SafeBootMin:
64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCore64.exe (SUPERAntiSpyware.com)
SafeBootMin:
64bit: Base - Driver Group
SafeBootMin:
64bit: Boot Bus Extender - Driver Group
SafeBootMin:
64bit: Boot file system - Driver Group
SafeBootMin:
64bit: File system - Driver Group
SafeBootMin:
64bit: Filter - Driver Group
SafeBootMin:
64bit: HelpSvc - Service
SafeBootMin:
64bit: hitmanpro36 - Reg Error: Value error.
SafeBootMin:
64bit: hitmanpro36.sys - Reg Error: Value error.
SafeBootMin:
64bit: HitmanPro36Crusader - Reg Error: Value error.
SafeBootMin:
64bit: HitmanPro36CrusaderBoot - Reg Error: Value error.
SafeBootMin:
64bit: MCODS - Reg Error: Value error.
SafeBootMin:
64bit: PCI Configuration - Driver Group
SafeBootMin:
64bit: PNP Filter - Driver Group
SafeBootMin:
64bit: Primary disk - Driver Group
SafeBootMin:
64bit: sacsvr - Service
SafeBootMin:
64bit: SCSI Class - Driver Group
SafeBootMin:
64bit: System Bus Extender - Driver Group
SafeBootMin:
64bit: vmms - Service
SafeBootMin:
64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:
64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:
64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:
64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:
64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:
64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:
64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:
64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:
64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:
64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:
64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:
64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:
64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:
64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:
64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:
64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:
64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:
64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Ad-Aware Service - C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: hitmanpro36 - Reg Error: Value error.
SafeBootMin: hitmanpro36.sys - Reg Error: Value error.
SafeBootMin: HitmanPro36Crusader - Reg Error: Value error.
SafeBootMin: HitmanPro36CrusaderBoot - Reg Error: Value error.
SafeBootMin: IMFservice - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
SafeBootMin: MCODS - Reg Error: Value error.
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SBAMSvc - C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX:
64bit: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX:
64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:
64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /I:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:
64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:
64bit: {416B171D-0E56-2DE5-2CEE-2BE9366E8CDD} - Themes Setup
ActiveX:
64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:
64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:
64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:
64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:
64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:
64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:
64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:
64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:
64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /I:U shell32.dll
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:
64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:
64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:
64bit: {A48BFE46-01BE-1E43-7D43-F56062C48D75} - Themes Setup
ActiveX:
64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:
64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:
64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:
64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:
64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:
64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:
64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:
64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /I:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /I:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
Drivers32:
64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:
