzy.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_black.dat
[2010/08/01 02:41:42 | 000,030,796 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\password-export-2010-08-01.xml
[2010/08/01 02:41:17 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\asdict.dat
[2010/08/01 02:41:17 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\aspdict-en.dat
[2010/08/01 02:40:31 | 000,150,113 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks.html
[2010/08/01 02:40:22 | 000,192,580 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks-2010-08-01.json
[2010/08/01 01:59:07 | 000,000,052 | ---- | C] () -- C:\WINDOWS\System32\ashttpstats.csv
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pcwords2.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pcwords.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_webproxy.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_video.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_tabloids.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_socialnetworks.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_sign.slf
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_searchengines.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_regionaltlds.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_pornography.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlineshop.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlinepay.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlinedating.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_news.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_im.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_illegal.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_hate.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_games.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_gambling.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_drugs.dat
[2010/08/01 01:46:54 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Dataprivacy.xml
[2010/07/26 14:42:52 | 024,117,248 | ---- | C] () -- C:\Documents and Settings\Deigo\ntuser.dat
[2010/07/26 03:10:55 | 037,454,812 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\Setup AcquaVox.exe
[2010/07/26 03:10:36 | 240,483,626 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\SetupNebula3 Free.exe
[2010/07/24 15:57:22 | 004,074,273 | ---- | C] () -- C:\WINDOWS\System32\TmpA2676031
[2010/07/24 15:57:03 | 001,743,625 | ---- | C] () -- C:\WINDOWS\System32\TmpA2657218
[2010/07/24 15:56:52 | 001,743,625 | ---- | C] () -- C:\WINDOWS\System32\TmpA2646234
[2010/07/24 15:56:38 | 004,074,273 | ---- | C] () -- C:\WINDOWS\System32\TmpA2632531
[2010/07/21 03:38:12 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/07/21 02:41:26 | 000,000,150 | ---- | C] () -- C:\zrpt.xml
[2010/07/18 14:33:58 | 000,038,400 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\Visions to Life.doc
[2010/07/18 13:46:29 | 000,000,236 | ---- | C] () -- C:\WINDOWS\tasks\OGALogon.job
[2010/07/16 23:21:07 | 000,022,528 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\About Love.doc
[2010/07/25 01:30:08 | 000,000,049 | ---- | M] () -- C:\WINDOWS\SamControlpanel95.INI
[2010/07/24 15:57:22 | 004,074,273 | ---- | M] () -- C:\WINDOWS\System32\TmpA2676031
[2010/07/24 15:57:03 | 001,743,625 | ---- | M] () -- C:\WINDOWS\System32\TmpA2657218
[2010/07/24 15:56:52 | 001,743,625 | ---- | M] () -- C:\WINDOWS\System32\TmpA2646234
[2010/07/24 15:56:38 | 004,074,273 | ---- | M] () -- C:\WINDOWS\System32\TmpA2632531
[2010/07/23 19:58:35 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100729-201121.backup
[2010/07/21 02:48:46 | 003,572,792 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/07/21 02:41:27 | 000,000,150 | ---- | M] () -- C:\zrpt.xml
[2010/07/20 15:23:48 | 000,075,112 | ---- | M] () -- C:\Documents and Settings\Deigo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/07/19 01:53:29 | 000,038,400 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\Visions to Life.doc
[2010/07/18 14:02:11 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/07/18 13:48:51 | 000,501,282 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/07/18 13:48:51 | 000,441,014 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/07/18 13:48:51 | 000,071,206 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/07/17 01:05:46 | 000,022,528 | ---- | M] () -- C:\Documents and Settings\Deigo\Desktop\About Love.doc
[2010/07/15 14:59:38 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/07/15 14:59:37 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/15 14:58:52 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/28 17:58:06 | 006,617,600 | ---- | M] () -- C:\WINDOWS\System32\PSP VintageWarmer2.dll
[2010/06/28 17:58:06 | 006,610,432 | ---- | M] () -- C:\WINDOWS\System32\PSP VintageWarmer.dll
[2010/06/28 17:58:06 | 006,578,688 | ---- | M] () -- C:\WINDOWS\System32\PSP MicroWarmer.dll
[2010/06/28 17:56:35 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\SYNSOPOS.exe.cfg
[2010/06/22 04:36:29 | 000,423,656 | ---- | M] (Oracle) -- C:\WINDOWS\System32\deployJava1.dll
[2010/06/18 12:16:26 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Data\Adobe IllExport Filter CS5 Prefs
[2010/06/10 01:19:44 | 000,053,648 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/06/05 13:28:07 | 000,000,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100721-030919.backup
[2010/06/03 02:47:57 | 000,044,544 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\In this chapter you have learned.doc
[2010/06/02 18:24:47 | 000,033,760 | ---- | M] () -- C:\WINDOWS\unins002.dat
[2010/06/02 18:24:17 | 000,678,746 | ---- | M] () -- C:\WINDOWS\unins002.exe
[2010/06/02 18:20:09 | 000,678,912 | ---- | M] () -- C:\WINDOWS\System32\PSP StereoController.dll
[2010/06/02 18:20:09 | 000,606,208 | ---- | M] () -- C:\WINDOWS\System32\PSP StereoAnalyser.dll
[2010/06/02 18:20:09 | 000,591,872 | ---- | M] () -- C:\WINDOWS\System32\PSP StereoEnhancer.dll
[2010/06/02 18:20:09 | 000,580,608 | ---- | M] () -- C:\WINDOWS\System32\PSP PseudoStereo.dll
[2010/06/02 10:04:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010/05/31 02:28:56 | 000,024,576 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\song.doc
[2010/05/25 14:23:46 | 000,000,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100605-131912.backup
[2010/05/24 06:01:38 | 000,022,016 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\The world appears to be getting smaller and social changes come at every minute.doc
[2010/05/21 17:28:03 | 000,057,344 | ---- | M] () -- C:\Documents and Settings\Deigo\My Documents\Book 1.indb
[2010/05/17 13:54:50 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\Deigo\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced System Optimizer.lnk
[2010/05/09 23:48:49 | 000,002,892 | ---- | M] () -- C:\WINDOWS\System32\audcon.sys
========== Files Created - No Company Name ==========
[2010/08/04 00:50:58 | 000,294,400 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\exeHelper.com
[2010/08/04 00:48:49 | 000,363,520 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\rkill.com
[2010/08/04 00:47:59 | 003,749,631 | R--- | C] () -- C:\Documents and Settings\Deigo\Desktop\broni.exe
[2010/08/03 22:03:23 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010/08/03 22:03:19 | 000,260,272 | ---- | C] () -- C:\cmldr
[2010/08/03 21:50:56 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/08/03 21:50:56 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/08/03 21:50:56 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/08/03 21:50:56 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/08/03 21:50:56 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/08/03 05:19:50 | 002,672,312 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\esetsmartinstaller_enu.exe
[2010/08/03 01:57:54 | 000,000,107 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Data\netstat.bat
[2010/08/02 03:27:17 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/02 02:46:29 | 000,001,869 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\BitDefender Antivirus 2010.lnk
[2010/08/02 02:12:21 | 000,001,769 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CounterSpy.lnk
[2010/08/01 23:35:45 | 000,000,850 | ---- | C] () -- C:\WINDOWS\System32\ProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\Deigo\Application DataProductTweaks.xml
[2010/08/01 20:23:21 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Datauser_gensett.xml
[2010/08/01 18:52:12 | 000,000,385 | ---- | C] () -- C:\WINDOWS\System32\user_gensett.xml
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\wsbl.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\phar_unmip.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\phar_histprot.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_white.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_summ.dat
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_spoof.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_sign.slf
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_fuzzy.sig
[2010/08/01 14:22:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ph_black.dat
[2010/08/01 02:41:42 | 000,030,796 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\password-export-2010-08-01.xml
[2010/08/01 02:41:17 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\asdict.dat
[2010/08/01 02:41:17 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\aspdict-en.dat
[2010/08/01 02:40:31 | 000,150,113 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks.html
[2010/08/01 02:40:22 | 000,192,580 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\bookmarks-2010-08-01.json
[2010/08/01 01:59:07 | 000,000,052 | ---- | C] () -- C:\WINDOWS\System32\ashttpstats.csv
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pcwords2.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pcwords.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_webproxy.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_video.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_tabloids.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_socialnetworks.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_sign.slf
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_searchengines.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_regionaltlds.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_pornography.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlineshop.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlinepay.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_onlinedating.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_news.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_im.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_illegal.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_hate.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_games.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_gambling.dat
[2010/08/01 01:51:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\pc_drugs.dat
[2010/08/01 01:46:54 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Dataprivacy.xml
[2010/07/26 14:42:52 | 024,117,248 | ---- | C] () -- C:\Documents and Settings\Deigo\ntuser.dat
[2010/07/26 03:10:55 | 037,454,812 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\Setup AcquaVox.exe
[2010/07/26 03:10:36 | 240,483,626 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\SetupNebula3 Free.exe
[2010/07/24 15:57:22 | 004,074,273 | ---- | C] () -- C:\WINDOWS\System32\TmpA2676031
[2010/07/24 15:57:03 | 001,743,625 | ---- | C] () -- C:\WINDOWS\System32\TmpA2657218
[2010/07/24 15:56:52 | 001,743,625 | ---- | C] () -- C:\WINDOWS\System32\TmpA2646234
[2010/07/24 15:56:38 | 004,074,273 | ---- | C] () -- C:\WINDOWS\System32\TmpA2632531
[2010/07/21 03:38:12 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/07/21 02:41:26 | 000,000,150 | ---- | C] () -- C:\zrpt.xml
[2010/07/18 14:33:58 | 000,038,400 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\Visions to Life.doc
[2010/07/18 13:46:29 | 000,000,236 | ---- | C] () -- C:\WINDOWS\tasks\OGALogon.job
[2010/07/16 23:21:07 | 000,022,528 | ---- | C] () -- C:\Documents and Settings\Deigo\Desktop\About Love.doc
[2010/07/13 18:43:16 | 000,000,049 | ---- | C] () -- C:\WINDOWS\SamControlpanel95.INI
[2010/06/28 17:58:06 | 006,617,600 | ---- | C] () -- C:\WINDOWS\System32\PSP VintageWarmer2.dll
[2010/06/28 17:58:06 | 006,578,688 | ---- | C] () -- C:\WINDOWS\System32\PSP MicroWarmer.dll
[2010/06/28 17:58:05 | 006,610,432 | ---- | C] () -- C:\WINDOWS\System32\PSP VintageWarmer.dll
[2010/06/18 12:16:26 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Data\Adobe IllExport Filter CS5 Prefs
[2010/06/17 20:56:18 | 001,391,616 | ---- | C] () -- C:\WINDOWS\System32\ActPDF.dll
[2010/06/17 20:55:53 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\PrtPass.exe
[2010/06/17 20:55:52 | 000,691,200 | ---- | C] () -- C:\WINDOWS\System32\PrintLog.exe
[2010/06/03 02:47:56 | 000,044,544 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\In this chapter you have learned.doc
[2010/06/02 18:24:40 | 000,678,746 | ---- | C] () -- C:\WINDOWS\unins002.exe
[2010/06/02 18:24:40 | 000,033,760 | ---- | C] () -- C:\WINDOWS\unins002.dat
[2010/06/02 18:20:09 | 000,678,912 | ---- | C] () -- C:\WINDOWS\System32\PSP StereoController.dll
[2010/06/02 18:20:09 | 000,606,208 | ---- | C] () -- C:\WINDOWS\System32\PSP StereoAnalyser.dll
[2010/06/02 18:20:09 | 000,591,872 | ---- | C] () -- C:\WINDOWS\System32\PSP StereoEnhancer.dll
[2010/06/02 18:20:09 | 000,580,608 | ---- | C] () -- C:\WINDOWS\System32\PSP PseudoStereo.dll
[2010/05/31 02:28:56 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\song.doc
[2010/05/24 06:01:34 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\The world appears to be getting smaller and social changes come at every minute.doc
[2010/05/21 19:35:40 | 000,000,342 | ---- | C] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DIEGO-96CBBBCE6-Deigo.job
[2010/05/21 17:28:02 | 000,057,344 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\Book 1.indb
[2010/05/17 13:42:49 | 000,017,136 | ---- | C] () -- C:\WINDOWS\System32\sasnative32.exe
[2010/05/17 13:42:46 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced System Optimizer.lnk
[2010/05/09 23:48:49 | 000,002,892 | ---- | C] () -- C:\WINDOWS\System32\audcon.sys
[2010/05/09 23:47:56 | 000,147,425 | ---- | C] () -- C:\WINDOWS\System32\SYNSOACC-Aide.chm
[2010/05/09 23:47:56 | 000,120,468 | ---- | C] () -- C:\WINDOWS\System32\SYNSOACC-Hilfe.chm
[2010/05/09 23:47:56 | 000,114,279 | ---- | C] () -- C:\WINDOWS\System32\SYNSOACC-Help.chm
[2010/05/09 23:47:54 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe.cfg
[2010/05/09 23:47:53 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe
[2010/05/09 23:47:31 | 006,640,274 | ---- | C] () -- C:\WINDOWS\System32\Modalys_for_Arturia.dll
[2010/05/09 23:47:31 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ArtFfct.dll
[2010/04/07 16:43:13 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdof.ini
[2010/04/07 16:43:12 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdcm.ini
[2010/04/07 16:43:08 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdle.ini
[2010/04/07 16:42:55 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdji.ini
[2010/04/07 16:42:55 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdgd.ini
[2010/04/07 16:42:54 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdpl.ini
[2010/04/07 16:42:54 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdmj.ini
[2010/04/07 16:42:53 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdcl.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdmc.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdjn.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdik.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdff.ini
[2010/04/07 15:56:27 | 003,661,824 | ---- | C] () -- C:\WINDOWS\System32\mkl_wavearts.dll
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdna.ini
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdeh.ini
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigddc.ini
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdbg.ini
