Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 92210 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Slow unresponsive laptop [Closed]


  • This topic is locked This topic is locked
3 replies to this topic

#1 brians2

brians2

    Authentic Member

  • Authentic Member
  • PipPip
  • 80 posts

Posted 15 October 2013 - 09:25 AM

Laptop has become very slow for all requests. Many times I get page or process unresponsive message.
Sometimes opening Chrome will take over a minute before I can access.

Attaching OTL.txt and will send extras.txt in 2nd post.

Thank you your help Regards brians2

OTL logfile created on: 10/15/2013 9:58:26 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:UsersExigoDesktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19475)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 0.87 Gb Available Physical Memory | 43.47% Memory free
4.23 Gb Paging File | 1.97 Gb Available in Paging File | 46.44% Paging File free
Paging file location(s): ?:pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:Windows | %ProgramFiles% = C:Program Files (x86)
Drive C: | 450.65 Gb Total Space | 273.44 Gb Free Space | 60.68% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.61 Gb Free Space | 50.74% Space Free | Partition Type: NTFS

Computer Name: EXIGO-PC | User Name: Exigo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:UsersExigoDesktopOTL (2).exe (OldTimer Tools)
PRC - C:Program Files (x86)ooVooooVoo.exe (ooVoo LLC)
PRC - C:WindowsSysWOW64vmnetdhcp.exe (VMware, Inc.)
PRC - C:WindowsSysWOW64vmnat.exe (VMware, Inc.)
PRC - C:Program Files (x86)VMwareVMware Playervmware-authd.exe (VMware, Inc.)
PRC - C:Program Files (x86)AVGAVG2013avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:Program Files (x86)AVGAVG2013avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:Program Files (x86)AVGAVG2013avgidsagent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (Adobe Systems Incorporated)
PRC - C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc.)
PRC - C:Program Files (x86)BillP StudiosWinPatrolWinPatrol.exe (BillP Studios)
PRC - C:Program Files (x86)Common FilesAppleInternet ServicesiCloudServices.exe (Apple Inc.)
PRC - C:Program Files (x86)Common FilesAppleInternet ServicesApplePhotoStreams.exe (Apple Inc.)
PRC - C:Program Files (x86)Common FilesAppleInternet ServicesBookmarkDAV_client.exe (Apple Inc.)
PRC - C:Program Files (x86)SugarSyncSugarSyncManager.exe (SugarSync, Inc.)
PRC - C:Program Files (x86)SecuniaPSIpsia.exe (Secunia)
PRC - C:Program Files (x86)SecuniaPSIsua.exe (Secunia)
PRC - C:Program Files (x86)SecuniaPSIpsi_tray.exe (Secunia)
PRC - C:WindowsSysWOW64PnkBstrA.exe ()
PRC - C:Program Files (x86)TightVNCtvnserver.exe (GlavSoft LLC.)
PRC - C:ProgramDataFLEXnetConnect11ISUSPM.exe (Acresso Corporation)
PRC - C:Program Files (x86)Common FilesNuancedgnsvc.exe (Nuance Communications, Inc.)
PRC - C:Program Files (x86)Linksys Wireless-G Print ServerPSDiagnosticM.exe ()
PRC - C:Program Files (x86)Spybot - Search & DestroyTeaTimer.exe (Safer-Networking Ltd.)
PRC - C:Program Files (x86)Mouse SettingMouse Setting Software4.0ACQTMAPP.exe ()


========== Modules (No Company Name) ==========

MOD - C:Program Files (x86)BillP StudiosWinPatrolsqlite3.dll ()
MOD - C:Program Files (x86)Common FilesAppleApple Application Supportzlib1.dll ()
MOD - C:Program Files (x86)Common FilesAppleApple Application Supportlibxml2.dll ()
MOD - C:Program Files (x86)Linksys Wireless-G Print ServerPSDiagnosticM.exe ()
MOD - C:Program Files (x86)Mouse SettingMouse Setting Software4.0ACQDEVCL.dll ()
MOD - C:Program Files (x86)Linksys Wireless-G Print ServerscUsb.dll ()
MOD - C:Program Files (x86)Linksys Wireless-G Print ServerscUtil.dll ()
MOD - C:Program Files (x86)Linksys Wireless-G Print ServerscComm.dll ()
MOD - C:Program Files (x86)Mouse SettingMouse Setting Software4.0ACQTMAPP.exe ()
MOD - C:Program Files (x86)Mouse SettingMouse Setting Software4.0ACQTMDLL.DLL ()


========== Services (SafeList) ==========

SRV:64bit: - (!SASCORE) -- C:Program FilesSUPERAntiSpywareSASCore64.exe (SUPERAntiSpyware.com)
SRV:64bit: - (AMD External Events Utility) -- C:WindowsSysNativeatiesrxx.exe (AMD)
SRV:64bit: - (STacSV) -- C:WindowsSysNativeDriverStoreFileRepositorystwrt64.inf_15f4e438STacSV64.ex
e (IDT, Inc.)
SRV:64bit: - (AESTFilters) -- C:WindowsSysNativeDriverStoreFileRepositorystwrt64.inf_15f4e438AESTSr64.ex
e (Andrea Electronics Corporation)
SRV:64bit: - (WinDefend) -- C:Program FilesWindows DefenderMpSvc.dll (Microsoft Corporation)
SRV - (MozillaMaintenance) -- C:Program Files (x86)Mozilla Maintenance Servicemaintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (VMnetDHCP) -- C:WindowsSysWOW64vmnetdhcp.exe (VMware, Inc.)
SRV - (VMware NAT Service) -- C:WindowsSysWOW64vmnat.exe (VMware, Inc.)
SRV - (VMAuthdService) -- C:Program Files (x86)VMwareVMware Playervmware-authd.exe (VMware, Inc.)
SRV - (VMUSBArbService) -- C:Program Files (x86)Common FilesVMwareUSBvmware-usbarbitrator64.exe (VMware, Inc.)
SRV - (avgwd) -- C:Program Files (x86)AVGAVG2013avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (AVGIDSAgent) -- C:Program Files (x86)AVGAVG2013avgidsagent.exe (AVG Technologies CZ, s.r.o.)
SRV - (AdobeARMservice) -- C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (Adobe Systems Incorporated)
SRV - (Secunia PSI Agent) -- C:Program Files (x86)SecuniaPSIpsia.exe (Secunia)
SRV - (Secunia Update Agent) -- C:Program Files (x86)SecuniaPSIsua.exe (Secunia)
SRV - (PnkBstrA) -- C:WindowsSysWOW64PnkBstrA.exe ()
SRV - (tvnserver) -- C:Program Files (x86)TightVNCtvnserver.exe (GlavSoft LLC.)
SRV - (DragonSvc) -- C:Program Files (x86)Common FilesNuancedgnsvc.exe (Nuance Communications, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:WindowsMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (Avgrkx64) -- C:WindowsSysNativeDRIVERSavgrkx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (VMnetuserif) -- C:WindowsSysNativedriversvmnetuserif.sys (VMware, Inc.)
DRV:64bit: - (vmx86) -- C:WindowsSysNativedriversvmx86.sys (VMware, Inc.)
DRV:64bit: - (VMnetBridge) -- C:WindowsSysNativeDRIVERSvmnetbridge.sys (VMware, Inc.)
DRV:64bit: - (VMnetAdapter) -- C:WindowsSysNativeDRIVERSvmnetadapter.sys (VMware, Inc.)
DRV:64bit: - (vmkbd) -- C:WindowsSysNativedriversVMkbd.sys (VMware, Inc.)
DRV:64bit: - (hcmon) -- C:WindowsSysNativedrivershcmon.sys (VMware, Inc.)
DRV:64bit: - (vsock) -- C:WindowsSysNativedriversvsock.sys (VMware, Inc.)
DRV:64bit: - (vmci) -- C:WindowsSysNativeDRIVERSvmci.sys (VMware, Inc.)
DRV:64bit: - (Avgloga) -- C:WindowsSysNativeDRIVERSavgloga.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AVGIDSDriver) -- C:WindowsSysNativeDRIVERSavgidsdrivera.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AVGIDSHA) -- C:WindowsSysNativeDRIVERSavgidsha.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgldx64) -- C:WindowsSysNativeDRIVERSavgldx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgmfx64) -- C:WindowsSysNativeDRIVERSavgmfx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgtdia) -- C:WindowsSysNativeDRIVERSavgtdia.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (PSI) -- C:WindowsSysNativeDRIVERSpsi_mf_amd64.sys (Secunia)
DRV:64bit: - (USBAAPL64) -- C:WindowsSysNativeDriversusbaapl64.sys (Apple, Inc.)
DRV:64bit: - (GEARAspiWDM) -- C:WindowsSysNativeDRIVERSGEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (Fs_Rec) -- C:WindowsSysNativedriversfs_rec.sys (Microsoft Corporation)
DRV:64bit: - (AtiHDAudioService) -- C:WindowsSysNativedriversAtihdLH6.sys (Advanced Micro Devices)
DRV:64bit: - (NETwNv64) -- C:WindowsSysNativeDRIVERSNETwNv64.sys (Intel Corporation)
DRV:64bit: - (SASDIFSV) -- C:Program FilesSUPERAntiSpywaresasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV:64bit: - (SASKUTIL) -- C:Program FilesSUPERAntiSpywaresaskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV:64bit: - (R300) -- C:WindowsSysNativeDRIVERSatikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdag) -- C:WindowsSysNativeDRIVERSatipmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:WindowsSysNativeDRIVERSatikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (AtiHdmiService) -- C:WindowsSysNativedriversAtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (WpdUsb) -- C:WindowsSysNativeDRIVERSwpdusb.sys (Microsoft Corporation)
DRV:64bit: - (NuidFltr) -- C:WindowsSysNativeDRIVERSNuidFltr.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:WindowsSysNativeDRIVERSsdbus.sys (Microsoft Corporation)
DRV:64bit: - (xusb21) -- C:WindowsSysNativeDRIVERSxusb21.sys (Microsoft Corporation)
DRV:64bit: - (STHDA) -- C:WindowsSysNativeDRIVERSstwrt64.sys (IDT, Inc.)
DRV:64bit: - (OA008Ufd) -- C:WindowsSysNativeDRIVERSOA008Ufd.sys (Creative Technology Ltd.)
DRV:64bit: - (OA008Vid) -- C:WindowsSysNativeDRIVERSOA008Vid.sys (Creative Technology Ltd.)
DRV:64bit: - (btwrchid) -- C:WindowsSysNativeDRIVERSbtwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:WindowsSysNativeDRIVERSbtwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (btwavdt) -- C:WindowsSysNativedriversbtwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:WindowsSysNativedriversbtwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (NETw5v64) -- C:WindowsSysNativeDRIVERSNETw5v64.sys (Intel Corporation)
DRV:64bit: - (SynTP) -- C:WindowsSysNativeDRIVERSSynTP.sys (Synaptics, Inc.)
DRV:64bit: - (k57nd60a) -- C:WindowsSysNativeDRIVERSk57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (rismxdp) -- C:WindowsSysNativeDRIVERSrixdpx64.sys (REDC)
DRV:64bit: - (rimmptsk) -- C:WindowsSysNativeDRIVERSrimmpx64.sys (REDC)
DRV:64bit: - (rimsptsk) -- C:WindowsSysNativeDRIVERSrimspx64.sys (REDC)
DRV:64bit: - (SCNUHUB20) -- C:WindowsSysNativeDRIVERSscnuhub20.sys (SerComm)
DRV:64bit: - (scnuhst20) -- C:WindowsSysNativeDRIVERSscnuhst20.sys (SerComm)
DRV:64bit: - (e1express) -- C:WindowsSysNativeDRIVERSe1e6032e.sys (Intel Corporation)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Default_Page_URL = http://www.dell.com
IE:64bit: - HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Start Page = http://www.dell.com
IE:64bit: - HKLM..SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE:64bit: - HKLM..SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...mp;sourceid=ie7
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.dell.com
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Local Page = C:WindowsSysWOW64blank.htm
IE - HKLM..SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM..SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...mp;sourceid=ie7

IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Start Page = about:blank
IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,StartPageCache = 1
IE - HKCU..SearchScopes,DefaultScope = {4E1935CE-7FBF-4D81-9B46-B586EEAB0B3F}
IE - HKCU..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...amp;Form=IE8SRC
IE - HKCU..SearchScopes{4E1935CE-7FBF-4D81-9B46-B586EEAB0B3F}: "URL" = http://www.google.co...1I7ADRA_enUS422
IE - HKCU..SearchScopes{7A107F94-A37F-4CA1-89E9-ED04231C2F81}: "URL" = http://www.bing.com/...eferrer:source}
IE - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.search.as...PN10379&gct=hp"
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.8
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.2.556
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLMSoftwareMozillaPlugins@adobe.com/FlashPlayer: C:Windowssystem32MacromedFlashNPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLMSoftwareMozillaPlugins@java.com/JavaPlugin: C:Program FilesJavajre6binnew_pluginnpjp2.dll File not found
FF:64bit: - HKLMSoftwareMozillaPluginsadobe.com/AdobeAAMDetect: C:Program Files (x86)Common FilesAdobeOOBEPDAppCCMUtilitiesnpAdobeAAMDetect64.dll File not found
FF - HKLMSoftwareMozillaPlugins@adobe.com/FlashPlayer: C:WindowsSysWOW64MacromedFlashNPSWF32_11_9_900_117.dll ()
FF - HKLMSoftwareMozillaPlugins@Apple.com/iTunes,version=: File not found
FF - HKLMSoftwareMozillaPlugins@Apple.com/iTunes,version=1.0: C:Program Files (x86)iTunesMozilla Pluginsnpitunes.dll ()
FF - HKLMSoftwareMozillaPlugins@esn.me/esnsonar,version=0.70.0: C:Program Files (x86)Battlelog Web PluginsSonar\0.70.0npesnsonar.dll File not found
FF - HKLMSoftwareMozillaPlugins@Google.com/GoogleEarthPlugin: C:Program Files (x86)GoogleGoogle Earthpluginnpgeplugin.dll (Google)
FF - HKLMSoftwareMozillaPlugins@java.com/DTPlugin,version=10.21.2: C:WindowsSysWOW64npDeployJava1.dll (Oracle Corporation)
FF - HKLMSoftwareMozillaPlugins@Microsoft.com/NpCtrl,version=1.0: c:Program Files (x86)Microsoft Silverlight5.1.20913.0npctrl.dll ( Microsoft Corporation)
FF - HKLMSoftwareMozillaPlugins@microsoft.com/WPF,version=3.5: c:WindowsMicrosoft.NETFrameworkv3.5Windows Presentation FoundationNPWPF.dll (Microsoft Corporation)
FF - HKLMSoftwareMozillaPlugins@pandonetworks.com/PandoWebPlugin: C:Program Files (x86)Pando NetworksMedia BoosternpPandoWebPlugin.dll File not found
FF - HKLMSoftwareMozillaPlugins@tools.google.com/Google Update;version=3: C:Program Files (x86)GoogleUpdate1.3.21.165npGoogleUpdate3.dll (Google Inc.)
FF - HKLMSoftwareMozillaPlugins@tools.google.com/Google Update;version=9: C:Program Files (x86)GoogleUpdate1.3.21.165npGoogleUpdate3.dll (Google Inc.)
FF - HKLMSoftwareMozillaPluginsAdobe Reader: C:Program Files (x86)AdobeReader 10.0ReaderAIRnppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINEsoftwaremozillaFirefoxExtensionsvirtualKeyboard@kaspersk
y.ru: C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 2011FFExtvirtualKeyboard@kaspersky.ru
FF - HKEY_LOCAL_MACHINEsoftwaremozillaFirefoxExtensionslinkfilter@kaspersky.ru: C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 2011FFExtlinkfilter@kaspersky.ru
FF - HKEY_LOCAL_MACHINEsoftwaremozillaMozilla Firefox 24.0extensionsComponents: C:Program Files (x86)Mozilla Firefoxcomponents [2013/10/09 14:09:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINEsoftwaremozillaMozilla Firefox 24.0extensionsPlugins: C:Program Files (x86)Mozilla Firefoxplugins

