migelito
Honorary Members-
Posts
23 -
Joined
-
Last visited
Reputation
0 Neutral-
i'll post a new one, but what is posted is all there was in the log. my computer is still running well. i was having problems with a game downloader called Impulse (i installed it while my computer was having troubles), but since my optical drive is working, i don't really need it anymore. DDS.txt: DDS (Ver_10-11-27.01) - NTFS_AMD64 Run by mike at 1:17:04.69 on Mon 11/29/2010 Internet Explorer: 9.0.7930.16406 Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3003.1519 [GMT -8:00] ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Bonjour\mDNSResponder.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k HsfXAudioService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Users\mike\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files (x86)\HP\QuickPlay\QPService.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\mike\Downloads\dds (1).scr C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe ============== Pseudo HJT Report =============== uStart Page = hxxp://www.google.com/ uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb uInternet Settings,ProxyOverride = *.local BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: hpBHO Class: {abd3b5e1-b268-407b-a150-2641dab8d898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll TB: Microsoft Live Search Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden uRun: [Google Update] "C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe" /c mRun: [QPService] "C:\Program Files (x86)\HP\QuickPlay\QPService.exe" mRun: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start mRun: [updatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover" mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" StartupFolder: C:\Users\mike\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\mike\AppData\Roaming\Dropbox\bin\Dropbox.exe uPolicies-system: WallpaperStyle = 2 mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) dPolicies-system: WallpaperStyle = 2 IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000 IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe" EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File mRun-x64: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe mRun-x64: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe mRun-x64: [igfxTray] C:\Windows\system32\igfxtray.exe mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe ============= SERVICES / DRIVERS =============== R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2010-11-2 121936] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904] R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2010-11-2 20048] R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2010-11-2 61008] R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-11-2 40384] R2 HsfXAudioService;HsfXAudioService;C:\Windows\system32\svchost.exe -k HsfXAudioService [2009-7-13 27136] R3 avast! Mail Scanner;avast! Mail Scanner;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-11-2 40384] R3 avast! Web Scanner;avast! Web Scanner;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-11-2 40384] R3 CAXHWAZL;CAXHWAZL;C:\Windows\System32\drivers\CAXHWAZL.sys [2009-6-24 292864] R3 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-8-17 228408] R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;C:\Windows\System32\drivers\IntcHdmi.sys [2009-5-26 138752] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-10-28 215040] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2009-8-17 216064] S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864] S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312] S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2010-4-19 50688] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-11-1 1255736] S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120] =============== Created Last 30 ================ 2010-11-23 15:50:34 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{270BD3BB-C6C6-4182-93CA-C1769C03D1AC}\mpengine.dll 2010-11-23 03:34:11 -------- d-----w- C:\Users\mike\AppData\Roaming\Stardock 2010-11-23 03:33:50 -------- dc-h--w- C:\PROGRA~3\{1EB63B4B-5639-4477-8E24-05C31B5F8019} 2010-11-21 18:06:53 83968 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNBPP3.DLL 2010-11-19 06:49:51 -------- d-----w- C:\Windows\CheckSur 2010-11-15 09:52:06 -------- d-----w- C:\Program Files (x86)\ESET 2010-11-14 09:39:20 -------- d-----w- C:\PROGRA~3\Stardock 2010-11-14 09:38:59 -------- d-----w- C:\Users\mike\AppData\Local\PackageAware 2010-11-12 07:38:00 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2010-11-12 07:18:56 94208 ----a-w- C:\Program Files (x86)\Internet Explorer\en\iediag.resources.dll 2010-11-12 07:17:31 737280 ----a-w- C:\Windows\SysWow64\d2d1.dll 2010-11-12 07:17:31 218624 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll 2010-11-12 07:17:30 899072 ----a-w- C:\Windows\System32\d2d1.dll 2010-11-12 07:17:30 320512 ----a-w- C:\Windows\System32\d3d10_1core.dll 2010-11-12 07:17:30 1844224 ----a-w- C:\Windows\System32\d3d10warp.dll 2010-11-12 07:17:30 1543168 ----a-w- C:\Windows\System32\DWrite.dll 2010-11-12 07:17:30 1172480 ----a-w- C:\Windows\SysWow64\d3d10warp.dll 2010-11-12 07:17:30 1137664 ----a-w- C:\Windows\System32\FntCache.dll 2010-11-12 07:17:30 1076224 ----a-w- C:\Windows\SysWow64\DWrite.dll 2010-11-12 07:16:54 466432 ----a-w- C:\Windows\System32\XpsGdiConverter.dll 2010-11-12 07:16:54 279552 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll 2010-11-12 07:16:54 229888 ----a-w- C:\Windows\System32\XpsRasterService.dll 2010-11-12 07:16:54 135168 ----a-w- C:\Windows\SysWow64\XpsRasterService.dll 2010-11-12 07:16:09 1863680 ----a-w- C:\Windows\System32\ExplorerFrame.dll 2010-11-12 07:16:09 1495040 ----a-w- C:\Windows\SysWow64\ExplorerFrame.dll 2010-11-12 07:15:19 -------- d-----w- C:\Program Files (x86)\Feedback Tool 2010-11-11 08:01:49 -------- d-----w- C:\_OTL 2010-11-10 10:04:12 -------- d-----w- C:\Program Files (x86)\Stardock 2010-11-09 06:35:26 -------- d-----w- C:\Program Files (x86)\Stardock Games 2010-11-09 06:31:14 -------- d-----w- C:\Users\mike\AppData\Local\Stardock 2010-11-05 21:36:19 961024 ----a-w- C:\Windows\System32\CPFilters.dll 2010-11-05 21:36:18 641536 ----a-w- C:\Windows\SysWow64\CPFilters.dll 2010-11-05 21:36:17 613888 ----a-w- C:\Windows\System32\psisdecd.dll 2010-11-05 21:36:17 552960 ----a-w- C:\Windows\System32\msdri.dll 2010-11-05 21:36:17 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll 2010-11-05 21:36:17 288256 ----a-w- C:\Windows\System32\MSNP.ax 2010-11-05 21:36:17 258560 ----a-w- C:\Windows\System32\mpg2splt.ax 2010-11-05 21:36:17 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax 2010-11-05 21:36:17 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax 2010-11-05 21:26:59 411496 ----a-w- C:\Windows\System32\xactengine2_9.dll 2010-11-05 21:17:28 -------- d-----w- C:\Windows\SysWow64\directx 2010-11-03 08:31:34 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys 2010-11-03 08:31:32 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2010-11-03 07:25:35 61008 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2010-11-03 07:25:09 38848 ----a-w- C:\Windows\avastSS.scr 2010-11-02 10:06:03 14336 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys 2010-11-02 10:06:03 109056 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2010-11-02 10:04:26 243712 ----a-w- C:\Windows\System32\drivers\ks.sys 2010-11-02 09:59:46 223448 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2010-11-02 09:59:45 243200 ----a-w- C:\Windows\System32\wow64.dll 2010-11-02 09:59:45 1736608 ----a-w- C:\Windows\System32\ntdll.dll 2010-11-02 09:59:45 1289528 ----a-w- C:\Windows\SysWow64\ntdll.dll 2010-11-02 09:59:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2010-11-02 09:59:44 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2010-11-02 09:59:44 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2010-11-02 09:59:44 2048 ----a-w- C:\Windows\SysWow64\user.exe 2010-11-02 09:59:44 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2010-11-02 09:59:43 861184 ----a-w- C:\Windows\System32\oleaut32.dll 2010-11-02 09:59:43 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll 2010-11-02 09:59:43 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys 2010-11-02 02:05:02 -------- d-----w- C:\Windows\SysWow64\Wat 2010-11-02 02:05:02 -------- d-----w- C:\Windows\System32\Wat 2010-11-02 01:59:09 8006480 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll 2010-11-02 01:55:58 311808 ----a-w- C:\Windows\System32\msv1_0.dll 2010-11-02 01:55:58 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll 2010-11-02 01:49:15 -------- d-----w- C:\Program Files (x86)\MSXML 4.0 2010-11-02 01:47:39 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll 2010-11-02 01:47:39 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll 2010-11-02 01:47:39 48960 ----a-w- C:\Windows\System32\netfxperf.dll 2010-11-02 01:47:39 444752 ----a-w- C:\Windows\System32\mscoree.dll 2010-11-02 01:47:39 320352 ----a-w- C:\Windows\System32\PresentationHost.exe 2010-11-02 01:47:39 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll 2010-11-02 01:47:39 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe 2010-11-02 01:47:39 1942856 ----a-w- C:\Windows\System32\dfshim.dll 2010-11-02 01:47:39 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll 2010-11-02 01:47:39 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll 2010-11-02 01:02:54 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2010-11-02 01:02:54 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2010-11-02 01:02:54 153160 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2010-11-02 