.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_22
Run by Kristopher at 15:35:08 on 2011-10-26
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.4062.1837 [GMT -7:00]
.
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\RtkAudioService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\SysWOW64\svchost.exe -k Akamai
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files (x86)\Common Files\Motive\McciServiceHost.exe
C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnect.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\svchost.exe -k HPService
C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\ATT-SST\McciTrayApp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
C:\Program Files (x86)\NetZero\exec.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\PeoplePC\ISP8330\Browser\Bartshel.exe
C:\Program Files\Sony Corporation\SmartWi Connection Utility\CCP.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Sony Corporation\SmartWi Connection Utility\SmartWi.exe
C:\PROGRA~2\PeoplePC\ISP8330\Browser\PPShared.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\ProgramData\saXsAQWSemKq.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\ProgramData\6DSS92c31Apgjk.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Common Files\Motive\McciContextHookShim.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Sony Corporation\SmartWi Connection Utility\PowerManager.exe
C:\Program Files\Sony Corporation\SmartWi Connection Utility\ThirdPartyAppMgr.exe
C:\Program Files\Sony Corporation\SmartWi Connection Utility\UIManager.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files (x86)\NetZero\exec.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\SysWOW64\ping.exe
C:\Users\Kristopher\Downloads\5u6dyc5b.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\msfeedssync.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://att.my.yahoo.com/
uSearch Bar =
mSearchAssistant =
mWinlogon: Userinit=userinit.exe,
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Pop-up Blocker: {52706ef7-d7a2-49ad-a615-e903858cf284} - C:\Program Files (x86)\NetZero\qsacc\X1IEBHO.dll
BHO: Accelerator Plugin: {656ec4b7-072b-4698-b504-2a414c1f0037} - C:\PROGRA~2\PEOPLE~1\PRPL_I~1.DLL
BHO: ShopShieldCompanion: {6e0173e2-c764-490f-8035-d4c8091774a8} - C:\Program Files (x86)\Kemesa, LLC\Shop Shield Internet Explorer Companion\adxloader.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: NetZero Toolbar Helper: {fe3098b0-04a3-41fd-8ca9-bea39cb14c87} - C:\Program Files (x86)\NetZero\ucreg.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: ZeroBar: {f0f8ecbe-d460-4b34-b007-56a92e8f84a7} - C:\Program Files (x86)\NetZero\Toolbar.dll
TB: Shop Shield: {596de2ef-c6de-400f-9f8d-288fed8e323d} - C:\Program Files (x86)\Kemesa, LLC\Shop Shield Internet Explorer Companion\adxloader.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: ShopShield: {89d719ad-0468-4539-bc75-8e59699e7912} - C:\Program Files (x86)\Kemesa, LLC\Shop Shield Internet Explorer Companion\adxloader.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun
uRun: [NetZero_uoltray] C:\Program Files (x86)\NetZero\exec.exe regrun
uRun: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
mRun: [SmartWiHelper] "C:\Program Files\Sony Corporation\SmartWi Connection Utility\SmartWiHelper.exe" /WindowsStartup
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] "C:\Program Files (x86)\Cyberlink\Shared files\brs.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Bart Station] "C:\Program Files (x86)\PeoplePC\ISP8330\BIN\PPCOLink.exe" -STATION
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SwitchBoard] "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [saXsAQWSemKq.exe] C:\ProgramData\saXsAQWSemKq.exe
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [Malwarebytes' Anti-Malware (reboot)] "C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
mRun: [Malwarebytes' Anti-Malware] "C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
dRun: [1627327370] C:\Windows\TEMP\\jucheck.exe
dRun: [Motive Update] rundll32 "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\MicrosoftUpdate\Microsoftupdt32.dll",DllRegisterServer
dRun: [volmgr] C:\Windows\system32\config\systemprofile\AppData\Local\volmgr.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
dPolicies-system: DisableTaskMgr = 1 (0x1)
IE: Display All Images with Full Quality - "C:\Program Files (x86)\NetZero\qsacc\appres.dll/228"
IE: Display Image with Full Quality - "C:\Program Files (x86)\NetZero\qsacc\appres.dll/227"