[2011/03/13 19:30:59 | 000,000,000 | ---D | M] (No name found) -- C:UsersExigoAppDataRoamingMozillaExtensions
[2013/10/09 14:13:25 | 000,000,000 | ---D | M] (No name found) -- C:UsersExigoAppDataRoamingMozillaFirefoxProfilesi52sed3g.defaultextensi
ons
[2011/03/27 21:36:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:UsersExigoAppDataRoamingMozillaFirefoxProfilesi52sed3g.defaultextensi
ons{20a82645-c095-46ed-80e3-08825760534b}
[2013/10/09 14:13:25 | 000,000,000 | ---D | M] (No name found) -- C:UsersExigoAppDataRoamingMozillaFirefoxProfilesi52sed3g.defaultextensi
onsstaged
[2013/03/05 14:18:44 | 000,269,007 | ---- | M] () (No name found) -- C:UsersExigoAppDataRoamingMozillaFirefoxProfilesi52sed3g.defaultextensi
ons{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013/10/09 14:13:24 | 000,282,570 | ---- | M] () (No name found) -- C:UsersExigoAppDataRoamingMozillaFirefoxProfilesi52sed3g.defaultextensi
onsstaged{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2011/03/13 19:36:22 | 000,004,140 | ---- | M] () -- C:UsersExigoAppDataRoamingMozillaFirefoxProfilesi52sed3g.defaultsearchp
luginsyoutube.xml
[2013/10/09 14:09:29 | 000,000,000 | ---D | M] (No name found) -- C:Program Files (x86)Mozilla Firefoxextensions
[2013/10/09 14:09:31 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:Program Files (x86)Mozilla Firefoxextensionslinkfilter@kaspersky.ru_bak
[2013/10/09 14:09:26 | 000,000,000 | ---D | M] (No name found) -- C:Program Files (x86)Mozilla Firefoxbrowserextensions
[2013/10/09 14:09:52 | 000,000,000 | ---D | M] (Default) -- C:Program Files (x86)Mozilla Firefoxbrowserextensions{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/10/03 22:11:33 | 000,002,252 | ---- | M] () -- C:Program Files (x86)mozilla firefoxsearchpluginsbing.xml.old

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{g
oogle:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:in
s
tantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncodi
n
g}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugk
ey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.search.as...N10379cr&gct=hp
CHR - plugin: Shockwave Flash (Enabled) = C:Program Files (x86)GoogleChromeApplication30.0.1599.69PepperFlashpepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:Program Files (x86)GoogleChromeApplication30.0.1599.69ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:Program Files (x86)GoogleChromeApplication30.0.1599.69pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:Program Files (x86)AdobeReader 10.0ReaderBrowsernppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:Program Files (x86)QuickTimepluginsnpqtplugin7.dll
CHR - plugin: AdobeAAMDetect (Enabled) = C:Program Files (x86)Common FilesAdobeOOBEPDAppCCMUtilitiesnpAdobeAAMDetect32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:Program Files (x86)GoogleGoogle Earthpluginnpgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:Program Files (x86)GoogleUpdate1.3.21.145npGoogleUpdate3.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:Program Files (x86)iTunesMozilla Pluginsnpitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:WindowsSysWOW64MacromedFlashNPSWF32_11_7_700_202.dll
CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:WindowsSysWOW64npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:Program Files (x86)Microsoft Silverlight5.1.20125.0npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:WindowsMicrosoft.NETFrameworkv3.5Windows Presentation FoundationNPWPF.dll
CHR - Extension: Fabulous = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionsambjmeohlajelahhhniggkkceagdlcgj29.1_0
CHR - Extension: Google Docs = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake\0.5_0
CHR - Extension: Google Drive = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf6.3_0
CHR - Extension: YouTube = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo4.2.6_0
CHR - Extension: Google Search = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionscoobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR - Extension: Social Fixer for Facebook = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionsifmhoabcaeehkljcfclfiieohkohdgbb7.801_0
CHR - Extension: Chrome In-App Payments service = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR - Extension: Gmail = C:UsersExigoAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia7_0

O1 HOSTS File: ([2013/03/10 13:21:29 | 000,000,027 | ---- | M]) - C:WindowsSysNativedriversetcHosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program FilesGoogleGoogleToolbarNotifier5.7.9012.1008swg64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program FilesJavajre6binjp2ssv.dll File not found
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:Program Files (x86)Spybot - Search & DestroySDHelper.dll (Safer Networking Limited)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program Files (x86)GoogleGoogleToolbarNotifier5.7.9012.1008swg.dll (Google Inc.)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O3:64bit: - HKLM..Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_64.dll (Google Inc.)
O3 - HKLM..Toolbar: (StartNow Toolbar) - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:Program Files (x86)StartNow ToolbarToolbar32.dll File not found
O3:64bit: - HKCU..ToolbarWebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..Run: [SysTrayApp] C:Program FilesIDTWDMsttray64.exe (IDT, Inc.)
O4:64bit: - HKLM..Run: [WinPatrol] C:Program Files (x86)BillP StudiosWinPatrolWinPatrol.exe (BillP Studios)
O4 - HKLM..Run: [ACQTMOUSE] C:Program Files (x86)Mouse SettingMouse Setting Software4.0ACQTMAPP.exe ()
O4 - HKLM..Run: [APSDaemon] C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc.)
O4 - HKLM..Run: [AVG_UI] C:Program Files (x86)AVGAVG2013avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..Run: [DNS7reminder] C:Program Files (x86)NuanceNaturallySpeaking11EregEreg.exe (Nuance Communications, Inc.)
O4 - HKLM..Run: [PSDiagnosticM] C:Program Files (x86)Linksys Wireless-G Print ServerPSDiagnosticM.exe ()
O4 - HKLM..Run: [StartCCC] c:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..Run: [tvncontrol] C:Program Files (x86)TightVNCtvnserver.exe (GlavSoft LLC.)
O4 - HKLM..Run: [WinPatrol] C:Program Files (x86)BillP StudiosWinPatrolwinpatrol.exe (BillP Studios)
O4 - HKCU..Run: [ApplePhotoStreams] C:Program Files (x86)Common FilesAppleInternet ServicesApplePhotoStreams.exe (Apple Inc.)
O4 - HKCU..Run: [com.apple.dav.bookmarks.daemon] C:Program Files (x86)Common FilesAppleInternet ServicesBookmarkDAV_client.exe (Apple Inc.)
O4 - HKCU..Run: [iCloudServices] C:Program Files (x86)Common FilesAppleInternet ServicesiCloudServices.exe (Apple Inc.)
O4 - HKCU..Run: [ISUSPM] C:ProgramDataFLEXnetConnect11ISUSPM.exe (Acresso Corporation)
O4 - HKCU..Run: [ooVoo.exe] C:Program Files (x86)ooVoooovoo.exe (ooVoo LLC)
O4 - HKCU..Run: [SpybotSD TeaTimer] C:Program Files (x86)Spybot - Search & DestroyTeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..Run: [SugarSync] C:Program Files (x86)SugarSyncSugarSyncManager.exe (SugarSync, Inc.)
O4 - HKCU..Run: [SUPERAntiSpyware] C:Program FilesSUPERAntiSpywareSUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O6 - HKLMSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 28
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDrives = 0
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: SoftwareSASGeneration = 1
O7 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDrives = 0
O8:64bit: - Extra context menu item: Send image to &Bluetooth Device... - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send page to &Bluetooth Device... - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm ()
O9:64bit: - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm ()
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:Program Files (x86)Spybot - Search & DestroySDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5Catalog_Entries64\000000000008 [] - C:Program FilesBonjourmdnsNSP.dll (Apple Inc.)
O10:64bit: - Protocol_Catalog9Catalog_Entries64\000000000012 - C:WindowsSysNativevsocklib.dll (VMware, Inc.)
O10:64bit: - Protocol_Catalog9Catalog_Entries64\000000000013 - C:WindowsSysNativevsocklib.dll (VMware, Inc.)
O10 - NameSpace_Catalog5Catalog_Entries\000000000008 [] - C:Program Files (x86)BonjourmdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9Catalog_Entries\000000000012 - C:WindowsSysWOW64vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9Catalog_Entries\000000000013 - C:WindowsSysWOW64vsocklib.dll (VMware, Inc.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O17 - HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 167.206.254.1 167.206.254.2
O17 - HKLMSystemCCSServicesTcpipParametersInterfaces{E29B23B5-60AC-4E5C-BAFF-E892E1E1E0CB}: DhcpNameServer = 167.206.254.1 167.206.254.2
O18:64bit: - ProtocolHandlermsdaipp - No CLSID value found
O18:64bit: - ProtocolHandlermsdaipp\0x00000001 - No CLSID value found
O18:64bit: - ProtocolHandlermsdaippoledb - No CLSID value found
O18:64bit: - ProtocolHandlermso-offdap11 - No CLSID value found
O18 - ProtocolHandlermsdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOle DBMSDAIPP.DLL (Microsoft Corporation)
O18 - ProtocolHandlermsdaippoledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program Files (x86)Common FilesSystemOle DBMSDAIPP.DLL (Microsoft Corporation)
O18:64bit: - ProtocolFiltertext/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:Windowsexplorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:Windowssystem32userinit.exe) - C:WindowsSysNativeuserinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:WindowsSysWow64explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:Windowssystem32userinit.exe) - C:WindowsSysWOW64userinit.exe (Microsoft Corporation)
O20 - WinlogonNotifyklogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:UsersPublicPicturesSample PicturesDock.jpg
O24 - Desktop BackupWallPaper: C:UsersPublicPicturesSample PicturesDock.jpg
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM..comfile [open] -- "%1" %*
O35:64bit: - HKLM..exefile [open] -- "%1" %*
O35 - HKLM..comfile [open] -- "%1" %*
O35 - HKLM..exefile [open] -- "%1" %*
O37:64bit: - HKLM...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM...exe [@ = exefile] -- "%1" %*
O37 - HKLM...com [@ = comfile] -- "%1" %*
O37 - HKLM...exe [@ = exefile] -- "%1" %*
O38 - SubSystemsWindows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystemsWindows: (ServerDll=winsrv:ConServerDllInitialization,2)


