Go Back   Cyber Tech Help Support Forums > Software > Malware Removal

Notices

Reply
 
Topic Tools
  #1  
Old January 8th, 2013, 03:05 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
Exclamation Adobe flash player issues - moved by Jintan

Just recently i cannot view any video on the net or play games that require Flash player. Every time we try and watrch or play something it tells us we need the latest version of flash player to view or play. I have it! So i am not sure what is going on. i have uninstalled and re-installed and every time it is the same thing. Anyone else have tis problem? How do i fix it?
Reply With Quote


  #2  
Old January 8th, 2013, 11:08 AM
johnsonmaddy johnsonmaddy is offline
New Member
 
Join Date: Jan 2013
Posts: 7
hi....friend

Had same problem, searched following link http://helpx.adobe.com/flash-player/...s-video-or.htm l which advised "Disable ActiveX Filtering, did this and installed Flashplayer & it now works on my laptop.
Reply With Quote
  #3  
Old January 9th, 2013, 01:42 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
Johnsonmaddy tried this already but done it again anyways still cannot watch anything that requires Flash player. Thanks for responding and trying to help. Oh and your link you offered was broken it said.
Reply With Quote
  #4  
Old January 10th, 2013, 02:05 AM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 51,967
Download the Flash Player uninstaller to your desktop. Temp disable all security programs then run the uninstaller (Vista/Win7 & 8, right click the file - Run as administrator).

When it's done reboot, then go here and install the latest version of Flash Player.
Reply With Quote
  #5  
Old January 12th, 2013, 01:34 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
Jintan followed your directions and I still cannot play anything that requires Flash player. I dont understand what has happened to cause this. Also dont understand why i am having this kind of trouble.
Reply With Quote
  #6  
Old January 12th, 2013, 01:38 AM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 51,967
Let's take a more detailed look.


If the system is Vista/Windows7, when running any of the scan files we use, be sure to right click the file, then select "Run as administrator" to start the scan/tool.

And To make sure you have an accurate view of files there, make sure you can View Hidden Files. Also uncheck "Hide Extensions for Known File Types"


To keep them from interfering with the repairs, be sure to temporarily disable all antivirus/anti-spyware softwares while these steps are being completed. This can usually be done through right clicking the software's Taskbar icons, or accessing each software through Start - Programs. Here are some antivirus disable tips if needed.

-------

Click here and download OldTimer's OTL to your desktop, then click that to open the scan display. At the top click "Scan All Users", then click "Run Scan". Make no other changes at this time.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are also saved in the same location as OTL.exe. Post the contents of those back here please.
Reply With Quote
  #7  
Old January 12th, 2013, 02:43 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
Ok. I have done as you instructed. Here is the first file.

OTL Extras logfile created on: 1/11/2013 7:28:58 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ryherd computer\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

5.00 Gb Total Physical Memory | 3.06 Gb Available Physical Memory | 61.25% Memory free
10.21 Gb Paging File | 7.94 Gb Available in Paging File | 77.79% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 284.05 Gb Total Space | 89.17 Gb Free Space | 31.39% Space Free | Partition Type: NTFS
Drive D: | 14.03 Gb Total Space | 1.93 Gb Free Space | 13.74% Space Free | Partition Type: NTFS

Computer Name: RYHERDCOMPUTER | User Name: Ryherd computer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\SysWow64\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\SysWow64\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
"VistaSp2" = 5A 25 8E 73 89 74 CA 01 [binary data]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

========== Firewall Settings ==========

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\Firewall Rules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\Firewall Rules]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall]
"{034F8C89-C4F4-4731-A32B-F4294C04729F}" = HP Photosmart All-In-One Software 9.0
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{11953C65-BB4E-4CA4-B0F0-2600A4B20040}" = Picture Control Utility x64
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417010FF}" = Java 7 Update 10 (64-bit)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{41BC9E31-0D39-462E-8E4C-767B21A3B1C3}" = MobileMe Control Panel
"{4FFA2088-8317-3B14-93CD-4C699DB37843}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{635BE602-BB9C-4C59-8CC5-93F9366E8A21}" = ViewNX 2
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP)
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 310.70
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 310.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 310.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 310.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{B8AD779A-82DA-4365-A7D0-AD3DCFC55CFF}" = Apple Mobile Device Support
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF8FFD12-602B-422D-AF1D-511B411E7632}" = iTunes
"{D1829BE5-F305-4576-9593-C66FC7E0B008}" = iCloud
"{D2F7994F-661E-46D1-A1DF-67F2887AAA7E}" = HP MediaSmart SmartMenu
"{D4A6E342-907C-4CEF-96CC-FC2F4990DC9C}" = AVSDK5
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"HPOCR" = HP OCR Software 9.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Drivers" = NVIDIA Drivers
"PC-Doctor for Windows" = Hardware Diagnostic Tools

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall]
"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{08F173A8-AB81-4760-AEB0-CE91F3B05AEF}" = Activision(R)
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{154A4184-1A3D-4BF9-A5AE-4FA1660445F3}" = HP Total Care Advisor
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1DCCD871-51D4-46FF-9E3D-1314570813BD}" = Trains Complete Collection
"{1E99F5D7-4262-4C7C-9135-F066E7485811}" = System Requirements Lab
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217010FF}" = Java 7 Update 10
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2E497885-E60B-420A-832D-0148B392E058}_is1" = Qwiklinx
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{38058455-8C21-4C2F-B2F6-14ED166039CB}" = HP Total Care Setup
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{40C4903E-EDFB-4CAE-A611-41FEBA585921}" = VTech Download Agent Library
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{55FD1D5A-7AEF-4DA3-8FAF-A71B2A52FFC7}_is1" = iolo technologies' System Mechanic
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5BD0CB24-11AF-4BA8-A198-38D25257C656}" = LightScribe Template Labeler
"{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}" = Nikon Movie Editor
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{6423EF83-6E1D-4D22-A36F-689CD19FD4D2}" = Juno Preloader
"{64B9E2F5-558E-4C56-B419-A1679518F6E7}" = HP Customer Experience Enhancements
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{6B976ADF-8AE8-434E-B282-A06C7F624D2F}" = Python 2.5.2
"{6D87CAD9-9B94-4421-A439-B25F8DE14575}" = Tom Clancy's Ghost Recon Future Soldier
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{730837D4-FF5E-48DB-BA49-33E732DFF0B3}" = PanoStandAlone
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{882362E0-C71A-411B-B16F-46D1B66E1890}_is1" = iolo technologies' System Shield
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype(TM)
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{9E1BAB75-EB78-440D-94C0-A3857BE2E733}" = System Requirements Lab
"{A0640EC2-B97E-4FC1-AD14-227C9E386BB4}" = HP Recovery Manager RSS
"{A1644527-B0FF-485B-8412-3C7504A2F188}" = Quantum of Solace(TM) 1.1 Patch
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.2
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AEDDF5A3-29CE-11D5-A8C2-000102246AAE}" = ubi.com
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B014EE44-9197-4513-9613-71E6EB1B514E}" = Nikon Message Center 2
"{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"{B34E4B72-37C6-4f79-A5B3-008EEFC6EA8B}" = PS_AIO_02_Software_min
"{B7E5D642-E74E-40a4-B5C7-6AB6EE916814}" = PS_AIO_02_ProductContext
"{BAFFEF7F-08B3-45b3-B215-418175C4E9DD}" = c5200_Help
"{BC10649A-983B-494e-AD1F-DE0BF717D701}" = PS_AIO_02_Software
"{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}" = PlayStation(R)Network Downloader
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C708333C-B1B9-43be-B797-49FEC7A8D15B}" = C5200
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}" = HP Active Support Library
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D1E03284-66FD-4292-8239-504CEC5B0CC3}" = C5200_doccd
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D722CF4B-4B06-BF11-FDEA-BD1B319FEA57}" = muvee Reveal
"{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}" = ArcSoft Panorama Maker 6
"{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{EEEB604C-C1A7-4f8c-B03F-56F9C1C9C45F}" = Fax
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{EFE3D683-903C-4B58-AB8F-C68C69F33758}" = System Requirements Lab for Intel
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F11ADC64-C89E-47F4-A0B3-3665FF859397}" = World in Conflict
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2AF3E5D-9697-485C-A5AC-E2B9468C446A}" = Safari
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FD71E2F7-B9FC-4072-88DB-AC19E2464D82}" = LightScribe System Software
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"510005538" = Oddly Enough - Pied Piper
"510007387" = Amusement World!
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Battlelog Web Plugins" = Battlelog Web Plugins
"ESN Sonar-0.70.4" = ESN Sonar
"GameSpy Arcade" = GameSpy Arcade
"HP Photo Creations" = HP Photo Creations
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA Performance
"InstallShield_{A1644527-B0FF-485B-8412-3C7504A2F188}" = Quantum of Solace(TM) 1.1 Patch
"InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}" = NVIDIA System Monitor
"Internet Helper Anti-phishing" = Internet Helper Anti-phishing
"iWinArcade" = iWin Games (remove only)
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Origin" = Origin
"Steam App 24010" = Train Simulator 2013
"SystemRequirementsLab" = System Requirements Lab
"TomTom HOME" = TomTom HOME 2.8.1.2218
"VTechDownloadManager" = Learning Lodge Navigator
"WinLiveSuite" = Windows Live Essentials
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! NanoClient" = Yahoo! Axis
"Yahoo! Software Update" = Yahoo! Software Update

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall]
"359749077.www1.movie-promo.com" = PNY Movie Player
"Arcadesafari" = Arcadesafari
"FoxTab FLV Player" = FoxTab FLV Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1/8/2013 6:26:13 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/8/2013 6:46:20 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/8/2013 8:02:01 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/9/2013 8:31:09 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/10/2013 11:34:08 AM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/10/2013 12:17:49 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/10/2013 6:26:32 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/11/2013 5:54:01 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/11/2013 8:05:22 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

Error - 1/11/2013 8:25:34 PM | Computer Name = Ryherdcomputer | Source = WinMgmt | ID = 10
Description =

[ iolo Applications Events ]
Error - 8/7/2012 5:24:36 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/7/2012 5:24:46 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/7/2012 5:24:46 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/7/2012 5:24:46 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/7/2012 5:24:46 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/7/2012 7:17:50 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/7/2012 7:17:50 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 8/26/2012 1:05:45 AM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 11
Description = The definition downloading job failed. Job name: Defs update Error
code: -2147012867

Error - 12/1/2012 6:08:32 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

Error - 12/1/2012 6:08:32 PM | Computer Name = Ryherdcomputer | Source = System Shield | ID = 12
Description = Failed to initialize AV engine. Error message: Unspecified error

[ Media Center Events ]
Error - 10/1/2009 7:29:34 PM | Computer Name = Ryherdcomputer | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 10/7/2009 6:50:43 PM | Computer Name = Ryherdcomputer | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 7/7/2011 3:53:44 PM | Computer Name = Ryherdcomputer | Source = Mcx2Dvcs | ID = 401
Description =

Error - 7/15/2011 7:19:05 PM | Computer Name = Ryherdcomputer | Source = McrMgr | ID = 112
Description =

Error - 12/4/2012 7:42:42 PM | Computer Name = Ryherdcomputer | Source = McrMgr | ID = 109
Description =

[ System Events ]
Error - 1/11/2013 8:05:23 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7000
Description =

Error - 1/11/2013 8:05:23 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7003
Description =

Error - 1/11/2013 8:05:23 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7022
Description =

Error - 1/11/2013 8:05:23 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7026
Description =

Error - 1/11/2013 8:25:35 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7023
Description =

Error - 1/11/2013 8:25:35 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7003
Description =

Error - 1/11/2013 8:25:35 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7000
Description =

Error - 1/11/2013 8:25:35 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7003
Description =

Error - 1/11/2013 8:25:35 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7022
Description =

Error - 1/11/2013 8:25:35 PM | Computer Name = Ryherdcomputer | Source = Service Control Manager | ID = 7026
Description =


< End of report >
Reply With Quote
  #8  
Old January 12th, 2013, 02:48 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
I have to post this in two sections it gives me this eror when i try and post it. "The text that you have entered is too long (62353 characters). Please shorten it to 50000 characters long."