01:02:54 1446912 ----a-w- C:\Windows\System32\lsasrv.dll 2010-11-02 01:00:59 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll 2010-11-02 00:59:44 286720 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2010-11-02 00:59:44 157696 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2010-11-02 00:59:44 125952 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2010-11-02 00:59:32 148992 ----a-w- C:\Windows\System32\t2embed.dll 2010-11-02 00:59:32 109056 ----a-w- C:\Windows\SysWow64\t2embed.dll 2010-11-02 00:59:21 82944 ----a-w- C:\Windows\SysWow64\iccvid.dll 2010-11-02 00:58:28 483840 ----a-w- C:\Windows\System32\StructuredQuery.dll 2010-11-02 00:58:28 363520 ----a-w- C:\Windows\SysWow64\StructuredQuery.dll 2010-11-02 00:58:22 84992 ----a-w- C:\Windows\System32\asycfilt.dll 2010-11-02 00:58:22 67584 ----a-w- C:\Windows\SysWow64\asycfilt.dll 2010-11-02 00:57:10 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll 2010-11-02 00:57:10 46080 ----a-w- C:\Windows\System32\atmlib.dll 2010-11-02 00:57:10 366080 ----a-w- C:\Windows\System32\atmfd.dll 2010-11-02 00:57:10 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll 2010-11-02 00:57:10 293888 ----a-w- C:\Windows\SysWow64\atmfd.dll 2010-11-02 00:57:10 100864 ----a-w- C:\Windows\System32\fontsub.dll 2010-11-02 00:56:40 9728 ----a-w- C:\Windows\SysWow64\sscore.dll 2010-11-02 00:56:40 463360 ----a-w- C:\Windows\System32\drivers\srv.sys 2010-11-02 00:56:40 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys 2010-11-02 00:56:40 236032 ----a-w- C:\Windows\System32\srvsvc.dll 2010-11-02 00:56:40 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2010-11-02 00:56:22 3123712 ----a-w- C:\Windows\System32\win32k.sys ==================== Find3M ==================== 2010-10-19 18:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe 2010-09-10 05:35:44 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll 2010-09-10 05:35:43 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll 2010-09-01 08:46:36 1355264 ----a-w- C:\Windows\SysWow64\jscript9.dll 2010-09-01 08:44:32 367104 ----a-w- C:\Windows\SysWow64\html.iec 2010-09-01 08:44:30 1448448 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2010-09-01 08:44:24 1122304 ----a-w- C:\Windows\SysWow64\wininet.dll 2010-09-01 08:44:06 424960 ----a-w- C:\Windows\SysWow64\vbscript.dll 2010-09-01 08:43:22 23552 ----a-w- C:\Windows\SysWow64\licmgr10.dll 2010-09-01 08:43:12 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2010-09-01 08:43:12 114176 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2010-09-01 08:43:10 76800 ----a-w- C:\Windows\SysWow64\SetIEInstalledDate.exe 2010-09-01 08:43:10 74752 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe 2010-09-01 08:43:02 448512 ----a-w- C:\Windows\System32\html.iec 2010-09-01 08:41:56 601088 ----a-w- C:\Windows\System32\vbscript.dll 2010-09-01 08:40:56 76800 ----a-w- C:\Windows\System32\tdc.ocx 2010-09-01 08:40:40 215552 ----a-w- C:\Windows\System32\msls31.dll 2010-09-01 05:12:09 12625920 ----a-w- C:\Windows\System32\wmploc.DLL 2010-09-01 04:23:49 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL ============= FINISH: 1:17:30.06 ===============
-
Attach.txt: UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_10-11-05.01) Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 12/25/2009 12:33:37 PM System Uptime: 11/28/2010 7:29:37 PM (1 hours ago) Motherboard: Wistron | | 3612 Processor: Intel® Celeron® CPU 900 @ 2.20GHz | CPU | 2194/800mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 221 GiB total, 81.489 GiB free. D: is FIXED (NTFS) - 12 GiB total, 2 GiB free. E: is CDROM (UDF) ==== Disabled Device Manager Items ============= ==== System Restore Points =================== RP39: 11/9/2010 9:42:00 PM - Removed Adobe Reader 9.1 MUI. RP40: 11/9/2010 9:44:12 PM - Removed Java 6 Update 14 (64-bit) RP41: 11/9/2010 9:45:10 PM - Removed Java 6 Update 17 RP42: 11/11/2010 10:45:12 PM - Installed Microsoft Fix it 50195 RP43: 11/11/2010 10:48:18 PM - Installed Microsoft Fix it 50195 RP44: 11/11/2010 10:52:39 PM - Installed Microsoft Fix it 50195 RP45: 11/11/2010 11:03:48 PM - Windows Modules Installer RP46: 11/11/2010 11:15:34 PM - Windows Update RP47: 11/11/2010 11:16:37 PM - Windows Update RP48: 11/11/2010 11:17:14 PM - Windows Update RP49: 11/11/2010 11:17:50 PM - Windows Update RP50: 11/11/2010 11:18:32 PM - Windows Update RP51: 11/11/2010 11:30:11 PM - Installed Microsoft Fix it 50195 RP52: 11/11/2010 11:37:22 PM - Installed Java 6 Update 22 RP53: 11/15/2010 12:27:44 AM - Windows Update RP54: 11/18/2010 10:49:28 PM - Windows Update RP55: 11/23/2010 7:49:59 AM - Windows Update ==== Installed Programs ====================== Acrobat.com ActiveCheck component for HP Active Support Library Adobe AIR Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Apple Application Support Apple Software Update Atheros Driver