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {89D719AD-0468-4539-BC75-8E59699E7912} - {89D719AD-0468-4539-BC75-8E59699E7912} - C:\Program Files (x86)\Kemesa, LLC\Shop Shield Internet Explorer Companion\adxloader.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
LSP: mswsock.dll
Trusted Zone: $talisma_url$
Trusted Zone: netzero.com
Trusted Zone: netzero.net
DPF: {02CF1781-EA91-4FA5-A200-646E8241987C} - hxxp://esupport.sony.com/VaioInfo.CAB
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 68.87.69.150 68.87.85.102
TCP: Interfaces\{C2E5C1C7-AC38-419F-A30F-6745348862BC} : DhcpNameServer = 68.87.69.150 68.87.85.102
TCP: Interfaces\{C4FC6294-5DDA-496C-91A9-D4B43772E63C} : DhcpNameServer = 68.87.69.150 68.87.85.102
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 consrv:ConServerDllInitialization,2
BHO-X64: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO-X64: HP Print Enhancer - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Pop-up Blocker: {52706EF7-D7A2-49AD-A615-E903858CF284} - C:\Program Files (x86)\NetZero\qsacc\X1IEBHO.dll
BHO-X64: Accelerator Plugin: {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\PROGRA~2\PEOPLE~1\PRPL_I~1.DLL
BHO-X64: ShopShieldCompanion: {6e0173e2-c764-490f-8035-d4c8091774a8} - C:\Program Files (x86)\Kemesa, LLC\Shop Shield Internet Explorer Companion\adxloader.dll
BHO-X64: 0x1 - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO-X64: NetZero Toolbar Helper: {FE3098B0-04A3-41fd-8CA9-BEA39CB14C87} - C:\Program Files (x86)\NetZero\ucreg.dll
BHO-X64: NetZero Toolbar Helper - No File
BHO-X64: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
BHO-X64: HP Smart BHO Class - No File
TB-X64: ZeroBar: {F0F8ECBE-D460-4B34-B007-56A92E8F84A7} - C:\Program Files (x86)\NetZero\Toolbar.dll
TB-X64: Shop Shield: {596de2ef-c6de-400f-9f8d-288fed8e323d} - C:\Program Files (x86)\Kemesa, LLC\Shop Shield Internet Explorer Companion\adxloader.dll
TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
EB-X64: {89D719AD-0468-4539-BC75-8E59699E7912} - No File
mRun-x64: [SmartWiHelper] "C:\Program Files\Sony Corporation\SmartWi Connection Utility\SmartWiHelper.exe" /WindowsStartup
mRun-x64: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun-x64: [BDRegion] "C:\Program Files (x86)\Cyberlink\Shared files\brs.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun-x64: [(Default)]
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [Bart Station] "C:\Program Files (x86)\PeoplePC\ISP8330\BIN\PPCOLink.exe" -STATION
mRun-x64: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [SwitchBoard] "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [saXsAQWSemKq.exe] C:\ProgramData\saXsAQWSemKq.exe
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun-x64: [Malwarebytes' Anti-Malware (reboot)] "C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
IE-X64: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
Hosts: 94.63.240.133
www.google.com
Hosts: 94.63.240.134
www.bing.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Kristopher\AppData\Roaming\Mozilla\Firefox\Profiles\4un0vwqr.default\
FF - prefs.js: browser.search.selectedEngine - Web Search...
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?utm_source=en-ha-na-us-sk&utm_medium=ha&referrer=ign_n
FF - prefs.js: keyword.URL - hxxp://vshare.toolbarhome.com/search.aspx?srch=ku&q=
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 55192
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Common Files\Motive\npMotive.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
FF - plugin: C:\Program Files (x86)\Veetle\Player\npvlc.dll
FF - plugin: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
FF - plugin: C:\Program Files (x86)\Veetle\VLCBroadcast\npvbp.dll
FF - plugin: C:\Users\Kristopher\AppData\Roaming\NeuLion\AdaptivePlugin\npadaptiveplugin_1_6_5_7131.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/06/07 08:26:23];C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-4-2 146928]
R2 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2008-1-20 21504]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-10-26 44768]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]
R2 MBAMService;MBAMService;C:\Users\Kristopher\Desktop\Malwarebytes' Anti-Malware\mbamservice.exe [2011-10-26 366152]
R2 McciCMService64;McciCMService64;C:\Program Files\Common Files\Motive\McciCMService.exe [2010-10-12 517632]
R2 McciServiceHost;McciServiceHost;C:\Program Files (x86)\Common Files\Motive\McciServiceHost.exe [2010-10-12 315392]
R2 MotoConnect Service;MotoConnect Service;C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe [2011-1-15 91392]
R2 regi;regi;\??\C:\Windows\system32\drivers\regi.sys --> C:\Windows\system32\drivers\regi.sys [?]