OTL logfile created on: 1/11/2013 7:28:58 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ryherd computer\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

5.00 Gb Total Physical Memory | 3.06 Gb Available Physical Memory | 61.25% Memory free
10.21 Gb Paging File | 7.94 Gb Available in Paging File | 77.79% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 284.05 Gb Total Space | 89.17 Gb Free Space | 31.39% Space Free | Partition Type: NTFS
Drive D: | 14.03 Gb Total Space | 1.93 Gb Free Space | 13.74% Space Free | Partition Type: NTFS

Computer Name: RYHERDCOMPUTER | User Name: Ryherd computer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/11 19:27:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ryherd computer\Desktop\OTL.exe
PRC - [2012/12/07 00:02:04 | 001,001,144 | ---- | M] (iolo technologies, LLC) -- C:\Program Files (x86)\iolo\System Mechanic\SystemGuardAlerter.exe
PRC - [2012/12/06 23:40:38 | 001,053,184 | ---- | M] (iolo technologies, LLC) -- C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
PRC - [2012/12/03 09:47:14 | 001,259,880 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/11/30 22:43:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/10/27 19:42:26 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/10/26 12:13:58 | 000,222,856 | ---- | M] (Internet Helper (Powered by Panda Security)) -- C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe
PRC - [2012/07/27 14:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/05/23 08:27:08 | 000,157,016 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\YNanoClient\cpn0\YNanoService.exe
PRC - [2011/06/21 06:50:22 | 000,922,800 | ---- | M] (iolo technologies, LLC) -- C:\Program Files (x86)\iolo\System Shield\ioloSSTray.exe
PRC - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\msco rsvw.exe
PRC - [2008/11/03 17:21:18 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/11/03 17:21:16 | 000,182,808 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - [2011/01/21 11:37:44 | 000,179,008 | ---- | M] (Authentium, Inc) [On_Demand | Stopped] -- C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe -- (vseqrts)
SRV:64bit: - [2011/01/21 11:37:40 | 000,119,104 | R--- | M] (Authentium, Inc) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe -- (vsedsps)
SRV:64bit: - [2011/01/21 11:37:32 | 000,121,152 | R--- | M] (Authentium, Inc) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe -- (vseamps)
SRV - [2013/01/11 18:30:27 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/24 21:54:24 | 000,541,168 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/12/06 23:40:38 | 001,053,184 | ---- | M] (iolo technologies, LLC) [Auto | Running] -- C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe -- (ioloSystemService)
SRV - [2012/12/06 23:40:38 | 001,053,184 | ---- | M] (iolo technologies, LLC) [Auto | Stopped] -- C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe -- (ioloFileInfoList)
SRV - [2012/12/03 09:47:14 | 001,259,880 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/11/30 22:43:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/10/27 19:42:26 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/07/27 14:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/05/23 08:27:08 | 000,157,016 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\YNanoClient\cpn0\YNanoService.exe -- (YNanoService)
SRV - [2011/04/08 09:17:40 | 000,176,848 | ---- | M] (iWin Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\iWin Games\iWinTrusted.exe -- (iWinTrusted)
SRV - [2011/03/09 06:30:08 | 000,092,592 | ---- | M] (TomTom) [Disabled | Stopped] -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\msco rsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/11/06 13:13:20 | 000,276,584 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2009/03/29 22:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/11/09 14:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/11/03 17:21:18 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
SRV - [2008/02/03 13:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\SysWOW64\ezsvc7.dll -- (ezSharedSvc)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/07/24 09:52:16 | 000,082,160 | ---- | M] (Raxco Software, Inc.) [File_System | Auto | Running] -- C:\Windows\SysNative\DRIVERS\PDFsFilter.sys -- (PDFsFilter)
DRV:64bit: - [2012/07/03 09:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/02/29 07:52:46 | 000,016,384 | ---- | M] (Microsoft Corporation) [Recognizer | System | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/15 10:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/01/21 11:45:28 | 000,173,376 | R--- | M] (Authentium, Inc) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\amp.sys -- (AMP)
DRV:64bit: - [2011/01/21 11:45:26 | 001,465,664 | R--- | M] (Authentium, Inc) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\ampse.sys -- (AMPSE)
DRV:64bit: - [2010/02/10 11:46:22 | 000,035,840 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BVRPMPR5a64.SYS -- (BVRPMPR5a64)
DRV:64bit: - [2010/01/30 19:11:38 | 000,311,968 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\atksgt.sys -- (atksgt)
DRV:64bit: - [2010/01/30 19:11:38 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2009/11/11 18:24:14 | 000,023,464 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\elrawdsk.sys -- (ElRawDisk)
DRV:64bit: - [2009/09/30 18:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2009/09/15 13:59:30 | 000,042,088 | ---- | M] (NVIDIA Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\nvoclk64.sys -- (nvoclk64)
DRV:64bit: - [2009/09/02 03:09:34 | 000,221,696 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/04/11 22:06:35 | 000,018,984 | -H-- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CrucialSMBusScan.sys -- (CrucialSMBusScan)
DRV:64bit: - [2009/04/08 13:28:46 | 000,068,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\xusb21.sys -- (xusb21)
DRV:64bit: - [2008/12/04 20:48:52 | 000,407,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iastor.sys -- (iaStor)
DRV:64bit: - [2008/08/21 22:50:32 | 000,019,456 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\motccgp.sys -- (motccgp)
DRV:64bit: - [2008/08/21 22:50:02 | 000,009,216 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\motccgpfl.sys -- (motccgpfl)
DRV:64bit: - [2008/07/21 17:34:42 | 000,147,984 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\kl1.sys -- (kl1)
DRV:64bit: - [2008/01/20 20:47:27 | 000,903,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\xnacc.sys -- (xnacc)
DRV:64bit: - [2007/06/20 18:57:40 | 000,029,184 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\motport.sys -- (motport)
DRV:64bit: - [2007/06/20 18:57:36 | 000,029,184 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\motmodem.sys -- (motmodem)
DRV - [2011/06/02 10:08:34 | 000,017,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys -- (cpudrv64)
DRV - [2008/10/21 15:42:54 | 000,146,928 | ---- | M] (CyberLink Corp.) [2009/04/05 19:49:25] [Kernel | Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl -- ({55662437-DA8C-40c0-AADA-2C816A897A49})


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TY...vilion&pf=cndt
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TY...vilion&pf=cndt
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {409CA516-B7B2-4DA8-A6CE-13FAE68AF52B}
IE:64bit: - HKLM\..\SearchScopes\{0115282A-E31D-4432-983E-5B153A84BD87}: "URL" = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpd
IE:64bit: - HKLM\..\SearchScopes\{409CA516-B7B2-4DA8-A6CE-13FAE68AF52B}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&FORM=HPDTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TY...vilion&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TY...vilion&pf=cndt
IE - HKLM\..\URLSearchHook: {035FDC10-9F1D-430E-87DA-573FFBF5608D} - C:\Program Files (x86)\Yahoo!\YNanoClient\cpn0\YNanoClient_IE.dll (Yahoo! Inc.)
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0115282A-E31D-4432-983E-5B153A84BD87}: "URL" = http://www.ask.com/web?q={searchterms}&l=dis&o=ushpd
IE - HKLM\..\SearchScopes\{409CA516-B7B2-4DA8-A6CE-13FAE68AF52B}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&FORM=HPDTDF
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&cti d=CT2559647


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVer sion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Inter net Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie9
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.yahoo.com/
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\URLSearchHook: {1930e38a-deef-4cf4-9bfb-9c4ea3689a9d} - No CLSID value found
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - No CLSID value found
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes,DefaultScope = {D4CA06F9-1179-49B7-BEAD-87F264C2AFAC}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{066836D7-D900-4217-A80A-DAAB8B02C99B}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=FAS&o=APN10411&src=kw&q={sea rchTerms}&locale=en_US&apn_ptnrs=^AIM&apn_dtid=^zz z003^YY^US&apn_uid=da59fe93-c389-41e0-a9fa-1446f13a13c4&apn_sauid=31EBD2C4-B6F8-4EF0-9CFF-5EA3F6C6868E
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{409CA516-B7B2-4DA8-A6CE-13FAE68AF52B}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=HPDTDF&pc=HPDTDF&src=I E-SearchBox
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{595BB385-F26B-485A-A115-047CBC042FFC}: "URL" = http://delicious.com/search?p={searchTerms}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{63140ECF-C629-BE59-8F0E-90B4FF340C03}: "URL" = http://www.bing.com/search?q={searchTerms}&pc=Z128&form=ZGAIDF&install _date=20111008&iesrc={referrer:source}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{759EB5DA-26BF-4F4B-B54C-9090F0775738}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=chr-yie8
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{76462EB4-4465-4E74-8EF2-ACAD29B9635A}: "URL" = http://search.yahoo.com/?ourmark=4&p={searchTerms}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{8E02D41C-5924-4816-9490-33CCD28BEB72}: "URL" = http://search.avg.com/route/?d=4b3d2cf0&i=23&tp=chrome&q={searchTerms}&lng={la nguage}&ychte=us&nt=1
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={CD6F0306-1136-4F23-8D42-5AF4330DFC3C}&mid=4d82e249a36d81be0b22b40d2ddddc7f-3bfa0d2ef1ab00f2f82ae512a9fa970bf2107b3e&lang=en&d s=AVG&pr=fr&d=2011-09-22 22:06:30&v=8.0.0.34&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}: "URL" = http://www.ask.com/web?l=dis&o=APN10022&gct=sb&qsrc=2869&apn_dtid=^YY YYYY^YY^US&apn_ptnrs=^A4D&apn_uid=8106220799304732 &p2=^A4D^YYYYYY^YY^US&q={searchTerms}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}: "URL" = http://www2.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=82186 &iwk=235&lng=en
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{C7A2423E-C47B-4337-ADB4-A161CA0FE04D}: "URL" = http://rover.ebay.com/rover/1/711-43047-14818-1/4?satitle={searchTerms}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{D468A433-2A5B-4BC3-AB28-4618CCB5614C}: "URL" = http://www.flickr.com/search/?q={searchTerms}
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{D4CA06F9-1179-49B7-BEAD-87F264C2AFAC}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=chr-yie9
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\SearchScopes\{DEFAFE8C-3353-4212-9841-C9A911DA9758}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&cti d=CT3247201
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TY...vilion&pf=cndt
IE - HKU\S-1-5-21-3637460246-2628246424-1422670496-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TY...vilion&pf=cndt