Drivers32:64bit: msacm.l3acm - C:WindowsSystem32l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:WindowsSysWOW64l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.pspgru - C:WindowsSysWow64PSPGRU.acm (Philips Austria GmbH - Speech Processing)
Drivers32: vidc.cvid - C:WindowsSysWow64iccvid.dll (Radius Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/10/15 09:51:53 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:UsersExigoDesktopOTL (2).exe
[2013/10/10 13:24:12 | 000,000,000 | ---D | C] -- C:UsersExigoDocumentsVirtual Machines
[2013/10/10 12:40:37 | 000,000,000 | ---D | C] -- C:UsersExigoAppDataLocalVMware
[2013/10/10 12:40:31 | 000,000,000 | ---D | C] -- C:UsersExigoAppDataRoamingVMware
[2013/10/10 12:37:20 | 000,067,664 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativevsocklib.dll
[2013/10/10 12:37:20 | 000,063,568 | ---- | C] (VMware, Inc.) -- C:WindowsSysWow64vsocklib.dll
[2013/10/10 12:37:17 | 000,073,296 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativedriversvsock.sys
[2013/10/10 12:36:03 | 000,064,080 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativedriversvmx86.sys
[2013/10/10 12:36:00 | 000,032,848 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativedriversVMkbd.sys
[2013/10/10 12:33:04 | 000,358,480 | ---- | C] (VMware, Inc.) -- C:WindowsSysWow64vmnetdhcp.exe
[2013/10/10 12:32:52 | 000,437,328 | ---- | C] (VMware, Inc.) -- C:WindowsSysWow64vmnat.exe
[2013/10/10 12:32:49 | 000,030,800 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativedriversvmnetuserif.sys
[2013/10/10 12:31:09 | 000,930,384 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativevnetlib64.dll
[2013/10/10 12:30:12 | 000,053,816 | ---- | C] (VMware, Inc.) -- C:WindowsSysNativedrivershcmon.sys
[2013/10/10 12:27:18 | 000,000,000 | ---D | C] -- C:ProgramDataMicrosoftWindowsStart MenuProgramsVMware
[2013/10/10 12:27:10 | 000,000,000 | ---D | C] -- C:Program FilesCommon FilesVMware
[2013/10/10 12:26:06 | 000,000,000 | ---D | C] -- C:ProgramDataVMware
[2013/10/10 12:26:06 | 000,000,000 | ---D | C] -- C:Program Files (x86)VMware
[2013/10/10 12:26:06 | 000,000,000 | ---D | C] -- C:Program Files (x86)Common FilesVMware
[2013/10/10 12:02:13 | 000,000,000 | ---D | C] -- C:UsersExigoDocumentsCyberAces
[2013/10/10 11:36:24 | 000,000,000 | ---D | C] -- C:ProgramDataMicrosoftWindowsStart MenuProgramsiTunes
[2013/10/10 11:34:37 | 000,000,000 | ---D | C] -- C:Program FilesiPod
[2013/10/10 11:34:29 | 000,000,000 | ---D | C] -- C:Program FilesiTunes
[2013/10/10 11:34:29 | 000,000,000 | ---D | C] -- C:Program Files (x86)iTunes
[2013/10/10 11:34:29 | 000,000,000 | ---D | C] -- C:ProgramData34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/10/09 14:09:25 | 000,000,000 | ---D | C] -- C:Program Files (x86)Mozilla Firefox
[2013/10/09 11:19:55 | 000,000,000 | ---D | C] -- C:WindowsSysNativeMRT
[2013/10/08 21:13:54 | 004,691,904 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativentoskrnl.exe
[2013/10/08 21:13:54 | 001,585,256 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativentdll.dll
[2013/10/08 21:13:53 | 000,234,496 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativewow64.dll
[2013/10/08 21:13:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64setup16.exe
[2013/10/08 21:13:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativentvdm64.dll
[2013/10/08 21:13:53 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64ntvdm64.dll
[2013/10/08 21:13:53 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64instnm.exe
[2013/10/08 21:13:53 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64wow32.dll
[2013/10/08 21:13:53 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64user.exe
[2013/10/08 21:13:50 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64WMVDECOD.DLL
[2013/10/08 21:13:49 | 001,706,496 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeWMVDECOD.DLL
[2013/10/08 21:13:38 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativecdd.dll
[2013/10/08 21:13:24 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeicaapi.dll
[2013/10/08 21:13:20 | 000,619,008 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeqedit.dll
[2013/10/08 21:13:20 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64qedit.dll
[2013/10/08 21:13:12 | 001,556,480 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeDWrite.dll
[2013/10/08 21:13:11 | 002,002,944 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived3d10warp.dll
[2013/10/08 21:13:11 | 001,268,224 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived3d10.dll
[2013/10/08 21:13:11 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived2d1.dll
[2013/10/08 21:13:11 | 000,566,272 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived3d10level9.dll
[2013/10/08 21:13:11 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived3d10_1core.dll
[2013/10/08 21:13:11 | 000,287,232 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived3d10core.dll
[2013/10/08 21:13:10 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNatived3d10_1.dll
[2013/10/08 21:12:50 | 001,303,552 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativerpcrt4.dll
[2013/10/08 21:12:47 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:WindowsSysNativeatmfd.dll
[2013/10/08 21:12:47 | 000,293,376 | ---- | C] (Adobe Systems Incorporated) -- C:WindowsSysWow64atmfd.dll
[2013/10/08 21:12:47 | 000,048,128 | ---- | C] (Adobe Systems) -- C:WindowsSysNativeatmlib.dll
[2013/10/08 21:12:47 | 000,034,304 | ---- | C] (Adobe Systems) -- C:WindowsSysWow64atmlib.dll
[2013/10/08 21:12:42 | 000,031,616 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativedrivershidparse.sys
[2013/10/08 21:12:37 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativethemeui.dll
[2013/10/08 21:12:36 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64themeui.dll
[2013/10/08 21:12:33 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64ie4uinit.exe
[2013/10/08 21:12:33 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeiesetup.dll
[2013/10/08 21:12:33 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64msfeedssync.exe
[2013/10/08 21:12:32 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64html.iec
[2013/10/08 21:12:32 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64occache.dll
[2013/10/08 21:12:32 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeiernonce.dll
[2013/10/08 21:12:32 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64iesetup.dll
[2013/10/08 21:12:32 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64corpol.dll
[2013/10/08 21:12:32 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativemsfeedssync.exe
[2013/10/08 21:12:30 | 000,742,912 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativemsfeeds.dll
[2013/10/08 21:12:30 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeie4uinit.exe
[2013/10/08 21:12:28 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64iernonce.dll
[2013/10/08 21:12:27 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64ieui.dll
[2013/10/08 21:12:27 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64licmgr10.dll
[2013/10/08 21:12:26 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeoccache.dll
[2013/10/08 21:12:25 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativehtml.iec
[2013/10/08 21:12:24 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64inetcpl.cpl
[2013/10/08 21:12:24 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeieui.dll
[2013/10/08 21:12:24 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64iepeers.dll
[2013/10/08 21:12:24 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64url.dll
[2013/10/08 21:12:24 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64mshtmled.dll
[2013/10/08 21:12:24 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativelicmgr10.dll
[2013/10/08 21:12:24 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativecorpol.dll
[2013/10/08 21:12:22 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeinetcpl.cpl
[2013/10/08 21:12:20 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeiepeers.dll
[2013/10/08 21:12:19 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativemshtmled.dll
[2013/10/08 21:12:18 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeurl.dll
[2013/10/08 21:12:17 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeieUnatt.exe
[2013/10/08 21:12:17 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64ieUnatt.exe
[2013/10/08 21:12:17 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativeiesysprep.dll
[2013/10/08 21:12:17 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64iesysprep.dll
[2013/10/08 21:12:12 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativePresentationCFFRasterizerNative_v0300.dll
[2013/10/08 21:12:12 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:WindowsSysWow64PresentationCFFRasterizerNative_v0300.dll
[2013/10/08 21:12:05 | 001,276,416 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativecrypt32.dll
[2013/10/08 21:12:05 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativewintrust.dll
[2013/10/08 21:12:04 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativecryptnet.dll
[2013/10/08 21:12:00 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativecomctl32.dll
[2013/10/08 21:11:44 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativedriversusbport.sys
[2013/10/08 21:11:43 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:WindowsSysNativedriversusbd.sys
[2013/10/08 20:52:33 | 000,000,000 | ---D | C] -- C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Earth
[2013/10/08 19:44:27 | 000,000,000 | ---D | C] -- C:ProgramDataMicrosoftWindowsStart MenuProgramsAVG
[2013/10/08 19:28:56 | 017,813,896 | ---- | C] (Adobe Systems Incorporated) -- C:WindowsSysWow64FlashPlayerInstaller.exe
[2 C:Windows*.tmp files -> C:Windows*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/10/15 10:15:36 | 000,000,896 | ---- | M] () -- C:WindowstasksGoogleUpdateTaskMachineUA.job
[2013/10/15 09:51:59 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:UsersExigoDesktopOTL (2).exe
[2013/10/15 09:43:09 | 000,652,932 | ---- | M] () -- C:WindowsSysNativeperfh009.dat
[2013/10/15 09:43:09 | 000,124,832 | ---- | M] () -- C:WindowsSysNativeperfc009.dat
[2013/10/15 09:43:08 | 000,774,918 | ---- | M] () -- C:WindowsSysNativePerfStringBackup.INI
[2013/10/15 09:41:04 | 000,001,699 | ---- | M] () -- C:UsersExigoDesktopNotepad.lnk
[2013/10/15 09:20:22 | 000,000,830 | ---- | M] () -- C:WindowstasksAdobe Flash Player Updater.job
[2013/10/15 09:19:14 | 000,000,892 | ---- | M] () -- C:WindowstasksGoogleUpdateTaskMachineCore.job
[2013/10/15 09:18:38 | 000,003,616 | -H-- | M] () -- C:WindowsSysNative7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/10/15 09:18:38 | 000,003,616 | -H-- | M] () -- C:WindowsSysNative7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/10/15 09:18:31 | 000,067,584 | --S- | M] () -- C:Windowsbootstat.dat
[2013/10/15 09:18:21 | 2142,089,216 | -HS- | M] () -- C:hiberfil.sys
[2013/10/15 00:37:37 | 000,000,012 | ---- | M] () -- C:Windowsbthservsdp.dat
[2013/10/12 15:33:02 | 000,002,631 | ---- | M] () -- C:UsersExigoDesktopMicrosoft Office Excel 2003.lnk
[2013/10/12 12:02:18 | 000,770,324 | ---- | M] () -- C:WindowsSysWow64PerfStringBackup.INI
[2013/10/12 10:15:03 | 000,001,770 | ---- | M] () -- C:UsersPublicDesktopooVoo.lnk
[2013/10/11 08:57:08 | 000,002,633 | ---- | M] () -- C:UsersExigoDesktopMicrosoft Office Word 2003.lnk
[2013/10/11 06:02:13 | 000,000,326 | ---- | M] () -- C:WindowstasksSpybot - Search & Destroy Updater - Scheduled Task.job
[2013/10/10 12:38:14 | 000,000,924 | ---- | M] () -- C:UsersExigoApplication DataMicrosoftInternet ExplorerQuick LaunchVMware Player.lnk
[2013/10/10 12:27:18 | 000,001,928 | ---- | M] () -- C:UsersPublicDesktopVMware Player.lnk
[2013/10/10 11:36:27 | 000,001,696 | ---- | M] () -- C:UsersPublicDesktopiTunes.lnk
[2013/10/09 14:44:21 | 000,000,970 | ---- | M] () -- C:UsersExigoApplication DataMicrosoftInternet ExplorerQuick LaunchLaunch Microsoft Office Outlook.lnk
[2013/10/09 13:45:01 | 000,646,296 | ---- | M] () -- C:WindowsSysNativeFNTCACHE.DAT
[2013/10/08 21:23:54 | 000,002,027 | ---- | M] () -- C:UsersPublicDesktopGoogle Chrome.lnk
[2013/10/08 20:19:37 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:WindowsSysWow64FlashPlayerApp.exe
[2013/10/08 20:19:37 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:WindowsSysWow64FlashPlayerCPLApp.cpl
[2013/10/08 20:19:12 | 017,813,896 | ---- | M] (Adobe Systems Incorporated) -- C:WindowsSysWow64FlashPlayerInstaller.exe
[2013/10/08 19:44:27 | 000,000,874 | ---- | M] () -- C:UsersPublicDesktopAVG 2013.lnk
[2013/09/23 08:57:27 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64url.dll
[2013/09/23 08:55:12 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64occache.dll
[2013/09/23 08:52:36 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64mshtmled.dll
[2013/09/23 08:51:49 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64licmgr10.dll
[2013/09/23 08:51:24 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64inetcpl.cpl
[2013/09/23 08:51:07 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64ieui.dll
[2013/09/23 08:51:07 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64iesysprep.dll
[2013/09/23 08:51:06 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64iesetup.dll
[2013/09/23 08:51:04 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64iepeers.dll
[2013/09/23 08:51:04 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64iernonce.dll
[2013/09/23 08:49:22 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64corpol.dll
[2013/09/23 07:14:03 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64html.iec
[2013/09/23 06:50:45 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeurl.dll
[2013/09/23 06:49:15 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeoccache.dll
[2013/09/23 06:47:24 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativemshtmled.dll
[2013/09/23 06:47:21 | 000,742,912 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativemsfeeds.dll
[2013/09/23 06:46:45 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativelicmgr10.dll
[2013/09/23 06:46:24 | 001,538,560 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeinetcpl.cpl
[2013/09/23 06:46:12 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeieui.dll
[2013/09/23 06:46:12 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeiesysprep.dll
[2013/09/23 06:46:11 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeiesetup.dll
[2013/09/23 06:46:11 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeiernonce.dll
[2013/09/23 06:46:10 | 000,252,416 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeiepeers.dll
[2013/09/23 06:44:37 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativecorpol.dll
[2013/09/23 05:29:22 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64ieUnatt.exe
[2013/09/23 05:29:11 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64ie4uinit.exe
[2013/09/23 05:27:55 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:WindowsSysWow64msfeedssync.exe
[2013/09/23 05:26:58 | 000,479,232 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativehtml.iec
[2013/09/23 03:44:21 | 000,162,816 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeieUnatt.exe
[2013/09/23 03:43:51 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativeie4uinit.exe
[2013/09/23 03:40:40 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:WindowsSysNativemsfeedssync.exe
[2 C:Windows*.tmp files -> C:Windows*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/10/15 09:41:04 | 000,001,699 | ---- | C] () -- C:UsersExigoDesktopNotepad.lnk
[2013/10/10 12:38:14 | 000,000,924 | ---- | C] () -- C:UsersExigoApplication DataMicrosoftInternet ExplorerQuick LaunchVMware Player.lnk
[2013/10/10 12:27:18 | 000,001,928 | ---- | C] () -- C:UsersPublicDesktopVMware Player.lnk
[2013/10/10 11:36:27 | 000,001,696 | ---- | C] () -- C:UsersPublicDesktopiTunes.lnk
[2012/07/06 11:53:24 | 000,196,608 | ---- | C] () -- C:WindowsSysWow64CopyHubDrv.exe
[2011/10/19 23:14:52 | 000,059,904 | ---- | C] () -- C:WindowsSysWow64OVDecode.dll
[2011/08/04 14:05:44 | 000,054,233 | ---- | C] () -- C:UsersExigoAppDataRoamingicarus-dxdiag.xml
[2011/07/05 17:30:23 | 000,000,093 | ---- | C] () -- C:UsersExigoAppDataLocalfusioncache.dat
[2011/04/23 16:17:49 | 000,001,994 | ---- | C] () -- C:UsersExigoAppDataRoamingSAS7_000.DAT
[2011/04/05 01:05:59 | 000,006,144 | ---- | C] () -- C:UsersExigoAppDataLocalDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/13 13:03:40 | 000,000,680 | ---- | C] () -- C:UsersExigoAppDataLocald3d9caps.dat

========== ZeroAccess Check ==========

[2006/11/02 11:30:40 | 000,000,227 | RHS- | M] () -- C:WindowsassemblyDesktop.ini

[HKEY_CURRENT_USERSoftwareClassesclsid{42aedc87-2188-41fd-b9a3-0c966feabec1}InProcServer32] /64

[HKEY_CURRENT_USERSoftwareClassesWow6432nodeclsid{42aedc87-2188-41fd-b9a3-0c966feabec1}InProcServer32]

[HKEY_CURRENT_USERSoftwareClassesclsid{fbeb8a05-beee-4442-804e-409d6c4515e9}InProcServer32] /64

[HKEY_CURRENT_USERSoftwareClassesWow6432nodeclsid{fbeb8a05-beee-4442-804e-409d6c4515e9}InProcServer32]

[HKEY_LOCAL_MACHINESoftwareClassesclsid{42aedc87-2188-41fd-b9a3-0c966feabec1}InProcServer32] /64
"" = C:WindowsSysNativeshell32.dll -- [2012/06/08 13:59:03 | 012,899,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINESoftwareWow6432NodeClassesclsid{42aedc87-2188-41fd-b9a3-0c966feabec1}InProcServer32]
"" = %SystemRoot%system32shell32.dll -- [2012/06/08 13:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINESoftwareClassesclsid{5839FCA9-774D-42A1-ACDA-D6A79037F57F}InProcServer32] /64
"" = C:WindowsSysNativewbemfastprox.dll -- [2009/04/11 03:11:14 | 000,891,392 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINESoftwareWow6432NodeClassesclsid{5839FCA9-774D-42A1-ACDA-D6A79037F57F}InProcServer32]
"" = %systemroot%SysWow64wbemfastprox.dll -- [2009/04/11 02:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINESoftwareClassesclsid{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}InProcServer32] /64
"" = C:WindowsSysNativewbemwbemess.dll -- [2008/01/20 22:50:58 | 000,513,024 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINESoftwareWow6432NodeClassesclsid{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}InProcServer32]
"" = %systemroot%SysWow64wbemwbemess.dll

========== LOP Check ==========

[2013/06/10 16:41:40 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingAvery
[2013/06/02 00:35:47 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingAVG2013
[2012/12/14 13:15:03 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingcom.adobe.downloadassistant.AdobeDownloadAssistan
t
[2011/03/29 13:23:57 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingDarksporeData
[2013/06/03 11:40:22 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingDSite
[2011/05/07 03:04:49 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingMount&Blade Warband
[2011/09/20 00:44:26 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingMount&Blade With Fire and Sword
[2013/06/01 13:02:54 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingNo Company Name
[2011/04/23 15:39:58 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingNuance
[2011/11/04 06:33:47 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingNullsoft
[2011/12/05 18:53:48 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingooVoo Details
[2013/04/23 11:01:25 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingOracle
[2011/10/29 06:46:42 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingOrigin
[2011/05/19 12:21:00 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingRenPy
[2011/12/21 04:02:47 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingSystemRequirementsLab
[2011/03/15 11:41:53 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingThe Creative Assembly
[2012/01/18 23:03:34 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingTightVNC
[2013/06/02 00:33:30 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingTuneUp Software
[2013/03/11 13:20:03 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingWinPatrol
[2013/03/13 09:58:13 | 000,000,000 | ---D | M] -- C:UsersExigoAppDataRoamingZinioReader4.9310D8F796442B71068C511E15D70529A702
D19D.1

========== Purity Check ==========



========== Custom Scans ==========

< %USERPROFILE%..|smtmp;true;true;true /FP >

< %temp%smtmp*.* /s > >

< MD5 for: EXPLORER.EXE >
[2009/04/24 23:53:49 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:Windowswinsxswow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_b5f700fe698beb14explorer.exe
[2009/04/24 23:53:48 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:Windowswinsxswow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_b7eb106e66a7ac19explorer.exe
[2009/04/24 23:53:48 | 003,087,360 | ---- | M] (Microsoft Corporation) MD5=50514057C28A74BAC2BD04B7B990D615 -- C:Windowswinsxsamd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_aba256ac352b2919explorer.exe
[2009/04/24 23:53:47 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:Windowswinsxswow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_b8583e9d7fda0512explorer.exe
[2009/04/11 03:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:Windowserdntcache86explorer.exe
[2009/04/11 03:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:Windowsexplorer.exe
[2009/04/11 03:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:Windowswinsxsamd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_afbebba22f3bab41explorer.exe
[2009/04/24 23:53:48 | 003,086,848 | ---- | M] (Microsoft Corporation) MD5=72B9990E45C25AA3C75C4FB50A9D6CE0 -- C:Windowswinsxsamd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_ac5266dd4e2b0a41explorer.exe
[2009/04/24 23:53:47 | 003,080,704 | ---- | M] (Microsoft Corporation) MD5=BBD8E74F23D7605CB0CDB57A1B25D826 -- C:Windowswinsxsamd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_ad96661c3246ea1eexplorer.exe
[2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:WindowsSysWOW64explorer.exe
[2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:Windowswinsxswow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_ba1365f4639c6d3cexplorer.exe
[2009/04/24 23:53:47 | 003,081,216 | ---- | M] (Microsoft Corporation) MD5=E404A65EF890140410E9F3D405841C95 -- C:Windowswinsxsamd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_ae03944b4b794317explorer.exe
[2009/04/24 23:53:48 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:Windowswinsxswow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_b6a7112f828bcc3cexplorer.exe
[2008/01/20 22:48:44 | 003,080,704 | ---- | M] (Microsoft Corporation) MD5=F6D765FB6B457542D954682F50C26E4F -- C:Windowswinsxsamd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_add342963219dff5explorer.exe
[2008/01/20 22:49:23 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:Windowswinsxswow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_b827ece8667aa1f0explorer.exe

< MD5 for: EXPLORER.EXE.MUI >
[2006/11/02 11:13:38 | 000,036,864 | ---- | M] (Microsoft Corporation) MD5=192DD053B43250E264383CDC3D564A18 -- C:WindowsSysWOW64en-USexplorer.exe.mui
[2006/11/02 11:13:38 | 000,036,864 | ---- | M] (Microsoft Corporation) MD5=192DD053B43250E264383CDC3D564A18 -- C:Windowswinsxswow64_microsoft-windows-explorer.resources_31bf3856ad364e35_6.0.6000.16386_en-us_6a2f0af76374ed51explorer.exe.mui
[2006/11/02 11:13:32 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=872D519975CA4D7CC596FC93470D49E0 -- C:Windowsen-USexplorer.exe.mui
[2006/11/02 11:13:32 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=872D519975CA4D7CC596FC93470D49E0 -- C:Windowswinsxsamd64_microsoft-windows-explorer.resources_31bf3856ad364e35_6.0.6000.16386_en-us_5fda60a52f142b56explorer.exe.mui

< MD5 for: IEXPLORE.EXE >
[2012/02/28 07:33:51 | 000,638,240 | ---- | M] (Microsoft Corporation) MD5=00A346CE3D3701EA085E87EEF746A74A -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19222_none_78aaa81b1c988417iexplore.
exe
[2012/05/14 22:19:52 | 000,660,576 | ---- | M] (Microsoft Corporation) MD5=0312C74E6AC03B74627B0105DC7BDF4B -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19272_none_6e1fee2ce8604dd1iexplore.
exe
[2011/07/23 07:02:27 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=04D1DC458C723B291179F8449ACC281D -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19120_none_78a8a5a11c9a5442iexplore.
exe
[2013/03/01 08:26:43 | 000,638,104 | ---- | M] (Microsoft Corporation) MD5=062C1DA7AC453D890FA2D3D6768A74F6 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19412_none_78b57bd31c906274iexplore.
exe
[2009/04/24 23:40:50 | 000,634,024 | ---- | M] (Microsoft Corporation) MD5=0844F5B9CB3BB85A917D347EF1565B6C -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16809_none_93f80d9f098e0166iexplore.
exe
[2012/11/09 06:44:47 | 000,638,040 | ---- | M] (Microsoft Corporation) MD5=0BC355C49DC6D3E678D4C5C5AE467AEF -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19393_none_785ffad71cd05e2ciexplore.
exe
[2011/09/30 19:49:11 | 000,638,216 | ---- | M] (Microsoft Corporation) MD5=0E1695AD4C30E72D68170F01B4818A80 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23250_none_7911d2a835d047dfiexplore.
exe
[2013/05/16 23:52:35 | 000,638,120 | ---- | M] (Microsoft Corporation) MD5=0EADB4A14A16E2EC51372E02BBB79EF6 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19437_none_78a4dd6d1c9c1909iexplore.
exe
[2013/05/16 23:36:33 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=0F2D8F3D1E87F51BFD5369337AF9D532 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19437_none_6e50331ae83b570eiexplore.
exe
[2013/09/23 08:59:45 | 000,638,120 | ---- | M] (Microsoft Corporation) MD5=1508792F95ACEB30E03497AA2A249ACD -- C:Program Files (x86)Internet Exploreriexplore.exe
[2013/09/23 08:59:45 | 000,638,120 | ---- | M] (Microsoft Corporation) MD5=1508792F95ACEB30E03497AA2A249ACD -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19475_none_78779d291cbe561fiexplore.
exe
[2012/02/28 03:56:50 | 000,660,768 | ---- | M] (Microsoft Corporation) MD5=1A00A142F25A1075E805C744072CDA68 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23318_none_6ef06c3c0147ddffiexplore.
exe
[2009/03/03 00:18:52 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=1DD66A2851DACDEC32EAE8F9A8865ABD -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_9465e0f822c1744aiexplore.
exe
[2011/02/27 15:20:13 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=1DD66A2851DACDEC32EAE8F9A8865ABD -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_9465e0f822c1744aiexplore.
exe
[2009/04/24 12:25:27 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=1F44940EF1D07D0BDAF80E55853DFBD0 -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16851_none_93b9fbb309bdc263iexplore.
exe
[2011/02/27 15:32:35 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=1F44940EF1D07D0BDAF80E55853DFBD0 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16851_none_93b9fbb309bdc263iexplore.
exe
[2013/01/05 08:01:42 | 000,638,024 | ---- | M] (Microsoft Corporation) MD5=257A60600A56C42ADF146AA9F8A8CD18 -- C:Windowserdntcache86iexplore.exe
[2013/01/05 08:01:42 | 000,638,024 | ---- | M] (Microsoft Corporation) MD5=257A60600A56C42ADF146AA9F8A8CD18 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19400_none_78be4b2b1c8a13d5iexplore.
exe
[2012/05/15 04:57:00 | 000,638,048 | ---- | M] (Microsoft Corporation) MD5=26B900640CE979A708FD3793FA8A6C50 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23359_none_791ad72835c82915iexplore.
exe
[2012/08/25 04:08:00 | 000,660,592 | ---- | M] (Microsoft Corporation) MD5=27AE9906D8F34E4B2A097FA03FA0D550 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23415_none_6eed6d44014a8f21iexplore.
exe
[2011/11/03 03:33:09 | 000,638,240 | ---- | M] (Microsoft Corporation) MD5=2A268DF89913A0E927091077878EDB3E -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23266_none_790d047835d2fbdaiexplore.
exe
[2012/11/09 02:33:53 | 000,660,568 | ---- | M] (Microsoft Corporation) MD5=2BC5D6CA973565003EEB48479CA8FA87 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23461_none_6eb35c800176b57aiexplore.
exe
[2009/04/11 02:27:44 | 000,636,080 | ---- | M] (Microsoft Corporation) MD5=2C5168C856455CC43C4B4E1CC1920001 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6002.18005_none_97c0beeb03de7f46iexplore.
exe
[2011/02/22 02:50:19 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=2E70FE17239DFCA6209FD698D0F18C61 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19048_none_6e465be0e84297baiexplore.
exe
[2009/04/24 12:07:30 | 000,711,432 | ---- | M] (Microsoft Corporation) MD5=3319AE709DEAA8539AB3B4110C3C675D -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22418_none_8c07706deb7a6fe7iexplore.
exe
[2011/02/27 15:32:13 | 000,711,432 | ---- | M] (Microsoft Corporation) MD5=3319AE709DEAA8539AB3B4110C3C675D -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22418_none_8c07706deb7a6fe7iexplore.
exe
[2013/01/05 09:07:26 | 000,638,024 | ---- | M] (Microsoft Corporation) MD5=37F7F8171680EA9660EE4650B85F2F4F -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23468_none_790f08d835d128d6iexplore.
exe
[2011/07/23 07:32:35 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=3985962308AE945D468B4F1E703C8DFD -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19120_none_6e53fb4ee8399247iexplore.
exe
[2010/12/20 11:42:20 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=4319F2A5C725D9E0B9E01744E02D32BE -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18565_none_9599714706e8cc16iexplore.
exe
[2013/02/02 06:56:49 | 000,660,552 | ---- | M] (Microsoft Corporation) MD5=4336AEC67B7DAA3239186386BECEF713 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19401_none_6e6aa122e8286b31iexplore.
exe
[2013/09/23 05:52:29 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=448C68F680B228F34E3C5A880B36AA1A -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23532_none_6ed4ce74015d7825iexplore.
exe
[2011/07/23 07:42:34 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=4D08A4234D645EFCB30605CC0BFA87F4 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23216_none_7943141435aa7025iexplore.
exe
[2009/03/03 00:58:49 | 000,712,888 | ---- | M] (Microsoft Corporation) MD5=4F49A46AB978ED80D536E25FC87AF3F5 -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_8b71013cd266bc39iexplore.
exe
[2011/02/27 15:19:58 | 000,712,888 | ---- | M] (Microsoft Corporation) MD5=4F49A46AB978ED80D536E25FC87AF3F5 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_8b71013cd266bc39iexplore.
exe
[2009/03/03 00:41:00 | 000,712,888 | ---- | M] (Microsoft Corporation) MD5=57731E60EA98B8C279DCB5BBB82B68B7 -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_8979f0eed54daf2fiexplore.
exe
[2011/02/27 15:20:14 | 000,712,888 | ---- | M] (Microsoft Corporation) MD5=57731E60EA98B8C279DCB5BBB82B68B7 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_8979f0eed54daf2fiexplore.
exe
[2009/04/11 03:11:08 | 000,712,864 | ---- | M] (Microsoft Corporation) MD5=58136AB5A3DF2D44BBB483629188584A -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6002.18005_none_8d6c1498cf7dbd4biexplore.
exe
[2008/01/20 22:48:06 | 000,625,664 | ---- | M] (Microsoft Corporation) MD5=5B92133D3E7FB2644677686305E29E81 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18000_none_95d545df06bcb3faiexplore.
exe
[2013/09/23 06:52:03 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=606944D01DCB8995794D35761B39E600 -- C:Program FilesInternet Exploreriexplore.exe
[2013/09/23 06:52:03 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=606944D01DCB8995794D35761B39E600 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19475_none_6e22f2d6e85d9424iexplore.
exe
[2013/01/05 03:50:42 | 000,660,568 | ---- | M] (Microsoft Corporation) MD5=657D9B337F2750EC671A91C87A3E3D86 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23468_none_6eba5e86017066dbiexplore.
exe
[2013/09/23 05:18:50 | 000,638,120 | ---- | M] (Microsoft Corporation) MD5=65D033B697706F3B996CD6F00ED29F89 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23532_none_792978c635be3a20iexplore.
exe
[2009/04/24 12:27:28 | 000,711,432 | ---- | M] (Microsoft Corporation) MD5=6B9F780596A6FA37909A1E17B13DB8F3 -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21046_none_89fe97abee6e3636iexplore.
exe
[2011/02/27 15:32:35 | 000,711,432 | ---- | M] (Microsoft Corporation) MD5=6B9F780596A6FA37909A1E17B13DB8F3 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21046_none_89fe97abee6e3636iexplore.
exe
[2013/04/04 06:12:12 | 000,638,104 | ---- | M] (Microsoft Corporation) MD5=6CDB93988713FB94BEEB16823E5232AD -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19418_none_78bb7d8f1c8afa7eiexplore.
exe
[2012/02/28 02:35:38 | 000,660,768 | ---- | M] (Microsoft Corporation) MD5=6E129E10392CBBB6FB3AAED892BB2B7D -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19222_none_6e55fdc8e837c21ciexplore.
exe
[2009/04/24 23:40:50 | 000,709,800 | ---- | M] (Microsoft Corporation) MD5=724BC813643C688280F353EC23128A66 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20996_none_89c8afedee968ea9iexplore.
exe
[2012/08/25 10:00:49 | 000,638,064 | ---- | M] (Microsoft Corporation) MD5=73FB5D3283671B301A59544B58EFECF8 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23415_none_7942179635ab511ciexplore.
exe
[2010/12/18 03:19:44 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=7852371DA9EFBC17B645558E23780EAC -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23111_none_793e10bc35aef44biexplore.
exe
[2009/03/08 17:09:11 | 000,661,344 | ---- | M] (Microsoft Corporation) MD5=7A81E0CECAE7B98459A073981F0124D5 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18702_none_6e6bbde6e827625ciexplore.
exe
[2011/09/30 19:07:49 | 000,638,216 | ---- | M] (Microsoft Corporation) MD5=7ACBBC85FCE4989B533220FC3B291633 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19154_none_788c37051caf0d71iexplore.
exe
[2012/06/28 07:40:41 | 000,638,048 | ---- | M] (Microsoft Corporation) MD5=7BC18656CCDD305665D3D7FAA283744A -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19298_none_7864fa631ccbdfb8iexplore.
exe
[2011/07/23 08:08:56 | 000,660,744 | ---- | M] (Microsoft Corporation) MD5=7C345709F1A74D92CA5F69CFA9229BD4 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23216_none_6eee69c20149ae2aiexplore.
exe
[2010/12/20 12:10:31 | 000,711,448 | ---- | M] (Microsoft Corporation) MD5=7D15B77F30D15CC58F23CC3D3AA21BFB -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18565_none_8b44c6f4d2880a1biexplore.
exe
[2011/05/28 03:09:20 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=7EE10C5413AD7ED1AF9E8FAE1B58FC3E -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23181_none_78f2614835e7b7e2iexplore.
exe
[2012/05/14 23:27:10 | 000,660,576 | ---- | M] (Microsoft Corporation) MD5=7F867FD5C341A4E484FD94D31976A995 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23359_none_6ec62cd60167671aiexplore.
exe
[2009/04/24 12:32:29 | 000,711,432 | ---- | M] (Microsoft Corporation) MD5=8679C8CD9690758AF0984290A1843E72 -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16851_none_89655160d55d0068iexplore.
exe
[2011/02/27 15:32:35 | 000,711,432 | ---- | M] (Microsoft Corporation) MD5=8679C8CD9690758AF0984290A1843E72 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16851_none_89655160d55d0068iexplore.
exe
[2009/03/03 00:32:44 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=8BA2B7A05F88BE0D45237A0994AD8366 -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_961169b0201311a9iexplore.
exe
[2011/02/27 15:19:57 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=8BA2B7A05F88BE0D45237A0994AD8366 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_961169b0201311a9iexplore.
exe
[2010/12/18 02:56:48 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=8F69AE4F1AC2E1D2C34348D519007A2C -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19019_none_6e67cbeee8295d3eiexplore.
exe
[2011/05/28 03:46:21 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=947A0CEFBB04E0DD2741AD1060B2B287 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23181_none_6e9db6f60186f5e7iexplore.
exe
[2013/04/04 07:38:39 | 000,660,632 | ---- | M] (Microsoft Corporation) MD5=971B739292B5B225A99FA20E26997ABB -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19418_none_6e66d33ce82a3883iexplore.
exe
[2012/08/25 02:54:54 | 000,660,592 | ---- | M] (Microsoft Corporation) MD5=98BD113B08EAFE4EC6C214787B9B05DB -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19328_none_6e5c016ae832574diexplore.
exe
[2011/09/30 20:01:49 | 000,660,744 | ---- | M] (Microsoft Corporation) MD5=99B59A3DC48CD5C27FAEB29F68FDCE32 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23250_none_6ebd2856016f85e4iexplore.
exe
[2012/05/15 02:37:18 | 000,638,048 | ---- | M] (Microsoft Corporation) MD5=9AC31470779A703021C337FD83D683EE -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19272_none_7874987f1cc10fcciexplore.
exe
[2011/02/22 03:18:28 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=9CE5543464432CA73134F170FA2BF823 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23143_none_791fa18c35c57acciexplore.
exe
[2009/03/03 00:40:22 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=9E6C1527D9A2C64BFD780AA23075380F -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_95c5ab8f06c77e34iexplore.
exe
[2011/02/27 15:19:58 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=9E6C1527D9A2C64BFD780AA23075380F -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_95c5ab8f06c77e34iexplore.
exe
[2013/05/16 22:55:22 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=A0D7E633C0B8063D2BE6EFBFCA5E4B19 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23501_none_6ef43dee01460afbiexplore.
exe
[2009/03/03 00:36:03 | 000,712,888 | ---- | M] (Microsoft Corporation) MD5=AA8005889396DF530BCDF0E2AA0E7A04 -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_8a1136a5ee60b24fiexplore.
exe
[2011/02/27 15:20:13 | 000,712,888 | ---- | M] (Microsoft Corporation) MD5=AA8005889396DF530BCDF0E2AA0E7A04 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_8a1136a5ee60b24fiexplore.
exe
[2008/01/20 22:50:37 | 000,701,952 | ---- | M] (Microsoft Corporation) MD5=AC2C3BAFD177B60C3B5E4DDBCC2C2DB3 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18000_none_8b809b8cd25bf1ffiexplore.
exe
[2010/12/20 11:29:40 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=B021EBF2A5344FF71A641B2EFDAF813E -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22816_none_965a21c41fdcf3d0iexplore.
exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:Program Files (x86)Malwarebytes' Anti-MalwareChameleoniexplore.exe
[2009/03/08 17:09:24 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18702_none_78c068391c882457iexplore.
exe
[2013/03/01 15:13:09 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=B9656AAE3C4E045966FDD51127086B28 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19412_none_6e60d180e82fa079iexplore.
exe
[2010/12/18 02:28:35 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=B988D7F127B94BD5BF8356FE81B985C4 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19019_none_78bc76411c8a1f39iexplore.
exe
[2012/06/28 03:52:47 | 000,660,576 | ---- | M] (Microsoft Corporation) MD5=B9D243C0E4C83C3366DD666E7B2B5591 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23385_none_6ea1bbea01835591iexplore.
exe
[2013/02/28 15:00:17 | 000,660,632 | ---- | M] (Microsoft Corporation) MD5=BC55BA01CAEE7232619EBEFC36794BCE -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23471_none_6ea88c94017ed16biexplore.
exe
[2011/02/22 02:21:12 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=C1D36A2CBE0CEC4DF593DB1288CF586E -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19048_none_789b06331ca359b5iexplore.
exe
[2013/02/02 05:20:19 | 000,638,040 | ---- | M] (Microsoft Corporation) MD5=C1F04D373BAAD127362A97EDAD619FA0 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19401_none_78bf4b751c892d2ciexplore.
exe
[2012/06/28 02:55:50 | 000,660,576 | ---- | M] (Microsoft Corporation) MD5=C381B4C07E113BF32F7C75B7FE951EC5 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19298_none_6e105010e86b1dbdiexplore.
exe
[2013/03/01 07:58:51 | 000,660,648 | ---- | M] (Microsoft Corporation) MD5=C39DD1E604C837EC48F63A9FC2582E08 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23480_none_6e9cbc5e0187d405iexplore.
exe
[2011/09/30 19:26:47 | 000,660,744 | ---- | M] (Microsoft Corporation) MD5=C75E027F077EC54E28715CD25FE046E8 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19154_none_6e378cb2e84e4b76iexplore.
exe
[2013/04/04 03:26:27 | 000,660,632 | ---- | M] (Microsoft Corporation) MD5=CAFA909A489777D822E55BB3EE1ACA4D -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23486_none_6ea2be1a01826c0fiexplore.
exe
[2011/11/03 02:23:19 | 000,638,240 | ---- | M] (Microsoft Corporation) MD5=CCDB0B2D1F2E016966B1DB1097E24842 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19170_none_787296051cc2dff7iexplore.
exe
[2012/11/09 08:25:15 | 000,638,024 | ---- | M] (Microsoft Corporation) MD5=CCF48EB85EF9B67250CEBA8043B28AD0 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23461_none_790806d235d77775iexplore.
exe
[2012/06/28 09:04:55 | 000,638,048 | ---- | M] (Microsoft Corporation) MD5=CE4945834BFE91AF301FA829E3E8A7AA -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23385_none_78f6663c35e4178ciexplore.
exe
[2011/05/28 02:24:59 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=CF331868494D0527484520912736518E -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19088_none_6e1b1c30e863077eiexplore.
exe
[2012/02/28 14:09:50 | 000,638,240 | ---- | M] (Microsoft Corporation) MD5=CF4EFFB58D9D91E8D219C8E93BC59471 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23318_none_7945168e35a89ffaiexplore.
exe
[2011/11/03 02:58:33 | 000,660,768 | ---- | M] (Microsoft Corporation) MD5=CF98414EA0012EC98E309A305308B2BB -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19170_none_6e1debb2e8621dfciexplore.
exe
[2011/11/03 03:50:52 | 000,660,768 | ---- | M] (Microsoft Corporation) MD5=CFF5394915C21A6C3CFBD1933C1C6B30 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23266_none_6eb85a26017239dfiexplore.
exe
[2009/04/24 12:03:18 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=D5271AC4A06AD9D1E2EA0151B79B2657 -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21046_none_945341fe22cef831iexplore.
exe
[2011/02/27 15:32:35 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=D5271AC4A06AD9D1E2EA0151B79B2657 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21046_none_945341fe22cef831iexplore.
exe
[2009/04/24 12:01:36 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=D6157423C117F24D24695866A1D0A93F -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22418_none_965c1ac01fdb31e2iexplore.
exe
[2011/02/27 15:32:13 | 000,634,648 | ---- | M] (Microsoft Corporation) MD5=D6157423C117F24D24695866A1D0A93F -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22418_none_965c1ac01fdb31e2iexplore.
exe
[2009/04/24 23:40:50 | 000,709,800 | ---- | M] (Microsoft Corporation) MD5=D6F4816C6B7BE9A125E138B903C2B0EF -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16809_none_89a3634cd52d3f6biexplore.
exe
[2009/03/03 01:02:08 | 000,712,872 | ---- | M] (Microsoft Corporation) MD5=D7379B3EF7C87578F8966FF5C7B46E9D -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_8bbcbf5debb24faeiexplore.
exe
[2011/02/27 15:19:58 | 000,712,872 | ---- | M] (Microsoft Corporation) MD5=D7379B3EF7C87578F8966FF5C7B46E9D -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_8bbcbf5debb24faeiexplore.
exe
[2013/01/05 09:50:31 | 000,660,552 | ---- | M] (Microsoft Corporation) MD5=DB5DBDD3DACA7E4044EB39B3C5483746 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19400_none_6e69a0d8e82951daiexplore.
exe
[2013/04/04 06:57:19 | 000,638,104 | ---- | M] (Microsoft Corporation) MD5=DE6EB0A6FC3BB05575B4D5EB66318010 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23486_none_78f7686c35e32e0aiexplore.
exe
[2013/05/17 00:31:42 | 000,638,120 | ---- | M] (Microsoft Corporation) MD5=E426AEAAADA15A133CE9124C3512662D -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23501_none_7948e84035a6ccf6iexplore.
exe
[2012/08/25 07:55:48 | 000,638,064 | ---- | M] (Microsoft Corporation) MD5=E5E317948D5F2B28A7D7A2E8F29F1008 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19328_none_78b0abbd1c931948iexplore.
exe
[2013/03/01 09:28:50 | 000,638,104 | ---- | M] (Microsoft Corporation) MD5=E71F19803DE772F1AA541BE97F1D64B9 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23480_none_78f166b035e89600iexplore.
exe
[2011/02/22 03:54:38 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=E79C480F9DCD7512AAB9727A533CB152 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23143_none_6ecaf73a0164b8d1iexplore.
exe
[2009/03/03 00:22:10 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=EA4BE33726155F89D89A3FE7142878E0 -- C:sandboxPackage_for_KB963027~31bf3856ad364e35~amd64~~6.0.1.1wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_93ce9b4109ae712aiexplore.
exe
[2011/02/27 15:20:13 | 000,636,072 | ---- | M] (Microsoft Corporation) MD5=EA4BE33726155F89D89A3FE7142878E0 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_93ce9b4109ae712aiexplore.
exe
[2011/05/28 02:09:21 | 000,638,232 | ---- | M] (Microsoft Corporation) MD5=ED65737D70FDEAC29F738E77D2496EE5 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19088_none_786fc6831cc3c979iexplore.
exe
[2013/02/28 15:01:43 | 000,638,104 | ---- | M] (Microsoft Corporation) MD5=EE4300616FE2C2DDE88110632E49244B -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23471_none_78fd36e635df9366iexplore.
exe
[2012/11/09 08:36:46 | 000,660,552 | ---- | M] (Microsoft Corporation) MD5=EEFC574358F36D49645ACD11A5E59674 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.19393_none_6e0b5084e86f9c31iexplore.
exe
[2009/04/24 23:40:50 | 000,634,024 | ---- | M] (Microsoft Corporation) MD5=F0B1CA517977BA2FF6DA33F1B966C488 -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20996_none_941d5a4022f750a4iexplore.
exe
[2009/04/24 12:08:04 | 000,634,632 | ---- | M] (Microsoft Corporation) MD5=F294D8EEB05C835EC44A12CE0A1DFE7A -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18248_none_95b20c4b06d5e8c4iexplore.
exe
[2011/02/27 15:32:13 | 000,634,632 | ---- | M] (Microsoft Corporation) MD5=F294D8EEB05C835EC44A12CE0A1DFE7A -- C:Windowswinsxswow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18248_none_95b20c4b06d5e8c4iexplore.
exe
[2010/12/20 11:47:18 | 000,711,448 | ---- | M] (Microsoft Corporation) MD5=F474DFA13C957F1385ECC42A1096C976 -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22816_none_8c057771eb7c31d5iexplore.
exe
[2010/12/18 03:54:56 | 000,660,760 | ---- | M] (Microsoft Corporation) MD5=FC6DC0E786A4D2E7DA6E9C012ED2E64F -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.23111_none_6ee9666a014e3250iexplore.
exe
[2009/04/24 12:23:20 | 000,711,448 | ---- | M] (Microsoft Corporation) MD5=FD4E1EF226A34D093AAD475B94C5E36E -- C:sandboxPackage_for_KB969897~31bf3856ad364e35~amd64~~6.0.1.0amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18248_none_8b5d61f8d27526c9iexplore.
exe
[2011/02/27 15:32:14 | 000,711,448 | ---- | M] (Microsoft Corporation) MD5=FD4E1EF226A34D093AAD475B94C5E36E -- C:Windowswinsxsamd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18248_none_8b5d61f8d27526c9iexplore.
exe

< MD5 for: IEXPLORE.EXE.MUI >
[2009/03/08 18:15:57 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=11E9431B29BD64A1FB13369BB8AD4116 -- C:Program FilesInternet Exploreren-USiexplore.exe.mui
[2009/03/08 18:15:57 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=11E9431B29BD64A1FB13369BB8AD4116 -- C:Windowswinsxsamd64_microsoft-windows-i..texplorer.resources_31bf3856ad364e35_8.0.6001.18702_en-us_7c9630f422ee47f7iexplore.exe.mui
[2006/11/02 11:13:34 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=3CCDDDBC49DEACA370F39A9F0E146A1B -- C:Windowswinsxswow64_microsoft-windows-i..texplorer.resources_31bf3856ad364e35_6.0.6000.16386_en-us_a1c8f6f0449888c1iexplore.exe.mui
[2009/03/08 17:27:11 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=943030B55FDB56FB8B8FCC086071E119 -- C:Program Files (x86)Internet Exploreren-USiexplore.exe.mui
[2009/03/08 17:27:11 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=943030B55FDB56FB8B8FCC086071E119 -- C:Windowswinsxswow64_microsoft-windows-i..texplorer.resources_31bf3856ad364e35_8.0.6001.18702_en-us_86eadb46574f09f2iexplore.exe.mui
[2006/11/02 11:13:29 | 000,005,632 | ---- | M] (Microsoft Corporation) MD5=D421BD7B9646679254B0D855823C6F21 -- C:Windowswinsxsamd64_microsoft-windows-i..texplorer.resources_31bf3856ad364e35_6.0.6000.16386_en-us_97744c9e1037c6c6iexplore.exe.mui

< MD5 for: SERVICES >
[2006/09/18 17:37:24 | 000,017,244 | ---- | M] () MD5=9F534244B7F8F55D5C0BB498D8D481E7 -- C:Windowswinsxsamd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.0.6001.18000_none_60a39df1afb86c9fservices

< MD5 for: SERVICES.CFG >
[2013/09/03 09:53:56 | 000,558,864 | ---- | M] () MD5=4097D9DB7F5DB4533DDA8271136C9B7B -- C:Program Files (x86)AdobeReader 10.0ReaderServicesServices.cfg
[2011/06/06 13:55:30 | 000,584,045 | R--- | M] () MD5=B82DD53FA8C260DDD7FDC42182DB816E -- C:WindowsInstaller$PatchCache$Managed68AB67CA7DA73301B744AA010000001010.1.0services.cfg

< MD5 for: SERVICES.EXE >
[2008/01/20 22:50:34 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:Windowswinsxsx86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010aservices
.exe
[2009/04/11 03:10:50 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=934E0B7D77FF78C18D9F8891221B6DE3 -- C:Windowserdntcache64services.exe
[2009/04/11 03:10:50 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=934E0B7D77FF78C18D9F8891221B6DE3 -- C:WindowsSysNativeservices.exe
[2009/04/11 03:10:50 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=934E0B7D77FF78C18D9F8891221B6DE3 -- C:Windowswinsxsamd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8cservices
.exe
[2009/04/11 02:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:WindowsSysWOW64services.exe
[2009/04/11 02:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:Windowswinsxsx86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56services
.exe
[2008/01/20 22:49:44 | 000,384,512 | ---- | M] (Microsoft Corporation) MD5=DFAC660F0F139276CC9299812DE42719 -- C:Windowswinsxsamd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240services
.exe

< MD5 for: SERVICES.EXE.MUI >
[2006/11/02 11:13:31 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1626EACF0E7E59F85C59DDDD27C4169C -- C:WindowsSysWOW64en-USservices.exe.mui
[2006/11/02 11:13:31 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1626EACF0E7E59F85C59DDDD27C4169C -- C:Windowswinsxsx86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.0.6000.16386_en-us_67c6851b290a1cedservices.exe.mui
[2006/11/02 11:13:56 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=F514B57C09E143F1E14415A9E9ADD695 -- C:WindowsSysNativeen-USservices.exe.mui
[2006/11/02 11:13:56 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=F514B57C09E143F1E14415A9E9ADD695 -- C:Windowswinsxsamd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.0.6000.16386_en-us_c3e5209ee1678e23services.exe.mui

< MD5 for: SERVICES.HTML >
[2013/01/04 15:50:38 | 000,006,329 | ---- | M] () MD5=CBF97253DD695DF0C1591D1357E15043 -- C:Program Files (x86)BillP StudiosWinPatrolservices.html

< MD5 for: SERVICES.LNK >
[2008/01/20 23:20:59 | 000,001,688 | ---- | M] () MD5=EFDD08F4E5E26430885F26F0C35B8C62 -- C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative Toolsservices.lnk
[2008/01/20 23:20:59 | 000,001,688 | ---- | M] () MD5=EFDD08F4E5E26430885F26F0C35B8C62 -- C:UsersAll UsersMicrosoftWindowsStart MenuProgramsAdministrative Toolsservices.lnk

< MD5 for: SERVICES.MOF >
[2006/09/18 17:44:54 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:WindowsSysNativewbemservices.mof
[2006/09/18 17:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:WindowsSysWOW64wbemservices.mof
[2006/09/18 17:44:54 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:Windowswinsxsamd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240services
.mof
[2006/09/18 17:44:54 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:Windowswinsxsamd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8cservices
.mof
[2006/09/18 17:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:Windowswinsxsx86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010aservices
.mof
[2006/09/18 17:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:Windowswinsxsx86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56services
.mof

< MD5 for: SERVICES.MSC >
[2006/11/02 11:13:51 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:WindowsSysNativeen-USservices.msc
[2006/09/18 17:29:41 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:WindowsSysNativeservices.msc
[2006/11/02 11:14:00 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:WindowsSysWOW64en-USservices.msc
[2006/09/18 17:29:40 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:WindowsSysWOW64services.msc
[2006/11/02 11:13:51 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:Windowswinsxsamd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.0.6000.16386_en-us_fe26f08ab7d12816services.msc
[2006/09/18 17:29:41 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:Windowswinsxsamd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.0.6001.18000_none_2b827e27fe185619services.ms
c
[2006/11/02 11:14:00 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:Windowswinsxsx86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.0.6000.16386_en-us_a2085506ff73b6e0services.msc
[2006/09/18 17:29:40 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:Windowswinsxsx86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.0.6001.18000_none_cf63e2a445bae4e3services.ms
c

< MD5 for: SERVICES.SBS >
[2011/03/01 09:58:44 | 000,034,818 | ---- | M] () MD5=62AFD4B2025CE6D4706B36F4C4808F9B -- C:Program Files (x86)Spybot - Search & DestroyIncludesServices.sbs

< MD5 for: WINLOGON.EXE >
[2009/04/11 03:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:Windowserdntcache64winlogon.exe
[2009/04/11 03:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:WindowsSysNativewinlogon.exe
[2009/04/11 03:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:Windowswinsxsamd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_cdcd15a68a70b877winlogon.exe
[2008/01/20 22:49:47 | 000,406,016 | ---- | M] (Microsoft Corporation) MD5=856491FCED98093D824B9EB2892F564A -- C:Windowswinsxsamd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_cbe19c9a8d4eed2bwinlogon.exe
[2009/04/11 02:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:WindowsSysWOW64winlogon.exe
[2009/04/11 02:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:Windowswinsxsx86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741winlogon.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:Program Files (x86)Malwarebytes' Anti-MalwareChameleonwinlogon.exe
[2008/01/20 22:50:38 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:Windowswinsxsx86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5winlogon.exe

< MD5 for: WINLOGON.EXE.MUI >
[2008/01/20 22:52:39 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=1DB95B0920FA9783476AC46F187C06F6 -- C:WindowsSysNativeen-USwinlogon.exe.mui
[2008/01/20 22:52:39 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=1DB95B0920FA9783476AC46F187C06F6 -- C:Windowswinsxsamd64_microsoft-windows-winlogon.resources_31bf3856ad364e35_6.0.6001.18000_en-us_27172d0ebc73e370winlogon.exe.mui
[2008/01/20 22:52:28 | 000,028,672 | ---- | M] (Microsoft Corporation) MD5=26AC28BF50DC112BAA794A83E08588F0 -- C:WindowsSysWOW64en-USwinlogon.exe.mui
[2008/01/20 22:52:28 | 000,028,672 | ---- | M] (Microsoft Corporation) MD5=26AC28BF50DC112BAA794A83E08588F0 -- C:Windowswinsxsx86_microsoft-windows-winlogon.resources_31bf3856ad364e35_6.0.6001.18000_en-us_caf8918b0416723awinlogon.exe.mui
[2006/11/02 11:13:52 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=2D30AB05DBA78517B34C0AAC71DF5299 -- C:Windowswinsxsamd64_microsoft-windows-winlogon.resources_31bf3856ad364e35_6.0.6000.16386_en-us_24e06b12bf88d29cwinlogon.exe.mui
[2006/11/02 11:13:03 | 000,028,672 | ---- | M] (Microsoft Corporation) MD5=A1D2856F3EC3C86EBBF1442B0245A8B3 -- C:Windowswinsxsx86_microsoft-windows-winlogon.resources_31bf3856ad364e35_6.0.6000.16386_en-us_c8c1cf8f072b6166winlogon.exe.mui

< MD5 for: WINLOGON.MOF >
[2006/09/18 17:38:40 | 000,002,794 | ---- | M] () MD5=545C578F290B9CDD280966939935B9EA -- C:WindowsSysNativewbemwinlogon.mof
[2006/09/18 17:41:56 | 000,002,794 | ---- | M] () MD5=545C578F290B9CDD280966939935B9EA -- C:WindowsSysWOW64wbemwinlogon.mof
[2006/09/18 17:38:40 | 000,002,794 | ---- | M] () MD5=545C578F290B9CDD280966939935B9EA -- C:Windowswinsxsamd64_microsoft-windows-winlogon-mof_31bf3856ad364e35_6.0.6000.16386_none_da20a358315a3dcawinlogon.mof
[2006/09/18 17:41:56 | 000,002,794 | ---- | M] () MD5=545C578F290B9CDD280966939935B9EA -- C:Windowswinsxsx86_microsoft-windows-winlogon-mof_31bf3856ad364e35_6.0.6000.16386_none_7e0207d478fccc94winlogon.mof

< %SYSTEMDRIVE%*.* >
[2009/04/11 02:36:36 | 000,333,257 | RHS- | M] () -- C:bootmgr
[2009/04/24 22:39:42 | 000,008,192 | R-S- | M] () -- C:BOOTSECT.BAK
[2011/02/27 16:17:26 | 000,005,999 | RH-- | M] () -- C:dell.sdr
[2013/10/15 09:18:21 | 2142,089,216 | -HS- | M] () -- C:hiberfil.sys
[2013/10/15 09:18:06 | 2455,834,624 | -HS- | M] () -- C:pagefile.sys
[2008/09/23 15:34:58 | 000,000,523 | ---- | M] () -- C:setup.iss
[2012/07/06 11:55:56 | 000,000,186 | ---- | M] () -- C:setup.log
[2011/10/29 07:28:33 | 000,003,356 | ---- | M] () -- C:shared.log

< %systemroot%Fonts*.com >
[2006/11/02 11:06:41 | 000,026,040 | ---- | M] () -- C:WindowsFontsGlobalMonospace.CompositeFont
[2006/11/02 11:06:41 | 000,026,489 | ---- | M] () -- C:WindowsFontsGlobalSansSerif.CompositeFont
[2006/11/02 11:06:41 | 000,029,779 | ---- | M] () -- C:WindowsFontsGlobalSerif.CompositeFont
[2011/03/04 15:38:45 | 000,037,665 | ---- | M] () -- C:WindowsFontsGlobalUserInterface.CompositeFont

< %systemroot%Fonts*.dll >

< %systemroot%Fonts*.ini >
[2006/09/18 17:35:48 | 000,000,065 | ---- | M] () -- C:WindowsFontsdesktop.ini

< %systemroot%Fonts*.ini2 >

< %systemroot%Fonts*.exe >

< %systemroot%system32spoolprtprocsw32x86*.* >

< %systemroot%REPAIR*.bak1 >

< %systemroot%REPAIR*.ini >

< %systemroot%system32*.jpg >

< %systemroot%*.jpg >

< %systemroot%*.png >

< %systemroot%*.scr >

< %systemroot%*._sy >

< %APPDATA%AdobeUpdate*.* >

< %ALLUSERSPROFILE%Favorites*.* >

< %APPDATA%Microsoft*.* >

< %PROGRAMFILES%*.* >
[2008/01/20 23:21:59 | 000,000,174 | -HS- | M] () -- C:Program Files (x86)desktop.ini

< %APPDATA%Update*.* >

< %systemroot%*. /mp /s >

< dir "%systemdrive%*" /S /A:L /C >
Volume in drive C is OS
Volume Serial Number is 00C4-5730
Directory of C:
03/04/2011 12:32 PM <JUNCTION> Documents and Settings [C:Users]
0 File(s) 0 bytes
Directory of C:ProgramData
03/04/2011 12:32 PM <JUNCTION> Application Data [C:ProgramData]
03/04/2011 12:32 PM <JUNCTION> Desktop [C:UsersPublicDesktop]
03/04/2011 12:32 PM <JUNCTION> Documents [C:UsersPublicDocuments]
03/04/2011 12:32 PM <JUNCTION> Favorites [C:UsersPublicFavorites]
03/04/2011 12:32 PM <JUNCTION> Start Menu [C:ProgramDataMicrosoftWindowsStart Menu]
03/04/2011 12:32 PM <JUNCTION> Templates [C:ProgramDataMicrosoftWindowsTemplates]
0 File(s) 0 bytes
Directory of C:Users
03/04/2011 12:32 PM <SYMLINKD> All Users [C:ProgramData]
03/04/2011 12:32 PM <JUNCTION> Default User [C:UsersDefault]
0 File(s) 0 bytes
Directory of C:UsersAll Users
03/04/2011 12:32 PM <JUNCTION> Application Data [C:ProgramData]
03/04/2011 12:32 PM <JUNCTION> Desktop [C:UsersPublicDesktop]
03/04/2011 12:32 PM <JUNCTION> Documents [C:UsersPublicDocuments]
03/04/2011 12:32 PM <JUNCTION> Favorites [C:UsersPublicFavorites]
03/04/2011 12:32 PM <JUNCTION> Start Menu [C:ProgramDataMicrosoftWindowsStart Menu]
03/04/2011 12:32 PM <JUNCTION> Templates [C:ProgramDataMicrosoftWindowsTemplates]
0 File(s) 0 bytes
Directory of C:UsersDefault
03/04/2011 12:32 PM <JUNCTION> Application Data [C:UsersDefaultAppDataRoaming]
03/04/2011 12:32 PM <JUNCTION> Local Settings [C:UsersDefaultAppDataLocal]
03/04/2011 12:32 PM <JUNCTION> My Documents [C:UsersDefaultDocuments]
03/04/2011 12:32 PM <JUNCTION> NetHood [C:UsersDefaultAppDataRoamingMicrosoftWindowsNetwork Shortcuts]
03/04/2011 12:32 PM <JUNCTION> PrintHood [C:UsersDefaultAppDataRoamingMicrosoftWindowsPrinter Shortcuts]
03/04/2011 12:32 PM <JUNCTION> Recent [C:UsersDefaultAppDataRoamingMicrosoftWindowsRecent]
03/04/2011 12:32 PM <JUNCTION> SendTo [C:UsersDefaultAppDataRoamingMicrosoftWindowsSendTo]
03/04/2011 12:32 PM <JUNCTION> Start Menu [C:UsersDefaultAppDataRoamingMicrosoftWindowsStart Menu]
03/04/2011 12:32 PM <JUNCTION> Templates [C:UsersDefaultAppDataRoamingMicrosoftWindowsTemplates]
0 File(s) 0 bytes
Directory of C:UsersDefaultAppDataLocal
03/04/2011 12:32 PM <JUNCTION> Application Data [C:UsersDefaultAppDataLocal]
03/04/2011 12:32 PM <JUNCTION> History [C:UsersDefaultAppDataLocalMicrosoftWindowsHistory]
03/04/2011 12:32 PM <JUNCTION> Temporary Internet Files [C:UsersDefaultAppDataLocalMicrosoftWindowsTemporary Internet Files]
0 File(s) 0 bytes
Directory of C:UsersDefaultDocuments
03/04/2011 12:32 PM <JUNCTION> My Music [C:UsersDefaultMusic]
03/04/2011 12:32 PM <JUNCTION> My Pictures [C:UsersDefaultPictures]
03/04/2011 12:32 PM <JUNCTION> My Videos [C:UsersDefaultVideos]
0 File(s) 0 bytes
Directory of C:UsersExigo
03/04/2011 12:35 PM <JUNCTION> Application Data [C:UsersExigoAppDataRoaming]
03/04/2011 12:35 PM <JUNCTION> Cookies [C:UsersExigoAppDataRoamingMicrosoftWindowsCookies]
03/04/2011 12:35 PM <JUNCTION> Local Settings [C:UsersExigoAppDataLocal]
03/04/2011 12:35 PM <JUNCTION> My Documents [C:UsersExigoDocuments]
03/04/2011 12:35 PM <JUNCTION> NetHood [C:UsersExigoAppDataRoamingMicrosoftWindowsNetwork Shortcuts]
03/04/2011 12:35 PM <JUNCTION> PrintHood [C:UsersExigoAppDataRoamingMicrosoftWindowsPrinter Shortcuts]
03/04/2011 12:35 PM <JUNCTION> Recent [C:UsersExigoAppDataRoamingMicrosoftWindowsRecent]
03/04/2011 12:35 PM <JUNCTION> SendTo [C:UsersExigoAppDataRoamingMicrosoftWindowsSendTo]
03/04/2011 12:35 PM <JUNCTION> Start Menu [C:UsersExigoAppDataRoamingMicrosoftWindowsStart Menu]
03/04/2011 12:35 PM <JUNCTION> Templates [C:UsersExigoAppDataRoamingMicrosoftWindowsTemplates]
0 File(s) 0 bytes
Directory of C:UsersExigoAppDataLocal
03/04/2011 12:35 PM <JUNCTION> Application Data [C:UsersExigoAppDataLocal]
03/04/2011 12:35 PM <JUNCTION> History [C:UsersExigoAppDataLocalMicrosoftWindowsHistory]
03/04/2011 12:35 PM <JUNCTION> Temporary Internet Files [C:UsersExigoAppDataLocalMicrosoftWindowsTemporary Internet Files]
0 File(s) 0 bytes
Directory of C:UsersExigoDocuments
03/04/2011 12:35 PM <JUNCTION> My Music [C:UsersExigoMusic]
03/04/2011 12:35 PM <JUNCTION> My Pictures [C:UsersExigoPictures]
03/04/2011 12:35 PM <JUNCTION> My Videos [C:UsersExigoVideos]
0 File(s) 0 bytes
Directory of C:UsersPublicDocuments
03/04/2011 12:32 PM <JUNCTION> My Music [C:UsersPublicMusic]
03/04/2011 12:32 PM <JUNCTION> My Pictures [C:UsersPublicPictures]
03/04/2011 12:32 PM <JUNCTION> My Videos [C:UsersPublicVideos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
49 Dir(s) 293,584,596,992 bytes free

< %systemroot%System32config*.sav >

< %PROGRAMFILES%bak. /s >

< %systemroot%system32bak. /s >

< %ALLUSERSPROFILE%Start Menu*.lnk /x >

< %systemroot%system32configsystemprofile*.dat /x >

< %systemroot%*.config >

< %systemroot%system32*.db >

< %PROGRAMFILES%Internet Explorer*.dat >

< %APPDATA%MicrosoftInternet ExplorerQuick Launch*.lnk /x >
[2011/03/25 00:54:54 | 000,000,286 | -HS- | M] () -- C:UsersExigoAppDataRoamingMicrosoftInternet ExplorerQuick Launchdesktop.ini

< %USERPROFILE%Desktop*.exe >
[2011/11/30 22:20:11 | 000,049,152 | ---- | M] (NirSoft) -- C:UsersExigoDesktopFileDate.exe
[2013/10/15 09:51:59 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:UsersExigoDesktopOTL (2).exe

< %PROGRAMFILES%Common Files*.* >

< %systemroot%*.src >

< %systemroot%install*.* >

< %systemroot%system32DLL*.* >

< %systemroot%system32HelpFiles*.* >

< %systemroot%system32rundll*.* >

< %systemroot%winn32*.* >

< %systemroot%Java*.* >

< %systemroot%system32test*.* >

< %systemroot%system32Rundll32*.* >

< %systemroot%AppPatchCustom*.* >

< HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsWindowsUpdateAU >

< HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionWindowsUpdateAuto UpdateResultsInstall|LastSuccessTime /rs >

========== Alternate Data Streams ==========

@Alternate Data Stream - 236 bytes -> C:ProgramDataTEMP:0FF263E8

< End of report >

OTL Extras logfile created on: 10/15/2013 9:58:26 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:UsersExigoDesktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19475)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 0.87 Gb Available Physical Memory | 43.47% Memory free
4.23 Gb Paging File | 1.97 Gb Available in Paging File | 46.44% Paging File free
Paging file location(s): ?:pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:Windows | %ProgramFiles% = C:Program Files (x86)
Drive C: | 450.65 Gb Total Space | 273.44 Gb Free Space | 60.68% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.61 Gb Free Space | 50.74% Space Free | Partition Type: NTFS

Computer Name: EXIGO-PC | User Name: Exigo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINESOFTWAREClasses<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html[@ = htmlfile] -- C:Program FilesInternet Exploreriexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:WindowsSysNativerundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINESOFTWAREClasses<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- C:Program FilesInternet Exploreriexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USERSOFTWAREClasses<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINESOFTWAREClasses<key>shell[command]command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:Program FilesInternet Exploreriexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:Program FilesInternet Exploreriexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:Program FilesInternet Exploreriexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%System32InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:WindowsSystem32rundll32.exe" "C:WindowsSystem32ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:WindowsSystem32rundll32.exe" "C:WindowsSystem32mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%system32rundll32.exe %SystemRoot%system32shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINESOFTWAREClasses<key>shell[command]command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:Program FilesInternet Exploreriexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:Program FilesInternet Exploreriexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:Program FilesInternet Exploreriexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%System32InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%system32rundll32.exe %SystemRoot%system32shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoring]

64bit: [HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterSvc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
"VistaSp2" = 1A A1 FC D1 A5 DA CB 01 [binary data]

64bit: [HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterSvcVol]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity Center]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterSvc]
"oobe_av" = 1

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionSystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsFirewall]

64bit: [HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsFirewallDomainProfile]

64bit: [HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsFirewallStandardProfile]

[HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsFirewall]

[HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsFirewallDomainProfile]

[HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsFirewallStandardProfile]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyDomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyStandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyStandardProfileGloballyOpenPortsList]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyPublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyDomainProfileAuthorizedApplicationsList]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyStandardProfileAuthorizedApplicationsList]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyFirewallRules]
"{08679291-948D-46E3-81DA-FBDB3A045C8E}" = lport=37674 | protocol=17 | dir=in | name=oovoo udp port 37674 |
"{0D6C6BBB-CA9C-4A33-AD95-551A99E76A44}" = lport=443 | protocol=6 | dir=in | name=oovoo tcp port 443 |
"{4357AD3B-701F-408B-9BA3-C4071FC72663}" = lport=37675 | protocol=17 | dir=in | name=oovoo udp port 37675 |
"{5153BDD0-0FBE-4DD2-A9A5-31C3B37193FE}" = lport=443 | protocol=17 | dir=in | name=oovoo udp port 443 |
"{7AE4AD67-25FB-4C0D-88CA-304F77112E10}" = lport=37674 | protocol=6 | dir=in | name=oovoo tcp port 37674 |
"{BFD7F612-E181-4E48-BEA6-AC4196ECCB3B}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:windowsmicrosoft.netframework64v4.0.30319smsvchost.exe |
"{F655D643-B90E-46E4-86FF-0AD9118229C2}" = lport=51001 | protocol=6 | dir=in | name=dragon smart phone server |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFi
rewallPolicyFirewallRules]
"{027777D8-C5DC-4876-8713-EE2000F586CE}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2shogun2.exe |
"{037F64B6-42A2-48F2-A6D1-9BE3153989E6}" = protocol=6 | dir=in | app=c:windowssyswow64pnkbstra.exe |
"{0CB56031-8377-4DEB-AF56-A530DB133C33}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonx3 terran conflictx3ap.exe |
"{0D48CFCD-AED5-4133-82B9-5E1EF4D06A71}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonportal 2portal2.exe |
"{0E2DB366-9A9E-4923-975E-7ABC725A3B0D}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonbrinkbrink.exe |
"{0E768CA4-C1FC-4DFE-BFFE-669CC9783C1A}" = protocol=17 | dir=in | app=c:program files (x86)avgavg2013avgnsa.exe |
"{123E0CC8-54F7-47A0-9134-9695CE3A052E}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommondeus ex - human revolutiondxhr.exe |
"{13BB6E1A-5E9F-46B7-9D99-DB9DEF40F03B}" = protocol=17 | dir=in | app=c:windowssyswow64pnkbstrb.exe |
"{1400B0D1-4E47-4F3B-9E92-BEECAAACAFB6}" = protocol=17 | dir=in | app=c:program files (x86)avgavg2013avgemca.exe |
"{1B60DCCA-6B62-4469-8992-309BB7A19D13}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonempire total warempire.exe |
"{1BF79F30-5826-4117-B63F-39577AA6829E}" = protocol=6 | dir=in | app=c:program files (x86)gamersfirstapb reloadedbinariesapb.exe |
"{27632C92-4DB2-41DD-A302-6CA854955E19}" = protocol=6 | dir=in | app=c:windowssyswow64pnkbstrb.exe |
"{2A56E2BF-8464-48EF-9FE1-78D34865F6D8}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonstalker call of pripyatstalker-cop.exe |
"{2A7C6FCA-1E5E-4B4D-8FA6-E4555733574E}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonrome total war goldrometw.exe |
"{2ADB226C-F801-4B1F-B849-310A7B58281C}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonfallout new vegasfalloutnvlauncher.exe |
"{2DE98583-320D-4D23-AA4B-A4D6BDE07965}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonempire total warempire.exe |
"{32385984-1795-48D2-BAB2-BD30780DE79E}" = protocol=17 | dir=in | app=c:program files (x86)gamersfirstapb reloadedbinariesvivoxvoiceservice.exe |
"{34141A65-6A2D-4E4B-BE34-4D625294A508}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonx3 terran conflictx3tc.exe |
"{3666624A-026C-41BE-AFDA-000F812E0D40}" = protocol=17 | dir=in | app=c:program files (x86)avgavg2013avgdiagex.exe |
"{36F47515-069B-4458-945A-68695D6678D5}" = protocol=17 | dir=in | app=c:program files (x86)steamsteam.exe |
"{391A85AF-5028-4089-A04F-9466E3DA669E}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonx3 terran conflictx3tc.exe |
"{39CD7443-56DA-4E25-B30D-968D9CDC796E}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonthe witcher enhanced editionsystemdjinni!.exe |
"{3C394229-55FC-428C-A722-3064025BEF08}" = protocol=17 | dir=in | app=c:program files (x86)tightvnctvnserver.exe |
"{3C66AEA5-AF38-4631-8814-730766B1DE2A}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonthe witcher enhanced editionsystemwitcher.exe |
"{3E0AFF1D-1E14-4DE0-A011-00ADB521A30F}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonstalker call of pripyatstalker-cop.exe |
"{3F198684-A5F1-4951-8499-E2F06FCBB979}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonmax paynemaxpayne.exe |
"{44A3C239-4DCC-4633-A7F7-BC64A856B52E}" = protocol=6 | dir=in | app=c:program files (x86)avgavg2013avgemca.exe |
"{48679040-30F7-4A02-B9A8-F18C0D4BE1AF}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonrome total war goldrometw-bi.exe |
"{4CAB92B2-8FCF-4924-A764-8CF73FB85BCE}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonwarhammer 40,000 space marine demospacemarine.exe |
"{514C3AEF-226E-4147-BE5C-0A21831CBF01}" = protocol=17 | dir=in | app=c:program files (x86)tightvncvncviewer.exe |
"{580B3B8B-9A61-43D5-9619-61514333B0DD}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonbatman arkham asylum gotybinariesbmlauncher.exe |
"{5810416A-1A56-4C70-BCF8-D52DE7CAF452}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonrome total war goldrometw.exe |
"{586E288B-254D-4DE6-AEC3-4083C31F65C9}" = protocol=17 | dir=in | app=c:program files (x86)gamersfirstapb reloadedbinariesapb.exe |
"{5AF6049A-7DA6-4042-A3A1-DD8E07676B90}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonskyrimskyrimlauncher.exe |
"{5C5D4710-D765-42E4-BD38-6B92AE7D41CB}" = protocol=6 | dir=in | app=c:program files (x86)avgavg2013avgdiagex.exe |
"{5D6AA1B6-B596-45A9-8B1E-F2F46C96B666}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonamd driver updater, vista and 7, 64 bitsetup.exe |
"{5DB4A5DE-BE9D-4B6D-930E-1E8E22CAFE32}" = protocol=6 | dir=in | app=c:program files (x86)crosuscrosusapp.exe |
"{64A525DC-6EBB-495E-B90A-64BE5478D0A3}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonassassins creed brotherhoodacbsp.exe |
"{679AC8A4-B0B0-46DE-9AB5-F0D1174E1FD7}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2dataencyclopediahow_to_play.html |
"{683E1BF0-8B1E-45EB-B444-B98287B99634}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonbatman arkham asylum gotybinariesbmlauncher.exe |
"{6B7E1863-8469-4A35-AFAA-ED28D59CF649}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonskyrimskyrimlauncher.exe |
"{6C3C17A8-0F9A-427F-B0F5-36264B4F78EE}" = protocol=6 | dir=in | app=c:program files (x86)avgavg2013avgnsa.exe |
"{6DBE70D4-DE1D-4431-89CC-8D33FF1984D9}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonthe witcher enhanced editionsystemwitcher.exe |
"{6FF784CC-33D0-42C3-9AD8-60C3296AF5C1}" = protocol=17 | dir=in | app=c:program files (x86)gamersfirstapb reloadedbinariesapb.exe |
"{75EBF596-C084-4D30-A14F-48986EC21CFA}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonbrinkbrink.exe |
"{76556CFD-5BB3-4254-8790-72F75E4D12F1}" = protocol=6 | dir=in | app=c:program files (x86)tightvnctvnserver.exe |
"{83CA8B68-18E4-42E3-81AB-30821BDC6295}" = protocol=17 | dir=in | app=c:program files (x86)bonjourmdnsresponder.exe |
"{8D0F4CCB-45E1-4D53-8416-E4B268F6B68F}" = protocol=17 | dir=in | app=c:program files (x86)ubisoftubisoft game launcherubisoftgamelauncher.exe |
"{8D3F9270-803A-4AAC-9D60-41D32E78ABEA}" = protocol=17 | dir=in | app=c:windowssyswow64pnkbstrb.exe |
"{8DB2F34B-3A62-4CD8-AA01-C018AFE5460E}" = protocol=6 | dir=in | app=c:windowssyswow64pnkbstrb.exe |
"{8DDC6CE1-B770-4979-9252-500C3129ACD1}" = protocol=17 | dir=in | app=c:program files (x86)avgavg2013avgmfapx.exe |
"{928AA041-3EFC-4E94-B41C-653AAF7FFFD9}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2benchmarksbenchmark_current_settings.bat |
"{957E3448-8EA1-4097-ACB7-DD1D9CF2BB72}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonfallout new vegasfalloutnvlauncher.exe |
"{9A5BAC94-A87E-4D3C-A565-A7D5F9C4051E}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonjust cause 2justcause2.exe |
"{A4167DC1-3505-4B5A-AC9D-167C1BB051AF}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommondeus ex - human revolutiondxhr.exe |
"{AA059EE0-5CAD-4DB4-8395-D83E55D79709}" = protocol=6 | dir=in | app=c:program filesbonjourmdnsresponder.exe |
"{ABEEBF43-A770-41D2-817D-68828158B38A}" = protocol=6 | dir=in | app=c:program files (x86)steamsteam.exe |
"{AC013E8A-173E-4DA4-B750-3973EB42CF1A}" = protocol=6 | dir=in | app=c:windowssyswow64pnkbstra.exe |
"{AC7F184F-9F8E-4F17-84EF-F87A9A5C30C1}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommondragon age ultimate editionbin_shipdaupdatersvc.service.exe |
"{B16ADCA2-1A54-495D-8D2E-E1B4322D1A67}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonrome total war goldrometw-bi.exe |
"{B3B01CBB-BF6E-4C1C-A0FC-42A63542C4CD}" = dir=in | app=c:program files (x86)itunesitunes.exe |
"{B4180EB0-9841-41DB-8D83-7820A9D908D1}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2dataencyclopediahow_to_play.html |
"{B57BC4A8-AC25-48EB-9807-79CD1B2EC2FA}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonamd driver updater, vista and 7, 64 bitsetup.exe |
"{B64CBA59-33D5-49C9-81EB-2D1B9588C811}" = protocol=17 | dir=in | app=c:program filesbonjourmdnsresponder.exe |
"{B6AC7523-9EC8-465F-B4E7-1ADD7BEEE5B1}" = protocol=17 | dir=in | app=c:program files (x86)linksys wireless-g print serverpsconfig.exe |
"{B7CF821A-6C73-4AC4-90F4-EC5252806897}" = protocol=6 | dir=in | app=c:program files (x86)avgavg2013avgmfapx.exe |
"{BA3CBEFA-E77A-41DF-A757-296F5E19155A}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonmax paynemaxpayne.exe |
"{BC998763-6FF3-4E4E-9004-3480427A4F64}" = protocol=17 | dir=in | app=c:program files (x86)crosuscrosusapp.exe |
"{C18C1094-A372-4C68-893C-563E66E73DE7}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonmedieval ii total warlauncher.exe |
"{C54DF753-223C-42FC-928B-25D075321C64}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonassassins creed brotherhoodacbsp.exe |
"{C5CEFB8D-2D2E-409C-B322-773B03B71A7F}" = protocol=6 | dir=in | app=c:program files (x86)gamersfirstapb reloadedbinariesvivoxvoiceservice.exe |
"{C856717E-0938-44F6-8FBB-4EBEB315E1F5}" = protocol=6 | dir=in | app=c:program files (x86)gamersfirstapb reloadedbinariesapb.exe |
"{CC82F292-5B2B-41CC-85D0-EBF05792AB02}" = protocol=6 | dir=in | app=c:program files (x86)bonjourmdnsresponder.exe |
"{CDE903E2-A611-4293-87DB-BC39965827D3}" = dir=in | app=c:program files (x86)vmwarevmware playervmware-authd.exe |
"{CEC42862-61AC-4C4A-AA92-DB45688F80D2}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommondawn of war 2dow2.exe |
"{D017A657-708F-4E64-8004-880DB4530FA1}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommondawn of war 2dow2.exe |
"{D3676B54-B07F-4239-A624-C2C7814B569A}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonportal 2portal2.exe |
"{D549BC74-975D-43FB-8C85-28471F7246F4}" = protocol=17 | dir=in | app=c:windowssyswow64pnkbstra.exe |
"{D5FBCB64-8CA6-49F7-BB85-CE97484E08B2}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2benchmarksbenchmark_specify_properties.bat |
"{D8039406-A143-489E-903B-A495D63EC815}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonmorrowindmorrowind launcher.exe |
"{D94517F0-424D-4E40-9260-C78575E029AA}" = dir=in | app=c:program files (x86)vmwarevmware playervmware-authd.exe |
"{E0F78F49-DDCA-4215-8860-3CB347603838}" = protocol=17 | dir=in | app=c:windowssyswow64pnkbstra.exe |
"{E38934C2-B6D8-454B-9DF8-4A6B1B9D77BE}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonmedieval ii total warlauncher.exe |
"{E647F1EE-142C-4549-A846-761473380630}" = protocol=6 | dir=in | app=c:program files (x86)linksys wireless-g print serverpsconfig.exe |
"{E853B1FF-201F-4939-8898-B8BA129DD494}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommondragon age ultimate editionbin_shipdaupdatersvc.service.exe |
"{E877F1C5-257B-4912-8FE3-9DF0F94B88D2}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2shogun2.exe |
"{E8D955C9-D520-4271-92D1-9CFC6A1F3189}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonwarhammer 40,000 space marine demospacemarine.exe |
"{EBCF4644-1BA0-4B14-B96F-2F33AE8A417B}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonx3 terran conflictx3ap.exe |
"{EDB4730B-F059-40F8-BBC1-98B6570617EE}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonthe witcher enhanced editionsystemdjinni!.exe |
"{F58B9802-80F5-46DF-9895-D042FBA49399}" = protocol=6 | dir=in | app=c:program files (x86)tightvncvncviewer.exe |
"{F5ADBB68-458B-49C5-A5CB-761E9EDC4D71}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2benchmarksbenchmark_specify_properties.bat |
"{F71FC015-D02C-45D2-8D7F-8DD79DEA7993}" = dir=in | app=c:program files (x86)common filesappleapple application supportwebkit2webprocess.exe |
"{F81CAC33-8740-434C-B59F-1DA4835B092E}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommontotal war shogun 2benchmarksbenchmark_current_settings.bat |
"{FA0968FB-6CCF-4FE1-BA2E-C986363D976B}" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommonmorrowindmorrowind launcher.exe |
"{FA5D4C44-403A-40BD-A508-EA8547572753}" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommonjust cause 2justcause2.exe |
"{FC4ACD20-6EF3-4CD0-A838-9E1E77723345}" = protocol=6 | dir=in | app=c:program files (x86)ubisoftubisoft game launcherubisoftgamelauncher.exe |
"TCP Query User{062C2DA0-840A-4B12-BE36-D3389D27D60A}C:program files (x86)oovoooovoo.exe" = protocol=6 | dir=in | app=c:program files (x86)oovoooovoo.exe |
"TCP Query User{25105C64-B00E-4D5E-A1E0-4F9804418DB8}C:program files (x86)oovoooovoo.exe" = protocol=6 | dir=in | app=c:program files (x86)oovoooovoo.exe |
"TCP Query User{318149E7-BCF9-4FD0-99DD-A9D4DB1B07CD}C:program files (x86)steamsteamappstravan7838team fortress 2hl2.exe" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappstravan7838team fortress 2hl2.exe |
"TCP Query User{74FEAFEF-6F14-4C8A-AEF0-6A4C2477B06E}C:program files (x86)steamsteamappstravan7838source sdk basehl2.exe" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappstravan7838source sdk basehl2.exe |
"TCP Query User{A0C56995-832E-4619-9C50-6A2AB7839FAA}C:programdatakaspersky lab setup fileskaspersky anti-virus 2011 11.0.1.400englishsetup.exe" = protocol=6 | dir=in | app=c:programdatakaspersky lab setup fileskaspersky anti-virus 2011 11.0.1.400englishsetup.exe |
"TCP Query User{C7287DD3-B9AD-4C0F-90E2-13C7BF710CFA}C:program files (x86)steamsteamappscommondragon age ultimate editionbin_shipdaorigins.exe" = protocol=6 | dir=in | app=c:program files (x86)steamsteamappscommondragon age ultimate editionbin_shipdaorigins.exe |
"TCP Query User{D8169C94-655D-4A31-86F2-801F2CC4ADE1}C:program files (x86)star vaultmortal onlinemortal online launcher.exe" = protocol=6 | dir=in | app=c:program files (x86)star vaultmortal onlinemortal online launcher.exe |
"TCP Query User{DC02A724-B9CB-4060-8762-7A2AAC736243}C:program files (x86)star vaultmortal onlinemortalonlineunrealengine3binarieswin32mortalonline.exe" = protocol=6 | dir=in | app=c:program files (x86)star vaultmortal onlinemortalonlineunrealengine3binarieswin32mortalonline.exe |
"UDP Query User{3F3711B0-9007-48CD-997D-E5135E6BF434}C:program files (x86)star vaultmortal onlinemortalonlineunrealengine3binarieswin32mortalonline.exe" = protocol=17 | dir=in | app=c:program files (x86)star vaultmortal onlinemortalonlineunrealengine3binarieswin32mortalonline.exe |
"UDP Query User{525626A7-EF0D-4A0D-8E5E-0CD47B6CBB7A}C:programdatakaspersky lab setup fileskaspersky anti-virus 2011 11.0.1.400englishsetup.exe" = protocol=17 | dir=in | app=c:programdatakaspersky lab setup fileskaspersky anti-virus 2011 11.0.1.400englishsetup.exe |
"UDP Query User{89C8A6FD-A2F0-45CF-B00D-547899C39776}C:program files (x86)steamsteamappstravan7838source sdk basehl2.exe" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappstravan7838source sdk basehl2.exe |
"UDP Query User{9B2D6C07-F7A9-4BBF-A165-7FECDD435263}C:program files (x86)star vaultmortal onlinemortal online launcher.exe" = protocol=17 | dir=in | app=c:program files (x86)star vaultmortal onlinemortal online launcher.exe |
"UDP Query User{D9E212F6-DF86-4D23-99BF-9363E9A6BCE9}C:program files (x86)oovoooovoo.exe" = protocol=17 | dir=in | app=c:program files (x86)oovoooovoo.exe |
"UDP Query User{F4F0220A-707F-43BA-B17F-F5451B280DB2}C:program files (x86)steamsteamappstravan7838team fortress 2hl2.exe" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappstravan7838team fortress 2hl2.exe |
"UDP Query User{F506F728-C679-4750-A668-4AE3F1506BC0}C:program files (x86)steamsteamappscommondragon age ultimate editionbin_shipdaorigins.exe" = protocol=17 | dir=in | app=c:program files (x86)steamsteamappscommondragon age ultimate editionbin_shipdaorigins.exe |
"UDP Query User{FCC8A029-4E90-488F-9E78-0235B030114B}C:program files (x86)oovoooovoo.exe" = protocol=17 | dir=in | app=c:program files (x86)oovoooovoo.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionUninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}" = Apple Mobile Device Support
"{4A5A427F-BA39-4BF0-7777-9A47FBE60C9F}" = Visual C++ 9.0 Runtime for Dragon NaturallySpeaking 64bit (x64)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}" = WinPatrol
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6B02D047-A56D-4994-B1F1-53DA6B9885AB}" = AVG 2013
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{704C0303-D20C-45AF-BD2B-556EAF31BE09}" = iCloud
"{72DECC0F-58E0-0618-C857-43B4D3DB7B75}" = AMD Catalyst Install Manager
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{A535111D-95C8-487F-869E-CE4C239972D2}" = iTunes
"{BC20D4CC-C409-42A9-A783-B3ACBD5ABE91}" = AVG 2013
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E452E727-86B8-4233-8CC3-41FD817AFAFF}" = VMware Player
"{E464702F-5433-46EC-8F65-159276C0A54F}" = WIDCOMM Bluetooth Software 6.2.0.6600
"{EBD530B3-091A-5BD9-275E-CBDF1CCA2E54}" = ccc-utility64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"AVG" = AVG 2013
"Creative OA008" = Integrated Webcam Driver (1.02.02.0106)
"EPSON NX125 NX127 Series" = EPSON NX125 NX127 Series Printer Uninstall
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"SynTPDeinstKey" = Dell Touchpad