R2 RtkAudioService;Realtek Audio Service;C:\Windows\RTKAUDIOSERVICE.EXE [2009-12-10 139808]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-9-14 508264]
R2 SSPORT;SSPORT;\??\C:\Windows\system32\Drivers\SSPORT.sys --> C:\Windows\system32\Drivers\SSPORT.sys [?]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys --> C:\Windows\system32\DRIVERS\btwl2cap.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 NETw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\NETw5v64.sys --> C:\Windows\system32\DRIVERS\NETw5v64.sys [?]
R3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys --> C:\Windows\system32\DRIVERS\Sftfslh.sys [?]
R3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys --> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?]
R3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys --> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?]
R3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys --> C:\Windows\system32\DRIVERS\Sftvollh.sys [?]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-9-14 219496]
R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk60x64.sys --> C:\Windows\system32\DRIVERS\yk60x64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-26 136176]
S3 BTCFilterService;USB Networking Driver Filter Service;C:\Windows\system32\DRIVERS\motfilt.sys --> C:\Windows\system32\DRIVERS\motfilt.sys [?]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-26 136176]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-1-21 30963576]
S3 motccgp;Motorola USB Composite Device Driver;C:\Windows\system32\DRIVERS\motccgp.sys --> C:\Windows\system32\DRIVERS\motccgp.sys [?]
S3 motccgpfl;MotCcgpFlService;C:\Windows\system32\DRIVERS\motccgpfl.sys --> C:\Windows\system32\DRIVERS\motccgpfl.sys [?]
S3 Motousbnet;Motorola USB Networking Driver Service;C:\Windows\system32\DRIVERS\Motousbnet.sys --> C:\Windows\system32\DRIVERS\Motousbnet.sys [?]
S3 motport;Motorola USB Diagnostic Port;C:\Windows\system32\DRIVERS\motport.sys --> C:\Windows\system32\DRIVERS\motport.sys [?]
S3 motusbdevice;Motorola USB Dev Driver;C:\Windows\system32\DRIVERS\motusbdevice.sys --> C:\Windows\system32\DRIVERS\motusbdevice.sys [?]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-12-12 93184]
.
=============== Created Last 30 ================
.
2011-10-26 21:20:17 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-10-26 21:11:04 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\ezPNcA1uvDo
2011-10-26 21:10:58 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\nmH6sWJ7fLgZhCk
2011-10-26 21:10:58 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\kamH5sWJ7E8
2011-10-26 21:10:39 107520 ---ha-w- C:\Users\Kristopher\AppData\Roaming\Microsoft\04AC\7CC0.tmp
2011-10-26 21:10:35 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\EuvD2obF4m5Q6E8
2011-10-26 21:10:29 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\AfELB1ivDoF5W7E
2011-10-26 21:10:28 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\DONtxP0uc1b3n4m
2011-10-26 18:34:23 601944 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2011-10-26 18:34:21 65368 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2011-10-26 18:34:09 41184 ----a-w- C:\Windows\avastSS.scr
2011-10-26 18:34:00 -------- d--h--w- C:\ProgramData\AVAST Software
2011-10-26 18:34:00 -------- d-----w- C:\Program Files\AVAST Software
2011-10-26 17:08:43 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\Microsoft Corporation
2011-10-26 17:08:31 -------- d--h--w- C:\Users\Kristopher\AppData\Local\assembly
2011-10-26 17:07:48 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\mTXqjYCekVzNx0c
2011-10-26 17:07:44 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\opnG4aQH6W7E9Tq
2011-10-26 17:07:40 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\KH6sWJ7fE8TqYwU
2011-10-26 17:07:33 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\FfRL9hTXqUeIrOy
2011-10-26 17:07:32 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\GxA1uvS2b3m5Q6W
2011-10-26 17:07:28 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\ebF3pnG5aHdKfLg
2011-10-26 07:28:35 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\7D37E
2011-10-26 07:28:23 107520 ---ha-w- C:\Users\Kristopher\AppData\Roaming\Microsoft\04AC\5CBF.tmp
2011-10-26 07:28:14 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\CF67D
2011-10-26 07:28:13 288768 ---h--w- C:\Users\Kristopher\AppData\Roaming\Microsoft\04AC\F0B.exe
2011-10-26 07:28:07 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\QXqjeekIBrzONx0
2011-10-26 07:28:07 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\jmG5aQJ6dKfLh
2011-10-26 07:28:01 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\Zy1SbF3pm5Q6W8R
2011-10-26 07:27:59 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\w4am6sWJ7E8Tq
2011-10-26 07:27:59 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\UWJ7dEL8gZhXkV
2011-10-26 06:47:04 -------- d-----w- C:\Program Files (x86)\7D37E
2011-10-26 06:46:34 -------- d-----w- C:\Program Files (x86)\LP
2011-10-26 05:43:59 315702 ----a-w- C:\Windows\SysWow64\PerfStringBackup.TMP
2011-10-26 05:36:25 429968 ---ha-w- C:\ProgramData\saXsAQWSemKq.exe
2011-10-26 05:21:19 315702 ----a-w- C:\Windows\System32\PerfStringBackup.TMP
2011-10-26 05:16:59 372736 ---h--w- C:\ProgramData\6DSS92c31Apgjk.exe