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.102.0: File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.116.0: File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.138.0: File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.2: C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@oberon-media.com/ONCAdapter: C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll (Oberon-Media )
FF - HKLM\Software\MozillaPlugins\@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5: C:\ProgramData\Visan\plugins\npRLSecurePluginLayer .dll (RocketLife, LLP)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.129\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.129\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensi ons\\module@com.arcadesafari.firefox: C:\Users\Ryherd computer\AppData\Local\Arcadesafari\module@com.arc adesafari.firefox [2013/01/04 17:11:55 | 000,000,000 | ---D | M]

[2011/09/16 09:52:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ryherd computer\AppData\Roaming\Mozilla\Extensions
[2009/12/25 21:22:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ryherd computer\AppData\Roaming\Mozilla\Extensions\home2@ tomtom.com

========== Chrome ==========

CHR - Extension: No name found = C:\Users\Ryherd computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmeemomfelpigklppifflheakf pkfjjg\

O1 HOSTS File: ([2006/09/18 15:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Yahoo! Axis for IE) - {035FDC10-9F1D-430E-87DA-573FFBF5608D} - C:\Program Files (x86)\Yahoo!\YNanoClient\cpn0\YNanoClient_IE.dll (Yahoo! Inc.)
O2 - BHO: (Qwiklinx) - {3E7C8B5A-96AB-438F-BF9B-782400655440} - C:\Users\Ryherd computer\AppData\Roaming\Qwiklinx\Qwiklinx.dll (Qwiklinx, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {D1ECD019-8423-43de-98D1-7892AF2DA309} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {F9E44926-2497-46F3-8A25-928136AC079E} - No CLSID value found.
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\YTSingleInsta nce.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Axis for IE) - {035FDC10-9F1D-430E-87DA-573FFBF5608D} - C:\Program Files (x86)\Yahoo!\YNanoClient\cpn0\YNanoClient_IE.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\Toolbar\WebBrowser: (no name) - {1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D} - No CLSID value found.
O3 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O3 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\Toolbar\WebBrowser: (no name) - {D0523BB4-21E7-11DD-9AB7-415B56D89593} - No CLSID value found.
O3 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..\Toolbar\WebBrowser: (no name) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No CLSID value found.
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [Internet Helper Anti-phishing] C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe (Internet Helper (Powered by Panda Security))
O4 - HKLM..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\SysWow64\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\SysWow64\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoActiveDesktopChanges = 1
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\iavlsp64.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\iavlsp64.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - C:\Windows\SysNative\iavlsp64.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\iavlsp.dll (iolo technologies, LLC)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\iavlsp.dll (iolo technologies, LLC)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\SysWow64\iavlsp.dll (iolo technologies, LLC)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Ranges: Range1 ([http] in Local intranet)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Ranges: Range1 ([http] in Local intranet)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1000\..Trusted Ranges: Range1 ([http] in Local intranet)
O15 - HKU\S-1-5-21-3637460246-2628246424-1422670496-1003\..Trusted Ranges: Range1 ([http] in )
O16:64bit: - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsu...?1296271189307 (WUWebControl Class)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} http://content.systemrequirementslab...i_4.1.71.0.cab (SysInfo Class)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.systemrequirementslab.com...reqlab_srl.cab (Reg Error: Key error.)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/Driver...reqlab_nvd.cab (Reg Error: Key error.)
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} http://www.fileplanet.com/fpdlmgr/ca...2.3.10.115.cab (Reg Error: Key error.)
O16 - DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} http://srtest-cdn.systemrequirements...qlabdetect.cab (Reg Error: Key error.)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanage...ex-2.2.5.0.cab (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/reso...an8/oscan8.cab (Reg Error: Key error.)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/res...scbase1140.cab (Reg Error: Key error.)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn...Detection2.cab (GMNRev Class)
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/st...r_4.0.27.0.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Reg Error: Value error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get.../ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupdate.microsoft.co...148.6912268519 (Update Class)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 10.10.2)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab...el_4.5.3.0.cab (SysInfo Class)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://aolsvc.aol.com/onlinegames/be...loader_v10.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab...ri_4.5.1.0.cab (SysInfo Class)
O16 - DPF: {FFD85DC8-5261-4D11-B728-F7C59D911691} http://www.iolo.com/app/ocx/UpgradeVerify.cab (Reg Error: Key error.)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/...nAxControl.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfac es\{84C67A20-899F-4D95-83B4-FD57E023878B}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Ryherd computer\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Ryherd computer\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3a735644-6236-11e0-b59e-00248c6c948a}\Shell - "" = AutoRun
O33 - MountPoints2\{3a735644-6236-11e0-b59e-00248c6c948a}\Shell\AutoRun\command - "" = K:\LaunchU3.exe -a
O33 - MountPoints2\{695ee4e8-f996-11e0-9bcd-00248c6c948a}\Shell - "" = AutoRun
O33 - MountPoints2\{695ee4e8-f996-11e0-9bcd-00248c6c948a}\Shell\AutoRun\command - "" = J:\TLBootstrap_WPP.exe
O33 - MountPoints2\{695ee4e9-f996-11e0-9bcd-00248c6c948a}\Shell - "" = AutoRun
O33 - MountPoints2\{695ee4e9-f996-11e0-9bcd-00248c6c948a}\Shell\AutoRun\command - "" = K:\TLBootstrap_WPP.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
Reply With Quote
  #9  
Old January 12th, 2013, 02:49 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
Here is the last part of it.