[2010/04/07 15:31:32 | 000,000,073 | ---- | C] () -- C:\WINDOWS\CentaurusApp.ini
[2010/03/12 00:42:52 | 000,000,452 | ---- | C] () -- C:\WINDOWS\{17FE44E2-D21A-4F0C-BE49-798A8FBC374E}_WiseFW.ini
[2010/03/12 00:21:31 | 004,030,464 | ---- | C] () -- C:\WINDOWS\System32\PSP Xenon.dll
[2010/03/12 00:17:32 | 002,864,128 | ---- | C] () -- C:\WINDOWS\System32\PSP 84.dll
[2010/03/12 00:16:22 | 006,062,080 | ---- | C] () -- C:\WINDOWS\System32\PSP oldTimer.dll
[2010/03/12 00:11:56 | 004,332,032 | ---- | C] () -- C:\WINDOWS\System32\PSP MixBass2.dll
[2010/03/12 00:10:17 | 004,218,880 | ---- | C] () -- C:\WINDOWS\System32\PSP MasterComp.dll
[2010/03/12 00:08:00 | 001,637,888 | ---- | C] () -- C:\WINDOWS\System32\Lexicon PSP42.dll
[2010/03/04 15:40:17 | 000,000,005 | ---- | C] () -- C:\WINDOWS\gjflbomb.ini
[2010/02/26 05:44:15 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\libencdec.dll
[2010/02/21 14:25:02 | 000,000,122 | ---- | C] () -- C:\WINDOWS\msmmdx9.ini
[2010/02/17 04:27:29 | 000,000,032 | ---- | C] () -- C:\WINDOWS\GearBox.ini
[2010/02/04 02:09:33 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/04 00:30:18 | 000,088,576 | ---- | C] () -- C:\WINDOWS\System32\OptimFROG.dll
[2010/01/31 04:44:41 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009/12/31 01:50:20 | 000,126,464 | ---- | C] () -- C:\WINDOWS\System32\vsmidi.dll
[2009/12/15 01:59:05 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\moosh11drv.dll
[2009/12/09 03:35:28 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\utilpt32.dll
[2009/12/07 13:16:36 | 000,000,077 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2009/12/07 13:16:32 | 000,028,518 | ---- | C] () -- C:\WINDOWS\System32\Ckldrv.sys
[2009/12/07 13:16:32 | 000,018,432 | ---- | C] () -- C:\WINDOWS\Setup_ck.dll
[2009/11/25 13:40:50 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/11/05 20:27:13 | 000,217,088 | ---- | C] () -- C:\WINDOWS\System32\qtmlClient.dll
[2009/11/05 16:32:03 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009/10/19 01:32:29 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/10/16 19:44:15 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/10/16 18:36:13 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\muangsys.dll
[2009/10/16 18:36:13 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\muadisp.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009/03/02 11:33:32 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009/01/15 13:45:34 | 000,181,248 | ---- | C] () -- C:\WINDOWS\System32\txmlutil.dll
[2007/04/18 23:07:00 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\mgxasio2.dll
[2007/01/31 14:50:32 | 000,913,408 | ---- | C] () -- C:\WINDOWS\System32\xreglib.dll
[2006/07/17 06:57:40 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\FxShared.dll
[2006/07/17 06:57:40 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\com.fxpansion.fxshared.dll
[2006/07/04 00:21:32 | 001,397,548 | ---- | C] () -- C:\WINDOWS\System32\libfftw3-3.dll
[2004/08/03 17:59:08 | 000,080,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\parport.sys
========== LOP Check ==========
[2010/02/04 03:24:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ableton
[2009/11/11 17:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AceBIT
[2010/03/11 23:46:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AraldFX
[2010/06/28 17:54:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arturia
[2010/03/11 21:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Audio Damage
[2010/03/11 21:50:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Audio Ease
[2010/08/02 03:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/10/18 23:16:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2010/08/02 03:15:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BitDefender
[2010/08/02 01:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cakewalk
[2009/12/31 01:21:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Chicken Systems
[2010/02/04 02:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2009/10/27 01:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2010/05/09 23:49:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eLicenser
[2010/03/28 23:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Focusrite
[2010/02/16 18:29:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IK Multimedia
[2010/06/04 15:14:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iZotope
[2010/02/17 04:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Line 6
[2010/04/01 15:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MTexturedStyles
[2009/10/29 20:31:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Native Instruments
[2009/12/23 00:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/07/13 05:48:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Overloud
[2010/02/25 04:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PACE Anti-Piracy
[2009/12/07 01:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Propellerhead Software
[2010/05/12 18:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
[2010/05/25 14:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/03/11 22:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SIR
[2009/11/18 16:38:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2010/01/18 01:31:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soundlib
[2009/11/18 16:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Steinberg
[2010/05/09 23:48:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2010/05/17 13:44:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Systweak
[2010/06/17 20:56:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp
[2010/06/02 18:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VirSyn Software Synthesizer
[2010/03/11 21:50:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VitalData
[2010/03/12 01:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VST3 Presets
[2010/04/07 15:52:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Wave Arts
[2010/01/13 22:19:57 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{0DAD6605-349A-4072-A364-B4C97BA80D0A}
[2009/12/16 22:35:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{152EF68B-16AC-49D3-A3E6-E39F7613A2D7}
[2010/05/09 23:30:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2009/12/17 16:45:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{2373B11D-DEC4-4D14-AE62-03F9FBAE52BC}
[2009/12/06 21:00:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{261FD3E7-AC6C-4785-8405-DCF2100A3A46}
[2009/12/06 20:56:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{3EE98DDF-8EFF-4760-88EB-D666A839217F}
[2010/05/09 23:39:32 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{3FC66E2C-85B6-4398-82FB-C13C51DE9DD8}
[2010/04/01 16:14:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/13 21:48:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{4939B247-EAFC-452D-A19A-712148F59A8B}
[2010/01/13 20:28:59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{580B8E22-2CB8-4C43-AE50-9338E581C6FA}
[2010/01/13 00:45:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{5E76E40F-3E24-4F35-8279-2E1C5CBD264B}
[2010/06/15 14:02:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{5EBCE76E-C69D-4C20-AF60-2E9DA59F03C8}
[2010/03/11 23:14:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{6A4BD4D3-A4B0-4097-BC85-A8BC1BEB221D}
[2009/10/19 02:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/05/09 23:43:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{8095496E-A8F0-4840-832A-6E88144E2FBC}
[2010/07/31 01:01:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010/01/14 15:06:07 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{9D92E4DF-0CEE-44D4-A4FE-2B4A438E1607}
[2010/03/11 23:14:53 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{A97DA822-7B29-4F18-A64A-BF94FFFE77FB}
[2009/11/21 03:07:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{B8FEAD18-46AB-460B-A7B8-BFEEDF325A72}
[2010/05/09 23:33:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D565E85A-7602-4965-8B03-55D249C138D6}
[2009/10/29 20:30:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
[2010/02/05 00:50:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{E0C041D8-7EFB-4E8C-A20F-651F5AD0B7C1}
[2009/12/07 09:26:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{F322C569-6416-428D-A2EA-A5D1C7073DE8}
[2010/05/09 23:28:29 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2010/02/04 03:24:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Ableton
[2009/11/11 17:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\AceBIT
[2009/11/02 01:44:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Acoustica
[2010/06/28 17:58:06 | 006,617,600 | ---- | C] () -- C:\WINDOWS\System32\PSP VintageWarmer2.dll
[2010/06/28 17:58:06 | 006,578,688 | ---- | C] () -- C:\WINDOWS\System32\PSP MicroWarmer.dll
[2010/06/28 17:58:05 | 006,610,432 | ---- | C] () -- C:\WINDOWS\System32\PSP VintageWarmer.dll
[2010/06/18 12:16:26 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Data\Adobe IllExport Filter CS5 Prefs
[2010/06/17 20:56:18 | 001,391,616 | ---- | C] () -- C:\WINDOWS\System32\ActPDF.dll
[2010/06/17 20:55:53 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\PrtPass.exe
[2010/06/17 20:55:52 | 000,691,200 | ---- | C] () -- C:\WINDOWS\System32\PrintLog.exe
[2010/06/03 02:47:56 | 000,044,544 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\In this chapter you have learned.doc
[2010/06/02 18:24:40 | 000,678,746 | ---- | C] () -- C:\WINDOWS\unins002.exe
[2010/06/02 18:24:40 | 000,033,760 | ---- | C] () -- C:\WINDOWS\unins002.dat
[2010/06/02 18:20:09 | 000,678,912 | ---- | C] () -- C:\WINDOWS\System32\PSP StereoController.dll
[2010/06/02 18:20:09 | 000,606,208 | ---- | C] () -- C:\WINDOWS\System32\PSP StereoAnalyser.dll
[2010/06/02 18:20:09 | 000,591,872 | ---- | C] () -- C:\WINDOWS\System32\PSP StereoEnhancer.dll
[2010/06/02 18:20:09 | 000,580,608 | ---- | C] () -- C:\WINDOWS\System32\PSP PseudoStereo.dll
[2010/05/31 02:28:56 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\song.doc
[2010/05/24 06:01:34 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\The world appears to be getting smaller and social changes come at every minute.doc
[2010/05/21 19:35:40 | 000,000,342 | ---- | C] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DIEGO-96CBBBCE6-Deigo.job
[2010/05/21 17:28:02 | 000,057,344 | ---- | C] () -- C:\Documents and Settings\Deigo\My Documents\Book 1.indb
[2010/05/17 13:42:49 | 000,017,136 | ---- | C] () -- C:\WINDOWS\System32\sasnative32.exe
[2010/05/17 13:42:46 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\Deigo\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced System Optimizer.lnk
[2010/05/09 23:48:49 | 000,002,892 | ---- | C] () -- C:\WINDOWS\System32\audcon.sys
[2010/05/09 23:47:56 | 000,147,425 | ---- | C] () -- C:\WINDOWS\System32\SYNSOACC-Aide.chm
[2010/05/09 23:47:56 | 000,120,468 | ---- | C] () -- C:\WINDOWS\System32\SYNSOACC-Hilfe.chm
[2010/05/09 23:47:56 | 000,114,279 | ---- | C] () -- C:\WINDOWS\System32\SYNSOACC-Help.chm
[2010/05/09 23:47:54 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe.cfg
[2010/05/09 23:47:53 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\SYNSOPOS.exe
[2010/05/09 23:47:31 | 006,640,274 | ---- | C] () -- C:\WINDOWS\System32\Modalys_for_Arturia.dll
[2010/05/09 23:47:31 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ArtFfct.dll
[2010/04/07 16:43:13 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdof.ini
[2010/04/07 16:43:12 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdcm.ini
[2010/04/07 16:43:08 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdle.ini
[2010/04/07 16:42:55 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdji.ini
[2010/04/07 16:42:55 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdgd.ini
[2010/04/07 16:42:54 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdpl.ini
[2010/04/07 16:42:54 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdmj.ini
[2010/04/07 16:42:53 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdcl.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdmc.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdjn.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdik.ini
[2010/04/07 16:42:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdff.ini
[2010/04/07 15:56:27 | 003,661,824 | ---- | C] () -- C:\WINDOWS\System32\mkl_wavearts.dll
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdna.ini
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdeh.ini
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigddc.ini
[2010/04/07 15:53:52 | 000,000,005 | ---- | C] () -- C:\WINDOWS\nhbigdbg.ini
[2010/04/07 15:31:32 | 000,000,073 | ---- | C] () -- C:\WINDOWS\CentaurusApp.ini
[2010/03/12 00:42:52 | 000,000,452 | ---- | C] () -- C:\WINDOWS\{17FE44E2-D21A-4F0C-BE49-798A8FBC374E}_WiseFW.ini
[2010/03/12 00:21:31 | 004,030,464 | ---- | C] () -- C:\WINDOWS\System32\PSP Xenon.dll
[2010/03/12 00:17:32 | 002,864,128 | ---- | C] () -- C:\WINDOWS\System32\PSP 84.dll
[2010/03/12 00:16:22 | 006,062,080 | ---- | C] () -- C:\WINDOWS\System32\PSP oldTimer.dll
[2010/03/12 00:11:56 | 004,332,032 | ---- | C] () -- C:\WINDOWS\System32\PSP MixBass2.dll
[2010/03/12 00:10:17 | 004,218,880 | ---- | C] () -- C:\WINDOWS\System32\PSP MasterComp.dll
[2010/03/12 00:08:00 | 001,637,888 | ---- | C] () -- C:\WINDOWS\System32\Lexicon PSP42.dll
[2010/03/04 15:40:17 | 000,000,005 | ---- | C] () -- C:\WINDOWS\gjflbomb.ini
[2010/02/26 05:44:15 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\libencdec.dll
[2010/02/21 14:25:02 | 000,000,122 | ---- | C] () -- C:\WINDOWS\msmmdx9.ini
[2010/02/17 04:27:29 | 000,000,032 | ---- | C] () -- C:\WINDOWS\GearBox.ini
[2010/02/04 02:09:33 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/02/04 00:30:18 | 000,088,576 | ---- | C] () -- C:\WINDOWS\System32\OptimFROG.dll
[2010/01/31 04:44:41 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009/12/31 01:50:20 | 000,126,464 | ---- | C] () -- C:\WINDOWS\System32\vsmidi.dll
[2009/12/15 01:59:05 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\moosh11drv.dll
[2009/12/09 03:35:28 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\utilpt32.dll
[2009/12/07 13:16:36 | 000,000,077 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2009/12/07 13:16:32 | 000,028,518 | ---- | C] () -- C:\WINDOWS\System32\Ckldrv.sys
[2009/12/07 13:16:32 | 000,018,432 | ---- | C] () -- C:\WINDOWS\Setup_ck.dll
[2009/11/25 13:40:50 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009/11/05 20:27:13 | 000,217,088 | ---- | C] () -- C:\WINDOWS\System32\qtmlClient.dll
[2009/11/05 16:32:03 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009/10/19 01:32:29 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/10/16 19:44:15 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/10/16 18:36:13 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\muangsys.dll
[2009/10/16 18:36:13 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\muadisp.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009/03/02 11:33:32 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009/01/15 13:45:34 | 000,181,248 | ---- | C] () -- C:\WINDOWS\System32\txmlutil.dll
[2007/04/18 23:07:00 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\mgxasio2.dll
[2007/01/31 14:50:32 | 000,913,408 | ---- | C] () -- C:\WINDOWS\System32\xreglib.dll
[2006/07/17 06:57:40 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\FxShared.dll
[2006/07/17 06:57:40 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\com.fxpansion.fxshared.dll
[2006/07/04 00:21:32 | 001,397,548 | ---- | C] () -- C:\WINDOWS\System32\libfftw3-3.dll
[2004/08/03 17:59:08 | 000,080,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\parport.sys
========== LOP Check ==========
[2010/02/04 03:24:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ableton
[2009/11/11 17:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AceBIT
[2010/03/11 23:46:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AraldFX
[2010/06/28 17:54:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arturia
[2010/03/11 21:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Audio Damage