2011-10-24 19:20:38 410512 ------w- C:\ProgramData\qkjUlyDxtx.exe
2011-10-21 08:52:44 8570192 ---ha-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A70A73D3-083E-47D6-8392-6F3D616B15C8}\mpengine.dll
2011-10-03 22:40:47 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\LRRZ9hhTXwjClIr
2011-10-03 22:40:37 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\CxxxA11uvS2oF3
2011-10-03 22:40:32 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\hdEEKK8fRZ9h
2011-10-03 22:40:28 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\uzzzPNNyxA1vSob
2011-10-03 22:40:23 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\JzzzPNNyxA1uS2b
2011-10-03 22:40:18 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\wKK88fRRZhTwjCe
2011-10-03 22:40:13 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\yUUCCelIIBzPNxA
2011-10-03 22:40:08 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\Malwarebytes
2011-10-03 22:40:08 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\B999hTTXqjUCkIr
2011-10-03 22:38:59 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\zVVellIBtz
2011-10-03 22:37:55 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\vnnnF44amH5sJ
2011-10-03 22:37:50 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\hGG44amHH6WJ7E8
2011-10-03 22:37:45 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\uCCwwkUVr
2011-10-03 22:37:40 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\vkkkUVVrlOBtP0c
2011-10-03 22:37:36 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\I3oonnF4amH5WJd
2011-10-03 22:37:31 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\PwwjjUVVelI
2011-10-03 22:37:27 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\fQQJJ6ddEK
2011-10-03 22:37:22 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\cRRZZ9hTXwjU
2011-10-03 22:37:18 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\LCCeelIBBzPNyA
2011-10-03 22:37:13 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\qpmmmG5aQ
2011-10-03 22:37:09 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\h999hTTXqjUCkIr
2011-10-03 22:37:04 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\DkkkIIBrzONyA0v
2011-10-03 22:37:00 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\oeeekIIVrzOtxA
2011-10-03 22:36:54 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\C11uuvSS2oF
2011-10-03 22:36:48 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\hsJJ7ddEK
2011-10-03 22:36:42 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\y33oonFF4aH5sJ7
2011-10-03 22:36:38 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\oJJJ7ddEL8gqYXk
2011-10-03 22:36:32 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\OccSS1ivD3
2011-10-03 22:36:28 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\pddEEK8ggR9hYwU
2011-10-03 22:36:23 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\rH55ssQJ7dEK
2011-10-03 22:36:18 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\AivvDD2onF4pH5Q
2011-10-03 22:36:14 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\zQQJJ7ddEKgRZhY
2011-10-03 22:36:10 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\yFFF4ppmG5s
2011-10-03 22:36:05 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\hPPPNyyxA1uv
2011-10-03 22:36:01 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\wWWWK88fR9hTqjC
2011-10-03 22:34:56 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\vGGG5ssQJ6
2011-10-03 22:34:52 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\V11uuvSS2oF3
2011-10-03 22:34:48 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\TTTTXqqjU
2011-10-03 22:34:42 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\kFF44pmG5sQ6dK
2011-10-03 22:34:37 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\PlOOBtycA2nm5Qd
2011-10-03 22:34:32 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\WyccAA1ivD2oF4m
2011-10-03 22:34:27 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\SwwjjUUVelItzNy
2011-10-03 22:34:23 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\i88ffRLL9h
2011-10-03 22:34:19 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\vBBrrzOONyx0uS2
2011-10-03 22:34:14 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\eOOONyyxA0uS2b
2011-10-03 22:34:10 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\EXqqjjYCekIVrOt
2011-10-03 22:34:05 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\gD33ppnG4aQ
2011-10-03 22:34:01 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\olllONNtxP0
2011-10-03 22:33:54 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\n2oobbF3pmG5
2011-10-03 22:33:49 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\H111uvvS2ob
2011-10-03 22:33:44 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\x6ddWWK8fRL9TXj
2011-10-03 22:33:40 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\JOONNyxxA0uS
2011-10-03 22:33:35 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\FA000uvS2ibF
2011-10-03 22:33:27 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\t33ppnGG4aQ6sK7
2011-10-03 22:33:21 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\JgTTZZqjYCwkVrO
2011-10-03 22:33:17 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\YEEEL99gTZqjC
2011-10-03 22:33:12 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\lccSS1iib