========== Files/Folders - Created Within 30 Days ==========

[2013/01/11 19:27:33 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Ryherd computer\Desktop\OTL.exe
[2013/01/11 18:30:27 | 000,697,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/01/11 18:30:26 | 000,074,248 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/01/11 18:20:08 | 000,699,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\Ryherd computer\Desktop\uninstall_flash_player.exe
[2013/01/10 10:10:54 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\HeadRightGames
[2013/01/09 18:42:05 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013/01/09 18:41:37 | 000,456,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
[2013/01/07 19:43:24 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\SpeedyPC Software
[2013/01/07 19:43:15 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2013/01/04 17:15:32 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\GO Games
[2013/01/04 17:14:14 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games of the Month
[2013/01/04 17:13:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Oberon Media SIDR
[2013/01/04 17:13:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Oberon Media
[2013/01/04 17:11:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Media
[2013/01/04 17:11:55 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Arcadesafari
[2013/01/04 17:11:54 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Local\Arcadesafari
[2013/01/03 18:40:38 | 000,859,072 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/01/03 18:40:38 | 000,260,528 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/01/03 18:40:29 | 000,174,000 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/01/03 18:40:29 | 000,173,992 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/01/03 18:40:29 | 000,095,184 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/01/03 18:38:39 | 001,081,320 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll
[2013/01/03 18:38:39 | 000,959,976 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2013/01/03 18:38:39 | 000,308,200 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2013/01/03 18:38:31 | 000,188,392 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2013/01/03 18:38:31 | 000,188,392 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2013/01/03 18:38:31 | 000,108,008 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2013/01/03 18:36:57 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013/01/02 17:29:50 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\vlc
[2013/01/01 19:40:38 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Local\internethelper
[2013/01/01 19:40:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Internet Helper Anti-phishing
[2013/01/01 19:40:23 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\Documents\ShopToWin
[2013/01/01 19:39:34 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\Qwiklinx
[2013/01/01 19:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Qwiklinx
[2013/01/01 19:39:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HiDefMedia
[2013/01/01 19:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2013/01/01 19:39:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012/12/31 19:57:27 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\Malwarebytes
[2012/12/31 19:57:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/12/31 15:18:09 | 000,000,000 | -HSD | C] -- C:\Windows\SysNative\%APPDATA%
[2012/12/24 21:48:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2012/12/24 21:39:31 | 026,811,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/12/24 21:39:31 | 020,335,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/12/24 21:39:31 | 015,016,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012/12/24 21:39:31 | 009,271,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/12/24 21:39:31 | 007,446,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/12/24 21:39:31 | 006,149,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/12/24 21:39:31 | 002,606,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/12/24 21:39:31 | 001,874,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/12/24 21:39:30 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/12/24 21:39:30 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/12/24 21:39:30 | 007,819,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/12/24 21:39:30 | 002,784,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/12/24 21:39:30 | 002,496,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012/12/24 21:39:30 | 002,226,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/12/20 17:26:37 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/20 17:26:37 | 000,048,128 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/20 17:26:37 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/20 17:26:36 | 000,293,376 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/17 23:17:15 | 000,000,000 | ---D | C] -- C:\Users\Ryherd computer\AppData\Roaming\Casual Arts
[2012/12/17 23:17:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Casual Arts
[2012/12/17 23:11:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Ask
[8 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/01/11 19:27:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ryherd computer\Desktop\OTL.exe
[2013/01/11 19:20:00 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/11 19:17:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/11 19:14:59 | 000,000,524 | ---- | M] () -- C:\Windows\tasks\Arcadesafari.job
[2013/01/11 19:00:00 | 000,000,358 | ---- | M] () -- C:\Windows\tasks\HP Photo Creations Communicator.job
[2013/01/11 18:30:52 | 000,703,516 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/11 18:30:52 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/11 18:30:52 | 000,104,202 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/01/11 18:30:27 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/01/11 18:30:26 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/01/11 18:25:49 | 000,000,408 | ---- | M] () -- C:\Windows\SysWow64\iolo.ini
[2013/01/11 18:25:49 | 000,000,408 | ---- | M] () -- C:\Windows\SysNative\iolo.ini
[2013/01/11 18:24:29 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/11 18:24:24 | 000,000,440 | ---- | M] () -- C:\Windows\tasks\PCConfidential.job
[2013/01/11 18:23:52 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/11 18:23:52 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/11 18:23:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/11 18:20:08 | 000,699,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Users\Ryherd computer\Desktop\uninstall_flash_player.exe
[2013/01/10 10:17:20 | 000,311,344 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/10 10:10:03 | 000,002,339 | ---- | M] () -- C:\Users\Ryherd computer\Desktop\Amusement World!.lnk
[2013/01/07 19:48:17 | 000,001,910 | ---- | M] () -- C:\Users\Public\Desktop\ViewNX 2.lnk
[2013/01/07 18:21:19 | 000,281,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2013/01/07 18:21:19 | 000,281,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013/01/05 20:49:59 | 000,298,032 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2013/01/04 17:14:14 | 000,002,233 | ---- | M] () -- C:\Users\Ryherd computer\Desktop\Oddly Enough - Pied Piper.lnk
[2013/01/04 17:13:57 | 000,001,172 | ---- | M] () -- C:\Users\Ryherd computer\Desktop\Games of the Month.lnk
[2013/01/03 18:39:39 | 000,095,184 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/01/03 18:39:38 | 000,260,528 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/01/03 18:39:38 | 000,174,000 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/01/03 18:39:38 | 000,173,992 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/01/03 18:39:37 | 000,859,072 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/01/03 18:39:36 | 000,779,704 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013/01/03 18:37:02 | 000,108,008 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2013/01/03 18:37:01 | 001,081,320 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll
[2013/01/03 18:37:01 | 000,959,976 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2013/01/03 18:37:01 | 000,308,200 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2013/01/03 18:37:01 | 000,188,392 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2013/01/03 18:37:01 | 000,188,392 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2013/01/01 19:39:15 | 000,000,009 | ---- | M] () -- C:\END
[2013/01/01 17:13:26 | 000,397,635 | ---- | M] () -- C:\Users\Ryherd computer\Desktop\DSCN0477.JPG
[2013/01/01 17:13:15 | 000,580,967 | ---- | M] () -- C:\Users\Ryherd computer\Desktop\DSCN0481.JPG
[2012/12/16 07:31:20 | 000,048,128 | ---- | M] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/16 07:12:54 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/16 05:08:21 | 000,368,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/16 04:50:29 | 000,293,376 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/15 18:05:56 | 000,001,927 | ---- | M] () -- C:\Users\Ryherd computer\Desktop\System Mechanic.lnk
[8 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/11 18:30:27 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/10 10:10:03 | 000,002,339 | ---- | C] () -- C:\Users\Ryherd computer\Desktop\Amusement World!.lnk
[2013/01/05 17:43:27 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2013/01/04 17:14:14 | 000,002,233 | ---- | C] () -- C:\Users\Ryherd computer\Desktop\Oddly Enough - Pied Piper.lnk
[2013/01/04 17:13:57 | 000,001,172 | ---- | C] () -- C:\Users\Ryherd computer\Desktop\Games of the Month.lnk
[2013/01/04 17:11:55 | 000,000,524 | ---- | C] () -- C:\Windows\tasks\Arcadesafari.job
[2013/01/01 19:39:15 | 000,000,009 | ---- | C] () -- C:\END
[2013/01/01 17:11:52 | 000,397,635 | ---- | C] () -- C:\Users\Ryherd computer\Desktop\DSCN0477.JPG
[2013/01/01 17:11:03 | 000,580,967 | ---- | C] () -- C:\Users\Ryherd computer\Desktop\DSCN0481.JPG
[2012/12/24 21:39:30 | 000,014,446 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2012/12/02 10:59:26 | 000,000,408 | ---- | C] () -- C:\Windows\SysWow64\iolo.ini
[2012/11/10 18:06:06 | 000,000,581 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\cookies.ini
[2012/09/15 19:31:21 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Breath Pad
[2012/09/15 19:31:21 | 000,000,268 | RH-- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\Bass Amp
[2012/09/15 19:31:21 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLes.DAT
[2012/09/15 19:30:01 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Brother
[2012/09/15 19:30:01 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Booms
[2012/09/15 19:30:01 | 000,000,268 | RH-- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\Bass Reduction
[2012/09/15 19:30:01 | 000,000,268 | RH-- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\Bass
[2012/09/15 19:30:01 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLev.DAT
[2012/09/15 19:30:01 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLet.DAT
[2012/09/15 19:29:08 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Classic Thick
[2012/09/15 19:29:08 | 000,000,268 | RH-- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\Carbon
[2012/09/15 19:29:08 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLeo.DAT
[2012/07/24 18:47:00 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dat
[2012/05/31 23:14:01 | 003,233,712 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2011/12/20 19:55:31 | 000,019,529 | ---- | C] () -- C:\Windows\hpqins13.dat
[2011/10/30 15:15:04 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\{B32A849D-4CCE-47EC-B4F2-E5C595C8E026}
[2011/10/25 14:33:02 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\{67C961BF-0B3F-4E14-A155-D441BA29C152}
[2011/10/25 14:31:18 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\{8F6EE3AA-7348-4B68-BE37-45DE4D9C4ABE}
[2011/07/07 19:49:29 | 000,000,036 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\housecall.guid.cache
[2011/06/16 20:43:01 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\{99F121AE-1A5F-44CC-B93B-278330AD08FD}
[2011/06/10 08:21:55 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\{A485C579-0A45-4638-A0D7-AABD5CAAFC26}
[2011/04/09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/04/03 16:45:12 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2011/01/30 19:03:14 | 000,000,001 | ---- | C] () -- C:\Windows\SysWow64\SI.bin
[2011/01/05 17:37:16 | 000,000,732 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\d3d9caps64.dat
[2010/11/22 18:29:53 | 000,000,016 | ---- | C] () -- C:\Users\Ryherd computer\persistent_state
[2010/09/15 12:56:08 | 000,025,588 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\TempExtractedAudio.wav
[2010/07/23 21:46:09 | 000,000,099 | ---- | C] () -- C:\Users\Ryherd computer\jagex_runescape_preferences2.dat
[2010/07/23 21:46:09 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\jagex__preferences3.dat
[2010/07/23 21:44:55 | 000,000,046 | ---- | C] () -- C:\Users\Ryherd computer\jagex_runescape_preferences.dat
[2010/07/11 18:35:22 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\FileOut.cns
[2010/07/11 18:35:22 | 000,000,000 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\FileIn.cns
[2010/02/27 22:31:29 | 000,033,700 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\slot1.mm1
[2009/08/05 10:35:47 | 000,009,268 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\d3d9caps.dat
[2009/05/10 17:35:15 | 000,003,754 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\wklnhst.dat
[2009/04/06 18:29:29 | 000,000,036 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Roaming\TheHunterSettings.cfg
[2009/04/04 19:12:07 | 000,070,144 | ---- | C] () -- C:\Users\Ryherd computer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2012/12/31 15:13:35 | 000,002,048 | -HS- | M] () -- C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\@
[2012/12/31 15:13:35 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\L
[2012/12/31 20:14:46 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\U
[2012/12/31 15:13:53 | 000,014,848 | ---- | M] () -- C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\U\80000000.@
[2012/12/31 15:13:53 | 000,025,088 | ---- | M] () -- C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\U\800000cb.@
[2006/11/02 09:30:40 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\cls id\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-3637460246-2628246424-1422670496-1000\$5d5f60fb14dac9ff8c3b4afa4d16f05c\n.

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\cls id\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-3637460246-2628246424-1422670496-1000\$5d5f60fb14dac9ff8c3b4afa4d16f05c\n.

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc8 7-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 11:59:03 | 012,899,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\cl sid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 11:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA 9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\n.
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\cl sid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 00:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CD B-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2008/01/20 20:50:58 | 000,513,024 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\cl sid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Alternate Data Streams ==========

@Alternate Data Stream - 388 bytes -> C:\ProgramData\Temp478F292
@Alternate Data Stream - 378 bytes -> C:\ProgramData\Temp:430158A7
@Alternate Data Stream - 369 bytes -> C:\ProgramData\Temp:A27AB160
@Alternate Data Stream - 158 bytes -> C:\ProgramData\Temp:E0648389
@Alternate Data Stream - 155 bytes -> C:\ProgramData\Temp:260575F1
@Alternate Data Stream - 151 bytes -> C:\ProgramData\Temp:4673E9EA
@Alternate Data Stream - 149 bytes -> C:\ProgramData\Temp:123A86B5
@Alternate Data Stream - 147 bytes -> C:\ProgramData\Temp:ADE67221
@Alternate Data Stream - 147 bytes -> C:\ProgramData\Temp:9E76E7F3
@Alternate Data Stream - 147 bytes -> C:\ProgramData\Temp:1F26FB2D
@Alternate Data Stream - 147 bytes -> C:\ProgramData\Temp:1B7E2022
@Alternate Data Stream - 146 bytes -> C:\ProgramData\Temp:F5905B47
@Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:F5D81BA1
@Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:CEDA49F4
@Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:1807741D
@Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:0E22C5DB
@Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:0B210DD3
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TempDCFE2F8
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:72739815
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:501DF0E0
@Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:E7B4296D
@Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:A0339DEA
@Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp92DB12F
@Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp24572C7
@Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:147A3409
@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp2593961
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:F84B8DB5
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:CE17E459
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:7965CDCE
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:093F44E8
@Alternate Data Stream - 139 bytes -> C:\ProgramData\Temp:B501211D
@Alternate Data Stream - 139 bytes -> C:\ProgramData\Temp:0EC7A545
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TempB0AE21A
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:FF23EFF2
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:7FCB9D0D
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:425759C6
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:2495D97A
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:158AC5F5
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:6348AC97
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:61B54B15
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:1181620C
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:898109B4
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:737160C1
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:51EFAA18
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:F24AD862
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:78E0DF72
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:6017A808
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:5A2D0810
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:15606AA7
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:0D493D85
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:A93A1878
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:4C528C86
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:29058F8B
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:13AAA187
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:FED25C29
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:E428B9D4
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:8DED4A5E
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:7961507B
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:32A82570
@Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp055FC10
@Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:B66227B5
@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:6444B424
@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:157C8CAF
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:FECD2924
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:C3CB23B4
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:4BFE8B22
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:298B8F0F
@Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:E80802C7
@Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:8C8DBFC0
@Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:3D36932D
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:B35A4CE2
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:5FA4CB99
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:25BA2318
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TempB258930
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:86B6EFD4
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:5795E8B2
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:3D186293
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:AB7A26C6
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:74F3CA70
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:C72A744C
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:5C6EBC69
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:F10C2DA8
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:679E30C6
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:F1CD4718
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:ADE71A34
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:2B1EA607
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:0DAD93FF
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:A27E4050
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:6D3CAFDD
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:A0A9201B
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:7FC2D37B
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:3BA31186
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:30AF8E0D
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:2E426A1F
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:17927369
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:7972CF54
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp31BE97C
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:3E06C78F
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:2F141B68
@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:7C412B92
@Alternate Data Stream - 107 bytes -> C:\ProgramData\Temp:A7DA2BCD
@Alternate Data Stream - 107 bytes -> C:\ProgramData\Temp:9ACB70D7
@Alternate Data Stream - 106 bytes -> C:\ProgramData\Temp:55818279
@Alternate Data Stream - 101 bytes -> C:\ProgramData\Temp:E51234A9
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:5E9B629B

< End of report >
Reply With Quote
  #10  
Old January 14th, 2013, 01:00 AM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 51,967
Iolo software. Damages things, helps little, if at all. It will likely have corrupted Authentium in some way as well, so I suggest you uninstall that. You can reinstall it once we are done with our work here. I will move this thread to the CTH Malware Removal Forum.


Go to Start - Control Panel - Programs - Programs and Features/Uninstall, then click on each of the following programs, if they show there, and click "Uninstall/Change".

iolo technologies' System Mechanic
iolo technologies' System Shield

Internet Helper Anti-phishing - From Panda. For now, please just uninstall it.
iWin Games - Considered adware.
Yahoo! Axis - Search related, so very suspect. For now, please just uninstall it.

And I suggest you uninstall Authentium.

Then reboot.

------------

Download RogueKiller (http://www.sur-la-toile.com/RogueKiller/) to your desktop. Click the RogueKiller icon next to:

(Download link) : Lien de téléchargement.

Close all open programs
Remember to right click -> run as administrator, and click the downloaded file.
Wen RogueKiller finises it's opening scan, press the Scan button..
A RKreport.txt will be created in the same location as the RogueKiller file.
If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.exe, and try again.

Please post the contents of the RKreport.txt.

---------

Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.
Reply With Quote
  #11  
Old January 14th, 2013, 02:46 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
I could not locate Authentium. Even by doing a search. But here is the report you asked for. What do i do with the Rogue killer program?