[2010/03/11 21:50:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Audio Ease
[2010/08/02 03:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/10/18 23:16:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2010/08/02 03:15:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BitDefender
[2010/08/02 01:43:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cakewalk
[2009/12/31 01:21:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Chicken Systems
[2010/02/04 02:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2009/10/27 01:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2010/05/09 23:49:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eLicenser
[2010/03/28 23:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Focusrite
[2010/02/16 18:29:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IK Multimedia
[2010/06/04 15:14:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iZotope
[2010/02/17 04:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Line 6
[2010/04/01 15:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MTexturedStyles
[2009/10/29 20:31:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Native Instruments
[2009/12/23 00:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/07/13 05:48:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Overloud
[2010/02/25 04:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PACE Anti-Piracy
[2009/12/07 01:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Propellerhead Software
[2010/05/12 18:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RapidSolution
[2010/05/25 14:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/03/11 22:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SIR
[2009/11/18 16:38:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2010/01/18 01:31:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Soundlib
[2009/11/18 16:23:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Steinberg
[2010/05/09 23:48:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Syncrosoft
[2010/05/17 13:44:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Systweak
[2010/06/17 20:56:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp
[2010/06/02 18:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VirSyn Software Synthesizer
[2010/03/11 21:50:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VitalData
[2010/03/12 01:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VST3 Presets
[2010/04/07 15:52:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Wave Arts
[2010/01/13 22:19:57 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{0DAD6605-349A-4072-A364-B4C97BA80D0A}
[2009/12/16 22:35:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{152EF68B-16AC-49D3-A3E6-E39F7613A2D7}
[2010/05/09 23:30:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{20EFD19B-675C-417B-A498-B0161D72FF88}
[2009/12/17 16:45:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{2373B11D-DEC4-4D14-AE62-03F9FBAE52BC}
[2009/12/06 21:00:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{261FD3E7-AC6C-4785-8405-DCF2100A3A46}
[2009/12/06 20:56:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{3EE98DDF-8EFF-4760-88EB-D666A839217F}
[2010/05/09 23:39:32 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{3FC66E2C-85B6-4398-82FB-C13C51DE9DD8}
[2010/04/01 16:14:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/01/13 21:48:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{4939B247-EAFC-452D-A19A-712148F59A8B}
[2010/01/13 20:28:59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{580B8E22-2CB8-4C43-AE50-9338E581C6FA}
[2010/01/13 00:45:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{5E76E40F-3E24-4F35-8279-2E1C5CBD264B}
[2010/06/15 14:02:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{5EBCE76E-C69D-4C20-AF60-2E9DA59F03C8}
[2010/03/11 23:14:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{6A4BD4D3-A4B0-4097-BC85-A8BC1BEB221D}
[2009/10/19 02:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010/05/09 23:43:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{8095496E-A8F0-4840-832A-6E88144E2FBC}
[2010/07/31 01:01:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010/01/14 15:06:07 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{9D92E4DF-0CEE-44D4-A4FE-2B4A438E1607}
[2010/03/11 23:14:53 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{A97DA822-7B29-4F18-A64A-BF94FFFE77FB}
[2009/11/21 03:07:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{B8FEAD18-46AB-460B-A7B8-BFEEDF325A72}
[2010/05/09 23:33:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D565E85A-7602-4965-8B03-55D249C138D6}
[2009/10/29 20:30:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
[2010/02/05 00:50:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{E0C041D8-7EFB-4E8C-A20F-651F5AD0B7C1}
[2009/12/07 09:26:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{F322C569-6416-428D-A2EA-A5D1C7073DE8}
[2010/05/09 23:28:29 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{F94F0CF6-942F-4A5D-BDAE-824B2EB35AD7}
[2010/02/04 03:24:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Ableton
[2009/11/11 17:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\AceBIT
[2009/11/02 01:44:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Acoustica
[2010/06/02 23:10:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Antares
[2010/03/11 21:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Applied Acoustics Systems
[2010/03/11 21:50:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Audio Ease
[2009/12/16 14:59:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\AVG9
[2010/08/02 02:34:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\BitDefender
[2010/08/02 01:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\BitDefender(2)
[2010/08/04 16:11:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\BitTorrent
[2010/04/07 15:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Blue Cat Audio
[2010/05/10 00:00:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Brass 2
[2010/07/13 01:45:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Cakewalk
[2010/05/21 14:58:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\com.adobe.ExMan
[2010/02/04 02:16:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\DAEMON Tools Pro
[2010/04/09 17:24:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\dBpoweramp
[2010/04/18 15:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\deluge
[2010/07/31 03:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Digidesign
[2010/07/24 16:26:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\FabFilter
[2010/01/14 23:44:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\FXpansion
[2009/10/19 01:00:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\G-Force
[2010/02/04 04:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Garritan
[2009/10/19 13:16:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Illiminable FLAC
[2010/06/17 21:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\iVisit Data
[2010/07/13 20:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\iZotope
[2010/04/18 14:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\KDE
[2010/04/07 15:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Koblo
[2009/10/27 01:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Leadertech
[2010/03/11 23:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Lexicon PCM Native
[2010/02/17 04:36:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Line 6
[2010/04/01 15:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\MeldaProduction MAutoEqualizer
[2009/12/23 00:24:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\NCH Swift Sound
[2009/11/18 17:06:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\NetMedia Providers
[2010/06/28 18:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Novation
[2010/05/26 02:56:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Opera
[2010/02/25 04:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\PACE Anti-Piracy
[2010/02/04 04:51:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Plogue
[2010/07/31 01:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\PreSonus
[2009/12/07 01:28:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Propellerhead Software
[2009/11/18 16:42:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Publish Providers
[2010/08/02 00:32:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\REAPER
[2010/07/30 17:06:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\SIR
[2010/02/04 00:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Sony
[2009/12/22 16:55:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Sony Creative Software
[2009/12/08 17:35:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Steinberg
[2010/05/17 13:43:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Systweak
[2010/01/31 05:19:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\TeamViewer
[2010/02/17 03:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\TH1
[2010/07/19 14:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\uTorrent
[2010/07/29 16:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Uwer
[2010/06/16 16:39:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\VirSyn Software Synthesizer
[2010/03/12 01:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Voxengo
[2010/05/30 21:57:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\VST3 Presets
[2010/02/15 20:56:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Waves
[2010/03/12 01:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Waves Audio
[2010/03/12 02:16:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Waves Preferences
[2010/08/04 14:14:02 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2010/01/31 03:34:37 | 000,001,024 | ---- | M] () -- C:\.rnd
[2010/01/04 00:47:12 | 000,000,016 | ---- | M] () -- C:\asdict.dat
[2009/10/16 16:12:22 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/08/02 01:52:27 | 000,010,939 | ---- | M] () -- C:\bdlog.txt
[2010/08/01 01:32:35 | 012,951,467 | ---- | M] () -- C:\BdUninstallTool2010.08.01-01.30.56.log
[2010/08/01 02:01:28 | 013,619,888 | ---- | M] () -- C:\BdUninstallTool2010.08.01-01.59.01.log
[2010/01/11 13:49:19 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010/08/03 22:03:23 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2009/12/07 18:32:41 | 000,000,068 | ---- | M] () -- C:\CKINFO.TXT
[2004/08/03 23:00:00 | 000,260,272 | ---- | M] () -- C:\cmldr
[2006/03/24 18:43:46 | 002,010,624 | ---- | M] (Cycling '74) -- C:\ColorTone PRO.dll
[2010/08/04 01:56:51 | 000,243,154 | ---- | M] () -- C:\ComboFix.txt
[2009/10/16 16:12:22 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009/12/07 21:41:22 | 000,013,812 | ---- | M] () -- C:\CrypKey.Log
[2010/07/31 19:23:29 | 000,000,141 | ---- | M] () -- C:\dwl.dat
[2007/08/24 13:24:08 | 016,138,240 | ---- | M] (Steinberg Media Technologies) -- C:\HALionOne.dll
[2010/07/31 19:23:29 | 000,000,132 | ---- | M] () -- C:\httpdwl.dat
[2009/10/16 16:12:22 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/10/16 16:12:22 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2006/02/28 07:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009/10/16 16:55:26 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/08/04 13:16:01 | 4123,000,832 | -HS- | M] () -- C:\pagefile.sys
[2010/08/01 01:51:48 | 000,000,000 | ---- | M] () -- C:\pcversion.txt
[2010/07/30 01:00:11 | 000,002,763 | ---- | M] () -- C:\rapport.txt
[2010/08/04 00:49:41 | 000,000,369 | ---- | M] () -- C:\rkill.log
[2010/07/31 19:23:29 | 000,000,815 | ---- | M] () -- C:\rtsr_eml_sr.dat
[2009/12/07 22:51:33 | 000,158,747 | ---- | M] () -- C:\scope
[2010/07/31 16:11:42 | 000,000,076 | ---- | M] () -- C:\SfeErrors.txt
[2009/10/16 16:23:31 | 000,000,161 | ---- | M] () -- C:\SigmaTel.log
[2010/07/21 02:41:27 | 000,000,150 | ---- | M] () -- C:\zrpt.xml
< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2009/11/22 02:46:30 | 000,030,208 | ---- | M] (ActMask Co.,Ltd) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\ActPrint.dll
[2008/07/06 07:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2009/09/28 20:34:40 | 000,047,416 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\LMIproc.dll
[2007/04/09 13:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
< %systemroot%\system32\*.wt >
< %systemroot%\system32\*.ruy >
[2010/03/11 21:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Applied Acoustics Systems
[2010/03/11 21:50:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Audio Ease
[2009/12/16 14:59:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\AVG9
[2010/08/02 02:34:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\BitDefender
[2010/08/02 01:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\BitDefender(2)
[2010/08/04 16:11:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\BitTorrent
[2010/04/07 15:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Blue Cat Audio
[2010/05/10 00:00:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Brass 2
[2010/07/13 01:45:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Cakewalk
[2010/05/21 14:58:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\com.adobe.ExMan
[2010/02/04 02:16:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\DAEMON Tools Pro
[2010/04/09 17:24:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\dBpoweramp
[2010/04/18 15:58:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\deluge
[2010/07/31 03:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Digidesign
[2010/07/24 16:26:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\FabFilter
[2010/01/14 23:44:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\FXpansion
[2009/10/19 01:00:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\G-Force
[2010/02/04 04:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Garritan
[2009/10/19 13:16:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Illiminable FLAC
[2010/06/17 21:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\iVisit Data
[2010/07/13 20:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\iZotope
[2010/04/18 14:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\KDE
[2010/04/07 15:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Koblo
[2009/10/27 01:14:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Leadertech
[2010/03/11 23:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Lexicon PCM Native
[2010/02/17 04:36:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Line 6
[2010/04/01 15:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\MeldaProduction MAutoEqualizer
[2009/12/23 00:24:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\NCH Swift Sound
[2009/11/18 17:06:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\NetMedia Providers
[2010/06/28 18:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Novation
[2010/05/26 02:56:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Opera
[2010/02/25 04:30:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\PACE Anti-Piracy
[2010/02/04 04:51:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Plogue
[2010/07/31 01:02:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\PreSonus
[2009/12/07 01:28:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Propellerhead Software
[2009/11/18 16:42:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Publish Providers
[2010/08/02 00:32:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\REAPER
[2010/07/30 17:06:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\SIR
[2010/02/04 00:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Sony
[2009/12/22 16:55:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Sony Creative Software
[2009/12/08 17:35:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Steinberg
[2010/05/17 13:43:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Systweak
[2010/01/31 05:19:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\TeamViewer
[2010/02/17 03:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\TH1
[2010/07/19 14:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\uTorrent
[2010/07/29 16:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Uwer
[2010/06/16 16:39:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\VirSyn Software Synthesizer
[2010/03/12 01:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Voxengo