Installation Program avast! Free Antivirus Bejeweled Blitz Camera Window Canon Camera WIA Driver Canon Camera Window for ZoomBrowser EX Canon EOS Kiss REBEL 300D WIA Driver Canon PhotoRecord Canon Utilities File Viewer Utility 1.3 Canon Utilities PhotoStitch 3.1 Canon Utilities RemoteCapture 2.7 Canon Utilities ZoomBrowser EX Choice Guard Compatibility Pack for the 2007 Office system CyberLink DVD Suite Diablo II Dropbox ESET Online Scanner v3 Feedback Tool File Viewer Utility 1.3.1 FLV Player 2.0 (build 25) Free RAR Extract Frog Galactic Civilizations II - Dread Lords Galactic Civilizations II Demo Google Chrome Guild Wars Homepage Protection HP Customer Experience Enhancements HP DVD Play 3.7 HP Quick Launch Buttons HP Setup HP Support Assistant HP Update HP User Guides 0156 HP Wireless Assistant HPAsset component for HP Active Support Library Impulse IrfanView (remove only) Java Auto Updater Java 6 Update 22 Junk Mail filter update LabelPrint LightScribe System Software Malwarebytes' Anti-Malware Microsoft Live Search Toolbar Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Excel MUI (English) 2007 Microsoft Office Home and Student 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Suite Activation Assistant Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Works MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) muvee Reveal PhotoStitch Power2Go PowerDirector PowerRecover QLBCASL QuickTime Realtek 8136 8168 8169 Ethernet Driver Realtek USB 2.0 Card Reader RemoteCapture 2.7.4 Security Update for 2007 Microsoft Office System (KB2288621) Security Update for 2007 Microsoft Office System (KB2289158) Security Update for 2007 Microsoft Office System (KB2344875) Security Update for 2007 Microsoft Office System (KB2345043) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft Office Excel 2007 (KB2345035) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office PowerPoint 2007 (KB982158) Security Update for Microsoft Office PowerPoint Viewer (KB2413381) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB2344993) SmartWebPrinting StarCraft Update for 2007 Microsoft Office System (KB2284654) Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Vegas Movie Studio HD 9.0 Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Photo Gallery Windows Live Sign-in Assistant Windows Live Sync Windows Live Upload Tool Windows Live Writer Windows Media Player Firefox Plugin World of Warcraft Xvid 1.2.1 final uninstall ==== Event Viewer Messages From Past Week ======== 11/23/2010 10:01:16 AM, Error: bowser [8003] - The master browser has received a server announcement from the computer KRYSTALYN that believes that it is the master browser for the domain on transport NetBT_Tcpip_{AB2B36B5-E799-4F65-870B-42AEABD8884D}. The master browser is stopping or an election is being forced. ==== End Of File ===========================
-
DDS.txt: DDS (Ver_10-11-05.01) - NTFS_AMD64 Run by mike at 20:15:18.39 on Sun 11/28/2010 Internet Explorer: 9.0.7930.16406 Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3003.1896 [GMT -8:00] ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Bonjour\mDNSResponder.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k HsfXAudioService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Users\mike\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files (x86)\HP\QuickPlay\QPService.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\mike\Downloads\dds.scr
-
MBAM log: Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5166 Windows 6.1.7600 Internet Explorer 9.0.7930.16406 11/22/2010 3:15:12 AM mbam-log-2010-11-22 (03-15-12).txt Scan type: Quick scan Objects scanned: 143321 Time elapsed: 13 minute(s), 48 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 1 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
-
there was only one available update, it was a windows defender definitions update. the only response i got from startup repair was that it said if i had connected a new camera or device to disconnect it. the only thing i had connected was my mouse. still having the same "internet security settings have prevented ____________ from opening" errors even when i am offline. OTL log: All processes killed ========== FILES ========== C:\Users\Public\Documents\Server folder moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: AppData User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: mike ->Temp folder emptied: 110055133 bytes ->Temporary Internet Files folder emptied: 50763619 bytes ->Java cache emptied: 128094 bytes ->Google Chrome cache emptied: 357468839 bytes ->Flash cache emptied: 17128 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 5644 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes %systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes RecycleBin emptied: 2270 bytes Total Files Cleaned = 494.00 mb OTL by OldTimer - Version 3.2.17.3 log created on 11182010_212911 Files\Folders moved on Reboot... C:\Users\mike\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot. Registry entries deleted on Reboot...