RogueKiller V8.4.3 _x64_ [Jan 10 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files...3-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows Vista (6.0.6002 Service Pack 2) 64 bits version
Started in : Normal mode
User : Ryherd computer [Admin rights]
Mode : Scan -- Date : 01/13/2013 19:41:46

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] DTUpdate.exe -- C:\Users\Ryherd computer\AppData\Roaming\DefaultTab\DefaultTab\DTU pdate.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 11 ¤¤¤
[TASK][SUSP PATH] Arcadesafari.job : C:\Users\Ryherd computer\AppData\Local\Arcadesafari\ArcadesafariUp dater.exe -> FOUND
[TASK][ROGUE ST] 0 : c:\program files (x86)\internet explorer\iexplore.exe -> FOUND
[TASK][ROGUE ST] 4818 : wscript.exe C:\Users\RYHERD~1\AppData\Local\Temp\launchie.vbs //B -> FOUND
[TASK][SUSP PATH] Arcadesafari : C:\Users\Ryherd computer\AppData\Local\Arcadesafari\ArcadesafariUp dater.exe -> FOUND
[HJ DESK] HKCU\[...]\Services\Microsoft\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKCU\[...]\Services\Microsoft\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKLM\[...]\Services\Microsoft\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\Services\Microsoft\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ INPROC][ZeroAccess] HKCR\[...]\Servicesbeb8a05-beee-4442-804e-409d6c4515e9}\InprocServer32 : (C:\$Recycle.Bin\S-1-5-21-3637460246-2628246424-1422670496-1000\$5d5f60fb14dac9ff8c3b4afa4d16f05c\n.) -> FOUND
[HJ INPROC][ZeroAccess] HKCR\[...]\Services839fca9-774d-42a1-acda-d6a79037f57f}\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\n.) -> FOUND
[HJ INPROC][ZeroAccess] HKLM\[...]\Services\Classes\InprocServer32 : (C:\$Recycle.Bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\n.) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\@ --> FOUND
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-3637460246-2628246424-1422670496-1000\$5d5f60fb14dac9ff8c3b4afa4d16f05c\@ --> FOUND
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\U --> FOUND
[ZeroAccess][FOLDER] U : C:\$recycle.bin\S-1-5-21-3637460246-2628246424-1422670496-1000\$5d5f60fb14dac9ff8c3b4afa4d16f05c\U --> FOUND
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-18\$5d5f60fb14dac9ff8c3b4afa4d16f05c\L --> FOUND
[ZeroAccess][FOLDER] L : C:\$recycle.bin\S-1-5-21-3637460246-2628246424-1422670496-1000\$5d5f60fb14dac9ff8c3b4afa4d16f05c\L --> FOUND

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
::1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST3320813AS +++++
--- User ---
[MBR] 3f6378e2a3d5ab7792871729ad4ef0d6
[BSP] cbe1a3892920c024e3e7b9efc684338e : HP tatooed MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 290872 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 595706265 | Size: 14370 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive4: Generic- MS/MS-Pro USB Device +++++
--- User ---
[MBR] 8afc22ea988a0e826e470d1d46a3512d
[BSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknown
Partition table:
0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 6819 | Size: 1904 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[1]_S_01132013_02d1941.txt >>
RKreport[1]_S_01132013_02d1941.txt
Reply With Quote
  #12  
Old January 14th, 2013, 03:20 AM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 51,967
Hold off on AdwCleaner. The system is bootkitted.


Be sure to continue to temporarily disable any protective software when running the scan tools we use here.

Click here and download Kaspersky's TDSSKiller to your desktop, but as you download it, rename it to larry.com then click that file to run TDSSKiller.

In the display that opens click Start scan. Once that completes, follow any prompts to act on anything it located, including as reboot (Reboot Now) if requested.
When the scan completes it will create a log file on your C drive.

Similar in name to this:

C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt

Your copy will be different - some of those numbers will reflect the date/time it was just run by you there.

