Jump to content

VoidbioV

Members
 View Profile  See their activity

  • Posts

    4

  • Joined

  • Last visited

Reputation

0 Neutral
  1. VoidbioV
    ANYONE?
  2. VoidbioV
    (ADDITION.TXT) Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013 Ran by SHIPPING at 2013-10-14 16:48:20 Running from C:\Users\SHIPPING\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Adobe AIR (x32 Version: 3.9.0.1030) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117) Adobe Reader X (10.1.8) (x32 Version: 10.1.8) AlignmentUtility (x32 Version: 16.00.0000) AMD APP SDK Runtime (Version: 2.5.732.1) AMD Catalyst Install Manager (Version: 3.0.842.0) AMD Media Foundation Decoders (Version: 1.0.60914.1136) AMD Steady Video Plug-In (Version: 1.00.0000) AMD VISION Engine Control Center (x32 Version: 2011.0908.1355.23115) Apple Application Support (x32 Version: 2.3.6) Apple Mobile Device Support (Version: 7.0.0.117) Apple Software Update (x32 Version: 2.1.3.127) Avery Wizard 4.0 (Version: 4.0.103) Bonjour (Version: 3.0.0.10) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0908.1355.23115) Catalyst Control Center InstallProxy (x32 Version: 2011.0908.1355.23115) Catalyst Control Center Localization All (x32 Version: 2011.0908.1355.23115) CCC (x32 Version: 16.00.0000) CCC Help Chinese Standard (x32 Version: 2011.0908.1354.23115) CCC Help Chinese Traditional (x32 Version: 2011.0908.1354.23115) CCC Help Czech (x32 Version: 2011.0908.1354.23115) CCC Help Danish (x32 Version: 2011.0908.1354.23115) CCC Help Dutch (x32 Version: 2011.0908.1354.23115) CCC Help English (x32 Version: 2011.0908.1354.23115) CCC Help Finnish (x32 Version: 2011.0908.1354.23115) CCC Help French (x32 Version: 2011.0908.1354.23115) CCC Help German (x32 Version: 2011.0908.1354.23115) CCC Help Greek (x32 Version: 2011.0908.1354.23115) CCC Help Hungarian (x32 Version: 2011.0908.1354.23115) CCC Help Italian (x32 Version: 2011.0908.1354.23115) CCC Help Japanese (x32 Version: 2011.0908.1354.23115) CCC Help Korean (x32 Version: 2011.0908.1354.23115) CCC Help Norwegian (x32 Version: 2011.0908.1354.23115) CCC Help Polish (x32 Version: 2011.0908.1354.23115) CCC Help Portuguese (x32 Version: 2011.0908.1354.23115) CCC Help Russian (x32 Version: 2011.0908.1354.23115) CCC Help Spanish (x32 Version: 2011.0908.1354.23115) CCC Help Swedish (x32 Version: 2011.0908.1354.23115) CCC Help Thai (x32 Version: 2011.0908.1354.23115) CCC Help Turkish (x32 Version: 2011.0908.1354.23115) ccc-utility64 (Version: 2011.0908.1355.23115) CCleaner (Version: 4.06) Crystal Reports 2008 Runtime SP2 (x32 Version: 12.2.0.290) D3DX10 (x32 Version: 15.4.2368.0902) Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904) eCopy PDF Pro Office 6 (Version: 6.10.6269) eCopy PDF Pro Office 6 (x32 Version: 6.10.6269) FormsComponent (x32 Version: 16.00.0000) FOSS (x32 Version: 16.00.0500) Google Update Helper (x32 Version: 1.3.21.165) HP Auto (Version: 1.0.12935.3667) HP Client Services (Version: 1.1.12938.3539) HP Customer Experience Enhancements (x32 Version: 6.0.1.8) HP LinkUp (x32 Version: 2.01.029) HP Notes (x32 Version: 5.1.4274.30382) HP Odometer (x32 Version: 2.10.0000) HP Product Detection (x32 Version: 11.14.0001) HP RSS (x32 Version: 5.1.4301.21494) HP Setup (x32 Version: 9.0.15130.3904) HP Setup Manager (x32 Version: 1.2.15145.3905) HP Support Information (x32 Version: 11.00.0001) HP TouchSmart Background - Beats (x32 Version: 1.0.1.0) HP Update (x32 Version: 5.003.001.001) HP Vision Hardware Diagnostics (Version: 2.12.1.0) ICCHelp (x32 Version: 1.0.0.2) ICQ 8.0 (build 6017) (HKCU Version: 8.0.6017.0) IDT Audio (x32 Version: 1.0.6349.0) iTunes (Version: 11.1.0.126) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) Junk Mail filter update (x32 Version: 15.4.3502.0922) KONICA MINOLTA bizhub C252/C252P KONICA MINOLTA bizhub C35P LabelPrint (x32 Version: 2.5.4507) Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300) Mesh Runtime (x32 Version: 15.4.5722.2) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Mathematics (x32 Version: 4.0) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000) Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000) Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft SQL Server 2005 (x32) Microsoft SQL Server 2005 Backward compatibility (Version: 