[2010/05/30 21:57:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\VST3 Presets
[2010/02/15 20:56:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Waves
[2010/03/12 01:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Waves Audio
[2010/03/12 02:16:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deigo\Application Data\Waves Preferences
[2010/08/04 14:14:02 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2010/01/31 03:34:37 | 000,001,024 | ---- | M] () -- C:\.rnd
[2010/01/04 00:47:12 | 000,000,016 | ---- | M] () -- C:\asdict.dat
[2009/10/16 16:12:22 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/08/02 01:52:27 | 000,010,939 | ---- | M] () -- C:\bdlog.txt
[2010/08/01 01:32:35 | 012,951,467 | ---- | M] () -- C:\BdUninstallTool2010.08.01-01.30.56.log
[2010/08/01 02:01:28 | 013,619,888 | ---- | M] () -- C:\BdUninstallTool2010.08.01-01.59.01.log
[2010/01/11 13:49:19 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010/08/03 22:03:23 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2009/12/07 18:32:41 | 000,000,068 | ---- | M] () -- C:\CKINFO.TXT
[2004/08/03 23:00:00 | 000,260,272 | ---- | M] () -- C:\cmldr
[2006/03/24 18:43:46 | 002,010,624 | ---- | M] (Cycling '74) -- C:\ColorTone PRO.dll
[2010/08/04 01:56:51 | 000,243,154 | ---- | M] () -- C:\ComboFix.txt
[2009/10/16 16:12:22 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009/12/07 21:41:22 | 000,013,812 | ---- | M] () -- C:\CrypKey.Log
[2010/07/31 19:23:29 | 000,000,141 | ---- | M] () -- C:\dwl.dat
[2007/08/24 13:24:08 | 016,138,240 | ---- | M] (Steinberg Media Technologies) -- C:\HALionOne.dll
[2010/07/31 19:23:29 | 000,000,132 | ---- | M] () -- C:\httpdwl.dat
[2009/10/16 16:12:22 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/10/16 16:12:22 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2006/02/28 07:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009/10/16 16:55:26 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/08/04 13:16:01 | 4123,000,832 | -HS- | M] () -- C:\pagefile.sys
[2010/08/01 01:51:48 | 000,000,000 | ---- | M] () -- C:\pcversion.txt
[2010/07/30 01:00:11 | 000,002,763 | ---- | M] () -- C:\rapport.txt
[2010/08/04 00:49:41 | 000,000,369 | ---- | M] () -- C:\rkill.log
[2010/07/31 19:23:29 | 000,000,815 | ---- | M] () -- C:\rtsr_eml_sr.dat
[2009/12/07 22:51:33 | 000,158,747 | ---- | M] () -- C:\scope
[2010/07/31 16:11:42 | 000,000,076 | ---- | M] () -- C:\SfeErrors.txt
[2009/10/16 16:23:31 | 000,000,161 | ---- | M] () -- C:\SigmaTel.log
[2010/07/21 02:41:27 | 000,000,150 | ---- | M] () -- C:\zrpt.xml
< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2009/11/22 02:46:30 | 000,030,208 | ---- | M] (ActMask Co.,Ltd) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\ActPrint.dll
[2008/07/06 07:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2009/09/28 20:34:40 | 000,047,416 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\LMIproc.dll
[2007/04/09 13:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
< %systemroot%\system32\*.wt >
< %systemroot%\system32\*.ruy >
< %systemroot%\Fonts\*.com >
[2006/04/18 16:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006/06/29 15:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006/04/18 16:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006/06/29 15:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll >
< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\user32.dll /md5 >
[2008/04/13 19:12:08 | 000,578,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\user32.dll
< %systemroot%\system32\ws2_32.dll /md5 >
[2008/04/13 19:12:10 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\system32\ws2help.dll /md5 >
[2008/04/13 19:12:10 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=9789E95E1D88EEB4B922BF3EA7779C28 -- C:\WINDOWS\system32\ws2help.dll
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs >
========== Files - Unicode (All) ==========
[2009/12/07 18:55:40 | 000,000,000 | ---D | M](C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\
[2009/12/07 18:55:40 | 000,000,000 | ---D | C](C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\
========== Alternate Data Streams ==========
@Alternate Data Stream - 1343 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:WG66vMTXIZUeSgSlZJ5DBztT8c9haB
@Alternate Data Stream - 1293 bytes -> C:\Documents and Settings\All Users\Application Data\MicrosoftaPH2e4umgQLOIRBGxRV9zG0FvJwj
@Alternate Data Stream - 1278 bytes -> C:\Documents and Settings\All Users\Application Data\MicrosoftPqDlO8pVUdjxXactfh2b
@Alternate Data Stream - 1272 bytes -> C:\Program Files\Common Files\System:sflLwo8Cs9heSMp9q1khQW64
@Alternate Data Stream - 1258 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:9vJ3IXM8vfRIIaJaY
@Alternate Data Stream - 1251 bytes -> C:\Program Files\Common Files\Microsoft Shared:k9OBeFjdC1KAmJobTCij4pz
@Alternate Data Stream - 1233 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:RaanGkWU0h1c8TCJJyq4Cf00
@Alternate Data Stream - 1192 bytes -> C:\Documents and Settings\Deigo\Cookies:0s6zuNyQJwmZfMMNBos5Tsi
@Alternate Data Stream - 1176 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:fvmldb3SorWVtWeSIz1INlp
@Alternate Data Stream - 1174 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:Cn7oUytCOOMMcNMdcg
@Alternate Data Stream - 1169 bytes -> C:\Program Files\Outlook Express:UmtqyYXWrie0ud7KUXxE4
@Alternate Data Stream - 1157 bytes -> C:\Documents and Settings\Deigo\Cookies:kyNYloBCZ8zepzasDAmto
@Alternate Data Stream - 1143 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:8Ij3aQnGdWCI1J5kB8loBAo
@Alternate Data Stream - 1111 bytes -> C:\Program Files\Common Files\System:aecNGgzfYidlTUOCLE1ETXmp
@Alternate Data Stream - 1105 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:5LBf7pfNKVGgiZx7nK
< End of report >
[2006/04/18 16:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006/06/29 15:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006/04/18 16:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006/06/29 15:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll >
< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\user32.dll /md5 >
[2008/04/13 19:12:08 | 000,578,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\user32.dll
< %systemroot%\system32\ws2_32.dll /md5 >
[2008/04/13 19:12:10 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\system32\ws2help.dll /md5 >
[2008/04/13 19:12:10 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=9789E95E1D88EEB4B922BF3EA7779C28 -- C:\WINDOWS\system32\ws2help.dll
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs >
========== Files - Unicode (All) ==========
[2009/12/07 18:55:40 | 000,000,000 | ---D | M](C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\
[2009/12/07 18:55:40 | 000,000,000 | ---D | C](C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\
========== Alternate Data Streams ==========
@Alternate Data Stream - 1343 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:WG66vMTXIZUeSgSlZJ5DBztT8c9haB
@Alternate Data Stream - 1293 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft
aPH2e4umgQLOIRBGxRV9zG0FvJwj@Alternate Data Stream - 1278 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft
PqDlO8pVUdjxXactfh2b@Alternate Data Stream - 1272 bytes -> C:\Program Files\Common Files\System:sflLwo8Cs9heSMp9q1khQW64
@Alternate Data Stream - 1258 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:9vJ3IXM8vfRIIaJaY
@Alternate Data Stream - 1251 bytes -> C:\Program Files\Common Files\Microsoft Shared:k9OBeFjdC1KAmJobTCij4pz
@Alternate Data Stream - 1233 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:RaanGkWU0h1c8TCJJyq4Cf00
@Alternate Data Stream - 1192 bytes -> C:\Documents and Settings\Deigo\Cookies:0s6zuNyQJwmZfMMNBos5Tsi
@Alternate Data Stream - 1176 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:fvmldb3SorWVtWeSIz1INlp
@Alternate Data Stream - 1174 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:Cn7oUytCOOMMcNMdcg
@Alternate Data Stream - 1169 bytes -> C:\Program Files\Outlook Express:UmtqyYXWrie0ud7KUXxE4
@Alternate Data Stream - 1157 bytes -> C:\Documents and Settings\Deigo\Cookies:kyNYloBCZ8zepzasDAmto
@Alternate Data Stream - 1143 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:8Ij3aQnGdWCI1J5kB8loBAo
@Alternate Data Stream - 1111 bytes -> C:\Program Files\Common Files\System:aecNGgzfYidlTUOCLE1ETXmp
@Alternate Data Stream - 1105 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:5LBf7pfNKVGgiZx7nK
< End of report >
OTL Extras logfile created on: 8/4/2010 8:26:58 PM - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Deigo\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 65.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 3932 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 389.00 Gb Free Space | 41.76% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 1397.26 Gb Total Space | 912.03 Gb Free Space | 65.27% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465.65 Gb Total Space | 257.56 Gb Free Space | 55.31% Space Free | Partition Type: FAT32
Computer Name: DIEGO-96CBBBCE6
Current User Name: Deigo
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabledxpsp2res.dll,-22009
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNetisabledxpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNetisabledxpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabledxpsp2res.dll,-22009
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Windows Media Player\wmplayer.exe" = C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player -- (Microsoft Corporation)
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- (Electronic Arts)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Sibelius Software\Sibelius 6\RegTool.exe" = C:\Program Files\Sibelius Software\Sibelius 6\RegTool.exe:*:Enabled:RegTool.exe -- ()
"C:\Program Files\Sibelius Software\Sibelius 6\Sibelius.exe" = C:\Program Files\Sibelius Software\Sibelius 6\Sibelius.exe:*:Enabled:Sibelius.exe -- (Sibelius Software, a division of Avid Technology, Inc. and its licensors.)
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Adobe\Adobe Flash Builder 4\FlashBuilder.exe" = C:\Program Files\Adobe\Adobe Flash Builder 4\FlashBuilder.exe:*:Enabled:FlashBuilder -- ()
"C:\Program Files\uTorrent2\uTorrent.exe" = C:\Program Files\uTorrent2\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\iVisit\iVisit Presenter.exe" = C:\Program Files\iVisit\iVisit Presenter.exe:*:Enabled:iVisit Presenter -- (iVisit, LLC)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Microsoft Research\Microsoft WorldWide Telescope\WWTExplorer.exe" = C:\Program Files\Microsoft Research\Microsoft WorldWide Telescope\WWTExplorer.exe:*:Enabled:WorldWide Telescope -- (Microsoft Research)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"__ARIA_1013___is1" = Garritan Instruments for Finale
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{110C673D-E8C1-44C6-85D3-4BD29513FC88}" = Native Instruments Acoustic Refractions
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{14AA664E-9BFA-44C4-A083-83A2998679BA}" = Digidesign Pro Tools M-Powered 7.4cs3
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{17FE44E2-D21A-4F0C-BE49-798A8FBC374E}" = Sibelius 6
"{18608328-15BE-48C1-AEA2-E946FF2F6219}_is1" = Obelisk Version 1.0.2
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{218AA20E-F016-4385-9F74-04FF8E596FB2}" = SampleMoog
"{21E77392-C30A-4AA2-8CA7-5728316939D6}" = AmpliTube X-GEAR
"{2223FC2F-B862-4F83-BC9E-DDF2DADF2859}" = Intel(R) Network Connections 13.0.44.0
"{227D7616-EDD3-493B-88EF-C84A76A87F43}" = Microsoft WorldWide Telescope
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{236E0A03-6110-485E-B0F9-399215948BB7}" = M-Audio FastTrackPro Driver 6.0.2 (x86)
"{25613C10-27D2-410B-942B-D922D5C3A7BE}" = Interlok driver setup x32
"{288DB08D-0708-4A94-B055-55B99E39EB62}" = Adobe Creative Suite 5 Master Collection
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{371B17C3-9624-4583-A497-DF980313D851}" = Native Instruments Absynth 5
"{37EF63D9-3E31-45A9-A90F-BDE07CE88095}" = Sibelius Scorch (all browsers)
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{423C4130-EBC3-410A-B3A0-37BBF9D607D5}" = T-RackS 3 Deluxe
"{430399DC-98BC-4A7F-8F8E-77981CABAE05}" = EZXVintage
"{43E7798A-248E-4A3D-9969-FEA63543A462}" = Native Instruments Kontakt 4
"{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}" = EZdrummer
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{4533C547-0D15-4604-A734-320C51C2AC18}" = Native Instruments Essential Bass
"{490BF87E-1F75-4453-BF55-9F540543A3CA}" = Steinberg Drum Loop Expansion 01
"{491DF203-7B61-4F0E-BDCB-A1218C4DAFE9}" = Native Instruments Massive
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D454CF8-12FD-464D-B57B-B46FE27B78BB}" = Steinberg LoopMash Content
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{532B917B-8235-4FA5-BE36-643A8BB053A5}" = Steinberg REVerence Content 01
"{5354D5F2-342D-43DD-A361-B65BF7AABE1D}" = nebula3 CM
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{5866520C-8857-4986-833A-039F4584C3F7}" = Toontrack solo
"{5B912A78-A367-4BA6-ABE5-116331276EAC}_is1" = Overloud BREVERB 1.5.9 RTAS
"{5DD152A8-BFB3-439E-90CD-5C00C2116E23}" = AmpliTube 3
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{648C1BFD-6A70-46D8-B855-F84D95C2DC34}" = CSR
"{65AA5B18-A330-4F35-BCDF-EA85EC888906}" = AVOX Evo VST
"{65B7E38D-10F8-4B1A-8EE3-BF2362CF12AE}" = Native Instruments Kontakt 4 Factory Content
"{66BA35B0-1911-47EF-B170-1DCFFDA362F1}" = AmpliTube Jimi Hendrix
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BED4DFE-C527-463E-B93A-6F6848B74DD0}" = Native Instruments Battery 3
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}" = Adobe Flash Player 10 ActiveX
"{6F6F39E3-D24D-4EEE-9AEA-DEDAF991385D}" = DWA-552
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7559BF48-E15E-4FEA-9E44-3B3580CA1851}" = Fairchild Bundle
"{7604A79D-245D-45BB-AFBB-975DE69FFF80}" = Digidesign M-Audio Keyboard Personality 8.0
"{775500D3-ADB1-4735-B7D2-46DB6706B450}" = Toraverb
"{78533F87-850C-4AA1-8D52-6660C2131952}" = M-Audio FastTrackUltra8R Driver 6.0.2 (x86)
"{7AB3A249-FB81-416B-917A-A2A10E74C503}" = iTunes
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{80D3F817-2D33-4643-B900-64AE2C0C4745}" = M-Audio Oxygen Driver 1.2.1 (x86)
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{81974750-D4B1-4690-B168-D31F9A599542}" = SampleTron
"{82D48AB1-8E7F-4AA5-A5FA-47FA58A48110}" = Digidesign Free Bomb Factory Plug-Ins 7.4
"{82DA9C71-DBFF-4ED9-8B53-B2F28AA6BFD7}" = Syntorus 1.0.0
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{8967ABFB-CBCA-4EC0-8DE8-A01135267C16}" = EZplayer pro
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Deigo\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 65.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 3932 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 389.00 Gb Free Space | 41.76% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 1397.26 Gb Total Space | 912.03 Gb Free Space | 65.27% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465.65 Gb Total Space | 257.56 Gb Free Space | 55.31% Space Free | Partition Type: FAT32
Computer Name: DIEGO-96CBBBCE6
Current User Name: Deigo
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Enabled
xpsp2res.dll,-22009[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet
isabledxpsp2res.dll,-22007"2869:TCP" = 2869:TCP:LocalSubNet
isabledxpsp2res.dll,-22008"3389:TCP" = 3389:TCP:*:Enabled
xpsp2res.dll,-22009========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Windows Media Player\wmplayer.exe" = C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player -- (Microsoft Corporation)
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- (Electronic Arts)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Sibelius Software\Sibelius 6\RegTool.exe" = C:\Program Files\Sibelius Software\Sibelius 6\RegTool.exe:*:Enabled:RegTool.exe -- ()
"C:\Program Files\Sibelius Software\Sibelius 6\Sibelius.exe" = C:\Program Files\Sibelius Software\Sibelius 6\Sibelius.exe:*:Enabled:Sibelius.exe -- (Sibelius Software, a division of Avid Technology, Inc. and its licensors.)
