========== Internet Explorer ==========
IE:
64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:
64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&form=SNYVDF&pc=MASA&src=IE-SearchBox
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-754492830-47937684-3240139420-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://www.sony.ca [binary data]
IE - HKU\S-1-5-21-754492830-47937684-3240139420-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://sony.msn.com
IE - HKU\S-1-5-21-754492830-47937684-3240139420-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-754492830-47937684-3240139420-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "
http://ca.yahoo.com/"
FF - user.js - File not found
FF:
64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found
FF:
64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF:
64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\
linkfilter@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\
linkfilter@kaspersky.ru [2012/04/18 03:10:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\
virtualKeyboard@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\
virtualKeyboard@kaspersky.ru [2012/04/18 03:10:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\
KavAntiBanner@Kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\
KavAntiBanner@Kaspersky.ru [2012/04/18 03:10:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/07/24 22:49:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{5604AB56-DA73-11E1-8270-B8AC6F996F26}: C:\Users\Melanie\AppData\Local\{5604AB56-DA73-11E1-8270-B8AC6F996F26}\ [2012/07/30 14:21:13 | 000,000,000 | ---D | M]
[2012/07/24 22:49:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Melanie\AppData\Roaming\Mozilla\Extensions
[2012/07/25 08:00:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Melanie\AppData\Roaming\Mozilla\Firefox\Profiles\7610j0m7.default\extensions
[2012/07/24 22:49:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/07/30 14:21:13 | 000,000,000 | ---D | M] (Mozilla Safe Browsing) -- C:\USERS\MELANIE\APPDATA\LOCAL\{5604AB56-DA73-11E1-8270-B8AC6F996F26}
[2012/07/25 08:00:59 | 000,434,392 | ---- | M] () (No name found) -- C:\USERS\MELANIE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7610J0M7.DEFAULT\EXTENSIONS\{D4DD63FA-01E4-46A7-B6B1-EDAB7D6AD389}.XPI
[2012/07/13 20:17:47 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/07/13 20:16:36 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/07/13 20:16:36 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
O1 HOSTS File: ([2012/08/01 19:13:42 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:
64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO)
O2:
64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:
64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-21-754492830-47937684-3240139420-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-21-754492830-47937684-3240139420-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-754492830-47937684-3240139420-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-754492830-47937684-3240139420-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-754492830-47937684-3240139420-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:
64bit: - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO)
O9:
64bit: - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O16:
64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 10.1.0)
O16:
64bit: - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
O16:
64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 10.1.0)
O16 - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.200.243.189 24.200.210.241 24.200.228.113
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5BE3C7A7-4C18-40D3-9794-7E206BF22346}: DhcpNameServer = 24.200.243.189 24.200.210.241 24.200.228.113
O18:
64bit: - Protocol\Handler\livecall - No CLSID value found
O18:
64bit: - Protocol\Handler\msnim - No CLSID value found
O18:
64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:
64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:
64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:
64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:
64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20:
64bit: - Winlogon\Notify\klogon: DllName - (%SystemRoot%\System32\klogon.dll) - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/04/14 22:54:30 | 000,000,166 | ---- | M] () - D:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:
64bit: - HKLM\..comfile [open] -- "%1" %*
O35:
64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:
64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2012/08/01 19:55:44 | 000,597,504 | ---- | C] (OldTimer Tools) -- C:\Users\Melanie\Desktop\OTL.exe
[2012/08/01 19:51:04 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Malwarebytes
[2012/08/01 19:50:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/08/01 19:50:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/08/01 19:50:56 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/08/01 19:50:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/08/01 19:50:06 | 010,652,120 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Melanie\Desktop\mbam-setup-1.62.0.1300.exe