8.05.2309) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft SQL Server 2005 Express Edition (UPSWSDBSERVER) (x32 Version: 9.4.5000.00) Microsoft SQL Server Native Client (Version: 9.00.5000.00) Microsoft SQL Server Setup Support Files (English) (x32 Version: 9.00.5000.00) Microsoft SQL Server VSS Writer (Version: 9.00.5000.00) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319) Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0) MSIChecker (x32 Version: 9.00.0000) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) NA1Messenger (x32 Version: 16.00.0000) NRF (x32 Version: 16.00.0000) opensource (x32 Version: 1.0.14960.3876) Pandora (x32 Version: 2.0.8) PlayReady PC Runtime amd64 (Version: 1.3.0) PlayReady PC Runtime x86 (x32 Version: 1.3.0) PolicyManager (x32 Version: 16.00.0000) Power2Go (x32 Version: 6.1.5705) Ralink 802.11n Wireless LAN Card (x32 Version: 4.0.3.0) Reconciler (x32 Version: 16.00.0000) Recovery Manager (x32 Version: 5.5.0.4424) ReportServer (x32 Version: 16.00.0000) Scansoft PDF Professional (x32) Spotify (HKCU Version: 0.9.4.178.g259772ba) SupportUtility (x32 Version: 16.00.0000) System (x32 Version: 16.00.0000) TSHostedAppLauncher (x32 Version: 5.1.15.0) UnifiedPrinting (x32 Version: 16.00.0000) Unity Web Player (HKCU Version: ) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3) Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2598242) 64-Bit Edition Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition Update for Microsoft Office 2010 (KB2767886) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2687623) 64-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2589371) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition Update for Microsoft Word 2010 (KB2827323) 64-Bit Edition UPS Thermal Printer Plugin - Version 8.10 (x32) UPS WorldShip (x32 Version: 15.0) UPSDB (x32 Version: 16.00.0000) UPSICC (x32 Version: 16.00.0000) UPSlinkHTTP (x32 Version: 1.0.0.13) UPSVC2008MM (x32 Version: 1.00.0000) UPSVCMM (x32 Version: 12.00.0000) WD Quick View (x32 Version: 2.2.0.8) WD SmartWare (Version: 2.2.0.8) WD SmartWare Installer (x32 Version: 2.2.0.8) WebHelp (x32 Version: 1.00.0000) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3538.0513) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3538.0513) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Messenger (x32 Version: 15.4.3538.0513) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) WorldShip (x32 Version: 16.00.0000) WSShared (x32 Version: 16.00.0000) Zebra Font Downloader (x32) ==================== Restore Points ========================= 04-10-2013 14:56:36 Windows Update 08-10-2013 08:13:55 Windows Update 09-10-2013 08:00:15 Windows Update 14-10-2013 15:19:47 Removed Windows Live Mesh ActiveX Control for Remote Connections 14-10-2013 15:40:03 Removed Remote Graphics Receiver 14-10-2013 15:52:46 Removed Google Earth. 14-10-2013 16:02:29 Removed Nuance Cloud Connector ==================== Hosts content: ========================== 2009-07-13 21:34 - 2013-03-19 10:30 - 00000019 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {17EEFF08-7AF0-43E3-9D7D-E0CCFE3498D1} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe Task: {2F95F2AA-342A-4498-8B68-C6BB5E561AE5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd) Task: {322BC37D-7693-4336-9826-DCBE76872515} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated) Task: {52BADF41-B150-4365-B835-EA2653A06892} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {A7118786-511A-4F89-820D-405C766E7E1F} - System32\Tasks\HPCeeScheduleForSHIPPING => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard) Task: {E413620F-540D-41E6-95AA-3FBB52E26B74} - \GoogleUpdateTaskMachineUA No Task File Task: {E54CD8E7-1337-40EA-86FD-0904550D11C7} - \GoogleUpdateTaskMachineCore No Task File Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\HPCeeScheduleForSHIPPING.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Loaded Modules (whitelisted) ============= 2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf 2013-04-21 21:44 - 2013-04-21 21:44 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-04-21 21:44 - 2013-04-21 21:44 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\ProgramData\Temp:AEC0AC81 ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (10/14/2013 03:56:14 PM) (Source: SignInAssistant) (User: ) Description: StartService failed with hr = 0x80070422 Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service) (User: ) Description: The index cannot be initialized. Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service) (User: ) Description: The application cannot be initialized. Context: Windows Application Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service) (User: ) Description: The gatherer object cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in <Search.TripoliIndexer> cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: Element not found. (HRESULT : 0x80070490) (0x80070490) Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service) (User: ) Description: The plug-in in <Search.JetPropStore> cannot be initialized. Context: Windows Application, SystemIndex Catalog Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service) (User: ) Description: The Windows Search Service cannot load the property store information. Context: Windows Application, SystemIndex Catalog Details: The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800) Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service) (User: ) Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt. Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service) (User: ) Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index. Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service) (User: ) Description: The Windows Search Service cannot open the Jet property store. Details: 0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800)) System errors: ============= Error: (10/14/2013 03:10:37 PM) (Source: Service Control Manager) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (10/14/2013 03:10:37 PM) (Source: Service Control Manager) (User: ) Description: The Windows Search service terminated with service-specific error %%-1073473535. Error: (10/14/2013 03:09:10 PM) (Source: Service Control Manager) (User: ) Description: The UPnP Device Host service failed to start due to the following error: %%1069 Error: (10/14/2013 03:09:10 PM) (Source: Service Control Manager) (User: ) Description: The upnphost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: %%50 To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error: (10/14/2013 10:37:43 AM) (Source: Service Control Manager) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (10/14/2013 10:37:43 AM) (Source: Service Control Manager) (User: ) Description: The Windows Search service terminated with service-specific error %%-1073473535. Error: (10/11/2013 03:46:57 PM) (Source: Service Control Manager) (User: ) Description: The Windows Connect Now - Config Registrar service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service. Error: (10/11/2013 03:46:57 PM) (Source: Service Control Manager) (User: ) Description: The SSDP Discovery service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 100 milliseconds: Restart the service. Error: (10/11/2013 03:46:57 PM) (Source: Service Control Manager) (User: ) Description: The Function Discovery Resource Publication service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service. Error: (10/11/2013 03:40:02 PM) (Source: Service Control Manager) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 3 time(s). Microsoft Office Sessions: ========================= Error: (10/14/2013 03:56:14 PM) (Source: SignInAssistant)(User: ) Description: StartService failed with hr = 0x80070422 Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service)(User: ) Description: Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Error: (10/14/2013 03:10:37 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: Element not found. (HRESULT : 0x80070490) (0x80070490) Search.TripoliIndexer Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) Search.JetPropStore Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service)(User: ) Description: Context: Windows Application, SystemIndex Catalog Details: The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800) Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service)(User: ) Description: Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) The catalog is corrupt Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service)(User: ) Description: Details: The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801) 4700 Error: (10/14/2013 03:10:36 PM) (Source: Windows Search Service)(User: ) Description: Details: 0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800)) CodeIntegrity Errors: =================================== Date: 2013-02-07 12:40:11.770 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2013-02-07 12:40:11.723 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== Percentage of memory in use: 25% Total physical RAM: 7664.61 MB Available physical RAM: 5714.36 MB Total Pagefile: 15327.4 MB Available Pagefile: 13160.49 MB Total Virtual: 8192 MB Available Virtual: 8191.8 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:914.87 GB) (Free:620.06 GB) NTFS Drive d: (HP_RECOVERY) (Fixed) (Total:16.55 GB) (Free:2.07 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 48546080) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=915 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=17 GB) - (Type=07 NTFS) ==================== End Of Log ============================
  3. VoidbioV
    (FRST.TXT) Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013 Ran by SHIPPING (administrator) on SHIPPING-HP on 14-10-2013 16:47:56 Running from C:\Users\SHIPPING\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AMD) C:\Windows\system32\atieclxx.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Microsoft Corporation) c:\UPS\WSTD\MSSQL.1\MSSQL\Binn\sqlservr.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe (Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\eCopy PDF Pro Office 6\PDFProFiltSrv.exe (Microsoft Corporation) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe ==================== Registry (Whitelisted) ================== HKCU\...\Run: [icq] - C:\Users\SHIPPING\AppData\Roaming\ICQM\icq.exe [27598184 2013-07-24] (ICQ) HKLM-x32\...\Run: [] - [x] Startup: C:\Users\SHIPPING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5195FF8953C4CE01 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM-x32 - {82F0369C-57A4-4240-BF4A-DBA2FCA64FE5} URL = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-30572-11896-1/4?mpre=http://www.ebay.com/sch/i.html?_nkw={searchTerms} SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - c:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: No Name - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - No File BHO-x32: Gaaiho PDF Conversion Toolbar Helper - {C7DA0384-42AA-428c-B832-88AC343DE1A8} - C:\Program Files (x86)\Nuance\eCopy PDF Pro Office 6\bin\GZeonIEFavClient.dll (Zeon Corporation) BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM-x32 - Nuance PDF - {BCCE15AE-AC7E-4bc9-94AF-2A714A412BCB} - C:\Program Files (x86)\Nuance\eCopy PDF Pro Office 6\bin\GZeonIEFavClient.dll (Zeon Corporation) Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - c:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ] Hosts: 127.0.0.1 localhost Tcpip\Parameters: [DhcpNameServer] 192.168.1.4 68.109.202.25 68.109.202.30 ==================== Services (Whitelisted) ================= R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 MSSQL$UPSWSDBSERVER; c:\UPS\WSTD\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation) R2 PDFProFiltSrv; C:\Program Files (x86)\Nuance\eCopy PDF Pro Office 6\PDFProFiltSrv.exe [135056 2012-11-19] (Nuance Communications, Inc.) R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-08-14] (Western Digital Technologies, Inc.) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-08-14] (Western Digital Technologies, Inc.) ==================== Drivers (Whitelisted) ==================== R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-14 16:47 - 2013-10-14 16:47 - 00000000 ____D C:\FRST 2013-10-14 16:44 - 2013-10-14 16:44 - 01954124 _____ (Farbar) C:\Users\SHIPPING\Desktop\FRST64.exe 2013-10-14 15:12 - 2013-10-14 16:27 - 00023846 ____N C:\Windows\WindowsUpdate.log 2013-10-14 15:05 - 2013-10-14 15:24 - 00000000 ____D C:\Users\SHIPPING\Desktop\RK_Quarantine 2013-10-14 15:05 - 2013-10-14 15:05 - 03985920 _____ C:\Users\SHIPPING\Desktop\RogueKillerX64.exe 2013-10-14 12:35 - 2012-12-10 11:04 - 00356352 _____ (eSellerate Inc.) C:\Windows\eSellerateEngine.dll 2013-10-14 12:35 - 2012-12-10 11:04 - 00081920 _____ (eSellerate Inc.) C:\Windows\eSellerateControl350.dll 2013-10-14 