-
ESET log: ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6211 # api_version=3.0.2 # EOSSerial=fa2305d15d7518409ed5fc6079ddde9e # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2010-11-15 11:04:41 # local_time=2010-11-15 03:04:41 (-0800, Pacific Standard Time) # country="United States" # lang=1033 # osver=6.1.7600 NT # compatibility_mode=768 16777215 100 0 24402678 24402678 0 0 # compatibility_mode=5893 16776573 100 94 0 41358435 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # scanned=154080 # found=2 # cleaned=0 # scan_time=4095 C:\Users\Public\Documents\Server\hlp.dat Win32/Bamital.EK trojan 00000000000000000000000000000000 I C:\Users\Public\Documents\Server\sphlp.dll Win32/Bamital.DZ trojan 00000000000000000000000000000000 I
-
MBAM log: Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5118 Windows 6.1.7600 Internet Explorer 9.0.7930.16406 11/15/2010 1:09:39 AM mbam-log-2010-11-15 (01-09-39).txt Scan type: Quick scan Objects scanned: 145240 Time elapsed: 5 minute(s), 51 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
-
i tried running erunt, but it gave me several access denied errors. still having installation and updating "internet Security Setting" problems i almost feel like i should be apologizing at this point for my computer's lack of cooperation, haha OTL log: ========== REGISTRY ========== Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell not found. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\"Shell"|"Explorer.exe" /E : value set successfully! ========== FILES ========== File\Folder C:\Users\mike\Application Data\install not found. File\Folder C:\Users\mike\Application Data\hotfix.exe not found. File\Folder C:\Users\mike\Application Data\completescan not found. OTL by OldTimer - Version 3.2.17.3 log created on 11152010_005042
-
the drive works fine, i can explore the dvd's or watch movies without problems. it's only installing programs that doesn't work the link you provided for fix ie came up broken, but when i searched the website i found a program by that name and ran it. it seemed to work ok, but i'm not sure because when i tried to run the next utility (fixit), i got an error. the attached image is a screenshot of the image. also i don't run firefox so i skipped that step. i do run chrome as my primary browser though. when i tried to run kapersky it wouldn't even start in chrome so i closed it and ran it in IE. it downloaded all the files and the database but then errored out before it started to scan. it gave me an error 0: null. so i guess no progress this time, same problems continuing. not sure if i mentioned it in this post, but this all started with the thinkpoint virus i picked up through a bogus trojan alert that my AV let through. thanks
-
MBAM log: Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5094 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 11/11/2010 12:14:35 AM mbam-log-2010-11-11 (00-14-35).txt Scan type: Quick scan Objects scanned: 141441 Time elapsed: 4 minute(s), 20 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
-
well so far things are pretty much the same. programs can't update and i can't install programs at all from the internal dvd drive. but if i download the same program it will load just fine. i thought it was odd that it was my internet security settings were stopping me from installing a program even while offline, so i went to the control panel to check my internet options and on the security tab there was not only the standard icons for internet, intranet and so on, there was an icon for "my computer" as well. i don't remember ever seeing that before. it wouldn't even let me click on it to see what the settings were, much less change them. the attached image is a portion of the screenshot i took to show you what i mean. i really hope this helps, thank you. OTL log: All processes killed ========== OTL ========== 64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D425283-D487-4337-BAB6-AB8354A81457}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{9D425283-D487-4337-BAB6-AB8354A81457} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\ not found. Registry value HKEY_USERS\S-1-5-21-329689184-2713047746-1803584903-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}\ not found. Registry value HKEY_USERS\S-1-5-21-329689184-2713047746-1803584903-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{9D425283-D487-4337-BAB6-AB8354A81457} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully. Registry key HKEY_USERS\S-1-5-21-329689184-2713047746-1803584903-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\google.com\www\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F}\ not found. File {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ not found. File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-itss\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0A9007C0-4076-11D3-8789-0000F8105754}\ not found. File {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F}\ not found. File {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{03C514A3-1EFB-4856-9F99-10D7BE1653C0}\ not found. File {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found not found. ========== COMMANDS ========== C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYFLASH] User: All Users User: AppData User: Default User: Default User User: mike ->Flash cache emptied: 127519 bytes User: Public Total Flash Files Cleaned = 0.00 mb [EMPTYTEMP] User: All Users User: AppData User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: mike ->Temp folder emptied: 159609705 bytes ->Temporary Internet Files folder emptied: 152457570 bytes ->Java cache emptied: 15255737 bytes ->Google Chrome cache emptied: 823583412 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 10917536 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 59790316 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67496 bytes %systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 749 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 1,165.00 mb OTL by OldTimer - Version 3.2.17.3 log created on 11112010_000149 Files\Folders moved on Reboot... C:\Users\mike\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot. Registry entries deleted on Reboot...
-
third log (new OTL): OTL logfile created on: 11/9/2010 9:55:13 PM - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\mike\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 63.00% Memory free 6.00 Gb Paging File | 5.00 Gb Available in Paging File | 80.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 220.82 Gb Total Space | 95.25 Gb Free Space | 43.13% Space Free | Partition Type: NTFS Drive D: | 11.87 Gb Total Space | 2.00 Gb Free Space | 16.85% Space Free | Partition Type: NTFS Drive E: | 1.39 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF Computer Name: COMPUTER | User Name: mike | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\mike\Downloads\MBRCheck.exe () PRC - C:\Users\mike\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) PRC - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) ========== Modules (SafeList) ========== MOD - C:\Users\mike\Downloads\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV:64bit: - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV:64bit: - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV:64bit: - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software) SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (Apple Mobile Device) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (HsfXAudioService) -- C:\Windows\SysWOW64\XAudio64.dll (Conexant Systems, Inc.) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (USBCCID) -- C:\Windows\SysNative\DRIVERS\RtsUCcid.sys File not found DRV:64bit: - (RtsUIR) -- C:\Windows\SysNative\DRIVERS\Rts516xIR.sys File not found DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software) DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\drivers\CHDRT64.sys (Conexant Systems Inc.) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (XAudio) -- C:\Windows\SysNative\drivers\XAudio64.sys (Conexant Systems, Inc.) DRV:64bit: - (HSF_DPV) -- C:\Windows\SysNative\drivers\CAX_DPV.sys (Conexant Systems, Inc.) DRV:64bit: - (mdmxsdk) -- C:\Windows\SysNative\drivers\mdmxsdk.sys (Conexant) DRV:64bit: - (winachsf) -- C:\Windows\SysNative\drivers\CAX_CNXT.sys (Conexant Systems, Inc.) DRV:64bit: - (CAXHWAZL) -- C:\Windows\SysNative\drivers\CAXHWAZL.sys (Conexant Systems, Inc.) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (SrvHsfV92) -- C:\Windows\SysNative\drivers\VSTDPV6.SYS (Conexant Systems, Inc.) DRV:64bit: - (SrvHsfWinac) -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS (Conexant Systems, Inc.) DRV:64bit: - (SrvHsfHDA) -- C:\Windows\SysNative\drivers\VSTAZL6.SYS (Conexant Systems, Inc.) DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof () DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell) DRV:64bit: - (netw5v64) Intel® -- C:\Windows\SysNative\drivers\netw5v64.sys (Intel Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.) DRV:64bit: - (IntcHdmiAddService) Intel® -- C:\Windows\SysNative\drivers\IntcHdmi.sys (Intel® Corporation) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek ) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (HpqKbFiltr) -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys (Hewlett-Packard Development Company, L.P.