[2012/08/01 19:48:37 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/08/01 19:32:49 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/08/01 18:59:12 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/08/01 18:59:12 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/08/01 18:59:12 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/08/01 18:32:45 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/08/01 18:32:33 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/08/01 13:47:47 | 004,722,680 | R--- | C] (Swearware) -- C:\Users\Melanie\Desktop\ComboFix.exe
[2012/08/01 00:33:33 | 000,000,000 | ---D | C] -- C:\FRST
[2012/07/31 19:21:10 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
[2012/07/31 19:20:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012/07/31 19:20:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/07/31 10:35:22 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{E719DFFF-A185-47F7-B0E5-ADE83595C84E}
[2012/07/31 10:35:11 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{07D0A608-5D2B-4ACB-A4EE-1A464236B1D9}
[2012/07/30 20:49:29 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{E79B534B-B1FF-4ADB-92CE-6D1465AC0A6D}
[2012/07/30 20:49:19 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{3EC69B77-461B-4A3C-95FC-12C1DA7C4E19}
[2012/07/30 14:21:13 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{5604AB56-DA73-11E1-8270-B8AC6F996F26}
[2012/07/30 07:10:27 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{9AEE3543-A75D-4B04-8C93-0A386EDAACBD}
[2012/07/30 07:10:05 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{61FD8DCC-833D-4904-A924-D3AD9091B7E5}
[2012/07/29 21:32:12 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Skype
[2012/07/29 19:09:35 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{81711162-46EE-43BA-BFCF-414F9702710A}
[2012/07/29 19:09:12 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{84D81468-471C-4096-8132-8F6592B4276D}
[2012/07/29 07:30:15 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Programs
[2012/07/29 07:29:52 | 000,000,000 | ---D | C] -- C:\Users\Melanie\Documents\WebCam Media
[2012/07/29 07:27:13 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Intel WiDi
[2012/07/29 07:27:11 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Intel WiDi
[2012/07/29 07:21:02 | 000,000,000 | ---D | C] -- C:\Users\Melanie\Documents\Vegas Movie Studio HD Platinum 11.0 Projects
[2012/07/29 07:21:02 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Sony
[2012/07/29 07:21:02 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Sony
[2012/07/29 07:18:28 | 000,000,000 | ---D | C] -- C:\Users\Melanie\Documents\Sony PMB
[2012/07/29 07:16:30 | 000,000,000 | ---D | C] -- C:\VAIO Entertainment
[2012/07/29 07:08:32 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{1BAD62C9-96D6-4342-969F-266555F6F999}
[2012/07/29 07:08:20 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{35850E30-A924-4D76-A52B-087ABECC0E5F}
[2012/07/28 18:44:19 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{348D6F3F-F3EB-41BC-BC95-3B02D68A2D4E}
[2012/07/28 18:43:56 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{21324061-A4D4-4345-AC08-96C8B98AA444}
[2012/07/28 06:43:27 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{8D23F321-A6D7-4A74-ADBE-2AC4D72EC712}
[2012/07/28 06:43:15 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{CFFA4C31-05E6-4E54-9FEE-5B234579A284}
[2012/07/27 14:15:22 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{C3E1831B-060E-49EA-8050-A74377511F82}
[2012/07/27 14:15:10 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{68A7AEA8-845C-44C3-8486-6571C02E78E8}
[2012/07/26 22:31:43 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{ADCDE527-73A8-4975-AE1A-48AD11CBBC80}
[2012/07/26 22:31:32 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{00D760FD-B97E-44D2-B581-6CB7FDBBD61E}
[2012/07/26 08:18:31 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{361DB58E-56F9-4A17-9EFB-18C34BCC4816}
[2012/07/26 08:18:08 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{157FE5E7-29C0-4526-BDE0-8B5696998B26}
[2012/07/25 07:45:08 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Macromedia
[2012/07/25 07:40:00 | 000,000,000 | ---D | C] -- C:\Users\Melanie\Documents\My Received Files
[2012/07/25 07:38:41 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{8E49FCC0-01DE-41CA-839B-EC36BB52D591}
[2012/07/25 07:38:30 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{E4988390-DC13-4299-8F01-BC279F8BF094}
[2012/07/25 07:36:47 | 000,000,000 | ---D | C] -- C:\Windows\en
[2012/07/25 07:36:19 | 000,000,000 | ---D | C] -- C:\Windows\fr
[2012/07/25 07:29:06 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Windows Live
[2012/07/25 07:28:49 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\{9A3CA099-05A7-4FA6-9E41-25165945A02A}
[2012/07/25 07:28:36 | 000,000,000 | ---D | C] -- C:\Users\Melanie\Tracing