12:35 - 2009-07-23 18:32 - 01122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll 2013-10-14 12:35 - 2009-07-23 18:32 - 00274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll 2013-10-09 03:11 - 2013-09-22 18:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-09 03:11 - 2013-09-22 18:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-09 03:11 - 2013-09-22 18:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-09 03:11 - 2013-09-22 17:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-09 03:11 - 2013-09-22 17:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-09 03:11 - 2013-09-22 17:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-09 03:11 - 2013-09-22 17:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-09 03:11 - 2013-09-22 17:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-09 03:11 - 2013-09-20 22:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-09 03:11 - 2013-09-20 22:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-09 03:11 - 2013-09-20 21:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-09 03:11 - 2013-09-20 21:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-09 00:33 - 2013-09-13 20:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-10-09 00:33 - 2013-09-07 21:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-10-09 00:33 - 2013-09-07 21:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2013-10-09 00:33 - 2013-09-07 21:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2013-10-09 00:33 - 2013-08-28 21:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-10-09 00:33 - 2013-08-28 21:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2013-10-09 00:33 - 2013-08-28 21:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2013-10-09 00:33 - 2013-08-28 20:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-10-09 00:33 - 2013-08-28 20:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-10-09 00:33 - 2013-08-27 20:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-09 00:33 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys 2013-10-09 00:33 - 2013-07-04 07:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2013-10-09 00:33 - 2013-07-04 07:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-09 00:33 - 2013-07-04 07:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2013-10-09 00:33 - 2013-07-04 06:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2013-10-09 00:33 - 2013-07-04 06:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2013-10-09 00:33 - 2013-07-04 06:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2013-10-09 00:33 - 2013-07-04 05:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2013-10-09 00:33 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-10-09 00:33 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2013-10-09 00:33 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2013-10-09 00:33 - 2013-06-06 00:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2013-10-09 00:33 - 2013-06-06 00:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-09 00:33 - 2013-06-06 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2013-10-09 00:33 - 2013-06-06 00:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2013-10-09 00:33 - 2013-06-05 23:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2013-10-09 00:33 - 2013-06-05 23:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2013-10-09 00:33 - 2013-06-05 23:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2013-10-09 00:33 - 2013-06-05 22:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-09 00:33 - 2013-06-05 22:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2013-10-09 00:33 - 2013-06-05 22:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2013-10-09 00:32 - 2013-09-04 07:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2013-10-09 00:32 - 2013-09-04 07:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2013-10-09 00:32 - 2013-09-04 07:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2013-10-09 00:32 - 2013-09-04 07:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2013-10-09 00:32 - 2013-09-04 07:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2013-10-09 00:32 - 2013-09-04 07:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2013-10-09 00:32 - 2013-09-04 07:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2013-10-09 