2011-10-03 22:33:08 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\UYYYCwwkUVrlBtP
2011-10-03 22:33:03 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\OF44aamH5sWJdE8
2011-10-03 22:31:57 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\AuuuvDD2obFpm5s
2011-10-03 22:30:55 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\bjYYCCekIVr
2011-10-03 22:30:51 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\lSS22ibbD3pG4QH
2011-10-03 22:30:47 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\zttxxP00ycSiv3n
2011-10-03 22:30:42 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\IgRRZZqhYXwkUeO
2011-10-03 22:30:38 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\gddEEK8ggR9
2011-10-03 22:30:34 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\Y55ssQJJ6dE8fZ9
2011-10-03 22:30:29 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\qG55ssQJ6dEK
2011-10-03 22:30:25 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\rBBBrzzPN
2011-10-03 22:30:21 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\AWWWK88fRL9hXqU
2011-10-03 22:30:16 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\r00uuvSS2ib3pG5
2011-10-03 22:30:12 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\EwwkkIVrrlNtx0u
2011-10-03 22:30:08 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\D7ffEEL8gTZqYCk
2011-10-03 22:30:03 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\donnFF4amH5sJ7E
2011-10-03 22:28:57 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\pJJJ6ddEK8fR9hX
2011-10-03 22:28:52 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\nUCCeelIBrzPyx1
2011-10-03 22:28:48 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\PooobFF3pmGaQJ
2011-10-03 22:28:44 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\fIIBBrzOOyxA0
2011-10-03 22:28:39 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\J77ffEL9gTZq
2011-10-03 22:28:35 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\QkIIVVrlONtx0uS
2011-10-03 22:28:30 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\fammHH6sWJ7fE
2011-10-03 22:28:26 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\dZqqhhYCwkUVrOt
2011-10-03 22:28:22 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\JaammH55sWJdE8g
2011-10-03 22:28:16 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\F11iivD3o
2011-10-03 22:28:12 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\akkUUVrrlOtxP
2011-10-03 22:28:07 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\OYYYXwwkUVeOBzP
2011-10-03 22:28:02 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\zhhYYXwkUVelOtP
2011-10-03 22:26:57 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\h222iibD3pnG
2011-10-03 22:26:53 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\LkkkIVVrlON
2011-10-03 22:26:48 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\ljjjYCCwkIVlOtx
2011-10-03 22:26:43 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\c222ibbD3pnGaQ6
2011-10-03 22:26:37 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\ISSS2iibF3pG5QH
2011-10-03 22:26:33 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\appnnG44aQHsW7f
2011-10-03 22:26:28 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\CwwkkIVVrlNtx0
2011-10-03 22:26:24 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\zG44aamH6s
2011-10-03 22:26:20 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\kOOBBtxxP0yS1vD
2011-10-03 22:26:15 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\FsWWJJ7dEL8gRqY
2011-10-03 22:26:11 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\gellOOBtzP0
2011-10-03 22:26:06 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\EddE8gRZ9h
2011-10-03 22:26:02 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\kQQQJ66dEK8fZ9T
2011-10-03 22:25:57 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\gEKK88fRZ9hTwjC
2011-10-03 22:25:53 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\qxxAA1uvv2obFpG
2011-10-03 22:25:48 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\DfRRLL9hTXq
2011-10-03 22:25:44 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\ySS22ibFF3nG5Q6
2011-10-03 22:25:39 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\SbbbF33pnG5aH6W
2011-10-03 22:25:35 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\oqqqjjYCwkIVlOt
2011-10-03 22:25:30 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\gaaQQH66sWKfE9g
2011-10-03 22:25:25 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\o00uucS11iD3oG4
2011-10-03 22:25:21 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\BkkUUVrrlOBxPyc
2011-10-03 22:25:17 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\jH55sWWJ7dELgRq
2011-10-03 22:25:12 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\zRRRZqqhYXwUVlO
2011-10-03 22:11:15 -------- d-----we C:\Windows\system64
2011-10-03 22:09:42 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\i666sWWK7fE9gZq
2011-10-03 22:09:42 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\cYCCwwkIVrlONx0
2011-10-03 22:09:37 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\x333pnnG4aQ6sK
2011-10-03 22:09:37 -------- d--h--w- C:\Users\Kristopher\AppData\Roaming\BYCCeekIVrzONx0
.
==================== Find3M ====================
.
.
============= FINISH: 15:35:42.28 ===============