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Adobe\Adobe Flash Builder 4\FlashBuilder.exe" = C:\Program Files\Adobe\Adobe Flash Builder 4\FlashBuilder.exe:*:Enabled:FlashBuilder -- ()
"C:\Program Files\uTorrent2\uTorrent.exe" = C:\Program Files\uTorrent2\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\iVisit\iVisit Presenter.exe" = C:\Program Files\iVisit\iVisit Presenter.exe:*:Enabled:iVisit Presenter -- (iVisit, LLC)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Microsoft Research\Microsoft WorldWide Telescope\WWTExplorer.exe" = C:\Program Files\Microsoft Research\Microsoft WorldWide Telescope\WWTExplorer.exe:*:Enabled:WorldWide Telescope -- (Microsoft Research)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"__ARIA_1013___is1" = Garritan Instruments for Finale
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{110C673D-E8C1-44C6-85D3-4BD29513FC88}" = Native Instruments Acoustic Refractions
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{14AA664E-9BFA-44C4-A083-83A2998679BA}" = Digidesign Pro Tools M-Powered 7.4cs3
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{17FE44E2-D21A-4F0C-BE49-798A8FBC374E}" = Sibelius 6
"{18608328-15BE-48C1-AEA2-E946FF2F6219}_is1" = Obelisk Version 1.0.2
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{218AA20E-F016-4385-9F74-04FF8E596FB2}" = SampleMoog
"{21E77392-C30A-4AA2-8CA7-5728316939D6}" = AmpliTube X-GEAR
"{2223FC2F-B862-4F83-BC9E-DDF2DADF2859}" = Intel(R) Network Connections 13.0.44.0
"{227D7616-EDD3-493B-88EF-C84A76A87F43}" = Microsoft WorldWide Telescope
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{236E0A03-6110-485E-B0F9-399215948BB7}" = M-Audio FastTrackPro Driver 6.0.2 (x86)
"{25613C10-27D2-410B-942B-D922D5C3A7BE}" = Interlok driver setup x32
"{288DB08D-0708-4A94-B055-55B99E39EB62}" = Adobe Creative Suite 5 Master Collection
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{371B17C3-9624-4583-A497-DF980313D851}" = Native Instruments Absynth 5
"{37EF63D9-3E31-45A9-A90F-BDE07CE88095}" = Sibelius Scorch (all browsers)
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{423C4130-EBC3-410A-B3A0-37BBF9D607D5}" = T-RackS 3 Deluxe
"{430399DC-98BC-4A7F-8F8E-77981CABAE05}" = EZXVintage
"{43E7798A-248E-4A3D-9969-FEA63543A462}" = Native Instruments Kontakt 4
"{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}" = EZdrummer
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{4533C547-0D15-4604-A734-320C51C2AC18}" = Native Instruments Essential Bass
"{490BF87E-1F75-4453-BF55-9F540543A3CA}" = Steinberg Drum Loop Expansion 01
"{491DF203-7B61-4F0E-BDCB-A1218C4DAFE9}" = Native Instruments Massive
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D454CF8-12FD-464D-B57B-B46FE27B78BB}" = Steinberg LoopMash Content
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{532B917B-8235-4FA5-BE36-643A8BB053A5}" = Steinberg REVerence Content 01
"{5354D5F2-342D-43DD-A361-B65BF7AABE1D}" = nebula3 CM
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{5866520C-8857-4986-833A-039F4584C3F7}" = Toontrack solo
"{5B912A78-A367-4BA6-ABE5-116331276EAC}_is1" = Overloud BREVERB 1.5.9 RTAS
"{5DD152A8-BFB3-439E-90CD-5C00C2116E23}" = AmpliTube 3
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{648C1BFD-6A70-46D8-B855-F84D95C2DC34}" = CSR
"{65AA5B18-A330-4F35-BCDF-EA85EC888906}" = AVOX Evo VST
"{65B7E38D-10F8-4B1A-8EE3-BF2362CF12AE}" = Native Instruments Kontakt 4 Factory Content
"{66BA35B0-1911-47EF-B170-1DCFFDA362F1}" = AmpliTube Jimi Hendrix
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BED4DFE-C527-463E-B93A-6F6848B74DD0}" = Native Instruments Battery 3
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}" = Adobe Flash Player 10 ActiveX
"{6F6F39E3-D24D-4EEE-9AEA-DEDAF991385D}" = DWA-552
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7559BF48-E15E-4FEA-9E44-3B3580CA1851}" = Fairchild Bundle
"{7604A79D-245D-45BB-AFBB-975DE69FFF80}" = Digidesign M-Audio Keyboard Personality 8.0
"{775500D3-ADB1-4735-B7D2-46DB6706B450}" = Toraverb
"{78533F87-850C-4AA1-8D52-6660C2131952}" = M-Audio FastTrackUltra8R Driver 6.0.2 (x86)
"{7AB3A249-FB81-416B-917A-A2A10E74C503}" = iTunes
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{80D3F817-2D33-4643-B900-64AE2C0C4745}" = M-Audio Oxygen Driver 1.2.1 (x86)
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{81974750-D4B1-4690-B168-D31F9A599542}" = SampleTron
"{82D48AB1-8E7F-4AA5-A5FA-47FA58A48110}" = Digidesign Free Bomb Factory Plug-Ins 7.4
"{82DA9C71-DBFF-4ED9-8B53-B2F28AA6BFD7}" = Syntorus 1.0.0
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{8967ABFB-CBCA-4EC0-8DE8-A01135267C16}" = EZplayer pro
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8D7A8160-B777-4073-B1BE-62CFDD14A1D3}" = BitDefender Antivirus 2010
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A1E21995-127E-4B7F-8C4D-CB04AA8A58EF}_is1" = Advanced System Optimizer
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}" = PixiePack Codec Pack
"{AA2F4574-FD46-4897-8791-CD6CCD80E882}" = Native Instruments Evolve Mutations
"{AC76BA86-1033-F400-7760-000000000004}" = Adobe Acrobat 9 Pro - English, Français, Deutsch
"{AC76BA86-1033-F400-7760-000000000004}_932" = Adobe Acrobat 9.3.2 - CPSID_53951
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.1
"{AE0009FD-8F50-4565-835D-4432BD18D792}" = Samplitude 11
"{AEB9948B-4FF2-47C9-990E-47014492A0FE}" = MSXML 6.0 Parser
"{AF0821A0-D5D1-4F84-99DE-13777540EAE1}" = CounterSpy
"{AFE354A5-640F-4A23-94C8-0B441E8967CA}" = Digidesign Shared Plug-Ins 7.4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B178BACA-880B-4D20-85F9-522F7F2DECBE}" = AmpliTube Fender
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2552FA6-86E3-410D-84AD-265C2242D410}" = Native Instruments FM8
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B433D6F2-FC3F-4D63-9D1F-3119572064C2}" = AmpliTube 2 Live
"{B456FF50-CAEE-4E84-ABF5-9539AC21A527}" = M-Audio Oxygen DirectLink for Reason 1.0.1 (x86)
"{B4691C58-2A6A-4AFA-960E-AEB767639E44}" = PCM Native Reverb VST Plug-in
"{B59ED256-57C0-402A-8CDB-B97E4BCEFD97}_is1" = Overloud BREVERB 1.5.9 VST
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B7DAD844-34CD-456B-83CC-88065323DD69}" = WordBuilder
"{BA0D0121-A3BA-487D-9C78-7AB0E676C722}" = Miroslav Philharmonik
"{BD86F1AC-B594-46E4-85DC-1258AC9E2232}" = Steinberg Groove Agent ONE Content
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E}" = Native Instruments Guitar Rig 4
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{C95AACD4-9507-4F5C-9D53-22B1ACCFECD1}" = AmpliTube2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{cd3a2409-1a62-4785-afe3-44ada813c9df}" = Native Instruments The Finger
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF07B703-ACF2-4003-AF18-1EA840920D38}}_is1" = Focusrite Plug-in Suite 1.0.2
"{CF1D7323-8A0A-49C7-83B0-088DB90721E2}" = AmpegSVX
"{CFADE4AF-C0CF-4A04-A776-741318F1658F}" = Content Transfer
"{D068E91E-D573-480B-AA24-4D8E5B00CE13}" = Native Instruments Kore 2
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D799CC16-F3B5-468D-AC67-6F77AAA98173}" = Native Instruments Komplete 6
"{D7F912D4-C237-4079-966A-5044A5025CBF}}_is1" = Focusrite Scarlett Plug-in Suite 1.1
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DD4E18F4-7880-4002-A123-F3820644BA82}" = PCM Native Reverb RTAS Plug-in
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{EA26983C-5A88-4A83-973D-D9596C6733F6}" = Fast Track Ultra 8R
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EEC2DAFD-5558-40AC-8E9C-5005C8F810E8}" = Microsoft Plus! for Windows XP
"{EED8D44F-CEBB-4298-8D0E-E01AF6AC0663}" = EZXJazz
"{EEE8DED0-8DCF-492A-865D-C20964420BE5}" = M-Tron Pro
"{F04145A5-8FD9-4a1c-9EE9-67A8D56E9BFB}}_is1" = Focusrite Guitar FX Plug-in Suite 1.0.2
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0EB3969-C007-4ABE-9245-990C5E021A8F}_is1" = Sibelius Sounds Essentials for Sibelius 6
"{F5631C47-0DED-438d-8D93-33E9552DCA8E}" = Native Instruments Kore 2 Controller Driver
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F6C14032-9CA3-410E-8563-9EA55BE93BC4}" = Native Instruments North India
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FF600C37-6328-4348-A67A-3F85D8039604}" = Native Instruments Kore Player
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Abbeyroadplugins EMI Brilliance Pack VST RTAS_is1" = Abbeyroadplugins EMI Brilliance Pack VST RTAS v1.0.6
"Abbeyroadplugins EMI RS 124 Compressor VST RTAS_is1" = Abbeyroadplugins EMI RS 124 Compressor VST RTAS v1.0
"Abbeyroadplugins EMI TG 12413 Limiter VST RTAS_is1" = Abbeyroadplugins EMI TG 12413 Limiter VST RTAS v2.0.1
"Abbeyroadplugins EMI TG Mastering Pack VST RTAS_is1" = Abbeyroadplugins EMI TG Mastering Pack VST RTAS v1.0.2
"Acoustica Effects Pack" = Acoustica Effects Pack
"Adobe AIR" = Adobe AIR
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
"Analog Factory_is1" = Analog Factory 2.5
"Antares Autotune Evo VST RTAS_is1" = Antares Autotune Evo VST RTAS v6.0.9
"Antares AVOX Evo VST RTAS_is1" = Antares AVOX Evo VST RTAS v3.0.2
"Antares Harmony Engine VST RTAS_is1" = Antares Harmony Engine VST RTAS v1.0
"Antares Microphone Modeler DX v1.32" = Antares Microphone Modeler DX v1.32
"ARIA Engine_is1" = ARIA Engine v1.0.7.3
"AudioEase Altiverb VST RTAS_is1" = AudioEase Altiverb VST RTAS v6.12
"AudioEase Speakersphone VST RTAS_is1" = AudioEase Speakersphone VST RTAS v1.03
"AVG9Uninstall" = AVG Free 9.0
"BBE Sonic Sweet Bundle VST RTAS_is1" = BBE Sonic Sweet Bundle VST RTAS v1.1
"BBE StompWare Bundle VST RTAS_is1" = BBE StompWare Bundle VST RTAS v1.0
"BFD XFL" = BFD XFL
"Bias Sound Soap 2 DX RTAS VST v2.01" = Bias Sound Soap 2 DX RTAS VST v2.01
"BitTorrent" = BitTorrent
"Bomb Factory (48k Edition) v3.15" = Bomb Factory (48k Edition) v3.15
"Brainworx BX DynEQ Bundle VST RTAS_is1" = Brainworx BX DynEQ Bundle VST RTAS v1.1.1
"Brass 2.0.1_is1" = Brass 2.0.1
"Cabinet" = Cabinet
"Cakewalk Beatscape_is1" = Beatscape 1.0
"Cakewalk Dimension Pro_is1" = Dimension Pro
"Cakewalk SONAR 8 Content_is1" = SONAR 8 Content
"CENTAURUS_is1" = Centaurus 1.0 r2
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Chicken Systems Translator v2.9.5.8" = Chicken Systems Translator v2.9.5.8
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"dBpoweramp AAC Encoder" = dBpoweramp AAC Encoder
"dBpoweramp Aiff Codec" = dBpoweramp Aiff Codec
"dBpoweramp CD Writer" = dBpoweramp CD Writer
"dBpoweramp CLI Encoder" = dBpoweramp CLI Encoder
"dBpoweramp Dalet Codec" = dBpoweramp Dalet Codec
"dBpoweramp DirectShow Decoder" = dBpoweramp DirectShow Decoder
"dBpoweramp DSP Effects" = dBpoweramp DSP Effects
"dBpoweramp FLAC Codec" = dBpoweramp FLAC Codec
"dBpoweramp m4a Codec" = dBpoweramp m4a Codec
"dBpoweramp m4a Utilities" = dBpoweramp m4a Utilities
"dBpoweramp m4b Audio book Encoder" = dBpoweramp m4b Audio book Encoder
"dBpoweramp Midi Decoder" = dBpoweramp Midi Decoder
"dBpoweramp Monkeys Audio Codec" = dBpoweramp Monkeys Audio Codec
"dBpoweramp Mp2 and BwfMp2 codec" = dBpoweramp Mp2 and BwfMp2 codec
"dBpoweramp mp3 (Fraunhofer IIS) Codec" = dBpoweramp mp3 (Fraunhofer IIS) Codec
"dBpoweramp Musepack Codec" = dBpoweramp Musepack Codec
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"dBpoweramp Ogg Vorbis aoTuV Encoder" = dBpoweramp Ogg Vorbis aoTuV Encoder