00:32 - 2013-08-28 21:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-10-09 00:32 - 2013-08-28 21:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-10-09 00:32 - 2013-08-28 20:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-10-09 00:32 - 2013-08-28 20:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2013-10-09 00:32 - 2013-08-28 20:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-10-09 00:32 - 2013-08-28 20:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2013-10-09 00:32 - 2013-08-28 19:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-10-09 00:32 - 2013-08-28 19:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-10-09 00:32 - 2013-08-28 19:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-10-09 00:32 - 2013-08-28 19:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-10-09 00:32 - 2013-08-27 20:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll 2013-10-09 00:32 - 2013-08-01 07:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-09 00:32 - 2013-07-20 05:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-10-09 00:32 - 2013-07-20 05:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2013-10-03 10:17 - 2013-10-03 10:17 - 00039424 _____ C:\Users\SHIPPING\Documents\Lousiana Pricing Trade-in Form-1 9-27-13_A.xls 2013-09-30 13:40 - 2013-09-30 13:59 - 733476790 _____ C:\Users\SHIPPING\Downloads\Office_Professional_Plus_2013_64bit.exe 2013-09-30 13:15 - 2013-09-30 13:34 - 634799535 _____ C:\Users\SHIPPING\Downloads\Office_Professional_Plus_2013_32bit.exe 2013-09-27 15:13 - 2013-10-03 10:16 - 00043008 _____ C:\Users\SHIPPING\Documents\Lousiana Pricing Trade-in Form-1 9-27-13.xls 2013-09-24 16:47 - 2013-09-24 16:47 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\GoPro 2013-09-24 09:09 - 2013-09-24 09:47 - 00000000 ____D C:\Users\SHIPPING\AppData\Roaming\GoPro 2013-09-24 09:09 - 2013-09-24 09:15 - 00000000 ____D C:\Users\Public\CineForm 2013-09-24 09:09 - 2013-09-24 09:09 - 00000000 ____D C:\Program Files\DIFX 2013-09-24 09:09 - 2013-09-24 09:09 - 00000000 ____D C:\Program Files (x86)\CineForm 2013-09-18 14:18 - 2013-09-18 14:18 - 00001745 _____ C:\Users\Public\Desktop\iTunes.lnk 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\Program Files\iTunes 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\Program Files\iPod 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\Program Files (x86)\iTunes 2013-09-18 09:00 - 2013-09-18 09:26 - 00000000 ____D C:\Users\SHIPPING\AppData\Roaming\Apple Computer 2013-09-18 09:00 - 2013-09-18 09:00 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\Apple Computer 2013-09-18 09:00 - 2013-09-18 09:00 - 00000000 ____D C:\ProgramData\Apple Computer 2013-09-18 09:00 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2013-09-18 08:59 - 2013-09-18 08:59 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\Apple 2013-09-18 08:59 - 2013-09-18 08:59 - 00000000 ____D C:\Program Files\Common Files\Apple 2013-09-18 08:59 - 2013-09-18 08:59 - 00000000 ____D C:\Program Files (x86)\Apple Software Update 2013-09-18 08:58 - 2013-09-18 08:59 - 00000000 ____D C:\ProgramData\Apple 2013-09-18 08:58 - 2013-09-18 08:58 - 00000000 ____D C:\Program Files\Bonjour 2013-09-18 08:58 - 2013-09-18 08:58 - 00000000 ____D C:\Program Files (x86)\Bonjour 2013-09-17 11:34 - 2013-09-17 11:34 - 00000000 ____D C:\Program Files\Western Digital ==================== One Month Modified Files and Folders ======= 2013-10-14 16:47 - 2013-10-14 16:47 - 00000000 ____D C:\FRST 2013-10-14 16:46 - 2012-03-14 16:06 - 00000000 ____D C:\Users\SHIPPING\Documents\Outlook Files 2013-10-14 16:44 - 2013-10-14 16:44 - 01954124 _____ (Farbar) C:\Users\SHIPPING\Desktop\FRST64.exe 2013-10-14 16:27 - 2013-10-14 15:12 - 00023846 ____N C:\Windows\WindowsUpdate.log 2013-10-14 15:56 - 2012-03-14 13:22 - 00000000 ___RD C:\Users\SHIPPING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-14 15:52 - 2013-07-11 15:21 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-14 15:24 - 2013-10-14 15:05 - 00000000 ____D C:\Users\SHIPPING\Desktop\RK_Quarantine 2013-10-14 15:17 - 2009-07-13 23:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-14 15:17 - 2009-07-13 23:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-14 15:14 - 2009-07-14 00:13 - 00850248 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-14 