Copy/paste those contents back here please. If it does locate malware, but does not prompt for a reboot, go ahead and do reboot.
Reply With Quote
  #13  
Old January 14th, 2013, 03:35 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
20:30:34.0001 4796 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:30:34.0344 4796 ================================================== ==========
20:30:34.0344 4796 Current date / time: 2013/01/13 20:30:34.0344
20:30:34.0344 4796 SystemInfo:
20:30:34.0344 4796
20:30:34.0344 4796 OS Version: 6.0.6002 ServicePack: 2.0
20:30:34.0344 4796 Product type: Workstation
20:30:34.0344 4796 ComputerName: RYHERDCOMPUTER
20:30:34.0344 4796 UserName: Ryherd computer
20:30:34.0344 4796 Windows directory: C:\Windows
20:30:34.0344 4796 System windows directory: C:\Windows
20:30:34.0344 4796 Running under WOW64
20:30:34.0344 4796 Processor architecture: Intel x64
20:30:34.0344 4796 Number of processors: 2
20:30:34.0344 4796 Page size: 0x1000
20:30:34.0344 4796 Boot type: Normal boot
20:30:34.0344 4796 ================================================== ==========
20:30:36.0091 4796 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:30:36.0107 4796 Drive \Device\Harddisk4\DR4 - Size: 0x77400000 (1.86 Gb), SectorSize: 0x200, Cylinders: 0xF3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:30:36.0107 4796 ================================================== ==========
20:30:36.0107 4796 \Device\Harddisk0\DR0:
20:30:36.0123 4796 MBR partitions:
20:30:36.0123 4796 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2381C15A
20:30:36.0123 4796 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2381C199, BlocksNum 0x1C11528
20:30:36.0123 4796 \Device\Harddisk4\DR4:
20:30:36.0138 4796 MBR partitions:
20:30:36.0138 4796 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x6, StartLBA 0x1AA3, BlocksNum 0x3B8000
20:30:36.0138 4796 ================================================== ==========
20:30:36.0294 4796 C: <-> \Device\Harddisk0\DR0\Partition1
20:30:36.0450 4796 D: <-> \Device\Harddisk0\DR0\Partition2
20:30:36.0450 4796 ================================================== ==========
20:30:36.0450 4796 Initialize success
20:30:36.0450 4796 ================================================== ==========
20:30:51.0426 4824 ================================================== ==========
20:30:51.0426 4824 Scan started
20:30:51.0426 4824 Mode: Manual;
20:30:51.0426 4824 ================================================== ==========
20:30:52.0986 4824 ================ Scan system memory ========================
20:30:52.0986 4824 System memory - ok
20:30:52.0986 4824 ================ Scan services =============================
20:30:54.0063 4824 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
20:30:54.0063 4824 ACPI - ok
20:30:54.0265 4824 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:30:54.0265 4824 AdobeARMservice - ok
20:30:55.0389 4824 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe
20:30:55.0389 4824 AdobeFlashPlayerUpdateSvc - ok
20:30:55.0529 4824 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:30:55.0529 4824 adp94xx - ok
20:30:55.0763 4824 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:30:55.0763 4824 adpahci - ok
20:30:55.0779 4824 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
20:30:55.0779 4824 adpu160m - ok
20:30:55.0903 4824 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:30:55.0903 4824 adpu320 - ok
20:30:55.0966 4824 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:30:55.0981 4824 AeLookupSvc - ok
20:30:56.0075 4824 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
20:30:56.0075 4824 AFD - ok
20:30:56.0106 4824 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:30:56.0106 4824 agp440 - ok
20:30:56.0169 4824 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
20:30:56.0169 4824 aic78xx - ok
20:30:56.0247 4824 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
20:30:56.0262 4824 ALG - ok
20:30:56.0371 4824 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
20:30:56.0371 4824 aliide - ok
20:30:56.0403 4824 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
20:30:56.0403 4824 amdide - ok
20:30:56.0496 4824 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:30:56.0496 4824 AmdK8 - ok
20:30:56.0590 4824 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
20:30:56.0590 4824 Appinfo - ok
20:30:56.0871 4824 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:30:56.0871 4824 Apple Mobile Device - ok
20:30:56.0995 4824 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
20:30:56.0995 4824 arc - ok
20:30:57.0027 4824 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:30:57.0027 4824 arcsas - ok
20:30:57.0027 4824 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:30:57.0027 4824 AsyncMac - ok
20:30:57.0058 4824 [ 1898FAE8E07D97F2F6C2D5326C633FAC ] atapi C:\Windows\system32\drivers\atapi.sys
20:30:57.0058 4824 atapi - ok
20:30:57.0136 4824 [ 1FD0FA6618B31FAD14385740D0F6C333 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
20:30:57.0136 4824 atksgt - ok
20:30:57.0276 4824 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:30:57.0292 4824 AudioEndpointBuilder - ok
20:30:57.0292 4824 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:30:57.0307 4824 AudioSrv - ok
20:30:58.0165 4824 [ B9AE3C63A53396CD669EF8AE9C9CBD85 ] avg8emc C:\PROGRA~2\AVG\AVG8\avgemc.exe
20:30:58.0165 4824 avg8emc - ok
20:30:58.0275 4824 [ DB338A6BD3976904EB0F8343F51E64EB ] avg8wd C:\PROGRA~2\AVG\AVG8\avgwdsvc.exe
20:30:58.0275 4824 avg8wd - ok
20:30:58.0384 4824 [ 276C5B14336452C8CE547ED5D00E0E62 ] AvgLdx64 C:\Windows\System32\Drivers\avgldx64.sys
20:30:58.0384 4824 AvgLdx64 - ok
20:30:58.0446 4824 [ B9C21C3753DCBCCAC6B62E1A560EB6F7 ] AvgMfx64 C:\Windows\System32\Drivers\avgmfx64.sys
20:30:58.0446 4824 AvgMfx64 - ok
20:30:58.0587 4824 [ 86D08CF28005F7F626A84D512F84D6C2 ] AvgTdiA C:\Windows\System32\Drivers\avgtdia.sys
20:30:58.0587 4824 AvgTdiA - ok
20:30:58.0680 4824 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
20:30:58.0680 4824 BFE - ok
20:30:58.0852 4824 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
20:30:58.0945 4824 BITS - ok
20:30:58.0961 4824 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
20:30:58.0961 4824 blbdrive - ok
20:30:59.0023 4824 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:30:59.0023 4824 Bonjour Service - ok
20:30:59.0117 4824 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:30:59.0117 4824 bowser - ok
20:30:59.0211 4824 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
20:30:59.0211 4824 BrFiltLo - ok
20:30:59.0304 4824 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
20:30:59.0304 4824 BrFiltUp - ok
20:30:59.0335 4824 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
20:30:59.0335 4824 Browser - ok
20:30:59.0429 4824 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
20:30:59.0429 4824 Brserid - ok
20:30:59.0429 4824 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
20:30:59.0445 4824 BrSerWdm - ok
20:30:59.0445 4824 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
20:30:59.0445 4824 BrUsbMdm - ok
20:30:59.0507 4824 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
20:30:59.0507 4824 BrUsbSer - ok
20:30:59.0523 4824 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
20:30:59.0523 4824 BTHMODEM - ok
20:30:59.0710 4824 [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64 C:\Windows\system32\drivers\BVRPMPR5a64.SYS
20:30:59.0710 4824 BVRPMPR5a64 - ok
20:30:59.0772 4824 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:30:59.0772 4824 cdfs - ok
20:30:59.0850 4824 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:30:59.0850 4824 cdrom - ok
20:31:00.0006 4824 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
20:31:00.0006 4824 CertPropSvc - ok
20:31:00.0022 4824 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
20:31:00.0022 4824 circlass - ok
20:31:00.0209 4824 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
20:31:00.0209 4824 CLFS - ok
20:31:00.0505 4824 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe
20:31:00.0505 4824 clr_optimization_v2.0.50727_32 - ok
20:31:00.0849 4824 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\ms corsvw.exe
20:31:00.0849 4824 clr_optimization_v2.0.50727_64 - ok
20:31:01.0207 4824 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\msco rsvw.exe
20:31:01.0223 4824 clr_optimization_v4.0.30319_32 - ok
20:31:01.0332 4824 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ms corsvw.exe
20:31:01.0348 4824 clr_optimization_v4.0.30319_64 - ok
20:31:01.0363 4824 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:31:01.0363 4824 cmdide - ok
20:31:01.0473 4824 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
Reply With Quote
  #14  
Old January 14th, 2013, 03:36 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
20:31:01.0473 4824 Compbatt - ok
20:31:01.0473 4824 COMSysApp - ok
20:31:01.0660 4824 [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
20:31:01.0660 4824 cpudrv64 - ok
20:31:01.0753 4824 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:31:01.0753 4824 crcdisk - ok
20:31:01.0847 4824 [ 02C86C005E8E9E0366B7491BF3AC86AA ] CrucialSMBusScan C:\Windows\system32\drivers\CrucialSMBusScan.sys
20:31:01.0847 4824 CrucialSMBusScan - ok
20:31:02.0081 4824 [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:31:02.0097 4824 CryptSvc - ok
20:31:02.0284 4824 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:31:02.0377 4824 DcomLaunch - ok
20:31:02.0752 4824 [ 34AE0DFA3EE3B5B9975042D87332D0B7 ] DefaultTabUpdate C:\Users\Ryherd computer\AppData\Roaming\DefaultTab\DefaultTab\DTU pdate.exe
20:31:02.0752 4824 DefaultTabUpdate - ok
20:31:02.0939 4824 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:31:02.0939 4824 DfsC - ok
20:31:03.0204 4824 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
20:31:03.0235 4824 DFSR - ok
20:31:03.0391 4824 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
20:31:03.0391 4824 Dhcp - ok
20:31:03.0454 4824 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
20:31:03.0454 4824 disk - ok
20:31:03.0485 4824 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:31:03.0579 4824 Dnscache - ok
20:31:03.0641 4824 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
20:31:03.0641 4824 dot3svc - ok
20:31:03.0719 4824 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
20:31:03.0719 4824 Dot4 - ok
20:31:03.0735 4824 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
20:31:03.0735 4824 Dot4Print - ok
20:31:03.0813 4824 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
20:31:03.0813 4824 dot4usb - ok
20:31:03.0922 4824 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
20:31:03.0937 4824 DPS - ok
20:31:04.0015 4824 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:31:04.0015 4824 drmkaud - ok
20:31:04.0296 4824 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:31:04.0296 4824 DXGKrnl - ok
20:31:04.0374 4824 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
20:31:04.0374 4824 E1G60 - ok
20:31:04.0468 4824 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
20:31:04.0468 4824 EapHost - ok
20:31:04.0499 4824 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
20:31:04.0499 4824 Ecache - ok
20:31:04.0639 4824 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:31:04.0639 4824 ehRecvr - ok
20:31:04.0702 4824 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
20:31:04.0702 4824 ehSched - ok
20:31:04.0842 4824 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
20:31:04.0842 4824 ehstart - ok
20:31:05.0014 4824 [ F21A07780BBD64ADEF872F50E8CE2E75 ] ElRawDisk C:\Windows\system32\drivers\elrawdsk.sys
20:31:05.0014 4824 ElRawDisk - ok
20:31:05.0217 4824 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:31:05.0217 4824 elxstor - ok
20:31:05.0419 4824 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
20:31:05.0513 4824 EMDMgmt - ok
20:31:05.0544 4824 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:31:05.0544 4824 ErrDev - ok
20:31:05.0685 4824 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
20:31:05.0700 4824 EventSystem - ok
20:31:05.0763 4824 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
20:31:05.0856 4824 exfat - ok
20:31:05.0856 4824 ezSharedSvc - ok
20:31:05.0887 4824 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:31:05.0903 4824 fastfat - ok
20:31:05.0934 4824 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:31:05.0934 4824 fdc - ok
20:31:05.0965 4824 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
20:31:05.0965 4824 fdPHost - ok
20:31:06.0028 4824 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
20:31:06.0043 4824 FDResPub - ok
20:31:06.0106 4824 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:31:06.0106 4824 FileInfo - ok
20:31:06.0137 4824 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:31:06.0137 4824 Filetrace - ok
20:31:06.0153 4824 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:31:06.0153 4824 flpydisk - ok
20:31:06.0168 4824 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:31:06.0184 4824 FltMgr - ok
20:31:06.0371 4824 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
20:31:06.0402 4824 FontCache - ok
20:31:06.0558 4824 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe
20:31:06.0558 4824 FontCache3.0.0.0 - ok
20:31:06.0652 4824 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:31:06.0652 4824 Fs_Rec - ok
20:31:06.0714 4824 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:31:06.0714 4824 gagp30kx - ok
20:31:06.0745 4824 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:31:06.0745 4824 GEARAspiWDM - ok
20:31:07.0026 4824 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
20:31:07.0073 4824 gpsvc - ok
20:31:07.0151 4824 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:31:07.0198 4824 gupdate - ok
20:31:07.0213 4824 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:31:07.0213 4824 gupdatem - ok
20:31:07.0245 4824 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:31:07.0245 4824 HdAudAddService - ok
20:31:07.0276 4824 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:31:07.0291 4824 HDAudBus - ok
20:31:07.0401 4824 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:31:07.0401 4824 HidBth - ok
20:31:07.0432 4824 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:31:07.0432 4824 HidIr - ok
20:31:07.0557 4824 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
20:31:07.0557 4824 hidserv - ok
20:31:07.0572 4824 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:31:07.0572 4824 HidUsb - ok
20:31:07.0603 4824 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
20:31:07.0603 4824 hkmsvc - ok
20:31:07.0791 4824 [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
20:31:07.0791 4824 HP Health Check Service - ok
20:31:07.0853 4824 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
20:31:07.0853 4824 HpCISSs - ok
20:31:08.0149 4824 [ CE0FCEC4D4D860F36D972759B11EAF0F ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
20:31:08.0149 4824 hpqcxs08 - ok
20:31:08.0259 4824 [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
20:31:08.0259 4824 hpqddsvc - ok
20:31:08.0430 4824 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:31:08.0430 4824 HTTP - ok
20:31:08.0493 4824 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
20:31:08.0493 4824 i2omp - ok
20:31:08.0586 4824 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:31:08.0586 4824 i8042prt - ok