"dBpoweramp Ogg Vorbis Codec" = dBpoweramp Ogg Vorbis Codec
"dBpoweramp OptimFROG Codec" = dBpoweramp OptimFROG Codec
"dBpoweramp Real Audio (Helix) Encoder" = dBpoweramp Real Audio (Helix) Encoder
"dBpoweramp Shorten Codec" = dBpoweramp Shorten Codec
"dBpoweramp Speex Codec" = dBpoweramp Speex Codec
"dBPoweramp tooLame MP2 codec" = dBPoweramp tooLame MP2 codec
"dBpoweramp Wave64 Codec" = dBpoweramp Wave64 Codec
"dBpoweramp WavPack Codec" = dBpoweramp WavPack Codec
"dBpoweramp Windows Media Audio 10 Codec" = dBpoweramp Windows Media Audio 10 Codec
"dBpowerAMP Windows Media Audio 9 Codec" = dBpowerAMP Windows Media Audio 9 Codec
"Discord 2 VST plug-in" = Discord 2 VST plug-in
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DreamStation DXi2" = DreamStation DXi2
"DRM7Tool" = Personal License Update Wizard for Windows Media Player
"EADM" = EA Download Manager
"East West Colossus" = East West Colossus
"East West EWQLSO Gold Edition" = East West EWQLSO Gold Edition
"East West Ra" = East West Ra
"East West Stormdrum Kompakt" = East West Stormdrum Kompakt
"eLicenser Control" = eLicenser Control
"Elysia mpressor VST RTAS_is1" = Elysia mpressor VST RTAS v1.0.2
"ESET Online Scanner" = ESET Online Scanner v3
"FabFilter Micro 1.02" = FabFilter Micro 1.02
"FabFilter One 3.12" = FabFilter One 3.12
"FabFilter Pro-C 1.14" = FabFilter Pro-C 1.14
"FabFilter Pro-Q 1.04" = FabFilter Pro-Q 1.04
"FabFilter Simplon 1.12" = FabFilter Simplon 1.12
"FabFilter Timeless 2.02" = FabFilter Timeless 2.02
"FabFilter Twin 2.03" = FabFilter Twin 2.03
"FabFilter Volcano 2.05" = FabFilter Volcano 2.05
"Finale 2010" = Finale 2010
"Finale PrintMusic 2010" = Finale PrintMusic 2010
"FLAC" = FLAC 1.2.1b (remove only)
"FLUX Spring Pack Bundle_is1" = FLUX Spring Pack Bundle v1.0.4.14
"Garritan Jazz Big Band" = Garritan Jazz Big Band
"G-Force" = G-Force
"Google Earth Pro 4.2" = Google Earth Pro 4.2
"GPL Ghostscript 8.56" = GPL Ghostscript 8.56
"GPL Ghostscript Fonts" = GPL Ghostscript Fonts
"G-PLAYER_is1" = G-PLAYER
"IL Download Manager" = IL Download Manager
"Illiminable FLAC" = Illiminable FLAC Filter
"iVisit Presenter_is1" = iVisit Presenter 02/19/10
"iZotope Ozone 3_is1" = iZotope Ozone 3
"iZotope Ozone 4_is1" = iZotope Ozone 4
"iZotope RX_is1" = iZotope RX
"iZotope VST Plug-ins_is1" = iZotope VST Plug-ins (Team V.R Corporate Edition Bundle)
"KeyToSound - Precision EQ_is1" = KeyToSound - Precision EQ 1.0 r4
"KeyToSound - Vintage EQ_is1" = KeyToSound - Vintage EQ 1.0 r4
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Basic)
"Lawo Plug-In Collection VST_is1" = Lawo Plug-In Collection VST v1.0.2
"Lexicon PSP 42 1.5.3 32bit" = Lexicon PSP 42 1.5.3 32bit
"Magic ISO Maker v5.5 (build 0272)" = Magic ISO Maker v5.5 (build 0272)
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyBass 1.0_is1" = ManyBass 1.0
"Massey DeEsser Demo" = Massey DeEsser Demo (Remove only)
"Massey TD5" = Massey TD5 (Remove only)
"Microangelo 5.0" = Microangelo 5.5
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Native Instruments Absynth 5" = Native Instruments Absynth 5
"Native Instruments Absynth Twilights" = Native Instruments Absynth Twilights
"Native Instruments Acoustic Refractions" = Native Instruments Acoustic Refractions
"Native Instruments Akoustik Piano" = Native Instruments Akoustik Piano
"Native Instruments B4 II" = Native Instruments B4 II
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Elektrik Piano 1.5" = Native Instruments Elektrik Piano 1.5
"Native Instruments Essential Bass" = Native Instruments Essential Bass
"Native Instruments Evolve Mutations" = Native Instruments Evolve Mutations
"Native Instruments FM8" = Native Instruments FM8
"Native Instruments Guitar Rig 3" = Native Instruments Guitar Rig 3
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A1E21995-127E-4B7F-8C4D-CB04AA8A58EF}_is1" = Advanced System Optimizer
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}" = PixiePack Codec Pack
"{AA2F4574-FD46-4897-8791-CD6CCD80E882}" = Native Instruments Evolve Mutations
"{AC76BA86-1033-F400-7760-000000000004}" = Adobe Acrobat 9 Pro - English, Français, Deutsch
"{AC76BA86-1033-F400-7760-000000000004}_932" = Adobe Acrobat 9.3.2 - CPSID_53951
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.1
"{AE0009FD-8F50-4565-835D-4432BD18D792}" = Samplitude 11
"{AEB9948B-4FF2-47C9-990E-47014492A0FE}" = MSXML 6.0 Parser
"{AF0821A0-D5D1-4F84-99DE-13777540EAE1}" = CounterSpy
"{AFE354A5-640F-4A23-94C8-0B441E8967CA}" = Digidesign Shared Plug-Ins 7.4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B178BACA-880B-4D20-85F9-522F7F2DECBE}" = AmpliTube Fender
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2552FA6-86E3-410D-84AD-265C2242D410}" = Native Instruments FM8
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B433D6F2-FC3F-4D63-9D1F-3119572064C2}" = AmpliTube 2 Live
"{B456FF50-CAEE-4E84-ABF5-9539AC21A527}" = M-Audio Oxygen DirectLink for Reason 1.0.1 (x86)
"{B4691C58-2A6A-4AFA-960E-AEB767639E44}" = PCM Native Reverb VST Plug-in
"{B59ED256-57C0-402A-8CDB-B97E4BCEFD97}_is1" = Overloud BREVERB 1.5.9 VST
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B7DAD844-34CD-456B-83CC-88065323DD69}" = WordBuilder
"{BA0D0121-A3BA-487D-9C78-7AB0E676C722}" = Miroslav Philharmonik
"{BD86F1AC-B594-46E4-85DC-1258AC9E2232}" = Steinberg Groove Agent ONE Content
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C7FAFC98-5ECC-40FC-B440-A5D5FE3A6A6E}" = Native Instruments Guitar Rig 4
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{C95AACD4-9507-4F5C-9D53-22B1ACCFECD1}" = AmpliTube2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{cd3a2409-1a62-4785-afe3-44ada813c9df}" = Native Instruments The Finger
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF07B703-ACF2-4003-AF18-1EA840920D38}}_is1" = Focusrite Plug-in Suite 1.0.2
"{CF1D7323-8A0A-49C7-83B0-088DB90721E2}" = AmpegSVX
"{CFADE4AF-C0CF-4A04-A776-741318F1658F}" = Content Transfer
"{D068E91E-D573-480B-AA24-4D8E5B00CE13}" = Native Instruments Kore 2
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D799CC16-F3B5-468D-AC67-6F77AAA98173}" = Native Instruments Komplete 6
"{D7F912D4-C237-4079-966A-5044A5025CBF}}_is1" = Focusrite Scarlett Plug-in Suite 1.1
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DD4E18F4-7880-4002-A123-F3820644BA82}" = PCM Native Reverb RTAS Plug-in
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{EA26983C-5A88-4A83-973D-D9596C6733F6}" = Fast Track Ultra 8R
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EEC2DAFD-5558-40AC-8E9C-5005C8F810E8}" = Microsoft Plus! for Windows XP
"{EED8D44F-CEBB-4298-8D0E-E01AF6AC0663}" = EZXJazz
"{EEE8DED0-8DCF-492A-865D-C20964420BE5}" = M-Tron Pro
"{F04145A5-8FD9-4a1c-9EE9-67A8D56E9BFB}}_is1" = Focusrite Guitar FX Plug-in Suite 1.0.2
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0EB3969-C007-4ABE-9245-990C5E021A8F}_is1" = Sibelius Sounds Essentials for Sibelius 6
"{F5631C47-0DED-438d-8D93-33E9552DCA8E}" = Native Instruments Kore 2 Controller Driver
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F6C14032-9CA3-410E-8563-9EA55BE93BC4}" = Native Instruments North India
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FF600C37-6328-4348-A67A-3F85D8039604}" = Native Instruments Kore Player
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Abbeyroadplugins EMI Brilliance Pack VST RTAS_is1" = Abbeyroadplugins EMI Brilliance Pack VST RTAS v1.0.6
"Abbeyroadplugins EMI RS 124 Compressor VST RTAS_is1" = Abbeyroadplugins EMI RS 124 Compressor VST RTAS v1.0
"Abbeyroadplugins EMI TG 12413 Limiter VST RTAS_is1" = Abbeyroadplugins EMI TG 12413 Limiter VST RTAS v2.0.1
"Abbeyroadplugins EMI TG Mastering Pack VST RTAS_is1" = Abbeyroadplugins EMI TG Mastering Pack VST RTAS v1.0.2
"Acoustica Effects Pack" = Acoustica Effects Pack
"Adobe AIR" = Adobe AIR
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
"Analog Factory_is1" = Analog Factory 2.5
"Antares Autotune Evo VST RTAS_is1" = Antares Autotune Evo VST RTAS v6.0.9
"Antares AVOX Evo VST RTAS_is1" = Antares AVOX Evo VST RTAS v3.0.2
"Antares Harmony Engine VST RTAS_is1" = Antares Harmony Engine VST RTAS v1.0
"Antares Microphone Modeler DX v1.32" = Antares Microphone Modeler DX v1.32
"ARIA Engine_is1" = ARIA Engine v1.0.7.3
"AudioEase Altiverb VST RTAS_is1" = AudioEase Altiverb VST RTAS v6.12
"AudioEase Speakersphone VST RTAS_is1" = AudioEase Speakersphone VST RTAS v1.03
"AVG9Uninstall" = AVG Free 9.0
"BBE Sonic Sweet Bundle VST RTAS_is1" = BBE Sonic Sweet Bundle VST RTAS v1.1
"BBE StompWare Bundle VST RTAS_is1" = BBE StompWare Bundle VST RTAS v1.0
"BFD XFL" = BFD XFL
"Bias Sound Soap 2 DX RTAS VST v2.01" = Bias Sound Soap 2 DX RTAS VST v2.01
"BitTorrent" = BitTorrent
"Bomb Factory (48k Edition) v3.15" = Bomb Factory (48k Edition) v3.15
"Brainworx BX DynEQ Bundle VST RTAS_is1" = Brainworx BX DynEQ Bundle VST RTAS v1.1.1
"Brass 2.0.1_is1" = Brass 2.0.1
"Cabinet" = Cabinet
"Cakewalk Beatscape_is1" = Beatscape 1.0
"Cakewalk Dimension Pro_is1" = Dimension Pro
"Cakewalk SONAR 8 Content_is1" = SONAR 8 Content
"CENTAURUS_is1" = Centaurus 1.0 r2
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Chicken Systems Translator v2.9.5.8" = Chicken Systems Translator v2.9.5.8
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"dBpoweramp AAC Encoder" = dBpoweramp AAC Encoder
"dBpoweramp Aiff Codec" = dBpoweramp Aiff Codec
"dBpoweramp CD Writer" = dBpoweramp CD Writer
"dBpoweramp CLI Encoder" = dBpoweramp CLI Encoder
"dBpoweramp Dalet Codec" = dBpoweramp Dalet Codec
"dBpoweramp DirectShow Decoder" = dBpoweramp DirectShow Decoder
"dBpoweramp DSP Effects" = dBpoweramp DSP Effects
"dBpoweramp FLAC Codec" = dBpoweramp FLAC Codec
"dBpoweramp m4a Codec" = dBpoweramp m4a Codec
"dBpoweramp m4a Utilities" = dBpoweramp m4a Utilities
"dBpoweramp m4b Audio book Encoder" = dBpoweramp m4b Audio book Encoder
"dBpoweramp Midi Decoder" = dBpoweramp Midi Decoder
"dBpoweramp Monkeys Audio Codec" = dBpoweramp Monkeys Audio Codec
"dBpoweramp Mp2 and BwfMp2 codec" = dBpoweramp Mp2 and BwfMp2 codec
"dBpoweramp mp3 (Fraunhofer IIS) Codec" = dBpoweramp mp3 (Fraunhofer IIS) Codec
"dBpoweramp Musepack Codec" = dBpoweramp Musepack Codec
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"dBpoweramp Ogg Vorbis aoTuV Encoder" = dBpoweramp Ogg Vorbis aoTuV Encoder
"dBpoweramp Ogg Vorbis Codec" = dBpoweramp Ogg Vorbis Codec
"dBpoweramp OptimFROG Codec" = dBpoweramp OptimFROG Codec
"dBpoweramp Real Audio (Helix) Encoder" = dBpoweramp Real Audio (Helix) Encoder
"dBpoweramp Shorten Codec" = dBpoweramp Shorten Codec
"dBpoweramp Speex Codec" = dBpoweramp Speex Codec
"dBPoweramp tooLame MP2 codec" = dBPoweramp tooLame MP2 codec
"dBpoweramp Wave64 Codec" = dBpoweramp Wave64 Codec
"dBpoweramp WavPack Codec" = dBpoweramp WavPack Codec
"dBpoweramp Windows Media Audio 10 Codec" = dBpoweramp Windows Media Audio 10 Codec
"dBpowerAMP Windows Media Audio 9 Codec" = dBpowerAMP Windows Media Audio 9 Codec
"Discord 2 VST plug-in" = Discord 2 VST plug-in
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DreamStation DXi2" = DreamStation DXi2
"DRM7Tool" = Personal License Update Wizard for Windows Media Player
"EADM" = EA Download Manager