64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:
64bit: VIDC.KGV1 - File not found
Drivers32:
64bit: VIDC.XFR1 - xfcodec64.dll ()
Drivers32: msacm.ac3filter - C:\Windows\SysWow64\ac3filter.acm ()
Drivers32: msacm.divxa32 - C:\Windows\SysWow64\DivXa32.acm (Packed With Joy !)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (
http://www.mp3dev.org/)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS
http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.divx - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: VIDC.KGV1 - C:\Windows\SysWow64\KGV1-VFW.dll ()
Drivers32: vidc.vp60 - C:\Windows\SysWow64\vp6vfw.dll (On2.com)
Drivers32: vidc.vp61 - C:\Windows\SysWow64\vp6vfw.dll (On2.com)
Drivers32: vidc.vp62 - C:\Windows\SysWow64\vp6vfw.dll (On2.com)
Drivers32: VIDC.XFR1 - C:\Windows\SysWow64\xfcodec.dll ()
Drivers32: vidc.xvid - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2012/09/07 03:59:31 | 002,322,184 | ---- | C] (ESET) -- C:\Users\owner\Desktop\esetsmartinstaller_enu.exe
[2012/09/06 12:33:41 | 002,211,928 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\owner\Desktop\tdsskiller.exe
[2012/09/04 20:41:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2012/09/04 20:41:29 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
[2012/09/04 20:41:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2012/09/04 20:40:57 | 078,983,560 | ---- | C] (Sophos Limited) -- C:\Users\owner\Desktop\Sophos Virus Removal Tool.exe
[2012/09/04 20:07:21 | 000,599,552 | ---- | C] (OldTimer Tools) -- C:\Users\owner\Desktop\OTL.exe
[2012/09/04 20:07:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2012/09/04 20:07:04 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2012/09/04 15:54:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2012/09/04 15:32:58 | 000,693,235 | ---- | C] (Farbar) -- C:\Users\owner\Desktop\FSS.exe
[2012/09/04 15:28:01 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/09/04 15:14:07 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/09/03 21:18:59 | 001,614,752 | ---- | C] (Bleeping Computer, LLC) -- C:\Users\owner\Desktop\rkill.exe
[2012/09/03 20:58:26 | 004,742,930 | R--- | C] (Swearware) -- C:\Users\owner\Desktop\ComboFix.exe
[2012/09/03 20:29:39 | 000,627,600 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012/09/03 08:05:03 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/09/03 01:12:58 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2012/09/03 01:12:55 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\TestApp
[2012/09/03 01:00:09 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\SUPERAntiSpyware.com
[2012/09/03 00:59:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012/09/03 00:59:29 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2012/09/03 00:59:29 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012/09/03 00:41:22 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{CB7DB69D-D4BC-4F57-9798-CFCEC8900E20}
[2012/09/03 00:31:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CheckPoint
[2012/09/03 00:31:25 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2012/09/03 00:21:18 | 002,322,184 | ---- | C] (ESET) -- C:\Users\owner\Documents\esetsmartinstaller_enu.exe
[2012/09/02 23:09:57 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/09/02 23:09:57 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/09/02 23:09:56 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/09/02 22:52:53 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/09/02 22:51:52 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/09/02 21:38:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2012/09/02 21:38:46 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/09/02 17:44:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak
[2012/09/02 14:08:21 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{A6E0F39F-2637-4963-B0A6-488A400C645A}
[2012/09/01 21:08:13 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{1F16932E-2FEC-413F-B694-A85ADE50BFD1}
[2012/09/01 20:51:52 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{1B4B54AF-DCBF-4BBB-93C2-B92B61920230}
[2012/09/01 17:47:57 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{0AE79E1A-5149-4B30-A917-383A4207160E}
[2012/09/01 04:01:00 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{ED060056-60CF-49C4-AC47-1D26469D037D}