20:31:08.0867 4824 [ 1117AF8C53AA278A4C5B7EF1B00E08F4 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
20:31:08.0867 4824 IAANTMON - ok
20:31:08.0945 4824 [ 8EACF469269FB1509561961A3188F670 ] iaStor C:\Windows\system32\drivers\iastor.sys
20:31:08.0945 4824 iaStor - ok
20:31:09.0039 4824 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
20:31:09.0039 4824 iaStorV - ok
20:31:09.0413 4824 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:31:09.0429 4824 idsvc - ok
20:31:09.0460 4824 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:31:09.0460 4824 iirsp - ok
20:31:09.0569 4824 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
20:31:09.0616 4824 IKEEXT - ok
20:31:09.0975 4824 [ 1EDAB7F9B9DE4424BECCDEF950CE2FF0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:31:09.0975 4824 IntcAzAudAddService - ok
20:31:10.0053 4824 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
20:31:10.0053 4824 intelide - ok
20:31:10.0162 4824 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:31:10.0162 4824 intelppm - ok
20:31:10.0240 4824 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:31:10.0255 4824 IPBusEnum - ok
20:31:10.0349 4824 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:31:10.0349 4824 IpFilterDriver - ok
20:31:10.0349 4824 IpInIp - ok
20:31:10.0365 4824 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
20:31:10.0365 4824 IPMIDRV - ok
20:31:10.0443 4824 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
20:31:10.0443 4824 IPNAT - ok
20:31:10.0552 4824 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:31:10.0552 4824 iPod Service - ok
20:31:10.0583 4824 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:31:10.0583 4824 IRENUM - ok
20:31:10.0599 4824 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:31:10.0599 4824 isapnp - ok
20:31:10.0677 4824 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:31:10.0677 4824 iScsiPrt - ok
20:31:10.0692 4824 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
20:31:10.0692 4824 iteatapi - ok
20:31:10.0848 4824 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
20:31:10.0848 4824 iteraid - ok
20:31:10.0942 4824 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:31:10.0942 4824 kbdclass - ok
20:31:11.0020 4824 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:31:11.0020 4824 kbdhid - ok
20:31:11.0113 4824 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
20:31:11.0129 4824 KeyIso - ok
20:31:11.0207 4824 [ A93305FDFD1B09CE69E88E361C958E2A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
20:31:11.0207 4824 kl1 - ok
20:31:11.0488 4824 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:31:11.0488 4824 KSecDD - ok
20:31:11.0503 4824 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:31:11.0503 4824 ksthunk - ok
20:31:11.0613 4824 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
20:31:11.0769 4824 KtmRm - ok
20:31:11.0847 4824 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:31:11.0847 4824 LanmanServer - ok
20:31:11.0878 4824 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:31:11.0878 4824 LanmanWorkstation - ok
20:31:11.0925 4824 [ B1E1C8BB1392537E4D415FCDCB93B1D3 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
20:31:11.0925 4824 LightScribeService - ok
20:31:11.0956 4824 [ 5EA407821BB3104C31A705175AB4F309 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
20:31:11.0956 4824 lirsgt - ok
20:31:12.0018 4824 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:31:12.0018 4824 lltdio - ok
20:31:12.0205 4824 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:31:12.0299 4824 lltdsvc - ok
20:31:12.0330 4824 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:31:12.0330 4824 lmhosts - ok
20:31:12.0361 4824 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:31:12.0361 4824 LSI_FC - ok
20:31:12.0393 4824 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:31:12.0393 4824 LSI_SAS - ok
20:31:12.0439 4824 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:31:12.0439 4824 LSI_SCSI - ok
20:31:12.0517 4824 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
20:31:12.0517 4824 luafv - ok
20:31:12.0611 4824 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:31:12.0642 4824 Mcx2Svc - ok
20:31:12.0736 4824 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
20:31:12.0736 4824 megasas - ok
20:31:12.0861 4824 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
20:31:12.0861 4824 MegaSR - ok
20:31:12.0939 4824 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
20:31:12.0939 4824 MMCSS - ok
20:31:13.0048 4824 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
20:31:13.0048 4824 Modem - ok
20:31:13.0219 4824 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:31:13.0219 4824 monitor - ok
20:31:13.0375 4824 [ 7BD101253058DB30C52C6EA8D3911754 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
20:31:13.0375 4824 motccgp - ok
20:31:13.0391 4824 [ 1A700E7063CA7F2B29A4E761DA604DFB ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
20:31:13.0391 4824 motccgpfl - ok
20:31:13.0485 4824 [ 940F4DA752E28E6C4B1090D21AEB7B80 ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
20:31:13.0500 4824 motmodem - ok
20:31:13.0516 4824 [ 940F4DA752E28E6C4B1090D21AEB7B80 ] motport C:\Windows\system32\DRIVERS\motport.sys
20:31:13.0516 4824 motport - ok
20:31:13.0687 4824 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:31:13.0687 4824 mouclass - ok
20:31:13.0703 4824 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:31:13.0719 4824 mouhid - ok
20:31:13.0843 4824 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
20:31:13.0843 4824 MountMgr - ok
20:31:14.0015 4824 [ 730A519505621DF46BCBF9CDAC9FB6AD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:31:14.0031 4824 MozillaMaintenance - ok
20:31:14.0093 4824 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
20:31:14.0093 4824 mpio - ok
20:31:14.0171 4824 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:31:14.0171 4824 mpsdrv - ok
20:31:14.0280 4824 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
20:31:14.0358 4824 MpsSvc - ok
20:31:14.0374 4824 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
20:31:14.0389 4824 Mraid35x - ok
20:31:14.0405 4824 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:31:14.0405 4824 MRxDAV - ok
20:31:14.0452 4824 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:31:14.0452 4824 mrxsmb - ok
20:31:14.0795 4824 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:31:14.0795 4824 mrxsmb10 - ok
20:31:14.0873 4824 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:31:14.0873 4824 mrxsmb20 - ok
20:31:14.0982 4824 [ 1AC860612B85D8E85EE257D372E39F4D ] msahci C:\Windows\system32\drivers\msahci.sys
20:31:14.0982 4824 msahci - ok
20:31:14.0998 4824 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:31:14.0998 4824 msdsm - ok
20:31:15.0107 4824 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
20:31:15.0123 4824 MSDTC - ok
20:31:15.0216 4824 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:31:15.0232 4824 Msfs - ok
20:31:15.0403 4824 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:31:15.0403 4824 msisadrv - ok
20:31:15.0544 4824 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:31:15.0559 4824 MSiSCSI - ok
20:31:15.0637 4824 msiserver - ok
20:31:15.0684 4824 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:31:15.0684 4824 MSKSSRV - ok
20:31:15.0700 4824 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:31:15.0700 4824 MSPCLOCK - ok
20:31:15.0747 4824 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:31:15.0747 4824 MSPQM - ok
20:31:15.0949 4824 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:31:16.0012 4824 MsRPC - ok
20:31:16.0090 4824 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:31:16.0090 4824 mssmbios - ok
20:31:16.0105 4824 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
Reply With Quote
  #15  
Old January 14th, 2013, 03:36 AM
icsd71 icsd71 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 130
20:31:16.0105 4824 MSTEE - ok
20:31:16.0199 4824 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
20:31:16.0199 4824 Mup - ok
20:31:16.0230 4824 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
20:31:16.0230 4824 napagent - ok
20:31:16.0261 4824 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:31:16.0261 4824 NativeWifiP - ok
20:31:16.0386 4824 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:31:16.0386 4824 NDIS - ok
20:31:16.0511 4824 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:31:16.0511 4824 NdisTapi - ok
20:31:16.0527 4824 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:31:16.0527 4824 Ndisuio - ok
20:31:16.0558 4824 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:31:16.0558 4824 NdisWan - ok
20:31:16.0620 4824 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:31:16.0698 4824 NDProxy - ok
20:31:16.0714 4824 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
20:31:16.0729 4824 Net Driver HPZ12 - ok
20:31:16.0823 4824 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:31:16.0823 4824 NetBIOS - ok
20:31:16.0901 4824 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
20:31:16.0901 4824 netbt - ok
20:31:16.0948 4824 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
20:31:16.0948 4824 Netlogon - ok
20:31:17.0057 4824 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
20:31:17.0151 4824 Netman - ok
20:31:17.0229 4824 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
20:31:17.0244 4824 netprofm - ok
20:31:17.0275 4824 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:31:17.0275 4824 NetTcpPortSharing - ok
20:31:17.0353 4824 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:31:17.0353 4824 nfrd960 - ok
20:31:17.0463 4824 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
20:31:17.0463 4824 NlaSvc - ok
20:31:17.0494 4824 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:31:17.0509 4824 Npfs - ok
20:31:17.0572 4824 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
20:31:17.0572 4824 nsi - ok
20:31:17.0634 4824 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:31:17.0634 4824 nsiproxy - ok
20:31:17.0837 4824 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:31:17.0915 4824 Ntfs - ok
20:31:18.0102 4824 nTuneService - ok
20:31:18.0180 4824 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
20:31:18.0180 4824 Null - ok
20:31:18.0289 4824 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:31:18.0289 4824 NVHDA - ok
20:31:19.0912 4824 [ 26AA3C7E6E1DB7107BF93503F6F57E88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:31:19.0990 4824 nvlddmkm - ok
20:31:20.0037 4824 [ 8C1D181480796D7D3366A9381FD7782D ] nvoclk64 C:\Windows\system32\DRIVERS\nvoclk64.sys
20:31:20.0052 4824 nvoclk64 - ok
20:31:20.0099 4824 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:31:20.0099 4824 nvraid - ok
20:31:20.0239 4824 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:31:20.0239 4824 nvstor - ok
20:31:20.0411 4824 [ A83AC04D672567CAF8BE7A4D73C0B850 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:31:20.0427 4824 nvsvc - ok
20:31:20.0598 4824 [ FB660F80BDC4F13D594996976AFAECD9 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:31:20.0598 4824 nvUpdatusService - ok
20:31:20.0645 4824 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:31:20.0645 4824 nv_agp - ok
20:31:20.0645 4824 NwlnkFlt - ok
20:31:20.0645 4824 NwlnkFwd - ok
20:31:20.0770 4824 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:31:20.0770 4824 ohci1394 - ok
20:31:21.0191 4824 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
20:31:21.0363 4824 p2pimsvc - ok
20:31:21.0378 4824 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
20:31:21.0394 4824 p2psvc - ok
20:31:21.0425 4824 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
20:31:21.0425 4824 Parport - ok
20:31:21.0612 4824 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:31:21.0612 4824 partmgr - ok
20:31:21.0628 4824 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
20:31:21.0628 4824 PcaSvc - ok
20:31:21.0659 4824 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
20:31:21.0659 4824 pci - ok
20:31:21.0721 4824 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
20:31:21.0721 4824 pciide - ok
20:31:21.0784 4824 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:31:21.0799 4824 pcmcia - ok
20:31:22.0002 4824 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:31:22.0002 4824 PEAUTH - ok
20:31:22.0283 4824 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:31:22.0283 4824 PerfHost - ok
20:31:22.0423 4824 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
20:31:22.0533 4824 pla - ok
20:31:22.0564 4824 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:31:22.0564 4824 PlugPlay - ok
20:31:22.0595 4824 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
20:31:22.0611 4824 Pml Driver HPZ12 - ok
20:31:22.0657 4824 PnkBstrA - ok
20:31:22.0813 4824 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
20:31:22.0813 4824 PNRPAutoReg - ok
20:31:23.0110 4824 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
20:31:23.0125 4824 PNRPsvc - ok
20:31:23.0188 4824 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:31:23.0219 4824 PolicyAgent - ok
20:31:23.0250 4824 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:31:23.0250 4824 PptpMiniport - ok
20:31:23.0266 4824 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
20:31:23.0266 4824 Processor - ok
20:31:23.0359 4824 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
20:31:23.0437 4824 ProfSvc - ok
20:31:23.0453 4824 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
20:31:23.0453 4824 ProtectedStorage - ok
20:31:23.0484 4824 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
20:31:23.0484 4824 PSched - ok
20:31:23.0609 4824 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:31:23.0609 4824 ql2300 - ok
20:31:23.0687 4824 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:31:23.0687 4824 ql40xx - ok
20:31:23.0859 4824 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
20:31:23.0952 4824 QWAVE - ok
20:31:23.0952 4824 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:31:23.0952 4824 QWAVEdrv - ok
20:31:23.0983 4824 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:31:23.0983 4824 RasAcd - ok
20:31:24.0015 4824 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
20:31:24.0015 4824 RasAuto - ok
20:31:24.0077 4824 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:31:24.0093 4824 Rasl2tp - ok
20:31:24.0186 4824 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
20:31:24.0233 4824 RasMan - ok
20:31:24.0264 4824 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:31:24.0264 4824 RasPppoe - ok
20:31:24.0280 4824 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:31:24.0280 4824 RasSstp - ok
20:31:24.0311 4824 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:31:24.0327 4824 rdbss - ok
20:31:24.0420 4824 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:31:24.0420 4824 RDPCDD - ok
20:31:24.0498 4824 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
20:31:24.0514 4824 rdpdr - ok
20:31:24.0514 4824 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:31:24.0514 4824 RDPENCDD - ok
20:31:24.0561 4824 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:31:24.0576 4824 RDPWD - ok
20:31:24.0654 4824 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:31:24.0670 4824 RemoteAccess - ok