"East West Colossus" = East West Colossus
"East West EWQLSO Gold Edition" = East West EWQLSO Gold Edition
"East West Ra" = East West Ra
"East West Stormdrum Kompakt" = East West Stormdrum Kompakt
"eLicenser Control" = eLicenser Control
"Elysia mpressor VST RTAS_is1" = Elysia mpressor VST RTAS v1.0.2
"ESET Online Scanner" = ESET Online Scanner v3
"FabFilter Micro 1.02" = FabFilter Micro 1.02
"FabFilter One 3.12" = FabFilter One 3.12
"FabFilter Pro-C 1.14" = FabFilter Pro-C 1.14
"FabFilter Pro-Q 1.04" = FabFilter Pro-Q 1.04
"FabFilter Simplon 1.12" = FabFilter Simplon 1.12
"FabFilter Timeless 2.02" = FabFilter Timeless 2.02
"FabFilter Twin 2.03" = FabFilter Twin 2.03
"FabFilter Volcano 2.05" = FabFilter Volcano 2.05
"Finale 2010" = Finale 2010
"Finale PrintMusic 2010" = Finale PrintMusic 2010
"FLAC" = FLAC 1.2.1b (remove only)
"FLUX Spring Pack Bundle_is1" = FLUX Spring Pack Bundle v1.0.4.14
"Garritan Jazz Big Band" = Garritan Jazz Big Band
"G-Force" = G-Force
"Google Earth Pro 4.2" = Google Earth Pro 4.2
"GPL Ghostscript 8.56" = GPL Ghostscript 8.56
"GPL Ghostscript Fonts" = GPL Ghostscript Fonts
"G-PLAYER_is1" = G-PLAYER
"IL Download Manager" = IL Download Manager
"Illiminable FLAC" = Illiminable FLAC Filter
"iVisit Presenter_is1" = iVisit Presenter 02/19/10
"iZotope Ozone 3_is1" = iZotope Ozone 3
"iZotope Ozone 4_is1" = iZotope Ozone 4
"iZotope RX_is1" = iZotope RX
"iZotope VST Plug-ins_is1" = iZotope VST Plug-ins (Team V.R Corporate Edition Bundle)
"KeyToSound - Precision EQ_is1" = KeyToSound - Precision EQ 1.0 r4
"KeyToSound - Vintage EQ_is1" = KeyToSound - Vintage EQ 1.0 r4
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Basic)
"Lawo Plug-In Collection VST_is1" = Lawo Plug-In Collection VST v1.0.2
"Lexicon PSP 42 1.5.3 32bit" = Lexicon PSP 42 1.5.3 32bit
"Magic ISO Maker v5.5 (build 0272)" = Magic ISO Maker v5.5 (build 0272)
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyBass 1.0_is1" = ManyBass 1.0
"Massey DeEsser Demo" = Massey DeEsser Demo (Remove only)
"Massey TD5" = Massey TD5 (Remove only)
"Microangelo 5.0" = Microangelo 5.5
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Native Instruments Absynth 5" = Native Instruments Absynth 5
"Native Instruments Absynth Twilights" = Native Instruments Absynth Twilights
"Native Instruments Acoustic Refractions" = Native Instruments Acoustic Refractions
"Native Instruments Akoustik Piano" = Native Instruments Akoustik Piano
"Native Instruments B4 II" = Native Instruments B4 II
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Elektrik Piano 1.5" = Native Instruments Elektrik Piano 1.5
"Native Instruments Essential Bass" = Native Instruments Essential Bass
"Native Instruments Evolve Mutations" = Native Instruments Evolve Mutations
"Native Instruments FM8" = Native Instruments FM8
"Native Instruments Guitar Rig 3" = Native Instruments Guitar Rig 3
"Native Instruments Guitar Rig 4" = Native Instruments Guitar Rig 4
"Native Instruments Komplete 5" = Native Instruments Komplete 5
"Native Instruments Komplete 6" = Native Instruments Komplete 6
"Native Instruments Kontakt 4" = Native Instruments Kontakt 4
"Native Instruments Kontakt 4 Factory Content" = Native Instruments Kontakt 4 Factory Content
"Native Instruments Kore 2" = Native Instruments Kore 2
"Native Instruments Kore 2 Controller Driver" = Native Instruments Kore 2 Controller Driver
"Native Instruments Kore Player" = Native Instruments Kore Player
"Native Instruments Kore v2.0.1.007 Updater - Patcher" = Native Instruments Kore v2.0.1.007 Updater - Patcher
"Native Instruments Kore2 Controller Driver" = Native Instruments Kore2 Controller Driver
"Native Instruments North India" = Native Instruments North India
"Native Instruments Service Center" = Native Instruments Service Center
"Native Instruments The Finger" = Native Instruments The Finger
"Native Instruments Urban Arsenal" = Native Instruments Urban Arsenal
"Nebula3Free" = AcusticaAudio Nebula3Free
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NeroVision!UninstallKey" = Nero Digital
"Neuratron AudioScore Lite" = Neuratron AudioScore Lite
"Neuratron PhotoScore Lite" = Neuratron PhotoScore Lite
"NomadFactory Analog Mastering Tools VST RTAS_is1" = NomadFactory Analog Mastering Tools VST RTAS v1.0
"NomadFactory Blue Tubes Analog TrackBox VST RTAS_is1" = NomadFactory Blue Tubes Analog TrackBox VST RTAS v1.3
"NomadFactory Blue Tubes Dynamics Pack_is1" = NomadFactory Blue Tubes Dynamics Pack VST RTAS v3.1
"NomadFactory Blue Tubes Effects Pack VST RTAS_is1" = NomadFactory Blue Tubes Effects Pack VST RTAS v3.2
"NomadFactory Blue Tubes Equalizers Pack VST RTAS_is1" = NomadFactory Blue Tubes Equalizers Pack VST RTAS v3.2
"NomadFactory BlueVerb DRV-2080 VST RTAS_is1" = NomadFactory BlueVerb DRV-2080 VST RTAS v1.4
"NomadFactory Essential Studio Suite VST RTAS_is1" = NomadFactory Essential Studio Suite VST RTAS v1.5
"NomadFactory Integral Studio Pack VST RTAS_is1" = NomadFactory Integral Studio Pack VST RTAS v1.1
"NomadFactory Limiting Amplifier LM-662 VST RTAS_is1" = NomadFactory Limiting Amplifier LM-662 VST RTAS v1.3
"NomadFactory Liquid Bundle VST RTAS_is1" = NomadFactory Liquid Bundle VST RTAS v2.4
"NomadFactory Program Equalizer EQP-4 VST RTAS_is1" = NomadFactory Program Equalizer EQP-4 VST RTAS v1.3
"NomadFactory Retrology M-Tone EQ VST RTAS_is1" = NomadFactory Retrology M-Tone EQ VST RTAS v1.0
"NomadFactory Rock Amp Legends VST RTAS_is1" = NomadFactory Rock Amp Legends VST RTAS v1.5
"NomadFactory Studio Channel SC-226 VST RTAS_is1" = NomadFactory Studio Channel SC-226 VST RTAS v1.3
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Ogg Codecs" = Xiph.Org Ogg Codecs 0.83.17220 32-bit
"PCM Native Reverb RTAS Plug-in" = PCM Native Reverb RTAS Plug-in
"PCM Native Reverb VST Plug-in" = PCM Native Reverb VST Plug-in
"PhaseTwo VST plug-in" = PhaseTwo VST plug-in
"PSP 84 1.5.3 32bit" = PSP 84 1.5.3 32bit
"PSP Audioware Xenon VST RTAS_is1" = PSP Audioware Xenon VST RTAS v1.1.1
"PSP MasterComp 1.5.4" = PSP MasterComp 1.5.4
"PSP MasterQ 1.5.2" = PSP MasterQ 1.5.2
"PSP MixPack2 2.0.3" = PSP MixPack2 2.0.3
"PSP oldTimer 1.1.6 32bit" = PSP oldTimer 1.1.6 32bit
"PSP StereoPack 1.9.0" = PSP StereoPack 1.9.0
"PSP VintageWarmer2 2.5.1 32bit" = PSP VintageWarmer2 2.5.1 32bit
"REAPER" = REAPER
"Reason4_is1" = Reason 4.0
"ReValver Mk III_is1" = ReValver Mk III
"Rob Papen BLUE RTAS 1.8.1_is1" = Rob Papen BLUE RTAS 1.8.5d
"Roger Nichols Digital SIGNATURE Bundle VST RTAS_is1" = Roger Nichols Digital SIGNATURE Bundle VST RTAS v1.9.3
"Softube Acoustic Feedback VST RTAS_is1" = Softube Acoustic Feedback VST RTAS v1.0.7
"Softube Bass Amp Room VST RTAS_is1" = Softube Bass Amp Room VST RTAS v1.0.2
"Softube FET Compressor VST RTAS_is1" = Softube FET Compressor VST RTAS v1.0.3
"Softube Passive-Active Pack VST RTAS_is1" = Softube Passive-Active Pack VST RTAS v1.0.2
"Softube Spring Reverb VST RTAS_is1" = Softube Spring Reverb VST RTAS v1.0.4
"Softube Trident A-Range VST RTAS_is1" = Softube Trident A-Range VST RTAS v1.0.2
"Softube Tube Delay VST RTAS_is1" = Softube Tube Delay VST RTAS v1.0.5
"Softube Tube-Tech CL 1B VST RTAS_is1" = Softube Tube-Tech CL 1B VST RTAS v1.0.3
"Softube Valley People Dyna-mite VST RTAS_is1" = Softube Valley People Dyna-mite VST RTAS v1.0.1
"Softube Vintage Amp Room VST RTAS_is1" = Softube Vintage Amp Room VST RTAS v1.0.8
"Sonalksis Plug-Ins for Windows_is1" = Sonalksis Plug-Ins for Windows 3.00
"SONAR85Producer_is1" = SONAR 8.5 Producer
"SONAR8Producer_is1" = SONAR 8.0 Producer Edition
"Sonnox Oxford Inflator Native VST_is1" = Sonnox Oxford Inflator Native VST v1.5.1
"Sonnox Oxford Limiter Native VST_is1" = Sonnox Oxford Limiter Native VST v1.1.1
"Sonnox Oxford R3 Dynamics Native VST_is1" = Sonnox Oxford R3 Dynamics Native VST v1.3.1
"Sonnox Oxford R3 EQ Native VST_is1" = Sonnox Oxford R3 EQ Native VST v1.6.1
"Sonnox Oxford Reverb Native VST_is1" = Sonnox Oxford Reverb Native VST v1.0
"Sonnox Oxford TransMod Native VST_is1" = Sonnox Oxford TransMod Native VST v1.3.1
"SoundFonts.it GS-201 Tape Echo v1.0 VST" = SoundFonts.it GS-201 Tape Echo v1.0 VST
"SoundToys Native Effects VST RTAS_is1" = SoundToys Native Effects VST RTAS v4.0.2
"SPL Analog Code EQ Rangers Volume One VST RTAS_is1" = SPL Analog Code EQ Rangers Volume One VST RTAS v1.2
"SPL Analog Code MicroPlugs VST RTAS_is1" = SPL Analog Code MicroPlugs VST RTAS v1.1
"SPL Analog Code Transient Designer VST RTAS_is1" = SPL Analog Code Transient Designer VST RTAS v1.2
"SPL Analog Code TwinTube Processor VST RTAS_is1" = SPL Analog Code TwinTube Processor VST RTAS v1.2
"SPL Analog Code Vitalizer MK2-T VST RTAS_is1" = SPL Analog Code Vitalizer MK2-T VST RTAS v1.2
"Studio Devil AMP 1.1_is1" = Studio Devil AMP 1.1
"Studio Devil VBA_is1" = Studio Devil VBA 1.2
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"Ultra Analog VA-1" = Applied Acoustics Systems - Ultra Analog VA-1 v1.1.2
"URS Classic Console Strip Pro VST RTAS_is1" = URS Classic Console Strip Pro VST RTAS v1.0
"URS Plug-In Bundle Complete VST RTAS_is1" = URS Plug-In Bundle Complete VST RTAS v1.0
"uTorrent" = µTorrent
"VirSyn VTAPE VST RTAS_is1" = VirSyn VTAPE VST RTAS v1.3.0
"VLC media player" = VLC media player 1.0.2
"Voxengo Analogflux Suite" = Voxengo Analogflux Suite 1.5.2
"Voxengo CurveEQ VST" = Voxengo CurveEQ VST 2.6
"Voxengo Marquis Compressor VST" = Voxengo Marquis Compressor VST 1.4
"Voxengo Warmifier VST" = Voxengo Warmifier VST 1.5.1
"Vst To Rtas Adapter V2.11" = Vst To Rtas Adapter V2.11
"Wave Arts FinalPlug" = Wave Arts FinalPlug
"Wave Arts Master Restoration" = Wave Arts Master Restoration
"Wave Arts MultiDynamics" = Wave Arts MultiDynamics
"Wave Arts Power Suite" = Wave Arts Power Suite
"Wave Arts TrackPlug" = Wave Arts TrackPlug
"Wave Arts Tube Saturator" = Wave Arts Tube Saturator
"Waves API Collection" = Waves API Collection
"Waves GTR 3" = Waves GTR 3
"Waves IR1 v5.0" = Waves IR1 v5.0
"Waves L3 16" = Waves L3 16
"Waves L3 LL" = Waves L3 LL
"Waves Mercury Complete VST DX RTAS_is1" = Waves Mercury Complete VST DX RTAS v1.01
"Waves SSL Collection v1.2" = Waves SSL Collection v1.2
"Waves Vocal Bundle v1.1" = Waves Vocal Bundle v1.1
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 8/4/2010 5:49:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 5:49:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 6:41:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 6:41:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 7:40:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 7:40:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 8:14:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 8:14:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 9:33:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 9:33:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
[ System Events ]
Error - 8/4/2010 3:38:19 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:20 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:22 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:23 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:24 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:26 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:27 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:28 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:29 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:31 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