[2012/08/31 16:00:26 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{40FDEECA-26FA-43D7-B1E3-D627712BDDB6}
[2012/08/31 03:59:53 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{DFC93C66-BE2E-4816-ABFA-1CCACA099087}
[2012/08/31 01:46:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PakkISO
[2012/08/30 15:59:17 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{6EAC9184-60EB-47CE-9FBB-E8F6728B1DCD}
[2012/08/30 10:39:21 | 000,142,128 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFW.sys
[2012/08/30 10:39:08 | 000,266,776 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswNdis2.sys
[2012/08/30 10:39:08 | 000,019,600 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswKbd.sys
[2012/08/30 10:39:05 | 000,012,368 | ---- | C] (ALWIL Software) -- C:\Windows\SysNative\drivers\aswNdis.sys
[2012/08/30 10:37:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Internet Security
[2012/08/30 03:58:41 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{0EEB2363-9B29-45C9-AD25-596EAC60DE62}
[2012/08/29 15:58:07 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{D2CEF9DE-7339-471D-B79F-9431340DDE82}
[2012/08/29 03:57:33 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{50EFC638-2AD8-49A8-9022-95FA54B70B4E}
[2012/08/28 15:56:58 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{A5B3A41B-7B15-47DE-BC40-EC7835AA8D2F}
[2012/08/28 03:56:24 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{5958BDBD-3A26-488A-9C4F-92B80FF18D9F}
[2012/08/27 15:55:50 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{25E46652-6F0A-4AFC-8F8D-9C27866D4BC0}
[2012/08/27 03:55:06 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Local\{889AAE54-47C2-49A8-9E07-89CB265EECA2}
[2012/08/26 21:37:45 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\TimeGate Studios
[2012/08/20 14:39:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
[2012/08/18 23:43:56 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
[2012/08/18 23:43:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GPU-Z
[2012/08/18 17:13:12 | 000,772,544 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/08/18 05:31:05 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\Systweak
[2012/08/18 05:30:44 | 000,114,176 | ---- | C] (CPUID) -- C:\Windows\SysWow64\PCWizard.cpl
[2012/08/18 05:30:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CPUID
[2012/08/16 09:12:38 | 000,000,000 | ---D | C] -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
[2012/08/15 21:45:33 | 000,000,000 | ---D | C] -- C:\found.005
[2012/08/15 19:27:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
[2009/11/18 22:40:11 | 000,036,136 | ---- | C] (Oberon Media) -- C:\ProgramData\FullRemove.exe
[5 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/09/08 20:42:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/09/08 20:33:32 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-700293270-161366171-2932116839-1001UA.job
[2012/09/08 20:25:32 | 000,599,552 | ---- | M] (OldTimer Tools) -- C:\Users\owner\Desktop\OTL.exe
[2012/09/08 19:49:31 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/08 17:00:00 | 000,000,510 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 488803fe-d510-4280-a33a-0223580c273a.job
[2012/09/08 02:00:00 | 000,000,510 | ---- | M] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 481c02d1-09b8-4646-a482-b214cc228ca1.job
[2012/09/08 00:49:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/08 00:33:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-700293270-161366171-2932116839-1001Core.job
[2012/09/07 21:18:20 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/07 21:18:20 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/07 21:05:25 | 000,000,324 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2012/09/07 21:04:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/07 21:04:35 | 479,510,527 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/07 03:46:20 | 002,322,184 | ---- | M] (ESET) -- C:\Users\owner\Desktop\esetsmartinstaller_enu.exe
[2012/09/06 12:31:42 | 002,211,928 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\owner\Desktop\tdsskiller.exe
[2012/09/04 20:41:29 | 000,003,205 | ---- | M] () -- C:\Users\owner\Desktop\Sophos Virus Removal Tool.lnk
[2012/09/04 20:07:04 | 000,001,268 | ---- | M] () -- C:\Users\owner\Desktop\Revo Uninstaller.lnk