[2012/07/25 07:27:39 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\ArcSoft
[2012/07/25 07:27:33 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\ArcSoft
[2012/07/25 07:13:06 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/07/25 07:13:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/07/25 06:35:36 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\iolo
[2012/07/25 06:28:27 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\LolClient
[2012/07/24 23:45:53 | 000,000,000 | ---D | C] -- C:\Riot Games
[2012/07/24 23:45:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
[2012/07/24 23:02:56 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\PMB Files
[2012/07/24 23:02:56 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2012/07/24 23:02:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2012/07/24 22:49:45 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Mozilla
[2012/07/24 22:49:45 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Mozilla
[2012/07/24 22:49:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/24 22:49:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/07/24 22:49:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/07/24 22:41:24 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Macromedia
[2012/07/24 22:41:20 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Adobe
[2012/07/24 22:18:37 | 000,000,000 | ---D | C] -- C:\Update
[2012/07/24 21:59:36 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Intel Corporation
[2012/07/24 21:59:03 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Sony Corporation
[2012/07/24 21:57:40 | 000,000,000 | R--D | C] -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/07/24 21:57:40 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Searches
[2012/07/24 21:57:40 | 000,000,000 | R--D | C] -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/07/24 21:57:40 | 000,000,000 | -H-D | C] -- C:\Users\Melanie\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/07/24 21:57:30 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Identities
[2012/07/24 21:57:26 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Contacts
[2012/07/24 21:57:21 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\VirtualStore
[2012/07/24 21:56:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\VAIO Startup Setting Tool
[2012/07/24 21:56:32 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2012/07/24 21:55:18 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Sony Corporation
[2012/07/24 21:54:03 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Intel
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\AppData\Local\Temporary Internet Files
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Templates
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Start Menu
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\SendTo
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Recent
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\PrintHood
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\NetHood
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Documents\My Videos
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Documents\My Pictures
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Documents\My Music
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\My Documents
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Local Settings
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\AppData\Local\History
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Cookies
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\Application Data
[2012/07/24 21:54:02 | 000,000,000 | -HSD | C] -- C:\Users\Melanie\AppData\Local\Application Data
[2012/07/24 21:54:01 | 000,000,000 | --SD | C] -- C:\Users\Melanie\AppData\Roaming\Microsoft
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Videos
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Saved Games
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Pictures
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Music
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Links
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Favorites
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Downloads
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Documents
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\Desktop
[2012/07/24 21:54:01 | 000,000,000 | R--D | C] -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/07/24 21:54:01 | 000,000,000 | -H-D | C] -- C:\Users\Melanie\AppData
[2012/07/24 21:54:01 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Temp
[2012/07/24 21:54:01 | 000,000,000 | ---D | C] -- C:\Users\Melanie\Roaming
[2012/07/24 21:54:01 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Local\Microsoft
[2012/07/24 21:54:01 | 000,000,000 | ---D | C] -- C:\Users\Melanie\AppData\Roaming\Media Center Programs
========== Files - Modified Within 30 Days ==========