20:31:24.0763 4824 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:31:24.0763 4824 RemoteRegistry - ok
20:31:24.0795 4824 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
20:31:24.0795 4824 RpcLocator - ok
20:31:24.0888 4824 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
20:31:24.0904 4824 RpcSs - ok
20:31:24.0919 4824 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:31:24.0919 4824 rspndr - ok
20:31:24.0997 4824 [ 170A66DFAAA22358E08D6F4B38C8F3DF ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
20:31:24.0997 4824 RTL8169 - ok
20:31:25.0060 4824 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
20:31:25.0060 4824 SamSs - ok
20:31:25.0138 4824 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:31:25.0138 4824 sbp2port - ok
20:31:25.0325 4824 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:31:25.0325 4824 SCardSvr - ok
20:31:25.0419 4824 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
20:31:25.0512 4824 Schedule - ok
20:31:25.0528 4824 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:31:25.0528 4824 SCPolicySvc - ok
20:31:25.0559 4824 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:31:25.0559 4824 SDRSVC - ok
20:31:25.0575 4824 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:31:25.0590 4824 secdrv - ok
20:31:25.0606 4824 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
20:31:25.0606 4824 seclogon - ok
20:31:25.0637 4824 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
20:31:25.0637 4824 SENS - ok
20:31:25.0668 4824 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
20:31:25.0668 4824 Serenum - ok
20:31:25.0699 4824 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
20:31:25.0699 4824 Serial - ok
20:31:25.0746 4824 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:31:25.0746 4824 sermouse - ok
20:31:25.0855 4824 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
20:31:25.0855 4824 SessionEnv - ok
20:31:25.0965 4824 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:31:25.0965 4824 sffdisk - ok
20:31:25.0980 4824 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:31:25.0980 4824 sffp_mmc - ok
20:31:26.0089 4824 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:31:26.0089 4824 sffp_sd - ok
20:31:26.0105 4824 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:31:26.0105 4824 sfloppy - ok
20:31:26.0245 4824 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:31:26.0245 4824 ShellHWDetection - ok
20:31:26.0323 4824 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
20:31:26.0323 4824 SiSRaid2 - ok
20:31:26.0339 4824 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:31:26.0339 4824 SiSRaid4 - ok
20:31:26.0464 4824 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
20:31:26.0495 4824 slsvc - ok
20:31:26.0526 4824 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
20:31:26.0526 4824 SLUINotify - ok
20:31:26.0604 4824 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:31:26.0604 4824 Smb - ok
20:31:26.0713 4824 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:31:26.0713 4824 SNMPTRAP - ok
20:31:26.0791 4824 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
20:31:26.0807 4824 spldr - ok
20:31:26.0838 4824 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
20:31:26.0838 4824 Spooler - ok
20:31:27.0010 4824 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
20:31:27.0010 4824 srv - ok
20:31:27.0166 4824 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:31:27.0166 4824 srv2 - ok
20:31:27.0275 4824 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:31:27.0275 4824 srvnet - ok
20:31:27.0400 4824 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:31:27.0415 4824 SSDPSRV - ok
20:31:27.0462 4824 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:31:27.0478 4824 SstpSvc - ok
20:31:27.0493 4824 Steam Client Service - ok
20:31:27.0587 4824 [ 00FCEC4DA4198F5F2B9BBD9225842568 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:31:27.0587 4824 Stereo Service - ok
20:31:27.0743 4824 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
20:31:27.0837 4824 stisvc - ok
20:31:27.0868 4824 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:31:27.0868 4824 swenum - ok
20:31:27.0961 4824 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
20:31:28.0039 4824 swprv - ok
20:31:28.0055 4824 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
20:31:28.0055 4824 Symc8xx - ok
20:31:28.0133 4824 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
20:31:28.0133 4824 Sym_hi - ok
20:31:28.0227 4824 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
20:31:28.0227 4824 Sym_u3 - ok
20:31:28.0367 4824 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
20:31:28.0476 4824 SysMain - ok
20:31:28.0507 4824 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:31:28.0507 4824 TabletInputService - ok
20:31:28.0695 4824 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:31:28.0695 4824 TapiSrv - ok
20:31:28.0788 4824 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
20:31:28.0788 4824 TBS - ok
20:31:28.0835 4824 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:31:28.0835 4824 Tcpip - ok
20:31:28.0991 4824 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
20:31:29.0007 4824 Tcpip6 - ok
20:31:29.0053 4824 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:31:29.0053 4824 tcpipreg - ok
20:31:29.0069 4824 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:31:29.0069 4824 TDPIPE - ok
20:31:29.0131 4824 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:31:29.0131 4824 TDTCP - ok
20:31:29.0163 4824 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:31:29.0163 4824 tdx - ok
20:31:29.0365 4824 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:31:29.0365 4824 TermDD - ok
20:31:29.0584 4824 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
20:31:29.0693 4824 TermService - ok
20:31:29.0724 4824 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
20:31:29.0724 4824 Themes - ok
20:31:29.0740 4824 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
20:31:29.0740 4824 THREADORDER - ok
20:31:29.0943 4824 [ 39BD95A9FE72AAF5C675AD146BE456A9 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
20:31:29.0943 4824 TomTomHOMEService - ok
20:31:30.0114 4824 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
20:31:30.0114 4824 TrkWks - ok
20:31:30.0208 4824 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:31:30.0208 4824 TrustedInstaller - ok
20:31:30.0270 4824 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:31:30.0270 4824 tssecsrv - ok
20:31:30.0333 4824 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
20:31:30.0333 4824 tunmp - ok
20:31:30.0426 4824 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:31:30.0426 4824 tunnel - ok
20:31:30.0442 4824 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:31:30.0442 4824 uagp35 - ok
20:31:30.0598 4824 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:31:30.0598 4824 udfs - ok
20:31:30.0707 4824 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:31:30.0707 4824 UI0Detect - ok
20:31:30.0879 4824 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:31:30.0879 4824 uliagpkx - ok
20:31:30.0941 4824 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
20:31:30.0941 4824 uliahci - ok
20:31:30.0957 4824 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
20:31:30.0957 4824 UlSata - ok
20:31:31.0019 4824 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
20:31:31.0019 4824 ulsata2 - ok
20:31:31.0128 4824 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:31:31.0128 4824 umbus - ok
20:31:31.0191 4824 [ 01ABE05C401E70795B43A8933B44831E ] UMPass C:\Windows\system32\DRIVERS\umpass.sys
20:31:31.0191 4824 UMPass - ok
20:31:31.0331 4824 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
20:31:31.0393 4824 upnphost - ok
20:31:31.0456 4824 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:31:31.0456 4824 USBAAPL64 - ok
20:31:31.0596 4824 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:31:31.0596 4824 usbaudio - ok
20:31:31.0627 4824 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:31:31.0627 4824 usbccgp - ok
20:31:31.0705 4824 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:31:31.0705 4824 usbcir - ok
20:31:31.0737 4824 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:31:31.0737 4824 usbehci - ok
20:31:31.0846 4824 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:31:31.0846 4824 usbhub - ok
20:31:31.0908 4824 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:31:31.0908 4824 usbohci - ok
20:31:32.0017 4824 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:31:32.0017 4824 usbprint - ok
20:31:32.0049 4824 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:31:32.0049 4824 usbscan - ok
20:31:32.0173 4824 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:31:32.0173 4824 USBSTOR - ok
20:31:32.0283 4824 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:31:32.0283 4824 usbuhci - ok
20:31:32.0361 4824 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:31:32.0361 4824 usbvideo - ok
20:31:32.0423 4824 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
20:31:32.0439 4824 UxSms - ok
20:31:32.0517 4824 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
20:31:32.0517 4824 vds - ok
20:31:32.0579 4824 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:31:32.0595 4824 vga - ok
20:31:32.0673 4824 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:31:32.0673 4824 VgaSave - ok
20:31:32.0735 4824 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
20:31:32.0735 4824 viaide - ok
20:31:32.0766 4824 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:31:32.0766 4824 volmgr - ok
20:31:32.0860 4824 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:31:32.0860 4824 volmgrx - ok
20:31:32.0969 4824 [ 582F710097B46140F5A89A19A6573D4B ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:31:32.0969 4824 volsnap - ok
20:31:33.0063 4824 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:31:33.0063 4824 vsmraid - ok
20:31:33.0406 4824 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
20:31:33.0421 4824 VSS - ok
20:31:33.0546 4824 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
20:31:33.0609 4824 W32Time - ok
20:31:33.0624 4824 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:31:33.0624 4824 WacomPen - ok
20:31:33.0655 4824 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
20:31:33.0655 4824 Wanarp - ok
20:31:33.0655 4824 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:31:33.0655 4824 Wanarpv6 - ok
20:31:33.0749 4824 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:31:33.0843 4824 wcncsvc - ok
20:31:33.0874 4824 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:31:33.0874 4824 WcsPlugInService - ok
20:31:33.0936 4824 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
20:31:33.0936 4824 Wd - ok
20:31:34.0045 4824 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:31:34.0045 4824 Wdf01000 - ok
20:31:34.0061 4824 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:31:34.0061 4824 WdiServiceHost - ok
20:31:34.0077 4824 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:31:34.0077 4824 WdiSystemHost - ok
20:31:34.0139 4824 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
20:31:34.0139 4824 WebClient - ok
20:31:34.0264 4824 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:31:34.0264 4824 Wecsvc - ok
20:31:34.0326 4824 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:31:34.0342 4824 wercplsupport - ok
20:31:34.0357 4824 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
20:31:34.0357 4824 WerSvc - ok
20:31:34.0373 4824 WinHttpAutoProxySvc - ok
20:31:34.0435 4824 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:31:34.0435 4824 Winmgmt - ok
20:31:34.0685 4824 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
20:31:34.0794 4824 WinRM - ok
20:31:34.0825 4824 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:31:34.0841 4824 Wlansvc - ok
20:31:35.0231 4824 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:31:35.0247 4824 wlidsvc - ok
20:31:35.0293 4824 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:31:35.0293 4824 WmiAcpi - ok
20:31:35.0403 4824 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:31:35.0403 4824 wmiApSrv - ok
20:31:35.0496 4824 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:31:35.0496 4824 WPCSvc - ok
20:31:35.0527 4824 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:31:35.0527 4824 WPDBusEnum - ok
20:31:35.0590 4824 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
20:31:35.0590 4824 WpdUsb - ok
20:31:35.0855 4824 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WP F\WPFFontCache_v0400.exe
20:31:35.0871 4824 WPFFontCache_v0400 - ok
20:31:35.0886 4824 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:31:35.0886 4824 ws2ifsl - ok
20:31:35.0902 4824 WSearch - ok
20:31:36.0214 4824 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:31:36.0323 4824 wuauserv - ok
20:31:36.0417 4824 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:31:36.0417 4824 WudfPf - ok
20:31:36.0479 4824 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:31:36.0479 4824 WUDFRd - ok
20:31:36.0557 4824 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:31:36.0557 4824 wudfsvc - ok
20:31:36.0713 4824 [ DA1C23F65EF1894AB5B6FF79D81F544A ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
20:31:36.0729 4824 xnacc - ok
20:31:36.0885 4824 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
20:31:36.0885 4824 xusb21 - ok
20:31:37.0197 4824 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
20:31:37.0197 4824 YahooAUService - ok
20:31:37.0321 4824 [ 1CACFEF9E5DD866C5B79A135EE729E18 ] {55662437-DA8C-40c0-AADA-2C816A897A49} C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
20:31:37.0321 4824 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
20:31:37.0337 4824 ================ Scan global ===============================
20:31:37.0462 4824 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
20:31:37.0587 4824 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
20:31:37.0680 4824 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
20:31:37.0711 4824 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
20:31:37.0711 4824 [Global] - ok
20:31:37.0711 4824 ================ Scan MBR ==================================
20:31:37.0743 4824 [ 81CD5EC01DB0CE57EDD853F82462EF27 ] \Device\Harddisk0\DR0
20:31:39.0615 4824 \Device\Harddisk0\DR0 - ok
20:31:39.0615 4824 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4
20:31:39.0661 4824 \Device\Harddisk4\DR4 - ok
20:31:39.0661 4824 ================ Scan VBR ==================================
20:31:39.0755 4824 [ DBB7384FB3CB7C816D3B6219656631A1 ] \Device\Harddisk0\DR0\Partition1
20:31:39.0755 4824 \Device\Harddisk0\DR0\Partition1 - ok
20:31:39.0802 4824 [ 30DAE537B2241A68B1C4E9E681CCF40E ] \Device\Harddisk0\DR0\Partition2
20:31:39.0802 4824 \Device\Harddisk0\DR0\Partition2 - ok
20:31:39.0817 4824 [ 1CD8B031A86A5FA3F1EA7EFB72C30288 ] \Device\Harddisk4\DR4\Partition1
20:31:39.0817 4824 \Device\Harddisk4\DR4\Partition1 - ok
20:31:39.0817 4824 ================================================== ==========
20:31:39.0817 4824 Scan finished
20:31:39.0817 4824 ================================================== ==========
20:31:39.0817 3408 Detected object count: 0
20:31:39.0817 3408 Actual detected object count: 0
Reply With Quote
Reply

Bookmarks

Topic Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT +1. The time now is 11:19 PM.