[2012/09/04 20:06:21 | 078,983,560 | ---- | M] (Sophos Limited) -- C:\Users\owner\Desktop\Sophos Virus Removal Tool.exe
[2012/09/04 16:06:41 | 000,002,701 | ---- | M] () -- C:\Users\Public\Desktop\PX5 Advanced Sound Editor.lnk
[2012/09/04 15:24:33 | 000,693,235 | ---- | M] (Farbar) -- C:\Users\owner\Desktop\FSS.exe
[2012/09/03 21:30:30 | 000,854,156 | ---- | M] () -- C:\Users\owner\Desktop\SecurityCheck.exe
[2012/09/03 21:12:38 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/09/03 20:29:20 | 000,627,600 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012/09/03 18:58:33 | 000,147,456 | ---- | M] () -- C:\Users\owner\Documents\catchme.exe
[2012/09/03 00:59:55 | 000,001,812 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2012/09/03 00:20:26 | 002,322,184 | ---- | M] (ESET) -- C:\Users\owner\Documents\esetsmartinstaller_enu.exe
[2012/09/02 23:17:10 | 000,157,639 | ---- | M] () -- C:\Users\owner\Documents\perfectttly.wma
[2012/09/02 23:16:14 | 000,085,799 | ---- | M] () -- C:\Users\owner\Documents\dark side test.wma
[2012/09/02 23:13:54 | 000,121,719 | ---- | M] () -- C:\Users\owner\Documents\Untitled (2).wma
[2012/09/02 22:47:34 | 004,742,930 | R--- | M] (Swearware) -- C:\Users\owner\Desktop\ComboFix.exe
[2012/09/02 22:45:56 | 001,614,752 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\owner\Desktop\rkill.exe
[2012/09/02 22:40:50 | 000,080,384 | ---- | M] () -- C:\Users\owner\Desktop\MBRCheck.exe
[2012/09/02 21:38:46 | 000,002,975 | ---- | M] () -- C:\Users\owner\Desktop\HiJackThis.lnk
[2012/09/02 18:05:52 | 001,402,880 | ---- | M] () -- C:\Users\owner\Documents\HiJackThis.msi
[2012/09/02 10:01:45 | 000,729,844 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/09/02 10:01:45 | 000,149,670 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/09/02 10:01:44 | 000,870,928 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/09/02 00:04:35 | 000,000,496 | ---- | M] () -- C:\Users\owner\AppData\Roaming\UserMetrics.osl
[2012/09/02 00:03:21 | 000,162,129 | ---- | M] () -- C:\Users\owner\Documents\Untitled.wma
[2012/08/30 10:39:07 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/08/30 10:37:40 | 000,001,926 | ---- | M] () -- C:\Users\Public\Desktop\avast! Internet Security.lnk
[2012/08/22 00:34:02 | 000,002,453 | ---- | M] () -- C:\Users\owner\Desktop\Google Chrome.lnk
[2012/08/21 10:13:13 | 000,969,200 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/08/21 10:13:13 | 000,359,464 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/08/21 10:13:13 | 000,059,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/08/21 10:13:12 | 000,266,776 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswNdis2.sys
[2012/08/21 10:13:12 | 000,071,600 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/08/21 10:13:12 | 000,054,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2012/08/21 10:13:11 | 000,142,128 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFW.sys
[2012/08/21 10:13:11 | 000,025,232 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/08/21 10:13:11 | 000,019,600 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswKbd.sys
[2012/08/21 10:12:33 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/08/21 10:12:23 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/08/21 10:12:02 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2012/08/18 05:30:44 | 000,001,188 | ---- | M] () -- C:\Users\owner\Application Data\Microsoft\Internet Explorer\Quick Launch\PC Wizard 2012.lnk
[2012/08/15 22:42:46 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/08/15 22:42:46 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[5 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/09/04 20:41:29 | 000,003,205 | ---- | C] () -- C:\Users\owner\Desktop\Sophos Virus Removal Tool.lnk
[2012/09/04 20:07:04 | 000,001,268 | ---- | C] () -- C:\Users\owner\Desktop\Revo Uninstaller.lnk
[2012/09/03 22:12:27 | 000,854,156 | ---- | C] () -- C:\Users\owner\Desktop\SecurityCheck.exe
[2012/09/03 21:19:06 | 000,080,384 | ---- | C] () -- C:\Users\owner\Desktop\MBRCheck.exe
[2012/09/03 18:59:41 | 000,147,456 | ---- | C] () -- C:\Users\owner\Documents\catchme.exe
[2012/09/03 01:00:24 | 000,000,510 | ---- | C] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 488803fe-d510-4280-a33a-0223580c273a.job
[2012/09/03 01:00:15 | 000,000,510 | ---- | C] () -- C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 481c02d1-09b8-4646-a482-b214cc228ca1.job