< End of report >
"Native Instruments Komplete 5" = Native Instruments Komplete 5
"Native Instruments Komplete 6" = Native Instruments Komplete 6
"Native Instruments Kontakt 4" = Native Instruments Kontakt 4
"Native Instruments Kontakt 4 Factory Content" = Native Instruments Kontakt 4 Factory Content
"Native Instruments Kore 2" = Native Instruments Kore 2
"Native Instruments Kore 2 Controller Driver" = Native Instruments Kore 2 Controller Driver
"Native Instruments Kore Player" = Native Instruments Kore Player
"Native Instruments Kore v2.0.1.007 Updater - Patcher" = Native Instruments Kore v2.0.1.007 Updater - Patcher
"Native Instruments Kore2 Controller Driver" = Native Instruments Kore2 Controller Driver
"Native Instruments North India" = Native Instruments North India
"Native Instruments Service Center" = Native Instruments Service Center
"Native Instruments The Finger" = Native Instruments The Finger
"Native Instruments Urban Arsenal" = Native Instruments Urban Arsenal
"Nebula3Free" = AcusticaAudio Nebula3Free
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NeroVision!UninstallKey" = Nero Digital
"Neuratron AudioScore Lite" = Neuratron AudioScore Lite
"Neuratron PhotoScore Lite" = Neuratron PhotoScore Lite
"NomadFactory Analog Mastering Tools VST RTAS_is1" = NomadFactory Analog Mastering Tools VST RTAS v1.0
"NomadFactory Blue Tubes Analog TrackBox VST RTAS_is1" = NomadFactory Blue Tubes Analog TrackBox VST RTAS v1.3
"NomadFactory Blue Tubes Dynamics Pack_is1" = NomadFactory Blue Tubes Dynamics Pack VST RTAS v3.1
"NomadFactory Blue Tubes Effects Pack VST RTAS_is1" = NomadFactory Blue Tubes Effects Pack VST RTAS v3.2
"NomadFactory Blue Tubes Equalizers Pack VST RTAS_is1" = NomadFactory Blue Tubes Equalizers Pack VST RTAS v3.2
"NomadFactory BlueVerb DRV-2080 VST RTAS_is1" = NomadFactory BlueVerb DRV-2080 VST RTAS v1.4
"NomadFactory Essential Studio Suite VST RTAS_is1" = NomadFactory Essential Studio Suite VST RTAS v1.5
"NomadFactory Integral Studio Pack VST RTAS_is1" = NomadFactory Integral Studio Pack VST RTAS v1.1
"NomadFactory Limiting Amplifier LM-662 VST RTAS_is1" = NomadFactory Limiting Amplifier LM-662 VST RTAS v1.3
"NomadFactory Liquid Bundle VST RTAS_is1" = NomadFactory Liquid Bundle VST RTAS v2.4
"NomadFactory Program Equalizer EQP-4 VST RTAS_is1" = NomadFactory Program Equalizer EQP-4 VST RTAS v1.3
"NomadFactory Retrology M-Tone EQ VST RTAS_is1" = NomadFactory Retrology M-Tone EQ VST RTAS v1.0
"NomadFactory Rock Amp Legends VST RTAS_is1" = NomadFactory Rock Amp Legends VST RTAS v1.5
"NomadFactory Studio Channel SC-226 VST RTAS_is1" = NomadFactory Studio Channel SC-226 VST RTAS v1.3
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Ogg Codecs" = Xiph.Org Ogg Codecs 0.83.17220 32-bit
"PCM Native Reverb RTAS Plug-in" = PCM Native Reverb RTAS Plug-in
"PCM Native Reverb VST Plug-in" = PCM Native Reverb VST Plug-in
"PhaseTwo VST plug-in" = PhaseTwo VST plug-in
"PSP 84 1.5.3 32bit" = PSP 84 1.5.3 32bit
"PSP Audioware Xenon VST RTAS_is1" = PSP Audioware Xenon VST RTAS v1.1.1
"PSP MasterComp 1.5.4" = PSP MasterComp 1.5.4
"PSP MasterQ 1.5.2" = PSP MasterQ 1.5.2
"PSP MixPack2 2.0.3" = PSP MixPack2 2.0.3
"PSP oldTimer 1.1.6 32bit" = PSP oldTimer 1.1.6 32bit
"PSP StereoPack 1.9.0" = PSP StereoPack 1.9.0
"PSP VintageWarmer2 2.5.1 32bit" = PSP VintageWarmer2 2.5.1 32bit
"REAPER" = REAPER
"Reason4_is1" = Reason 4.0
"ReValver Mk III_is1" = ReValver Mk III
"Rob Papen BLUE RTAS 1.8.1_is1" = Rob Papen BLUE RTAS 1.8.5d
"Roger Nichols Digital SIGNATURE Bundle VST RTAS_is1" = Roger Nichols Digital SIGNATURE Bundle VST RTAS v1.9.3
"Softube Acoustic Feedback VST RTAS_is1" = Softube Acoustic Feedback VST RTAS v1.0.7
"Softube Bass Amp Room VST RTAS_is1" = Softube Bass Amp Room VST RTAS v1.0.2
"Softube FET Compressor VST RTAS_is1" = Softube FET Compressor VST RTAS v1.0.3
"Softube Passive-Active Pack VST RTAS_is1" = Softube Passive-Active Pack VST RTAS v1.0.2
"Softube Spring Reverb VST RTAS_is1" = Softube Spring Reverb VST RTAS v1.0.4
"Softube Trident A-Range VST RTAS_is1" = Softube Trident A-Range VST RTAS v1.0.2
"Softube Tube Delay VST RTAS_is1" = Softube Tube Delay VST RTAS v1.0.5
"Softube Tube-Tech CL 1B VST RTAS_is1" = Softube Tube-Tech CL 1B VST RTAS v1.0.3
"Softube Valley People Dyna-mite VST RTAS_is1" = Softube Valley People Dyna-mite VST RTAS v1.0.1
"Softube Vintage Amp Room VST RTAS_is1" = Softube Vintage Amp Room VST RTAS v1.0.8
"Sonalksis Plug-Ins for Windows_is1" = Sonalksis Plug-Ins for Windows 3.00
"SONAR85Producer_is1" = SONAR 8.5 Producer
"SONAR8Producer_is1" = SONAR 8.0 Producer Edition
"Sonnox Oxford Inflator Native VST_is1" = Sonnox Oxford Inflator Native VST v1.5.1
"Sonnox Oxford Limiter Native VST_is1" = Sonnox Oxford Limiter Native VST v1.1.1
"Sonnox Oxford R3 Dynamics Native VST_is1" = Sonnox Oxford R3 Dynamics Native VST v1.3.1
"Sonnox Oxford R3 EQ Native VST_is1" = Sonnox Oxford R3 EQ Native VST v1.6.1
"Sonnox Oxford Reverb Native VST_is1" = Sonnox Oxford Reverb Native VST v1.0
"Sonnox Oxford TransMod Native VST_is1" = Sonnox Oxford TransMod Native VST v1.3.1
"SoundFonts.it GS-201 Tape Echo v1.0 VST" = SoundFonts.it GS-201 Tape Echo v1.0 VST
"SoundToys Native Effects VST RTAS_is1" = SoundToys Native Effects VST RTAS v4.0.2
"SPL Analog Code EQ Rangers Volume One VST RTAS_is1" = SPL Analog Code EQ Rangers Volume One VST RTAS v1.2
"SPL Analog Code MicroPlugs VST RTAS_is1" = SPL Analog Code MicroPlugs VST RTAS v1.1
"SPL Analog Code Transient Designer VST RTAS_is1" = SPL Analog Code Transient Designer VST RTAS v1.2
"SPL Analog Code TwinTube Processor VST RTAS_is1" = SPL Analog Code TwinTube Processor VST RTAS v1.2
"SPL Analog Code Vitalizer MK2-T VST RTAS_is1" = SPL Analog Code Vitalizer MK2-T VST RTAS v1.2
"Studio Devil AMP 1.1_is1" = Studio Devil AMP 1.1
"Studio Devil VBA_is1" = Studio Devil VBA 1.2
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"Ultra Analog VA-1" = Applied Acoustics Systems - Ultra Analog VA-1 v1.1.2
"URS Classic Console Strip Pro VST RTAS_is1" = URS Classic Console Strip Pro VST RTAS v1.0
"URS Plug-In Bundle Complete VST RTAS_is1" = URS Plug-In Bundle Complete VST RTAS v1.0
"uTorrent" = µTorrent
"VirSyn VTAPE VST RTAS_is1" = VirSyn VTAPE VST RTAS v1.3.0
"VLC media player" = VLC media player 1.0.2
"Voxengo Analogflux Suite" = Voxengo Analogflux Suite 1.5.2
"Voxengo CurveEQ VST" = Voxengo CurveEQ VST 2.6
"Voxengo Marquis Compressor VST" = Voxengo Marquis Compressor VST 1.4
"Voxengo Warmifier VST" = Voxengo Warmifier VST 1.5.1
"Vst To Rtas Adapter V2.11" = Vst To Rtas Adapter V2.11
"Wave Arts FinalPlug" = Wave Arts FinalPlug
"Wave Arts Master Restoration" = Wave Arts Master Restoration
"Wave Arts MultiDynamics" = Wave Arts MultiDynamics
"Wave Arts Power Suite" = Wave Arts Power Suite
"Wave Arts TrackPlug" = Wave Arts TrackPlug
"Wave Arts Tube Saturator" = Wave Arts Tube Saturator
"Waves API Collection" = Waves API Collection
"Waves GTR 3" = Waves GTR 3
"Waves IR1 v5.0" = Waves IR1 v5.0
"Waves L3 16" = Waves L3 16
"Waves L3 LL" = Waves L3 LL
"Waves Mercury Complete VST DX RTAS_is1" = Waves Mercury Complete VST DX RTAS v1.01
"Waves SSL Collection v1.2" = Waves SSL Collection v1.2
"Waves Vocal Bundle v1.1" = Waves Vocal Bundle v1.1
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 8/4/2010 5:49:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 5:49:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 6:41:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 6:41:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 7:40:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 7:40:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 8:14:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 8:14:50 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 9:33:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.
Error - 8/4/2010 9:33:16 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.
[ System Events ]
Error - 8/4/2010 3:38:19 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:20 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:22 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:23 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:24 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:26 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:27 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:28 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:29 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
Error - 8/4/2010 3:38:31 PM | Computer Name = DIEGO-96CBBBCE6 | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk0\D, has a bad block.
< End of report >
Broni
Posts: 56,041 +516
Very well
You can't run two AV programs. One of them has to go.
If AVG, make sure, you use AVG Remover: http://www.avg.com/us-en/download-tools
Combofix log looks good
Uninstall Combofix:
Go Start > Run [Vista users, go Start>"Start search"]
Type in:
Combofix /Uninstall
Note the space between the "Combofix" and the "/Uninstall"
Click OK (Vista users - press Enter).
Restart computer.
======================================================================
Download OTL to your Desktop.
* Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
* Under the Custom Scan box paste this in:
netsvcs
drivers32 /all
%SYSTEMDRIVE%\*.*
%systemroot%\system32\Spool\prtprocs\w32x86\*.dll
%systemroot%\system32\*.wt
%systemroot%\system32\*.ruy
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\system32\spool\prtprocs\w32x86\*.tmp
%systemroot%\*. /mp /s
/md5start
/md5stop
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\user32.dll /md5
%systemroot%\system32\ws2_32.dll /md5
%systemroot%\system32\ws2help.dll /md5
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
* Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
You can't run two AV programs. One of them has to go.
If AVG, make sure, you use AVG Remover: http://www.avg.com/us-en/download-tools
Combofix log looks good
Uninstall Combofix:
Go Start > Run [Vista users, go Start>"Start search"]
Type in:
Combofix /Uninstall
Note the space between the "Combofix" and the "/Uninstall"
Click OK (Vista users - press Enter).
Restart computer.
======================================================================
Download OTL to your Desktop.
* Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
* Under the Custom Scan box paste this in:
netsvcs
drivers32 /all
%SYSTEMDRIVE%\*.*
%systemroot%\system32\Spool\prtprocs\w32x86\*.dll
%systemroot%\system32\*.wt
%systemroot%\system32\*.ruy
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\system32\spool\prtprocs\w32x86\*.tmp
%systemroot%\*. /mp /s
/md5start
/md5stop
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\user32.dll /md5
%systemroot%\system32\ws2_32.dll /md5
%systemroot%\system32\ws2help.dll /md5
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
* Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows: OTL.txt and Extras.txt. These are saved in the same location as OTL.
- Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them back here.
- Status