15:10 - 2013-09-10 12:04 - 00008192 _____ C:\Windows\SysWOW64\WDPABKP.dat 2013-10-14 15:09 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-14 15:07 - 2013-07-31 10:12 - 00000000 ____D C:\Users\SHIPPING\AppData\Roaming\BitTorrent 2013-10-14 15:05 - 2013-10-14 15:05 - 03985920 _____ C:\Users\SHIPPING\Desktop\RogueKillerX64.exe 2013-10-14 13:44 - 2013-05-15 12:52 - 00000000 ____D C:\Users\SHIPPING\Documents\Konica Minolta Orders 2013-10-14 11:50 - 2012-10-31 12:28 - 00000000 ____D C:\Program Files (x86)\Kyocera 2013-10-14 11:47 - 2012-01-02 18:30 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard 2013-10-14 11:02 - 2013-06-11 08:15 - 00000000 ____D C:\Program Files (x86)\Nuance 2013-10-14 10:40 - 2012-01-02 18:31 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information 2013-10-14 10:35 - 2013-07-11 11:17 - 00000000 ____D C:\Windows\pss 2013-10-14 10:20 - 2012-07-18 11:44 - 00000981 _____ C:\Users\Public\Desktop\CCleaner.lnk 2013-10-14 10:20 - 2012-01-02 18:49 - 00000000 ____D C:\Program Files (x86)\Windows Live 2013-10-14 10:10 - 2012-03-14 16:03 - 00000000 ____D C:\Program Files (x86)\Zebra Technologies 2013-10-14 07:43 - 2012-03-14 13:22 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9C502401-BCD3-4E0E-928D-CA1F7B457059} 2013-10-14 07:40 - 2012-03-14 16:17 - 00000199 _____ C:\Windows\wstdUPSWSHIP.INI 2013-10-11 15:54 - 2013-03-05 17:40 - 00007604 _____ C:\Users\SHIPPING\AppData\Local\Resmon.ResmonCfg 2013-10-11 08:46 - 2013-07-03 07:59 - 00000000 ____D C:\Users\SHIPPING\AppData\Roaming\Spotify 2013-10-10 08:20 - 2013-07-03 07:59 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\Spotify 2013-10-09 13:43 - 2011-02-11 12:00 - 00000000 ____D C:\Windows\Panther 2013-10-09 10:58 - 2013-03-27 08:29 - 00000000 ____D C:\Users\SHIPPING\Documents\STATE 2013-10-09 10:52 - 2013-07-11 15:21 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-09 10:52 - 2013-07-11 15:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-09 10:52 - 2013-07-11 15:21 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-09 09:24 - 2013-06-25 12:36 - 00000000 ____D C:\Users\SHIPPING\Documents\TIME SHEETS 2013-10-09 04:07 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache 2013-10-09 03:30 - 2013-03-14 03:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-10-09 03:30 - 2013-03-14 03:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-09 03:13 - 2012-03-14 15:56 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-10-09 03:09 - 2011-02-11 12:15 - 00843972 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-10-09 03:06 - 2013-08-15 03:01 - 00000000 ____D C:\Windows\system32\MRT 2013-10-09 03:04 - 2012-03-16 14:18 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-10-07 09:06 - 2012-03-14 16:11 - 00000000 ____D C:\UPS 2013-10-04 13:58 - 2012-03-22 10:52 - 00003204 _____ C:\Windows\System32\Tasks\HPCeeScheduleForSHIPPING 2013-10-04 13:58 - 2012-03-22 10:52 - 00000344 _____ C:\Windows\Tasks\HPCeeScheduleForSHIPPING.job 2013-10-03 10:17 - 2013-10-03 10:17 - 00039424 _____ C:\Users\SHIPPING\Documents\Lousiana Pricing Trade-in Form-1 9-27-13_A.xls 2013-10-03 10:16 - 2013-09-27 15:13 - 00043008 _____ C:\Users\SHIPPING\Documents\Lousiana Pricing Trade-in Form-1 9-27-13.xls 2013-09-30 13:59 - 2013-09-30 13:40 - 733476790 _____ C:\Users\SHIPPING\Downloads\Office_Professional_Plus_2013_64bit.exe 2013-09-30 13:34 - 2013-09-30 13:15 - 634799535 _____ C:\Users\SHIPPING\Downloads\Office_Professional_Plus_2013_32bit.exe 2013-09-30 08:32 - 2013-03-19 10:10 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\Deployment 2013-09-26 16:56 - 2012-07-18 11:44 - 00000000 ____D C:\Program Files\CCleaner 2013-09-24 16:47 - 2013-09-24 16:47 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\GoPro 2013-09-24 09:47 - 2013-09-24 09:09 - 00000000 ____D C:\Users\SHIPPING\AppData\Roaming\GoPro 2013-09-24 09:15 - 2013-09-24 09:09 - 00000000 ____D C:\Users\Public\CineForm 2013-09-24 09:09 - 2013-09-24 09:09 - 00000000 ____D C:\Program Files\DIFX 2013-09-24 09:09 - 2013-09-24 09:09 - 00000000 ____D C:\Program Files (x86)\CineForm 2013-09-22 18:28 - 2013-10-09 03:11 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-09-22 18:28 - 2013-10-09 03:11 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-09-22 18:27 - 2013-10-09 03:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-09-22 17:55 - 2013-10-09 03:11 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-09-22 17:55 - 2013-10-09 03:11 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-09-22 17:55 - 2013-10-09 03:11 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-09-22 17:54 - 2013-10-09 03:11 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-09-22 17:54 - 2013-10-09 03:11 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-09-20 22:38 - 2013-10-09 03:11 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-09-20 22:30 - 2013-10-09 03:11 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-09-20 21:48 - 2013-10-09 03:11 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-09-20 21:39 - 2013-10-09 03:11 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-09-18 14:18 - 2013-09-18 14:18 - 00001745 _____ C:\Users\Public\Desktop\iTunes.lnk 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\Program Files\iTunes 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\Program Files\iPod 2013-09-18 14:18 - 2013-09-18 14:18 - 00000000 ____D C:\Program Files (x86)\iTunes 2013-09-18 09:26 - 2013-09-18 09:00 - 00000000 ____D C:\Users\SHIPPING\AppData\Roaming\Apple Computer 2013-09-18 09:00 - 2013-09-18 09:00 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\Apple Computer 2013-09-18 09:00 - 2013-09-18 09:00 - 00000000 ____D C:\ProgramData\Apple Computer 2013-09-18 08:59 - 2013-09-18 08:59 - 00000000 ____D C:\Users\SHIPPING\AppData\Local\Apple 2013-09-18 08:59 - 2013-09-18 08:59 - 00000000 ____D C:\Program Files\Common Files\Apple 2013-09-18 08:59 - 2013-09-18 08:59 - 00000000 ____D C:\Program Files (x86)\Apple Software Update 2013-09-18 08:59 - 2013-09-18 08:58 - 00000000 ____D C:\ProgramData\Apple 2013-09-18 08:58 - 2013-09-18 08:58 - 00000000 ____D C:\Program Files\Bonjour 2013-09-18 08:58 - 2013-09-18 08:58 - 00000000 ____D C:\Program Files (x86)\Bonjour 2013-09-17 11:34 - 2013-09-17 11:34 - 00000000 ____D C:\Program Files\Western Digital 2013-09-17 11:34 - 2013-08-07 16:25 - 00000000 ____D C:\Program Files\Common Files\Western Digital 2013-09-17 11:34 - 2013-08-07 16:25 - 00000000 ____D C:\Program Files (x86)\Western Digital 2013-09-17 11:34 - 2013-08-07 16:24 - 00000000 ____D C:\ProgramData\Package Cache 2013-09-17 11:34 - 2013-08-07 16:13 - 00000000 ____D C:\ProgramData\Western Digital ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-01 00:34 ==================== End Of Log ============================
  4. VoidbioV
    My computer has not been acting right lately. Could someone have a look at my log from RogueKiller and give me some advise? RogueKiller V8.7.2 _x64_ [Oct 3 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.adlice.com/forum/ Website : http://www.adlice.com/softwares/roguekiller/ Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : SHIPPING [Admin rights] Mode : Scan -- Date : 10/14/2013 15:26:26 | ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 6 ¤¤¤ [RUN][sUSP PATH] HKCU\[...]\Run : icq (C:\Users\SHIPPING\AppData\Roaming\ICQM\icq.exe -CU [7]) -> FOUND [RUN][sUSP PATH] HKUS\S-1-5-21-1167819134-1943156752-1737705932-1000\[...]\Run : icq (C:\Users\SHIPPING\AppData\Roaming\ICQM\icq.exe -CU [7]) -> FOUND [HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> FOUND [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> FOUND ¤¤¤ Scheduled tasks : 0 ¤¤¤ ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> %SystemRoot%\System32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Standard disk drives) - ST310005 24AS SATA Disk Device +++++ --- User --- [MBR] 7489779f95fd602136ddbe5bc05723e6 [bSP] de477a7e398dfce16e6a2df19cd1c69b : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 936824 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1918822400 | Size: 16943 Mo User = LL1 ... OK! User != LL2 ... KO! --- LL2 --- [MBR] c5123ee4c17e48b807dd5e7188b3170f [bSP] 27b93bfb928b93276d3865235bab96d5 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 205154304 | Size: 300 Mo +++++ PhysicalDrive1: \\.\PHYSICALDRIVE1 +++++ Error reading User MBR! User = LL1 ... OK! Error reading LL2 MBR! Finished : << RKreport[0]_S_10142013_152626.txt >> RKreport[0]_S_10142013_151317.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.