[2012/09/03 00:59:55 | 000,001,812 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
[2012/09/02 23:17:10 | 000,157,639 | ---- | C] () -- C:\Users\owner\Documents\perfectttly.wma
[2012/09/02 23:16:14 | 000,085,799 | ---- | C] () -- C:\Users\owner\Documents\dark side test.wma
[2012/09/02 23:13:54 | 000,121,719 | ---- | C] () -- C:\Users\owner\Documents\Untitled (2).wma
[2012/09/02 23:09:57 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/09/02 23:09:57 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/09/02 23:09:57 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/09/02 23:09:57 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/09/02 23:09:57 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/09/02 21:38:46 | 000,002,975 | ---- | C] () -- C:\Users\owner\Desktop\HiJackThis.lnk
[2012/09/02 21:37:35 | 001,402,880 | ---- | C] () -- C:\Users\owner\Documents\HiJackThis.msi
[2012/09/02 00:03:21 | 000,162,129 | ---- | C] () -- C:\Users\owner\Documents\Untitled.wma
[2012/08/30 10:37:40 | 000,001,926 | ---- | C] () -- C:\Users\Public\Desktop\avast! Internet Security.lnk
[2012/08/18 05:30:58 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\sasnative64.exe
[2012/08/18 05:30:44 | 000,001,188 | ---- | C] () -- C:\Users\owner\Application Data\Microsoft\Internet Explorer\Quick Launch\PC Wizard 2012.lnk
[2012/05/22 20:04:01 | 000,000,262 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2012/05/18 17:15:59 | 000,994,500 | ---- | C] () -- C:\Users\owner\AppData\Local\census.cache
[2012/05/18 17:13:24 | 000,199,373 | ---- | C] () -- C:\Users\owner\AppData\Local\ars.cache
[2012/05/17 09:00:33 | 000,000,000 | ---- | C] () -- C:\Users\owner\AppData\Roaming\KS51Ssetup.exe
[2012/05/17 08:57:34 | 000,000,000 | ---- | C] () -- C:\Users\owner\AppData\Roaming\0WMTZ4TXP0setup.exe
[2012/05/17 04:50:28 | 000,083,887 | ---- | C] () -- C:\Users\owner\AppData\Roaming\keyboard
[2012/05/13 21:46:51 | 000,000,617 | ---- | C] () -- C:\Windows\wininit.ini
[2012/04/11 17:50:21 | 000,000,040 | ---- | C] () -- C:\Users\owner\jagex_cl_runescape_LIVE.dat
[2012/03/20 20:11:30 | 000,000,496 | ---- | C] () -- C:\Users\owner\AppData\Roaming\UserMetrics.osl
[2012/03/09 14:06:14 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012/02/15 03:36:36 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/02/15 03:36:36 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2011/12/21 13:24:11 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2011/11/13 07:22:32 | 000,000,699 | ---- | C] () -- C:\Windows\kaillera.ini
[2011/09/28 18:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/09/13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/08/07 13:31:39 | 000,000,293 | ---- | C] () -- C:\Windows\game.ini
[2011/07/30 17:44:24 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/04/06 23:37:56 | 000,000,745 | ---- | C] () -- C:\Windows\CoD.INI
[2011/03/26 03:51:56 | 000,484,352 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2011/03/18 00:25:39 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011/02/26 02:19:32 | 000,041,872 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2010/12/17 17:47:47 | 000,000,083 | ---- | C] () -- C:\Windows\wwp.INI
[2010/11/20 18:58:00 | 000,000,566 | ---- | C] () -- C:\Windows\SysWow64\SP207.INI
[2010/11/11 15:29:09 | 000,081,920 | -H-- | C] () -- C:\Windows\SysWow64\v3shrtkgn.dll
[2010/10/27 07:23:26 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010/10/27 07:23:25 | 002,250,024 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2010/10/27 07:23:25 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010/10/14 17:17:14 | 000,000,036 | ---- | C] () -- C:\Users\owner\AppData\Local\housecall.guid.cache
[2010/10/03 19:06:57 | 000,000,000 | ---- | C] () -- C:\Users\owner\jagex__preferences3.dat
[2010/10/03 19:06:50 | 000,000,099 | ---- | C] () -- C:\Users\owner\jagex_runescape_preferences2.dat
[2010/10/03 19:05:47 | 000,000,046 | ---- | C] () -- C:\Users\owner\jagex_runescape_preferences.dat
[2010/09/18 09:51:58 | 000,000,604 | -H-- | C] () -- C:\Program Files (x86)\STLL Notifier
[2010/08/28 20:46:47 | 000,000,026 | ---- | C] () -- C:\Users\owner\AppData\Roaming\.dolphinx64wd
[2010/08/05 14:20:04 | 000,007,601 | ---- | C] () -- C:\Users\owner\AppData\Local\Resmon.ResmonCfg