[2012/08/01 19:56:50 | 000,782,160 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/08/01 19:56:50 | 000,666,908 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/08/01 19:56:50 | 000,126,512 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/08/01 19:55:55 | 000,020,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/01 19:55:55 | 000,020,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/01 19:55:44 | 000,597,504 | ---- | M] (OldTimer Tools) -- C:\Users\Melanie\Desktop\OTL.exe
[2012/08/01 19:50:57 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/08/01 19:50:09 | 010,652,120 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Melanie\Desktop\mbam-setup-1.62.0.1300.exe
[2012/08/01 19:48:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/01 19:48:12 | 457,658,367 | -HS- | M] () -- C:\hiberfil.sys
[2012/08/01 19:34:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/08/01 19:13:42 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/08/01 13:47:50 | 004,722,680 | R--- | M] (Swearware) -- C:\Users\Melanie\Desktop\ComboFix.exe
[2012/07/31 19:20:58 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/07/31 19:20:47 | 000,787,942 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/07/28 10:12:27 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/07/25 07:14:32 | 000,299,968 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/07/24 23:49:20 | 000,001,720 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2012/07/24 22:49:35 | 000,001,126 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/07/24 22:43:02 | 099,218,336 | ---- | M] () -- C:\Users\Melanie\Desktop\avira_free_antivirus_en.exe
[2012/07/24 22:41:03 | 000,001,433 | ---- | M] () -- C:\Users\Melanie\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/07/24 21:57:20 | 000,000,000 | RH-- | M] () -- C:\Windows\SysWow64\drivers\104D_Sony_SVS13115FDB.mrk
[2012/07/24 21:57:20 | 000,000,000 | RH-- | M] () -- C:\Windows\SysNative\drivers\104D_Sony_SVS13115FDB.mrk
[2012/07/24 17:52:48 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/07/24 17:52:48 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/07/03 13:46:44 | 000,024,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
========== Files Created - No Company Name ==========
[2012/08/01 19:50:57 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/08/01 18:59:12 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/08/01 18:59:12 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/08/01 18:59:12 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/08/01 18:59:12 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/08/01 18:59:12 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/07/31 19:20:58 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/07/31 19:20:49 | 000,001,915 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/07/29 07:10:01 | 000,001,355 | ---- | C] () -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2012/07/28 10:12:27 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/07/24 23:49:20 | 000,001,720 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2012/07/24 22:49:35 | 000,001,138 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/07/24 22:49:35 | 000,001,126 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/07/24 22:42:07 | 099,218,336 | ---- | C] () -- C:\Users\Melanie\Desktop\avira_free_antivirus_en.exe
[2012/07/24 22:41:03 | 000,001,433 | ---- | C] () -- C:\Users\Melanie\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/07/24 21:58:29 | 000,001,405 | ---- | C] () -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012/07/24 21:57:46 | 000,001,439 | ---- | C] () -- C:\Users\Melanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/07/24 21:57:20 | 000,000,000 | RH-- | C] () -- C:\Windows\SysWow64\drivers\104D_Sony_SVS13115FDB.mrk
[2012/07/24 21:57:20 | 000,000,000 | RH-- | C] () -- C:\Windows\SysNative\drivers\104D_Sony_SVS13115FDB.mrk
[2012/07/24 21:54:01 | 000,000,290 | ---- | C] () -- C:\Users\Melanie\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/07/24 21:54:01 | 000,000,272 | ---- | C] () -- C:\Users\Melanie\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/07/24 17:50:38 | 457,658,367 | -HS- | C] () -- C:\hiberfil.sys
[2012/04/18 04:44:33 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dll
[2012/04/04 22:04:29 | 000,755,188 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2012/04/04 22:04:28 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2012/04/04 22:04:27 | 013,024,768 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2012/04/04 22:04:27 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/02/02 22:08:26 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2011/02/10 19:03:27 | 000,787,942 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
========== LOP Check ==========
[2012/07/29 07:22:49 | 000,000,000 | ---D | M] -- C:\Users\Melanie\AppData\Roaming\iolo
[2012/07/25 06:28:27 | 000,000,000 | ---D | M] -- C:\Users\Melanie\AppData\Roaming\LolClient
[2012/07/29 07:21:02 | 000,000,000 | ---D | M] -- C:\Users\Melanie\AppData\Roaming\Sony
[2009/07/14 01:08:49 | 000,015,796 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >