Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - Aidan

Pages: [1] 2 3 ... 5

Tech Clinic / Facebook not working

« on: January 08, 2012, 10:47:11 PM »

Alright. Thanks.

[quote name='guestolo' timestamp='1325796044' post='480638']
You look fine, if your not having any problems
When you have time, not a rush, right click on OTL.exe and "Run as Admin"
Click on the CLEANUP button
It will prompt to reboot, do so, this will properly remove OTL
[/quote]

Tech Clinic / Facebook not working

« on: January 05, 2012, 12:38:35 AM »

Thank you for your reply.

Yes it did just start happening. It seems to be working now though. I just checked and didn't get the problem. I prefer to tell you that now, so you can decide whether you need to move on, or if you can spare a little more time to review the logs, so hopefully it doesn't just happen all over again.

The OTL.txt Log is as follows:

[spoiler]OTL logfile created on: 05/01/2012 12:29:15 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Aiden\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

3.98 Gb Total Physical Memory | 2.22 Gb Available Physical Memory | 55.93% Memory free
7.95 Gb Paging File | 5.75 Gb Available in Paging File | 72.31% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 1862.92 Gb Total Space | 1518.66 Gb Free Space | 81.52% Space Free | Partition Type: NTFS

Computer Name: AIDEN-PC | User Name: Aiden | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/05 00:28:52 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Aiden\Downloads\OTL.exe
PRC - [2011/12/23 05:34:28 | 003,809,008 | ---- | M] (PlatinumHideIP.Com) -- C:\Program Files (x86)\PlatinumHideIP\PlatinumHideIP.exe
PRC - [2011/11/10 09:05:25 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/08/03 06:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2007/06/15 11:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) -- C:\Windows\SysWOW64\bgsvcgen.exe

========== Modules (No Company Name) ==========

MOD - [2011/11/15 10:33:39 | 008,527,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/10 09:05:24 | 001,989,592 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/12/13 10:52:56 | 000,275,912 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe -- (Amsp)
SRV:64bit: - [2011/04/11 13:44:46 | 000,171,176 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel(R) PROSet Monitoring Service)
SRV:64bit: - [2010/10/26 16:42:16 | 005,790,064 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2010/10/26 16:42:16 | 000,487,280 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen)
SRV:64bit: - [2010/04/07 08:04:24 | 000,127,800 | ---- | M] (HP) [Auto | Running] -- C:\Windows\SysNative\HPSIsvc.exe -- (HPSIService)
SRV:64bit: - [2009/09/14 00:00:00 | 000,166,400 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE -- (EPSON_EB_RPCV4_04)
SRV:64bit: - [2009/09/14 00:00:00 | 000,128,512 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE -- (EPSON_PM_RPCV4_04)
SRV:64bit: - [2009/07/17 08:31:34 | 004,948,992 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011/08/03 06:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/08/02 04:47:14 | 000,159,232 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe -- (CDMA Device Service)
SRV - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/06/01 07:44:54 | 002,337,144 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/06/15 11:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Running] -- C:\Windows\SysWOW64\bgsvcgen.exe -- (bgsvcgen)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/12/15 20:18:30 | 000,279,616 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011/12/13 10:52:56 | 000,210,704 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tmnciesc.sys -- (tmnciesc)
DRV:64bit: - [2011/12/13 10:52:56 | 000,167,696 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmcomm.sys -- (tmcomm)
DRV:64bit: - [2011/12/13 10:52:56 | 000,105,744 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmtdi.sys -- (tmtdi)
DRV:64bit: - [2011/12/13 10:52:56 | 000,091,920 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmactmon.sys -- (tmactmon)
DRV:64bit: - [2011/12/13 10:52:56 | 000,070,928 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV:64bit: - [2011/12/13 10:52:56 | 000,067,344 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tmeevw.sys -- (tmeevw)
DRV:64bit: - [2011/08/01 14:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2011/07/17 23:24:12 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011/07/17 23:24:12 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV:64bit: - [2011/07/17 23:24:12 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM)
DRV:64bit: - [2011/07/17 23:24:12 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2011/07/17 23:24:12 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV:64bit: - [2011/06/10 10:00:38 | 000,208,896 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/06/10 10:00:36 | 000,091,648 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/05/25 01:09:17 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011/05/04 16:19:06 | 000,340,656 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress) Intel(R)
DRV:64bit: - [2011/04/15 05:27:52 | 000,032,936 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iqvw64e.sys -- (NAL)
DRV:64bit: - [2011/03/11 01:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/11 11:13:26 | 000,197,424 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MAudioFastTrackUltra.sys -- (MAUSBFASTTRACKULTRA)
DRV:64bit: - [2010/11/20 22:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/20 22:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 22:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010/11/20 22:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010/11/20 22:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010/11/20 22:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010/11/20 22:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 22:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/10/11 14:19:36 | 000,018,288 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor)
DRV:64bit: - [2010/10/11 14:19:28 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV:64bit: - [2010/10/11 14:19:26 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2010/03/05 18:41:05 | 000,020,480 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mvusbews.sys -- (mvusbews)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008/03/14 00:56:46 | 000,073,136 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2006/08/25 13:36:52 | 000,039,208 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cdrbsdrv.sys -- (cdrbsdrv)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2004/06/09 15:14:40 | 000,010,556 | ---- | M] (Bo Brantén) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\filedisk.sys -- (FileDisk)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?lang=en-ca&OCID=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 25 47 92 8A 8F 4D CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=;

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Earlybird 7.0\extensions\\Components: C:\PROGRAM FILES\EARLYBIRD\COMPONENTS [2011/12/16 17:39:02 | 000,000,000 | ---D | M]
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Earlybird 7.0\extensions\\Plugins: C:\PROGRAM FILES\EARLYBIRD\PLUGINS
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{38783831-6098-4faa-A9C9-1EE1E343F4D2}: C:\Program Files\Trend Micro\AMSP\Module\20002\7.0.1086\7.0.1086\firefoxextension [2011/12/13 17:06:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\ [2011/12/13 17:06:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/11/10 09:05:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2011/07/09 19:48:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Extensions
[2011/12/28 16:47:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\qvsn2g93.default\extensions
[2011/10/07 15:50:30 | 000,000,000 | ---D | M] (Dictionnaire franÃ§ais Â«ModerneÂ») -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\qvsn2g93.default\extensions\[email protected]
[2011/11/10 09:05:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/07/17 11:20:27 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/10/22 18:28:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
() (No name found) -- C:\USERS\AIDEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QVSN2G93.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011/11/10 09:05:25 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/10/02 17:56:51 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011/11/10 09:05:25 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2011/07/16 17:58:16 | 000,001,289 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O2:64bit: - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1313\6.8.1072\TmIEPlg.dll (Trend Micro Inc.)
O2:64bit: - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2:64bit: - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\7.0.1086\7.0.1086\TmBpIe64.dll (Trend Micro Inc.)
O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1313\6.8.1072\TmIEPlg32.dll (Trend Micro Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\7.0.1086\7.0.1086\TmBpIe32.dll (Trend Micro Inc.)
O3:64bit: - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O4:64bit: - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4:64bit: - HKLM..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (Trend Micro Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{062F30FA-493A-4608-9A50-11D5E886605D}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\7.0.1086\7.0.1086\TmBpIe64.dll (Trend Micro Inc.)
O18:64bit: - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1313\6.8.1072\TmIEPlg.dll (Trend Micro Inc.)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\7.0.1086\7.0.1086\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1313\6.8.1072\TmIEPlg32.dll (Trend Micro Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysNative\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{f26c1d18-1dae-11e1-903e-f46d0497c54d}\Shell - "" = AutoRun
O33 - MountPoints2\{f26c1d18-1dae-11e1-903e-f46d0497c54d}\Shell\AutoRun\command - "" = E:\SISetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/01/04 20:55:33 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\RenPy
[2012/01/04 20:54:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Katawa Shoujo
[2012/01/04 14:10:20 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{40889A65-4F9D-4FA8-ACDA-F53815340D56}
[2012/01/04 14:10:07 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{4FE5EB22-1D44-4BC1-A277-426C2E93A715}
[2012/01/03 14:33:22 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{A0406DCC-6E97-44AC-AC7E-37B20F9C22E4}
[2012/01/03 14:33:18 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C81A4831-E297-42DE-84E8-733E4729DD1B}
[2012/01/03 02:32:42 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{725D51C5-81E2-4C9B-A43A-BDDF3C3E16F7}
[2012/01/03 02:32:31 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{AA0AC7A9-0C55-4B41-9C22-6CC23FC895B3}
[2012/01/02 02:48:35 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{F8C0FA6F-6BD3-4C62-BA55-B4B5B8D8354D}
[2012/01/02 02:48:13 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{64E66815-A5F4-47FF-A650-BAC1186FB3C0}
[2012/01/01 23:57:12 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\VSRevoGroup
[2012/01/01 23:56:43 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2012/01/01 21:02:43 | 000,000,000 | ---D | C] -- C:\Users\Aiden\TruePianos Settings
[2012/01/01 21:02:21 | 000,000,000 | ---D | C] -- C:\Users\Aiden\Documents\Native Instruments
[2012/01/01 20:47:00 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D69A48BF-7653-4AA8-94BC-5847522A4573}
[2012/01/01 20:45:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Native Instruments
[2012/01/01 20:45:07 | 000,000,000 | -H-D | C] -- C:\ProgramData\{0CC51CB2-911C-40BB-BC1B-BD3CAC590222}
[2012/01/01 20:43:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\{4F32CAF7-963B-404D-BF13-C48BA3F5F6A7}
[2012/01/01 20:41:48 | 000,000,000 | -H-D | C] -- C:\ProgramData\{AC46DC4F-66BD-4733-A8B4-0B69418C12D0}
[2012/01/01 20:39:52 | 000,000,000 | -H-D | C] -- C:\ProgramData\{EC98E512-708C-4C3B-9F07-B58768C1DD8A}
[2012/01/01 20:39:38 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
[2012/01/01 20:39:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
[2012/01/01 20:39:35 | 000,000,000 | ---D | C] -- C:\Program Files\Native Instruments
[2012/01/01 20:39:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Native Instruments
[2012/01/01 20:20:30 | 000,000,000 | ---D | C] -- C:\Cakewalk Content
[2012/01/01 14:48:00 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{99C55038-5FAA-4A59-B588-E4AF2106747F}
[2012/01/01 14:47:38 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{FEE2995C-9AAC-4316-AB55-90E23963827F}
[2012/01/01 02:47:25 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{6AEA8566-B8E6-467B-9910-618919F5EB95}
[2012/01/01 02:47:02 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C98A3FE0-E3BE-4C94-9F46-00224F7C5C45}
[2011/12/31 14:46:50 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{FD60F7F1-486B-415C-93CD-A42E91320585}
[2011/12/31 14:46:27 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{DA0DA081-7871-4487-92DE-72C6B3B2B00C}
[2011/12/31 02:46:14 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{89CC45A3-FFE6-4E8B-B3C4-A2EAAF937B50}
[2011/12/31 02:45:52 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{0151C057-994D-4CDE-B542-59EE2DE6DFD8}
[2011/12/30 14:45:27 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{39E146A8-99DD-4E95-B274-77801C9E89D2}
[2011/12/30 14:45:04 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{D2895073-4F38-446B-8A0B-A8F2DB2F6EB7}
[2011/12/30 02:44:38 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{B8A0EA73-4387-4F66-8F2C-859ECFD0DB83}
[2011/12/30 02:44:16 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{7122AA94-9ADE-4DF9-BFC6-B1D54D1E5A15}
[2011/12/29 11:36:21 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{283368FC-8FE3-4BA8-9FA8-94B0608E46F6}
[2011/12/29 11:35:59 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{11583D1F-4E30-4760-9D9E-A04C4AA531AD}
[2011/12/28 23:35:34 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{3D1BEE0A-2346-4EDB-B4EE-A1888C1B1FD2}
[2011/12/28 23:35:11 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{9137ADFB-092D-48BD-91FD-0D13DC5501EF}
[2011/12/28 11:34:58 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{8A37919F-6565-443C-9ACA-986A31F2168B}
[2011/12/28 11:34:36 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{5C863D48-3F1C-47C4-B1B3-36EEEB585C86}
[2011/12/27 23:34:11 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{4A5EE5CA-FB05-4924-AC82-B51CFDAE1CFD}
[2011/12/27 23:33:48 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{6D50E7FB-934B-4AC3-8CCF-1B0001D2D066}
[2011/12/27 11:33:23 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{33217D3F-E579-43BC-BC8E-081A80ACE144}
[2011/12/27 11:33:01 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C55C115C-BD00-40D7-994F-D3571804FABC}
[2011/12/26 23:32:35 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{DD59F403-DDE0-482A-A99B-E2E6B6952AA0}
[2011/12/26 23:32:13 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{EB28072A-8741-4836-BFCC-375C2518447D}
[2011/12/26 11:31:47 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{75F6EC17-2229-425E-B3E3-900996EE6850}
[2011/12/26 11:31:35 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{6D3586BF-F087-4F41-8FD9-746FF63558D7}
[2011/12/25 19:35:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2011/12/25 19:35:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2011/12/25 19:35:08 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2011/12/25 19:34:58 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{6E7DD119-C1AD-44AB-B465-8E9B0B4488D9}
[2011/12/25 19:34:36 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C67F9445-9A6B-4B11-820F-38D7040F4510}
[2011/12/25 19:29:07 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe
[2011/12/25 07:34:23 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{A7C0B695-01AD-46A9-94E3-DB52BF1D2430}
[2011/12/25 07:34:11 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{0B8AE8A7-BE24-4234-AA46-02DB0B8B966E}
[2011/12/23 23:09:41 | 000,000,000 | ---D | C] -- C:\Cakewalk sonar x1, dimension pro and serials
[2011/12/23 22:40:26 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{34657AD9-ABDE-470B-8B69-E758A0AF11A0}
[2011/12/23 22:40:04 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{530FD7EC-2F4B-4044-B283-90D93DBBE58E}
[2011/12/23 19:58:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011/12/23 19:58:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2011/12/23 19:58:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2011/12/23 19:48:24 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\PlatinumHideIP
[2011/12/23 19:48:24 | 000,000,000 | ---D | C] -- C:\ProgramData\PlatinumHideIP
[2011/12/23 19:47:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Platinum Hide IP
[2011/12/23 19:47:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PlatinumHideIP
[2011/12/23 10:39:38 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{0E00B6F6-C3B3-45A7-87E3-7C6A1F0C3BCC}
[2011/12/23 10:39:27 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{E28EE52A-60C6-4AC0-B537-29C8ADB95505}
[2011/12/22 18:48:50 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{66460269-FB25-4083-B59C-FD1415C1F9A4}
[2011/12/22 18:48:39 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{46FC04ED-5605-4237-90FB-7C49A084602B}
[2011/12/22 06:48:26 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{D987B8F2-8ACC-4886-A0B8-B925657D5FE4}
[2011/12/22 06:48:12 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{3ACBAE7B-5B27-45A5-B331-C9C9F7CFDC09}
[2011/12/21 18:46:13 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{CC9B6BA4-E369-46F9-9FD8-4D2DA5F4C9D0}
[2011/12/21 18:45:51 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{917F37C6-FD27-4635-8FF8-990446F1489F}
[2011/12/21 06:45:37 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{15801720-8FDF-4E0C-81C0-C422D65AC7B8}
[2011/12/21 06:45:26 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{D938C339-6D0F-4E03-A1FC-2EE2D0236BFA}
[2011/12/20 14:59:24 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{8E47C561-C4F3-4380-B5F7-4865008437EE}
[2011/12/20 14:59:02 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C6804E82-E643-4EF3-AF07-7B3E4F2AE295}
[2011/12/20 02:58:37 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{16DD48A6-6E05-442D-B9DF-61DA408C4361}
[2011/12/20 02:58:14 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{8E023BFE-EEF3-4A19-B1F4-92BCB9A6BC4A}
[2011/12/19 14:57:56 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{2AC6B29E-5C65-4E51-9129-AF1054BEC121}
[2011/12/19 14:57:45 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{459A7F3B-8969-4EA8-9909-14192A7BC1D9}
[2011/12/18 22:41:43 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{EE91E837-347F-4BD2-B549-34AF7FB2462A}
[2011/12/18 22:41:21 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{8B478C45-A753-4697-8A36-C0E92A1AA2DF}
[2011/12/18 10:40:56 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{95271611-F927-43E0-BB48-AA0B26566384}
[2011/12/18 10:40:42 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{2CBB867C-C00A-488F-B539-839EF85A8CFD}
[2011/12/17 22:39:04 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{0A4A0F75-3151-4212-9BA0-BFD3257F3CD3}
[2011/12/17 22:38:42 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{24D08756-BE0A-48C7-950F-8D4C13C5F232}
[2011/12/17 10:38:10 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{A2B054F6-E243-4AAA-81A6-533920F6A695}
[2011/12/17 10:37:58 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{10175B9C-6376-4719-8604-C3E0A572FE96}
[2011/12/16 17:39:16 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Thunderbird
[2011/12/16 17:39:16 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\Thunderbird
[2011/12/16 17:39:00 | 000,000,000 | ---D | C] -- C:\Program Files\Earlybird
[2011/12/15 20:21:16 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images
[2011/12/15 20:18:30 | 000,279,616 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2011/12/15 20:12:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2011/12/15 20:08:07 | 000,000,000 | ---D | C] -- C:\Users\Aiden\Desktop\Sonic Heroes
[2011/12/15 08:29:17 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{AB3EC68E-F1FA-41AE-B17D-B55D0F9C1EC5}
[2011/12/15 08:29:04 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{497E80FF-2200-4BCC-98E4-6F511702FF45}
[2011/12/14 15:29:37 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{E6D38EDD-F430-4269-8AB7-F4A9878F4652}
[2011/12/14 15:29:26 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{E4924201-FC54-47A8-BCEA-0BFAD59C6A25}
[2011/12/13 17:55:25 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{FDCE66FF-597B-495F-A05E-214DC6B082CB}
[2011/12/13 17:55:13 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{9907554C-68FC-4F75-AEB5-4306139B0E02}
[2011/12/13 10:55:50 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\Trend Micro
[2011/12/13 10:55:46 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium Internet Security 2012
[2011/12/13 10:55:07 | 000,210,704 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmnciesc.sys
[2011/12/13 10:55:07 | 000,067,344 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmeevw.sys
[2011/12/13 10:55:03 | 000,105,744 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmtdi.sys
[2011/12/13 10:54:56 | 000,167,696 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmcomm.sys
[2011/12/13 10:54:56 | 000,091,920 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmactmon.sys
[2011/12/13 10:54:56 | 000,070,928 | ---- | C] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmevtmgr.sys
[2011/12/13 10:54:21 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/12/11 18:42:17 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{8778E8AB-7ECC-4FEC-B03E-B2190A799364}
[2011/12/11 18:41:56 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{3B07ACE4-D772-493F-A98C-B8CF38EC6282}
[2011/12/11 06:41:31 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{DB1FE297-C874-4BD6-B949-86B1802B845D}
[2011/12/11 06:41:08 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{6F461000-42E1-4755-8247-9C929566B701}
[2011/12/10 18:40:38 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{90357AD0-B70F-4B21-977F-C1041E276DB4}
[2011/12/10 18:40:25 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{3104BFC4-367D-4C48-BC99-D2F52D222D32}
[2011/12/10 06:29:52 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{CBC5DED1-1921-4002-81F5-3E6CF5FABAC5}
[2011/12/10 06:29:41 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{EE670C4E-CC42-4AC7-929F-14FA7952D6E0}
[2011/12/09 15:39:53 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{AA2FAFF2-80B5-45B6-86AE-7AFED6CF294C}
[2011/12/09 15:39:31 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{37AEA5AB-5931-4EDD-B366-0F43FA7ADB0C}
[2011/12/09 03:39:06 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C8CE9892-85F1-4CE6-BADA-87655FCA6D98}
[2011/12/09 03:38:44 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{991F6AA5-E11B-4012-A962-2B1A66ECA008}
[2011/12/08 16:00:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2011/12/08 15:38:18 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{7282823A-C32A-4E40-A316-5F2317E81878}
[2011/12/08 15:38:07 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{38A8421C-92FE-4AFC-8783-C6BC50FDD21E}
[2011/12/08 01:37:46 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C39AF4BB-3103-4BF7-9824-C8A7952CFB24}
[2011/12/08 01:37:35 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{F16AD732-59D7-4797-942F-65411533718B}
[2011/12/07 23:04:04 | 082,518,952 | ---- | C] (Trend Micro Inc.) -- C:\Users\Aiden\Desktop\Ti_TIS_5.0_EN_64bit.exe
[2011/12/07 13:37:22 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{49A60309-27D2-4D55-9EC9-0FE4C9ED81CE}
[2011/12/07 13:37:11 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{7DC51B96-A71F-4A24-A6DB-0D0A291DEB2E}
[2011/12/06 20:16:30 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{4BFC5904-ABAE-41F4-B676-C07EDDC0F638}
[2011/12/06 20:16:16 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{6C4C1FB6-7D48-4292-ABBA-43774E49FE6B}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/05 00:09:37 | 000,006,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/05 00:09:37 | 000,006,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/04 20:55:18 | 000,001,111 | ---- | M] () -- C:\Users\Aiden\Desktop\Katawa Shoujo.lnk
[2012/01/04 14:16:05 | 001,251,000 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/01/04 14:16:05 | 000,639,436 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/01/04 14:16:05 | 000,411,946 | ---- | M] () -- C:\Windows\SysNative\perfh011.dat
[2012/01/04 14:16:05 | 000,113,960 | ---- | M] () -- C:\Windows\SysNative\perfc011.dat
[2012/01/04 14:16:05 | 000,113,960 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/01/04 14:09:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/04 14:09:28 | 3203,125,248 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/03 10:06:08 | 452,125,289 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/01/02 14:20:20 | 000,000,102 | ---- | M] () -- C:\Users\Aiden\Desktop\CBTT and Torrent Development uTorrent DHT Troubleshooting..URL
[2012/01/02 13:27:24 | 000,007,680 | ---- | M] () -- C:\Users\Aiden\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/02 12:47:15 | 000,000,083 | ---- | M] () -- C:\Users\Aiden\Desktop\Blood Lad 5.5 v01 - Read Blood Lad 5.5 Online - Page 1.URL
[2012/01/01 23:56:43 | 000,001,268 | ---- | M] () -- C:\Users\Aiden\Desktop\Revo Uninstaller.lnk
[2012/01/01 20:46:42 | 000,001,044 | ---- | M] () -- C:\Users\Public\Desktop\Guitar Rig 4.lnk
[2012/01/01 20:36:42 | 000,002,119 | ---- | M] () -- C:\Users\Public\Desktop\SONAR X1 Producer.lnk
[2012/01/01 13:21:37 | 004,149,032 | ---- | M] () -- C:\Users\Aiden\Desktop\npcaddisonglitch.png
[2011/12/30 15:19:32 | 000,007,605 | ---- | M] () -- C:\Users\Aiden\AppData\Local\Resmon.ResmonCfg
[2011/12/29 23:54:46 | 000,220,216 | ---- | M] () -- C:\Users\Aiden\Desktop\Kwame - $39 for a Complete Tooth Whitening System from IWantWhiteTeeth.com ($309 Value) Printing..pdf
[2011/12/29 10:59:30 | 000,033,852 | ---- | M] () -- C:\Users\Aiden\Desktop\aidens friend lookalike.jpg
[2011/12/28 13:45:57 | 001,507,703 | ---- | M] () -- C:\Users\Aiden\Documents\December Virgin Mobile Bill Recept for Payment.pdf
[2011/12/23 19:47:11 | 000,001,083 | ---- | M] () -- C:\Users\Public\Desktop\Platinum Hide IP.lnk
[2011/12/20 11:45:36 | 000,120,742 | ---- | M] () -- C:\Users\Aiden\Desktop\RED Transaction Confirmation.pdf
[2011/12/16 17:39:07 | 000,001,761 | ---- | M] () -- C:\Users\Public\Desktop\Earlybird.lnk
[2011/12/15 20:18:30 | 000,279,616 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2011/12/15 20:12:13 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011/12/14 17:58:20 | 000,001,017 | ---- | M] () -- C:\Users\Aiden\Desktop\Dropbox.lnk
[2011/12/13 10:55:48 | 000,001,445 | ---- | M] () -- C:\Users\Aiden\Desktop\Trend Micro Titanium Internet Security 2012.lnk
[2011/12/13 10:54:38 | 000,000,056 | ---- | M] () -- C:\Windows\SysNative\SupportTool.exe.bat
[2011/12/13 10:52:56 | 000,210,704 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmnciesc.sys
[2011/12/13 10:52:56 | 000,167,696 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmcomm.sys
[2011/12/13 10:52:56 | 000,105,744 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmtdi.sys
[2011/12/13 10:52:56 | 000,091,920 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmactmon.sys
[2011/12/13 10:52:56 | 000,070,928 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmevtmgr.sys
[2011/12/13 10:52:56 | 000,067,344 | ---- | M] (Trend Micro Inc.) -- C:\Windows\SysNative\drivers\tmeevw.sys
[2011/12/09 20:50:34 | 000,133,382 | ---- | M] () -- C:\Users\Aiden\Desktop\clug.pdf
[2011/12/07 23:05:30 | 082,518,952 | ---- | M] (Trend Micro Inc.) -- C:\Users\Aiden\Desktop\Ti_TIS_5.0_EN_64bit.exe
[2011/12/07 15:44:14 | 000,042,372 | ---- | M] () -- C:\Users\Aiden\Desktop\GuideFileAccess025EMF.pdf
[2011/12/07 15:37:17 | 000,015,149 | ---- | M] () -- C:\Users\Aiden\Desktop\fontaineoconnellFPessay.pdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/04 20:55:18 | 000,001,111 | ---- | C] () -- C:\Users\Aiden\Desktop\Katawa Shoujo.lnk
[2012/01/02 14:20:20 | 000,000,102 | ---- | C] () -- C:\Users\Aiden\Desktop\CBTT and Torrent Development uTorrent DHT Troubleshooting..URL
[2012/01/02 12:47:15 | 000,000,083 | ---- | C] () -- C:\Users\Aiden\Desktop\Blood Lad 5.5 v01 - Read Blood Lad 5.5 Online - Page 1.URL
[2012/01/01 23:56:43 | 000,001,268 | ---- | C] () -- C:\Users\Aiden\Desktop\Revo Uninstaller.lnk
[2012/01/01 20:46:42 | 000,001,044 | ---- | C] () -- C:\Users\Public\Desktop\Guitar Rig 4.lnk
[2012/01/01 20:36:42 | 000,002,119 | ---- | C] () -- C:\Users\Public\Desktop\SONAR X1 Producer.lnk
[2012/01/01 13:21:36 | 004,149,032 | ---- | C] () -- C:\Users\Aiden\Desktop\npcaddisonglitch.png
[2011/12/30 15:19:32 | 000,007,605 | ---- | C] () -- C:\Users\Aiden\AppData\Local\Resmon.ResmonCfg
[2011/12/29 23:55:06 | 000,220,216 | ---- | C] () -- C:\Users\Aiden\Desktop\Kwame - $39 for a Complete Tooth Whitening System from IWantWhiteTeeth.com ($309 Value) Printing..pdf
[2011/12/29 10:59:28 | 000,033,852 | ---- | C] () -- C:\Users\Aiden\Desktop\aidens friend lookalike.jpg
[2011/12/28 13:46:27 | 001,507,703 | ---- | C] () -- C:\Users\Aiden\Documents\December Virgin Mobile Bill Recept for Payment.pdf
[2011/12/23 19:47:11 | 000,001,083 | ---- | C] () -- C:\Users\Public\Desktop\Platinum Hide IP.lnk
[2011/12/20 11:46:28 | 000,120,742 | ---- | C] () -- C:\Users\Aiden\Desktop\RED Transaction Confirmation.pdf
[2011/12/16 17:39:06 | 000,001,773 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Earlybird.lnk
[2011/12/16 17:39:06 | 000,001,761 | ---- | C] () -- C:\Users\Public\Desktop\Earlybird.lnk
[2011/12/15 20:12:13 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011/12/13 10:55:46 | 000,001,445 | ---- | C] () -- C:\Users\Aiden\Desktop\Trend Micro Titanium Internet Security 2012.lnk
[2011/12/13 10:54:38 | 000,000,056 | ---- | C] () -- C:\Windows\SysNative\SupportTool.exe.bat
[2011/12/09 21:44:30 | 000,860,160 | ---- | C] () -- C:\Users\Aiden\Desktop\md5summer.exe
[2011/12/09 20:50:37 | 000,133,382 | ---- | C] () -- C:\Users\Aiden\Desktop\clug.pdf
[2011/12/07 15:44:14 | 000,042,372 | ---- | C] () -- C:\Users\Aiden\Desktop\GuideFileAccess025EMF.pdf
[2011/12/07 15:37:32 | 000,015,149 | ---- | C] () -- C:\Users\Aiden\Desktop\fontaineoconnellFPessay.pdf
[2011/09/24 10:14:05 | 000,000,608 | -H-- | C] () -- C:\ProgramData\T2
[2011/09/24 10:14:05 | 000,000,604 | -H-- | C] () -- C:\Program Files (x86)\STLL Notifier
[2011/09/09 20:18:54 | 000,000,064 | ---- | C] () -- C:\Windows\SysWow64\rp_stats.dat
[2011/09/09 20:18:54 | 000,000,044 | ---- | C] () -- C:\Windows\SysWow64\rp_rules.dat
[2011/08/15 21:36:42 | 000,000,132 | ---- | C] () -- C:\Users\Aiden\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/08/15 12:28:28 | 000,070,656 | ---- | C] () -- C:\Windows\SysWow64\tmbvcm32.dll
[2011/08/02 13:01:24 | 000,007,680 | ---- | C] () -- C:\Users\Aiden\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/07/29 14:09:23 | 000,073,220 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2011/07/29 14:09:23 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2011/07/29 14:09:23 | 000,029,114 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2011/07/29 14:09:23 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2011/07/29 14:09:23 | 000,021,021 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2011/07/29 14:09:23 | 000,015,670 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2011/07/29 14:09:23 | 000,013,280 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2011/07/29 14:09:23 | 000,010,673 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2011/07/29 14:09:23 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2011/07/29 14:09:23 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2011/07/29 14:09:23 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2011/07/29 14:09:23 | 000,001,137 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2011/07/29 14:09:23 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2011/07/29 14:09:23 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2011/07/29 14:09:23 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2011/07/29 14:09:23 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2011/07/29 14:05:19 | 000,000,088 | ---- | C] () -- C:\Windows\ENX420.ini
[2011/07/28 21:29:05 | 000,001,057 | ---- | C] () -- C:\Users\Aiden\AppData\Roaming\vso_ts_preview.xml
[2011/07/26 16:26:48 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011/07/26 16:26:46 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2011/07/26 16:26:46 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2011/07/26 16:26:46 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2011/07/26 16:26:46 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2011/07/22 22:33:45 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/07/09 19:39:06 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011/07/09 19:39:00 | 000,024,631 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2009/10/06 02:16:00 | 000,819,200 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2009/07/14 00:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 21:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 21:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 19:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/04/02 07:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2009/04/01 10:48:16 | 000,053,478 | ---- | C] () -- C:\Windows\mvtcpui.ini

< End of report > [/spoiler]

The EXTRAS.txt log is as follows:

[spoiler]OTL Extras logfile created on: 05/01/2012 12:29:15 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Aiden\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

3.98 Gb Total Physical Memory | 2.22 Gb Available Physical Memory | 55.93% Memory free
7.95 Gb Paging File | 5.75 Gb Available in Paging File | 72.31% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 1862.92 Gb Total Space | 1518.66 Gb Free Space | 81.52% Space Free | Partition Type: NTFS

Computer Name: AIDEN-PC | User Name: Aiden | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1&

Tech Clinic / Facebook not working

« on: January 04, 2012, 03:25:31 PM »

Hi.

As usual, I thank anyone in advance for answering. I will post a screenshot I took of what my facebook screen looked like.

[spoiler]

[/spoiler]

Basically I log in, and then there's nothing there and clicking on "facebook" or my name doesn't do anything.

It does this in firefox AND in explorer exactly the same way.

I'm running win7 x64.

Thanks again.

Tech Clinic / HijackThis Log (file missing)

« on: September 05, 2011, 05:52:09 PM »

Hi Guestolo.

If it's not too much trouble, do you think you could shed some light on what the deal is with the missing files I saw in the hijackthis log? also the application doesn't seem to want to save logs in program files (x86)...

I was worried by the @%SystemRoot%\system32\ services.

*edit* I tried Fixing checked and restarting but they show up again.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:46:06 PM, on 05/09/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\Aiden\Desktop\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1464\6.6.1081\TmIEPlg32.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Bamboo Dock] "C:\Program Files (x86)\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe"
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1464\6.6.1081\TmIEPlg32.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9468 bytes

Thanks

Aidan

Tech Clinic / Appcrash in everything

« on: April 12, 2011, 11:21:49 PM »

[quote name='guestolo' date='12 April 2011 - 12:02 AM' timestamp='1302584570' post='477913']
time to do some trial and error trouble shooting
Why not do another Clean boot
Everything work fine? it did before, should again
Start a couple startup entries/and or services, reboot the computer
Everything work fine?

Trial and error, see what is causing the trouble, get it???
[/quote]

jaja. Thanks for the helpderp.

Aiden

Tech Clinic / Appcrash in everything

« on: April 11, 2011, 08:03:53 AM »

So I tried to uninstall AVG and I got this error and log:

Severity: Error
Error code: 0xC0070643
Error message: General internal error
Additional message: Driver installation failed (0x000000000)
Context: MSI action failed

Log attached, due to it being too large for the forum post.

Wow nvm, it's a 2mb file hah, besides, I wouldn't want to inflict reading it upon you.

Do you think running a clean boot will let me uninstall it without a problem?

EDIT: I did all that, and AVG is gone, your uninstaller didn't find all that much and I didn't have to reboot.
Well, seems like it's not AVG OR iTunes.

The problem is still there though.

Do you think iTunes is the one that is interfering? I'm just saying that because I have read that before while looking at appcrash errors, that peolpe got rid of itunes and it fixed the problem. Sounded like lies to me though but who knows.

It wasn't iTunes.

Tech Clinic / Appcrash in everything

« on: April 10, 2011, 04:36:50 PM »

[quote name='guestolo' date='09 April 2011 - 07:40 PM' timestamp='1302396024' post='477877']
Can you try running a clean boot of the machine, try running those same programs, any errors?

Here's Microsoft's instructions on performing a clean boot
Step 1: Start the System Configuration Utility

1. Click Start, click Run, type msconfig, and then click OK.
2. The System Configuration Utility dialog box is displayed.

Step 2: Configure selective startup options

1. In the System Configuration Utility dialog box, click the General tab, and then click Selective Startup.
2. Click to clear the Process SYSTEM.INI File check box.
3. Click to clear the Process WIN.INI File check box.
4. Click to clear the Load Startup Items check box. Verify that Load System Services and Use Original BOOT.INI are checked.
5. Click the Services tab.
6. Click to select the Hide All Microsoft Services check box.
7. Click Disable All, and then click OK.
8. When you are prompted, click Restart to restart the computer.

Back in Windows, the System config window will appear, you can choose not to show again
[/quote]

Do you think AVG is interfering with the programs?

I followed the steps and the programs that were having trouble worked fine. Steps 2 and 3 were not available though, they didn't even exist on my msconfig.
If it isn't AVG, is there another application that might be interfering ?

Tech Clinic / Appcrash in everything

« on: April 09, 2011, 05:47:10 PM »

TFC cleared 79mb of cache and, as expected, no malware was found.

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6321

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

09/04/2011 6:38:00 PM
mbam-log-2011-04-09 (18-38-00).txt

Scan type: Quick scan
Objects scanned: 144636
Time elapsed: 3 minute(s), 26 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Thanks

Tech Clinic / Appcrash in everything

« on: April 07, 2011, 03:40:48 PM »

So I just rebooted in safe mode with networking, and all the aforementioned programs start and work without a hitch. Except MSN, which starts but cannot connect. (I think there was something about how Data Execution Prevention had to be enabled with msn.)

In an attempt to stop win7 from pinging me to approve running applications all the time, I messed with the DEP in that I clicked on the setting to make it stop everything except the exceptions you chose, but when I set it back to only affect the system files, nothing was working anymore. Maybe this is related to the issue I'm having? Or is ntdll.dll not being used in safe mode or something...

I hope this issue is something that can be resolved. My XP installation is giving me trouble now too.

Tech Clinic / Appcrash in everything

« on: April 06, 2011, 09:03:33 PM »

Here's the one that popped up:

OTL logfile created on: 06/04/2011 9:56:04 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Aiden\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 69.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 38.28 Gb Total Space | 13.01 Gb Free Space | 34.00% Space Free | Partition Type: NTFS
Drive D: | 38.28 Gb Total Space | 1.72 Gb Free Space | 4.50% Space Free | Partition Type: NTFS
Drive F: | 1.89 Gb Total Space | 0.47 Gb Free Space | 25.08% Space Free | Partition Type: FAT
Drive H: | 149.01 Gb Total Space | 100.25 Gb Free Space | 67.28% Space Free | Partition Type: FAT32

Computer Name: AIDEN-PC | User Name: Aiden | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/04/06 21:55:39 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Aiden\Desktop\OTL.exe
PRC - [2011/01/26 18:55:54 | 000,393,216 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011/01/26 18:55:24 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011/01/20 05:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011/01/07 02:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/01/07 02:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/01/06 16:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/01/06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010/12/06 13:00:06 | 000,109,728 | ---- | M] (Intel Corporation) -- C:\Windows\System32\IPROSetMonitor.exe
PRC - [2010/12/05 17:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010/12/05 17:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010/11/20 08:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/20 08:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 08:17:00 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2010/10/22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010/10/22 05:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010/05/21 01:28:00 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010/05/21 01:27:58 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2010/04/22 00:20:00 | 000,883,200 | ---- | M] (Ray Adams) -- C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe
PRC - [2009/03/12 13:53:46 | 000,483,422 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/03/12 13:53:46 | 000,254,036 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_ef7356bc77a65e9e\stacsv.exe
PRC - [2007/05/29 17:14:08 | 000,183,064 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\AMT\atchksrv.exe
PRC - [2007/05/29 17:14:04 | 000,404,248 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\AMT\atchk.exe
PRC - [2007/05/29 17:14:02 | 000,105,240 | ---- | M] (Intel) -- C:\Program Files\Intel\AMT\LMS.exe

========== Modules (SafeList) ==========

MOD - [2011/04/06 21:55:39 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Aiden\Desktop\OTL.exe
MOD - [2010/11/20 07:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010/11/04 21:53:44 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll
MOD - [2009/12/14 06:12:00 | 000,187,904 | ---- | M] () -- C:\Program Files\Ray Adams\ATI Tray Tools\raphook.dll

========== Win32 Services (SafeList) ==========

SRV - [2011/02/21 16:51:48 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/01/26 18:55:24 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011/01/06 16:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010/12/06 13:00:06 | 000,109,728 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\IPROSetMonitor.exe -- (Intel(R) PROSet Monitoring Service) Intel(R)
SRV - [2010/10/22 05:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 21:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/03/12 13:53:46 | 000,254,036 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_ef7356bc77a65e9e\stacsv.exe -- (STacSV)
SRV - [2007/05/29 17:14:08 | 000,183,064 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\AMT\atchksrv.exe -- (atchksrv) Intel(R)
SRV - [2007/05/29 17:14:02 | 000,105,240 | ---- | M] (Intel) [Auto | Running] -- C:\Program Files\Intel\AMT\LMS.exe -- (LMS) Intel(R)

========== Driver Services (SafeList) ==========

DRV - [2011/03/20 20:38:51 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/01/26 19:36:14 | 007,566,848 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2011/01/26 19:36:14 | 007,566,848 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011/01/26 18:13:10 | 000,238,592 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010/12/08 07:34:30 | 000,030,368 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iqvw32.sys -- (NAL)
DRV - [2010/12/08 05:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/20 08:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 08:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 08:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 06:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 06:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 05:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2010/11/20 05:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 05:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/11/17 08:04:24 | 000,101,392 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2010/11/12 14:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010/10/21 16:11:02 | 000,081,680 | ---- | M] (MotioninJoy) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MijXfilt.sys -- (MotioninJoyXFilter)
DRV - [2010/09/13 16:27:54 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010/09/07 04:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010/09/07 04:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010/08/03 16:24:18 | 000,021,072 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010/08/03 16:24:16 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010/08/03 16:24:12 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010/04/22 00:15:04 | 000,019,232 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Ray Adams\ATI Tray Tools\atitray.sys -- (atitray)
DRV - [2010/03/26 01:15:50 | 000,221,400 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6232.sys -- (e1express) Intel(R)
DRV - [2009/07/13 19:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/07/13 19:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2009/03/12 13:53:46 | 000,398,336 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2006/08/29 23:47:46 | 000,043,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI) Intel(R)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?lang=en-ca&OCID=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 22 F6 A4 4B 43 CE CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: [email protected]:1.6.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.9
FF - prefs.js..extensions.enabledItems: {59c81df5-4b7a-477b-912d-4e0fdf64e5f2}:0.9.86.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1209
FF - prefs.js..extensions.enabledItems: [email protected]:4.0.3

FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/03/29 16:41:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 11\components [2011/03/09 22:18:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins

[2011/02/16 21:56:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Extensions
[2011/04/06 18:08:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions
[2011/02/16 22:05:37 | 000,000,000 | ---D | M] (Flashblock) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2011/03/20 20:56:33 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2011/04/06 18:08:17 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/03/06 23:49:49 | 000,000,000 | ---D | M] (Dictionnaire franﾃｧais ﾂｫModerneﾂｻ) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions\[email protected]
[2011/03/20 20:56:34 | 000,000,000 | ---D | M] (Personas) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions\[email protected]
[2011/02/22 21:08:35 | 000,000,000 | ---D | M] (YesScript) -- C:\Users\Aiden\AppData\Roaming\Mozilla\Firefox\Profiles\oyysl5pi.default\extensions\[email protected]
[2011/03/29 16:41:01 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/01/14 01:07:35 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/01/13 03:03:55 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/22 18:59:05 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

O1 HOSTS File: ([2011/02/17 17:33:03 | 000,000,867 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 iDBO # LMS GENERATED LINE
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [atchk] C:\Program Files\Intel\AMT\atchk.exe (Intel Corporation)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKCU..\Run: [AtiTrayTools] C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe (Ray Adams)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - Startup: C:\Users\Aiden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/01/13 01:29:52 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{96d92042-3a3c-11e0-a843-0019d1757371}\Shell - "" = AutoRun
O33 - MountPoints2\{96d92042-3a3c-11e0-a843-0019d1757371}\Shell\AutoRun\command - "" = G:\g_setup.exe
O33 - MountPoints2\{b1843474-3a30-11e0-8cdf-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{b1843474-3a30-11e0-8cdf-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/04/06 21:55:38 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Aiden\Desktop\OTL.exe
[2011/04/06 21:27:07 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\Users\Aiden\Desktop\ntdll.dll
[2011/04/06 18:01:32 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\ElevatedDiagnostics
[2011/04/05 16:13:23 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Xfire
[2011/04/05 16:13:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Xfire
[2011/04/05 16:13:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xfire
[2011/04/05 16:13:21 | 000,000,000 | ---D | C] -- C:\Program Files\Xfire
[2011/04/05 15:15:51 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{1939ADC2-EADA-4195-B4B2-07012368976E}
[2011/04/04 17:50:05 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{70375331-03D8-4844-862C-E57A143F9676}
[2011/04/02 20:55:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transcribe!
[2011/04/02 20:55:01 | 000,000,000 | ---D | C] -- C:\Program Files\Transcribe!
[2011/04/02 20:54:15 | 001,996,992 | ---- | C] (Seventh String Software ) -- C:\Users\Aiden\Desktop\xscsetup.exe
[2011/04/02 20:13:25 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{9AB1853A-962B-4109-B48F-E3E3508537D8}
[2011/04/01 18:41:47 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{2A7EC3DE-2680-4841-8CAD-B64819C4EDA5}
[2011/04/01 12:42:06 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Mumble
[2011/04/01 12:41:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
[2011/04/01 12:41:22 | 000,000,000 | ---D | C] -- C:\Program Files\Mumble
[2011/03/30 09:32:23 | 000,000,000 | ---D | C] -- C:\Users\Aiden\Desktop\Into the Woods audition
[2011/03/27 02:45:31 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{CF3EA937-00C3-4FAE-BFE3-4BBA607ACF8A}
[2011/03/26 13:28:35 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{2C57F417-DB6C-43DA-A142-3A8C073AB077}
[2011/03/25 18:27:53 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{AAFFDD31-42E2-48A1-AF15-4066C76D22C3}
[2011/03/24 21:57:44 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{E8C7EE09-1EED-4102-81AB-1044E8A3D8A2}
[2011/03/23 20:58:39 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{EE61D202-AC7B-490F-9404-6C89B2157694}
[2011/03/20 20:55:03 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{C9CE2A44-BE2E-4162-A3E7-90AE5CFFC588}
[2011/03/20 20:38:50 | 000,218,688 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2011/03/20 03:46:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\win
[2011/03/20 03:25:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RW-Everything
[2011/03/20 03:25:05 | 000,000,000 | ---D | C] -- C:\Program Files\RW-Everything
[2011/03/20 03:16:03 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{CB3E43D7-0500-4F92-B563-8E74BBEE6E6A}
[2011/03/19 15:15:40 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{1865F530-37DB-4D8A-8D2D-22DDA276E1DE}
[2011/03/19 13:31:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2011/03/19 13:31:13 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2011/03/19 03:41:12 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\skypePM
[2011/03/19 03:39:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/03/19 03:39:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011/03/19 03:39:30 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011/03/19 03:39:29 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Skype
[2011/03/19 03:39:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2011/03/19 03:15:04 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{FDD6B05E-5BA0-4FB9-B278-ACB0D57E883A}
[2011/03/17 15:14:55 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{AC93A03F-E1B1-4FD1-BEE4-68B9CF3A309F}
[2011/03/16 19:51:59 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{2390262F-EF4D-4342-AD68-338893BC71AA}
[2011/03/14 21:58:23 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{090FCEC5-82AA-4D73-96D3-6E56617413B4}
[2011/03/14 01:27:55 | 000,000,000 | ---D | C] -- C:\Users\Aiden\Documents\G-Senjou no Maou English Savedata
[2011/03/14 01:27:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AKABEiSOFT2
[2011/03/14 01:27:25 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\savedata
[2011/03/14 01:24:42 | 000,000,000 | ---D | C] -- C:\Program Files\あかべぇそふとつぅ
[2011/03/14 00:58:14 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/03/14 00:56:29 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\vlc
[2011/03/14 00:13:52 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{4EF9183A-7A4B-4B01-862D-3364D648A96D}
[2011/03/13 01:52:03 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{B8759DEB-8130-4D93-A7CB-51237E35628C}
[2011/03/12 21:31:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/03/12 21:31:03 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/03/12 21:31:03 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/03/12 13:51:27 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{3EDFBD75-A745-411B-B165-8CCAFC912356}
[2011/03/12 00:35:05 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft AppLocale
[2011/03/12 00:30:33 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{DC886718-BE52-4D2A-9B58-CE75FF9AF650}
[2011/03/12 00:22:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\U T A U
[2011/03/11 23:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\UTAU
[2011/03/10 16:56:47 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{551B54E9-8972-4C4A-B7FE-AF7AA4667080}
[2011/03/09 22:46:22 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{3F9C0A67-AC79-484D-8F12-3AF826325EE5}
[2011/03/09 20:40:31 | 000,000,000 | ---D | C] -- C:\Gstring
[2011/03/09 19:35:56 | 001,076,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011/03/09 19:35:56 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011/03/09 19:35:50 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/03/09 19:35:50 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2011/03/09 19:35:50 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/03/09 19:35:50 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/03/08 20:31:48 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{B588F2DA-1D2D-4604-BB7E-67A555FE4E2D}
[2011/03/08 08:31:24 | 000,000,000 | ---D | C] -- C:\Users\Aiden\AppData\Local\{AC8EB6AC-4EAC-45E2-98E6-36CBF8FB597A}

========== Files - Modified Within 30 Days ==========

[2011/04/06 21:55:39 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Aiden\Desktop\OTL.exe
[2011/04/06 21:46:43 | 000,021,024 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/06 21:46:43 | 000,021,024 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/06 21:39:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/06 21:39:02 | 2615,328,768 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/06 21:29:10 | 000,001,890 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011/04/06 21:29:10 | 000,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2011/04/06 21:27:08 | 000,708,096 | ---- | M] (Microsoft Corporation) -- C:\Users\Aiden\Desktop\ntdll.dll
[2011/04/06 21:22:19 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/04/06 21:22:19 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/04/06 17:45:08 | 111,823,162 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/04/05 16:13:22 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\Xfire.lnk
[2011/04/05 16:12:52 | 007,065,112 | ---- | M] () -- C:\Users\Aiden\Desktop\xfire_installer_44036.exe
[2011/04/02 21:24:18 | 069,557,772 | ---- | M] () -- C:\Users\Aiden\Desktop\Soon.wav
[2011/04/02 21:18:26 | 000,001,815 | ---- | M] () -- C:\Users\Aiden\Desktop\Soon.xsc
[2011/04/02 20:55:01 | 000,000,938 | ---- | M] () -- C:\Users\Aiden\Desktop\Transcribe!.lnk
[2011/04/02 20:54:17 | 001,996,992 | ---- | M] (Seventh String Software ) -- C:\Users\Aiden\Desktop\xscsetup.exe
[2011/04/01 19:10:52 | 000,058,454 | ---- | M] () -- C:\Users\Aiden\Desktop\jajajaja-la-tengo-re-pilla.jpg
[2011/04/01 12:47:47 | 000,002,377 | ---- | M] () -- C:\Users\Aiden\Documents\MumbleAutomaticCertificateBackup.p12
[2011/04/01 12:41:23 | 000,000,972 | ---- | M] () -- C:\Users\Public\Desktop\Mumble.lnk
[2011/04/01 12:38:53 | 015,254,016 | ---- | M] () -- C:\Users\Aiden\Desktop\mumble-1.2.3.msi
[2011/04/01 11:22:45 | 000,501,634 | ---- | M] () -- C:\Users\Aiden\Desktop\lolfakku.png
[2011/03/31 18:04:28 | 000,000,089 | ---- | M] () -- C:\Users\Aiden\Desktop\Kimi no Iru Machi 101 Page 3, Read Kimi no Iru Machi Chapter 101 Online for Free.URL
[2011/03/31 02:10:12 | 000,000,089 | ---- | M] () -- C:\Users\Aiden\Desktop\Kimi no Iru Machi 97 Page 2, Read Kimi no Iru Machi Chapter 97 Online for Free.URL
[2011/03/27 12:58:46 | 004,187,268 | ---- | M] () -- C:\Users\Aiden\Desktop\47252813-demonssouls-ignpdf.pdf
[2011/03/27 00:09:06 | 000,848,960 | ---- | M] () -- C:\Users\Aiden\Desktop\MTM_IntoTheWoods_Audition_Male.pdf
[2011/03/23 22:03:44 | 000,000,093 | ---- | M] () -- C:\Users\Aiden\Desktop\Pheromomania Syndrome 4 Page 1, Read Pheromomania Syndrome Chapter 4 Online for Free.URL
[2011/03/23 18:30:11 | 000,000,092 | ---- | M] () -- C:\Users\Aiden\Desktop\DOYOK BLOG star wars tattoos girls.URL
[2011/03/21 07:26:39 | 000,044,799 | ---- | M] () -- C:\Users\Aiden\Desktop\Super Mario Bros 2 Theme (big band. alternate ending).mid
[2011/03/20 20:38:51 | 000,218,688 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2011/03/19 13:27:32 | 000,016,935 | ---- | M] () -- C:\Users\Aiden\Desktop\CV GAbibo.odt
[2011/03/19 03:41:15 | 000,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2011/03/19 03:39:32 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/03/19 03:13:41 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf
[2011/03/16 22:25:48 | 000,000,075 | ---- | M] () -- C:\Users\Aiden\Desktop\AlistairDialogue - Dragon Age Wiki.URL
[2011/03/16 21:16:34 | 000,000,092 | ---- | M] () -- C:\Users\Aiden\Desktop\YouTube - Sexy sax man serenade (prank feat. Sergio Flores).URL
[2011/03/15 00:26:54 | 086,185,519 | ---- | M] () -- C:\Users\Aiden\Desktop\Nujabes - Metaphorical Music [2003].zip
[2011/03/13 00:35:03 | 000,045,103 | ---- | M] () -- C:\Users\Aiden\Desktop\FF5_ahe2.mid
[2011/03/12 22:32:12 | 000,000,073 | ---- | M] () -- C:\Users\Aiden\Desktop\YouTube - The Return of the King pt. 1.URL
[2011/03/12 21:31:43 | 000,001,753 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/03/12 00:13:58 | 000,291,616 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/03/11 07:33:52 | 000,036,352 | ---- | M] () -- C:\Windows\System32\xfcodec.dll
[2011/03/11 03:33:37 | 000,000,067 | ---- | M] () -- C:\Users\Aiden\Desktop\Lothering - Dragon Age Wiki.URL
[2011/03/10 17:03:31 | 000,075,275 | ---- | M] () -- C:\Users\Aiden\Desktop\Spécimen de chèque.xps
[2011/03/09 22:19:08 | 000,002,106 | ---- | M] () -- C:\Users\Aiden\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox 4.0 Beta 11.lnk

========== Files Created - No Company Name ==========

[2011/04/06 21:29:09 | 000,001,890 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011/04/06 21:29:09 | 000,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2011/04/05 16:13:22 | 000,000,921 | ---- | C] () -- C:\Users\Public\Desktop\Xfire.lnk
[2011/04/05 16:12:47 | 007,065,112 | ---- | C] () -- C:\Users\Aiden\Desktop\xfire_installer_44036.exe
[2011/04/05 00:37:33 | 351,337,933 | ---- | C] () -- C:\Users\Aiden\Desktop\Genshiken 04 [001F8419].mkv
[2011/04/02 21:23:56 | 069,557,772 | ---- | C] () -- C:\Users\Aiden\Desktop\Soon.wav
[2011/04/02 21:18:26 | 000,001,815 | ---- | C] () -- C:\Users\Aiden\Desktop\Soon.xsc
[2011/04/02 20:55:01 | 000,000,938 | ---- | C] () -- C:\Users\Aiden\Desktop\Transcribe!.lnk
[2011/04/01 19:10:50 | 000,058,454 | ---- | C] () -- C:\Users\Aiden\Desktop\jajajaja-la-tengo-re-pilla.jpg
[2011/04/01 12:47:47 | 000,002,377 | ---- | C] () -- C:\Users\Aiden\Documents\MumbleAutomaticCertificateBackup.p12
[2011/04/01 12:41:23 | 000,000,972 | ---- | C] () -- C:\Users\Public\Desktop\Mumble.lnk
[2011/04/01 12:37:33 | 015,254,016 | ---- | C] () -- C:\Users\Aiden\Desktop\mumble-1.2.3.msi
[2011/04/01 11:22:34 | 000,501,634 | ---- | C] () -- C:\Users\Aiden\Desktop\lolfakku.png
[2011/03/31 18:04:28 | 000,000,089 | ---- | C] () -- C:\Users\Aiden\Desktop\Kimi no Iru Machi 101 Page 3, Read Kimi no Iru Machi Chapter 101 Online for Free.URL
[2011/03/31 02:10:12 | 000,000,089 | ---- | C] () -- C:\Users\Aiden\Desktop\Kimi no Iru Machi 97 Page 2, Read Kimi no Iru Machi Chapter 97 Online for Free.URL
[2011/03/30 09:32:02 | 000,848,960 | ---- | C] () -- C:\Users\Aiden\Desktop\MTM_IntoTheWoods_Audition_Male.pdf
[2011/03/27 12:58:42 | 004,187,268 | ---- | C] () -- C:\Users\Aiden\Desktop\47252813-demonssouls-ignpdf.pdf
[2011/03/23 22:03:44 | 000,000,093 | ---- | C] () -- C:\Users\Aiden\Desktop\Pheromomania Syndrome 4 Page 1, Read Pheromomania Syndrome Chapter 4 Online for Free.URL
[2011/03/23 18:30:11 | 000,000,092 | ---- | C] () -- C:\Users\Aiden\Desktop\DOYOK BLOG star wars tattoos girls.URL
[2011/03/21 07:26:38 | 000,044,799 | ---- | C] () -- C:\Users\Aiden\Desktop\Super Mario Bros 2 Theme (big band. alternate ending).mid
[2011/03/19 13:24:28 | 000,016,935 | ---- | C] () -- C:\Users\Aiden\Desktop\CV GAbibo.odt
[2011/03/19 03:41:15 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/03/19 03:39:32 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/03/19 03:13:41 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf
[2011/03/16 22:25:48 | 000,000,075 | ---- | C] () -- C:\Users\Aiden\Desktop\AlistairDialogue - Dragon Age Wiki.URL
[2011/03/16 21:16:34 | 000,000,092 | ---- | C] () -- C:\Users\Aiden\Desktop\YouTube - Sexy sax man serenade (prank feat. Sergio Flores).URL
[2011/03/15 00:24:21 | 086,185,519 | ---- | C] () -- C:\Users\Aiden\Desktop\Nujabes - Metaphorical Music [2003].zip
[2011/03/13 00:35:02 | 000,045,103 | ---- | C] () -- C:\Users\Aiden\Desktop\FF5_ahe2.mid
[2011/03/12 22:32:12 | 000,000,073 | ---- | C] () -- C:\Users\Aiden\Desktop\YouTube - The Return of the King pt. 1.URL
[2011/03/12 21:31:43 | 000,001,753 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/03/11 07:33:52 | 000,036,352 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2011/03/11 03:33:37 | 000,000,067 | ---- | C] () -- C:\Users\Aiden\Desktop\Lothering - Dragon Age Wiki.URL
[2011/03/10 17:03:30 | 000,075,275 | ---- | C] () -- C:\Users\Aiden\Desktop\Spécimen de chèque.xps
[2011/02/22 18:26:10 | 000,003,584 | ---- | C] () -- C:\Users\Aiden\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/22 18:19:38 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011/02/22 18:18:26 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/02/17 00:50:17 | 000,074,752 | ---- | C] () -- C:\Windows\System32\CLEyeDevices.dll
[2011/02/16 20:58:50 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/12/20 22:27:20 | 000,003,113 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2010/12/17 12:00:44 | 000,227,587 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009/07/14 00:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 00:33:53 | 000,291,616 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/13 22:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/13 22:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 22:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/13 22:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 22:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 22:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 19:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

< End of report >

Here's the file:

OTL Extras logfile created on: 06/04/2011 9:56:04 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Aiden\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 69.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 38.28 Gb Total Space | 13.01 Gb Free Space | 34.00% Space Free | Partition Type: NTFS
Drive D: | 38.28 Gb Total Space | 1.72 Gb Free Space | 4.50% Space Free | Partition Type: NTFS
Drive F: | 1.89 Gb Total Space | 0.47 Gb Free Space | 25.08% Space Free | Partition Type: FAT
Drive H: | 149.01 Gb Total Space | 100.25 Gb Free Space | 67.28% Space Free | Partition Type: FAT32

Computer Name: AIDEN-PC | User Name: Aiden | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0006AB1D-9B22-43DF-8D14-6EBD18DED4EE}" = Intel(R) Network Connections 16.0.19.0
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 24
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1" = MotioninJoy ds3 driver version 0.6.0001
"{394BE3D9-7F57-4638-A8D1-1D88671913B7}" = Microsoft AppLocale
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5229C090-842B-1CB0-1676-43E421294B5C}" = AMD Drag and Drop Transcoding
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5968F27A-66E6-171E-5311-0A74D74AAD9B}" = ATI Catalyst Install Manager
"{5A13987D-55F4-4271-A40E-76AC9B1B38FD}" = OpenOffice.org 3.2
"{5C134C7E-537D-4BA2-913D-A6F163DF10D4}" = UTAU 歌声合成ツール
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{85092B90-AEB2-2E30-0EF1-432EC61F6BD1}" = Catalyst Control Center InstallProxy
"{86B247F9-1D5E-CCC6-3280-71486D9A4E70}" = ATI Stream SDK v2 Developer
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{99A17B9E-3901-400B-BCD7-2ACD8FFE328B}" = System Requirements Lab for Intel
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AC76BA86-7AD7-1033-7B44-AA0000000001}" = Adobe Reader X (10.0.1)
"{B3AEF776-7FFF-4C50-A402-9119E3849EE0}" = AVG 2011
"{B4E343DD-BAAB-4D59-AD9C-DEA0AFE09DF1}" = Mumble 1.2.3
"{BA688606-4B20-4982-995E-EDADC6A6817E}" = League of Legends
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CD232781-26CA-4E18-BC70-4343A2F0D583}" = Microsoft IntelliPoint 8.0
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D4E53304-1F6C-4111-9872-1BCD2CF5B642}" = AVG 2011
"{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb" = Microsoft Windows Application Compatibility Database
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EDD7B70D-36D0-694D-AA34-D566A13CE98D}" = WMV9/VC-1 Video Playback
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"ASIO4ALL" = ASIO4ALL
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"AVG" = AVG 2011
"BitTorrent" = BitTorrent
"CL-Eye Driver" = CL-Eye Driver
"DAEMON Tools Lite" = DAEMON Tools Lite
"G-Senjou_no_Maou_Aegis" = G-Senjou no Maou English
"IrfanView" = IrfanView (remove only)
"MESOL" = Intel(R) Active Management Technology Device Software
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 4.0 (x86 en-US)" = Mozilla Firefox 4.0 (x86 en-US)
"Pianoteq23" = Pianoteq v2.3.0
"PROSetDX" = Intel(R) Network Connections 16.0.19.0
"rayatitray" = Ray Adams ATI Tray Tools
"RW-Everything_is1" = RW-Everything v1.4.9
"Transcribe!_is1" = Transcribe! 8.10
"WinLiveSuite" = Windows Live Essentials
"Xfire" = Xfire (remove only)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 06/04/2011 6:20:35 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: League of Legends.exe, version: 1.0.0.114,
time stamp: 0x4d90d773 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
time stamp: 0x4ce7b96e Exception code: 0xc00000fd Fault offset: 0x0005ce4c Faulting
process id: 0x68c Faulting application start time: 0x01cbf4a8d9555f48 Faulting application
path: C:\Riot Games\League of Legends\Game\League of Legends.exe Faulting module
path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 1752fb16-609c-11e0-af60-0019d1757371

Error - 06/04/2011 6:20:44 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: League of Legends.exe, version: 1.0.0.114,
time stamp: 0x4d90d773 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
time stamp: 0x4ce7b96e Exception code: 0xc00000fd Fault offset: 0x0005ce4c Faulting
process id: 0x650 Faulting application start time: 0x01cbf4a8dee5c631 Faulting application
path: C:\Riot Games\League of Legends\Game\League of Legends.exe Faulting module
path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 1ce33bd9-609c-11e0-af60-0019d1757371

Error - 06/04/2011 6:21:22 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: League of Legends.exe, version: 1.0.0.114,
time stamp: 0x4d90d773 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
time stamp: 0x4ce7b96e Exception code: 0xc00000fd Fault offset: 0x0005ce4c Faulting
process id: 0x14fc Faulting application start time: 0x01cbf4a8f5763596 Faulting application
path: C:\Riot Games\League of Legends\Game\League of Legends.exe Faulting module
path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 3373ab3e-609c-11e0-af60-0019d1757371

Error - 06/04/2011 9:23:09 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Skype.exe, version: 5.1.59.112, time stamp:
0x4d6d325a Faulting module name: Skype.exe, version: 5.1.59.112, time stamp: 0x4d6d325a
Exception
code: 0xc0000005 Fault offset: 0x00005d26 Faulting process id: 0xe08 Faulting application
start time: 0x01cbf4c2553a2785 Faulting application path: C:\Program Files\Skype\Phone\Skype.exe
Faulting
module path: C:\Program Files\Skype\Phone\Skype.exe Report Id: 986348bc-60b5-11e0-a6a9-0019d1757371

Error - 06/04/2011 9:23:31 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Skype.exe, version: 5.1.59.112, time stamp:
0x4d6d325a Faulting module name: apphelp.dll, version: 6.1.7601.17514, time stamp:
0x4ce7b73e Exception code: 0xc0000005 Fault offset: 0x0000bb46 Faulting process id:
0xe08 Faulting application start time: 0x01cbf4c2553a2785 Faulting application path:
C:\Program Files\Skype\Phone\Skype.exe Faulting module path: C:\Windows\system32\apphelp.dll
Report
Id: a5a3fb02-60b5-11e0-a6a9-0019d1757371

Error - 06/04/2011 9:23:40 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mumble.exe, version: 1.2.3.0, time stamp:
0x4d603982 Faulting module name: ntdll.dll, version: 6.1.7601.17514, time stamp:
0x4ce7b96e Exception code: 0xc0000005 Fault offset: 0x0005cfb4 Faulting process id:
0x112c Faulting application start time: 0x01cbf4c26ae673e6 Faulting application path:
C:\Program Files\Mumble\mumble.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: aadfe496-60b5-11e0-a6a9-0019d1757371

Error - 06/04/2011 9:41:25 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Skype.exe, version: 5.1.59.112, time stamp:
0x4d6d325a Faulting module name: Skype.exe, version: 5.1.59.112, time stamp: 0x4d6d325a
Exception
code: 0xc0000005 Fault offset: 0x00005d26 Faulting process id: 0xbe8 Faulting application
start time: 0x01cbf4c4d25958f0 Faulting application path: C:\Program Files\Skype\Phone\Skype.exe
Faulting
module path: C:\Program Files\Skype\Phone\Skype.exe Report Id: 25c307c7-60b8-11e0-9c8b-0019d1757371

Error - 06/04/2011 9:41:27 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Skype.exe, version: 5.1.59.112, time stamp:
0x4d6d325a Faulting module name: apphelp.dll, version: 6.1.7601.17514, time stamp:
0x4ce7b73e Exception code: 0xc0000005 Fault offset: 0x0000bb46 Faulting process id:
0xbe8 Faulting application start time: 0x01cbf4c4d25958f0 Faulting application path:
C:\Program Files\Skype\Phone\Skype.exe Faulting module path: C:\Windows\system32\apphelp.dll
Report
Id: 2704e53d-60b8-11e0-9c8b-0019d1757371

Error - 06/04/2011 9:48:30 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mumble.exe, version: 1.2.3.0, time stamp:
0x4d603982 Faulting module name: ntdll.dll, version: 6.1.7601.17514, time stamp:
0x4ce7b96e Exception code: 0xc0000005 Fault offset: 0x0005cea0 Faulting process id:
0x334 Faulting application start time: 0x01cbf4c5e3380dcf Faulting application path:
C:\Program Files\Mumble\mumble.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 23127fed-60b9-11e0-9c8b-0019d1757371

Error - 06/04/2011 9:51:05 PM | Computer Name = Aiden-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mumble.exe, version: 1.2.3.0, time stamp:
0x4d603982 Faulting module name: ntdll.dll, version: 6.1.7601.17514, time stamp:
0x4ce7b96e Exception code: 0xc0000005 Fault offset: 0x0005cfa8 Faulting process id:
0xbdc Faulting application start time: 0x01cbf4c6407be2f2 Faulting application path:
C:\Program Files\Mumble\mumble.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 7fa12258-60b9-11e0-9c8b-0019d1757371

[ System Events ]
Error - 22/03/2011 5:51:54 PM | Computer Name = Aiden-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

Error - 24/03/2011 3:33:01 PM | Computer Name = Aiden-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

Error - 24/03/2011 9:57:18 PM | Computer Name = Aiden-PC | Source = Microsoft-Windows-Application-Experience | ID = 205
Description = The Program Compatibility Assistant service failed to perform the
phase two initialization.

Error - 25/03/2011 5:50:00 PM | Computer Name = Aiden-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 7:02:53 AM on ?25/?03/?2011 was unexpected.

Error - 25/03/2011 5:49:46 PM | Computer Name = Aiden-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

Error - 26/03/2011 11:12:59 PM | Computer Name = Aiden-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

Error - 30/03/2011 8:40:57 AM | Computer Name = Aiden-PC | Source = volsnap | ID = 393252
Description = The shadow copies of volume C: were aborted because the shadow copy
storage could not grow due to a user imposed limit.

Error - 31/03/2011 3:04:14 PM | Computer Name = Aiden-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

Error - 02/04/2011 3:49:23 PM | Computer Name = Aiden-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

Error - 06/04/2011 9:39:16 PM | Computer Name = Aiden-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 9:29:27 PM on ?06/?04/?2011 was unexpected.

< End of report >

Thanks.

Tech Clinic / Appcrash in everything

« on: April 06, 2011, 05:15:11 PM »

I would appreciate input as I have had rotten luck googling the issue.

Today is the first time this happens.

I tried running mumble, I got:

Problem Event Name:   APPCRASH
Application Name:   mumble.exe
Application Version:   1.2.3.0
Application Timestamp:   4d603982
Fault Module Name:   ntdll.dll
Fault Module Version:   6.1.7601.17514
Fault Module Timestamp:   4ce7b96e
Exception Code:   c0000005
Exception Offset:   000575d2
OS Version:   6.1.7601.2.1.0.256.1
Locale ID:   4105
Additional Information 1:   8300
Additional Information 2:   83005aadfd2252dae2c0574327ca40be
Additional Information 3:   adf2
Additional Information 4:   adf2708c01a48c88952744cd5a2cffd3

I tried running windows live I got:

Problem Event Name:   APPCRASH
Application Name:   msnmsgr.exe
Application Version:   15.4.3508.1109
Application Timestamp:   4cda7240
Fault Module Name:   ntdll.dll
Fault Module Version:   6.1.7601.17514
Fault Module Timestamp:   4ce7b96e
Exception Code:   c00000fd
Exception Offset:   000571c6
OS Version:   6.1.7601.2.1.0.256.1
Locale ID:   4105
Additional Information 1:   54ee
Additional Information 2:   54ee8e53fdfa14c5eac7a42ee6cd909c
Additional Information 3:   25c4
Additional Information 4:   25c445aff560bc47cc2c2bd69c41a8b2

I tried running skype, I got:

Problem Event Name:   APPCRASH
Application Name:   Skype.exe
Application Version:   5.1.59.112
Application Timestamp:   4d6d325a
Fault Module Name:   Skype.exe
Fault Module Version:   5.1.59.112
Fault Module Timestamp:   4d6d325a
Exception Code:   c0000005
Exception Offset:   00005d26
OS Version:   6.1.7601.2.1.0.256.1
Locale ID:   4105
Additional Information 1:   c7d6
Additional Information 2:   c7d664f925bcc5f64c0a6b1f4cd780d1
Additional Information 3:   958c
Additional Information 4:   958ca79742f0ab8b89d23ce2f2cb10df

So what's the deal?

Thanks.

Aiden

Hardware / Stuck at Intel Splash Screen

« on: January 14, 2011, 11:49:48 AM »

[quote name='Aidan' date='13 January 2011 - 08:24 PM' timestamp='1294968250' post='474745']
When I unplug the Hard Drives that are connected Via IDE, I get into INTEL Boot Agent that tells me no bootable device medi test failure check cable. I have read about this online too, but does that mean my SATA DVD drive isn't working?

EDIT: okay the following link is more akin to my problem.

http://www.motherboardpoint.com/boot-stops-5a-t63126.html

I have 2 Maxtor N256 HDDs installed. Are they incompatible with my mobo?
[/quote]

RE-EDIT: I managed to install the OS and everything while running onboard graphics. Everything works fine. However, as soon as I plug in the HD 2900 XT, bootup is stuck at 5A and nothing loads. When I attempted to install a driver pack for it without the card attached, it said I didn't have the necessary hardware. can you think of anything?

Hardware / Stuck at Intel Splash Screen

« on: January 13, 2011, 08:24:10 PM »

When I unplug the Hard Drives that are connected Via IDE, I get into INTEL Boot Agent that tells me no bootable device medi test failure check cable. I have read about this online too, but does that mean my SATA DVD drive isn't working?

EDIT: okay the following link is more akin to my problem.

http://www.motherboardpoint.com/boot-stops-5a-t63126.html

I have 2 Maxtor N256 HDDs installed. Are they incompatible with my mobo?

Hardware / Stuck at Intel Splash Screen

« on: January 13, 2011, 07:45:17 PM »

Hi there.

I tried putting it to the basics (1 stick of Ram, CPU, PSU, Video Card) and it loaded text mainly telling me there was no bootable interface. When I plug in the SATA DVD drive and my IDE Hard drives, it's stuck at the splash screen like before.

The mobo is DQ965GF and the CPU is Intel Core2Duo the vid card is Radeon HD2900 XT and the PSU is 750W.

I built it from parts my friend gave me that are in working condition (and bought the PSU and SATA DVD drive)

I've been reading forums all over the place and asked some friends for help but I don't really know what the issue is.

When I get to the splash page, it says Press F2 for bios, but that doesn't respond nor do any other key presses they just beep if you press one too many times.

Let me know if there's any additional info necessary.

Hopefully someone can help?

Thanks

Hardware / Taking apart keyboard

« on: November 20, 2010, 12:50:26 AM »

[quote name='guestolo' date='09 November 2010 - 08:01 PM' timestamp='1289350878' post='472912']
Is this an 8 dollar keyboard your trying to fix?
Is it worth the hassle?
[/quote]

Well I guess I knew you'd say that. I was just trying to justify the time I put into it, thinking of it as a learning experience.
Since you can't help, pawn shop time.

Hardware / Taking apart keyboard

« on: November 07, 2010, 10:06:56 PM »

Bump?

Hardware / Taking apart keyboard

« on: October 28, 2010, 09:21:23 PM »

So I took apart the keyboard to clean it, but because I disconnected the cable and the chip, I dont know how the chip is supposed to fit between the flexible circuit boards and the keyboard was unresponsive when I plugged it in. Does anyone have any experience with this type of keyboard?

EDIT: I opened it up again and instead of putting the chip between the two circuit boards, I put it under both. Now the keyboard lights up when I plug it in, but it still doesn't work :S

http://www.directron.com/kbd-mit-ps2.html

That is a link to the exact keyboard.

PS. I just unscrewed the sides of my other keyboard and now I am finding it impossible to type rapidly as I used to before I took it apart two seconds ago. What might have happened? How can I fix it?

EDIT: So I unscrewed it again and messed around with the mat that has those little rubbery pads and it seems to have pretty much resolved the issue. I am getting occasional lag as I type though...

Thanks.

Tech Clinic / MSN account information stolen

« on: April 04, 2008, 01:57:13 PM »

sigh that's what I was talking about. I went on the site and all it does is show a loading sign and I don't get anything. I dont know what to do anymore

Tech Clinic / MSN account information stolen

« on: April 03, 2008, 07:48:58 PM »

Well the MSN website is a piece of crap, and regardless of which computer I go on, I can't seem to access a place where to change my password. Anyway, I posted the log. there are a couple things on there that I think I would get rid of but what do I know.
Thanks for taking a look at my problem and replying to this post.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:05:16 PM, on 4/3/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\ehome\ehSched.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Windows Live\Messenger\msnmsgr.exe
D:\Program Files\Windows Live\Messenger\usnsvc.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [ehTray] D:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-839522115-1343024091-842925246-501\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe (User 'Guest')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-21-839522115-1343024091-842925246-501 Startup: OpenOffice.org 2.3.lnk = D:\Program Files\OpenOffice.org 2.3\program\quickstart.exe (User 'Guest')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Startup: OpenOffice.org 2.3.lnk = D:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1200795055115
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/software/...tiveXPlugin.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe

--
End of file - 5017 bytes

Tech Clinic / MSN account information stolen

« on: April 01, 2008, 10:05:38 PM »

Hello,
this question may potentially have been posed, if so, I apologize,
the problem is my account password was stolen and while I'm using the program, I get logged out and notified that my account has logged on on another computer. It's some form of spamming thing that takes over my account and spams my contacts
it's been going on on other people's msn's for a long while so it's probably well known.

will it solve my problem if I simply change my password?

Pages: [1] 2 3 ... 5

TheTechGuide Forum

News:

Show Posts

Messages - Aidan

Tech Clinic / Facebook not working

Tech Clinic / Facebook not working

Tech Clinic / Facebook not working

Tech Clinic / HijackThis Log (file missing)

Tech Clinic / Appcrash in everything

Tech Clinic / Appcrash in everything

Tech Clinic / Appcrash in everything

Tech Clinic / Appcrash in everything

Tech Clinic / Appcrash in everything

Tech Clinic / Appcrash in everything

Tech Clinic / Appcrash in everything

Hardware / Stuck at Intel Splash Screen

Hardware / Stuck at Intel Splash Screen

Hardware / Stuck at Intel Splash Screen

Hardware / Taking apart keyboard

Hardware / Taking apart keyboard

Hardware / Taking apart keyboard

Tech Clinic / MSN account information stolen

Tech Clinic / MSN account information stolen

Tech Clinic / MSN account information stolen