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionUninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0869F6A1-86BA-65D2-C97F-B0EE333D0902}" = Catalyst Control Center Graphics Full New
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2A344298-86D7-C605-5B26-C7952B4CF938}" = Skins
"{445FC29E-EE77-FC7B-905C-F53D7307D03B}" = Catalyst Control Center Graphics Full Existing
"{448E51F0-8E9A-9B4C-3EB6-B7401389A563}" = CCC Help Norwegian
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{49E40759-1C1A-4FFC-1BBE-2D50002FAC77}" = CCC Help Finnish
"{526A90EA-B2BF-BEE2-8017-71536A1FBDD9}" = Catalyst Control Center InstallProxy
"{60E4B7E6-C7A8-147C-6ACF-2E9E6CCDEFE1}" = CCC Help Korean
"{696A6D35-1A6D-D520-808B-26C240020F30}" = Catalyst Control Center Core Implementation
"{6B102088-057B-0342-B2B8-C3352D769955}" = CCC Help French
"{70F2EF06-E7FB-7656-9142-FF2BCA8B930C}" = CCC Help Swedish
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7196E6BD-4B65-43F9-9D30-73A8E58D0E84}" = Avery Wizard 4.0
"{71E015CC-52DA-4536-AF0C-C643BA1E45FB}" = Catalyst Control Center - Branding
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{761E061F-FB8E-BBB4-69A4-B1DEF3640DB7}" = Zinio Reader 4
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79361740-EAE3-11E2-9911-B8AC6F98CCE3}" = Google Earth Plug-in
"{7CCE802E-898B-6749-5FB2-25D3998AD2D6}" = CCC Help Danish
"{7DD68338-7563-E113-9CF5-C7D781E6F2F4}" = HydraVision
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{890C4AF6-9B42-A76C-7572-C0B00B2EEFF6}" = CCC Help Chinese Standard
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{904CD0E4-4B72-4CF7-9828-267C6678A22E}" = System Requirements Lab for Intel
"{9096E5ED-9A18-FE68-A372-BFFCF223B0A6}" = Catalyst Control Center Localization All
"{91120409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{9215ECF0-9172-5E81-60FE-B376F2178A2D}" = Catalyst Control Center Graphics Previews Common
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{99C0DA37-F349-3665-E861-569887900324}" = CCC Help English
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0087DDE-69D0-11E2-AD57-43CA6188709B}" = Adobe AIR
"{A33054A0-415E-092B-9B5C-73254920B324}" = ccc-core-static
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A677D827-B2EE-EE93-2B30-45B3AC4CD48C}" = Catalyst Control Center Graphics Previews Vista
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.8)
"{AE4D31E0-2695-BF72-A7AD-387141CDCCE8}" = CCC Help Italian
"{AFE499B5-FCC4-45E6-A1A5-3C51AE0E539B}" = Mobipocket Creator 4.2
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B45FABE7-D101-4D99-A671-E16DA40AF7F0}" = Microsoft Games for Windows - LIVE
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{C4E64B86-C071-BFFF-A61D-DFB9E67D518C}" = CCC Help Portuguese
"{C507CE57-5AFF-6A0B-33AB-EC5B4AD2B5C6}" = CCC Help Russian
"{C61244F9-C335-4EE4-BF7B-5CAB855555E3}" = Linksys Wireless-G Print Server
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC9D6678-4966-0030-3A96-455A408ACC6D}" = CCC Help Spanish
"{CE8B57D7-66D9-E5F2-9899-247B825DA6C6}" = CCC Help German
"{CFBB8EC9-9482-8613-6ECA-2CCACE8E5C6D}" = Catalyst Control Center Graphics Light
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{E15BC10F-04AA-0AFD-A6C9-476730195F8B}" = Adobe Download Assistant
"{EDC33053-68A3-DB5F-17E6-822674008423}" = CCC Help Chinese Traditional
"{EFFA53BC-8C04-2E21-3D90-A13B1697B0CA}" = Dragon NaturallySpeaking 11
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F69D9812-0759-DB5C-A849-140E74C93513}" = CCC Help Japanese
"{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}" = ooVoo
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"{FE45C734-EF41-D5CE-C3DB-B1E76213E811}" = CCC Help Dutch
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFD9383C-01D5-4897-A954-43AF599AED30}" = tools-windows
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"Deus Vult_is1" = Deus Vult
"don't take it personally, babe, it just ain't your story" = don't take it personally, babe, it just ain't your story 1.1
"ERUNT_is1" = ERUNT 1.1j
"FLAC To MP3_is1" = FLAC To MP3 V4.0.4
"Google Chrome" = Google Chrome
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Morrowind AnimKit" = Morrowind AnimKit 2.1 (remove only)
"Mouse Setting Software_is1" = Mouse Setting Software 4.0
"Mozilla Firefox 24.0 (x86 en-US)" = Mozilla Firefox 24.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Origin" = Origin
"Secunia PSI" = Secunia PSI (3.0.0.6005)
"SugarSync" = SugarSync Manager
"TightVNC" = TightVNC 2.0.4
"VMware_Player" = VMware Player
"Windows Essentials Media Codec Pack" = Windows Essentials Media Codec Pack 3.6 [64-Bit]
"ZinioReader4.9310D8F796442B71068C511E15D70529A702D19D.1" = Zinio Reader 4

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionUninstall]
"Amazon Kindle" = Amazon Kindle
"f031ef6ac137efc5" = Dell Driver Download Manager

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10/9/2013 1:12:36 PM | Computer Name = Exigo-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3689267

Error - 10/9/2013 1:38:12 PM | Computer Name = Exigo-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/9/2013 1:45:29 PM | Computer Name = Exigo-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/9/2013 6:48:11 PM | Computer Name = Exigo-PC | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 10/10/2013 3:05:20 AM | Computer Name = Exigo-PC | Source = MsiInstaller | ID = 11706
Description =

Error - 10/10/2013 3:05:32 AM | Computer Name = Exigo-PC | Source = MsiInstaller | ID = 1023
Description =

Error - 10/10/2013 11:37:48 AM | Computer Name = Exigo-PC | Source = Application Error | ID = 1000
Description = Faulting application Explorer.EXE, version 6.0.6002.18005, time stamp
0x49e02a1e, faulting module ntdll.dll, version 6.0.6002.18881, time stamp 0x51da3d16,
exception code 0xc0000374, fault offset 0x00000000000acb17, process id 0xf94, application
start time 0x01cec5176d65d816.

Error - 10/10/2013 1:24:19 PM | Computer Name = Exigo-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 10/10/2013 1:31:21 PM | Computer Name = Exigo-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 10/10/2013 1:35:30 PM | Computer Name = Exigo-PC | Source = Windows Search Service | ID = 3013
Description =

[ System Events ]
Error - 10/14/2013 10:57:58 AM | Computer Name = Exigo-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 10/14/2013 12:29:49 PM | Computer Name = Exigo-PC | Source = DCOM | ID = 10010
Description =

Error - 10/14/2013 12:30:34 PM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7006
Description =

Error - 10/15/2013 12:26:24 AM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/15/2013 12:36:53 AM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7006
Description =

Error - 10/15/2013 12:37:30 AM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7043
Description =

Error - 10/15/2013 9:19:53 AM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 10/15/2013 9:19:53 AM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 10/15/2013 9:20:08 AM | Computer Name = Exigo-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/15/2013 9:44:11 AM | Computer Name = Exigo-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =


< End of report >

    Advertisements

Register to Remove


#2 Robybel

Robybel

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,536 posts

Posted 18 October 2013 - 10:32 AM

Hi and Welcome!! brian2 :)

My name is Robybel.

I would be more than happy to take a look at your log and help you with solving any malware problems you might have. Logs can take a while to research, so please be patient and know that I am working hard to get you a clean and functional system back in your hands. I'd be grateful if you would note the following:
  • I will be working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for the issues on this machine.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.

IMPORTANT NOTE : Please do not delete, download or install anything unless instructed to do so.
DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision. Doing so could make your system inoperable and could require a full reinstall of your Operating System and losing all your programs and data.


Vista and Windows 7 users:

These tools MUST be run from the executable. (.exe) every time you run them
with Admin Rights (Right click, choose "Run as Administrator")


Stay with this topic until I give you the all clean post.

Having said that....Let's get going!! ;)

=============================

Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Next

Posted Image AdwCleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Next

Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


Next


  • Download RogueKiller and save it to your desktop.
  • Quit all other programs
  • Start RogueKiller.exe
  • Wait until the Prescan has finished ...
  • Click on Scan
    Posted Image
  • Wait for the end of the scan
  • A report will be created on your desktop.
  • Click on the Delete button
    Posted Image
  • Next click on the ShortcutsFix
    Posted Image
  • another report will be created on your desktop.

Please post: All RKreport.txt text files located on your desktop.

On your next reply please post :
  • checkup.txt
  • AdwCleaner[R0].txt
  • JRT.txt
  • All RKreport.txt

Let me know if you have any problems in performing with the steps above or any questions you may have.

Good Day!
- Proud Graduate of WTT Classroom -

Member of UNITE

Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation Posted Image

#3 Robybel

Robybel

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,536 posts

Posted 21 October 2013 - 11:11 PM

Still need help? :wavey:
- Proud Graduate of WTT Classroom -

Member of UNITE

Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation Posted Image

#4 Robybel

Robybel

    SuperMember

  • Visiting Fellow
  • PipPipPipPipPip
  • 1,536 posts

Posted 23 October 2013 - 01:23 PM

Due to inactivity this topic will be closed.
If you need help please start a new thread.

New members follow the instructions here http://forums.whatth...ed_t106388.html and start a new topic
- Proud Graduate of WTT Classroom -

Member of UNITE

Please Only Copy And Paste Reports Into Topic - Do Not Attach

If you are satisfied with the help that you have received, please consider a donation Posted Image

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users