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...ion&pf=cnnb IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...ion&pf=cnnb IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...ion&pf=cnnb IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...ion&pf=cnnb IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...ion&pf=cnnb IE - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2009/12/25 13:40:07 | 000,000,000 | ---D | M] O1 HOSTS File: ([2009/06/10 13:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found. O2 - BHO: (hpBHO Class) - {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products) O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.) O3 - HKLM\..\Toolbar: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found. O3 - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found. O3 - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\..\Toolbar\WebBrowser: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found. O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe (Conexant Systems, Inc.) O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [igfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [updatePRCShortCut] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - Startup: C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\mike\AppData\Roaming\Dropbox\bin\Dropbox.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2 O7 - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2 O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKU\S-1-5-21-329689184-2713047746-1803584903-1000\..Trusted Domains: google.com ([www] http in Local intranet) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.94.156.1 68.94.157.1 O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008/07/26 14:22:58 | 000,676,064 | R--- | M] (Stardock Entertainment, Inc.) - E:\autorun.exe -- [ UDF ] O32 - AutoRun File - [2008/07/26 14:36:24 | 000,000,051 | R--- | M] () - E:\autorun.inf -- [ UDF ] O33 - MountPoints2\{a1a5a2d2-c3d9-11de-9f38-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{a1a5a2d2-c3d9-11de-9f38-806e6f6e6963}\Shell\AutoRun\command - "" = E:\autorun.exe -- [2008/07/26 14:22:58 | 000,676,064 | R--- | M] (Stardock Entertainment, Inc.) O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010/11/09 21:42:45 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010/11/08 22:35:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Stardock Games [2010/11/08 22:31:14 | 000,000,000 | ---D | C] -- C:\Users\mike\AppData\Local\Stardock [2010/11/05 13:36:19 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll [2010/11/05 13:36:18 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll [2010/11/05 13:36:17 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll [2010/11/05 13:36:17 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll [2010/11/05 13:36:17 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll [2010/11/05 13:36:17 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax [2010/11/05 13:36:17 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax [2010/11/05 13:36:17 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax [2010/11/05 13:36:17 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax [2010/11/05 13:27:37 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll [2010/11/05 13:27:37 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll [2010/11/05 13:27:37 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll [2010/11/05 13:27:37 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll [2010/11/05 13:27:36 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll [2010/11/05 13:27:36 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll [2010/11/05 13:27:35 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll [2010/11/05 13:27:35 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll [2010/11/05 13:27:35 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll [2010/11/05 13:27:35 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll [2010/11/05 13:27:35 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll [2010/11/05 13:27:35 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll [2010/11/05 13:27:35 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll [2010/11/05 13:27:35 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll [2010/11/05 13:27:34 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll [2010/11/05 13:27:34 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll [2010/11/05 13:27:33 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll [2010/11/05 13:27:33 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll [2010/11/05 13:27:33 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll [2010/11/05 13:27:33 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll [2010/11/05 13:27:30 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll [2010/11/05 13:27:30 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll [2010/11/05 13:27:30 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll [2010/11/05 13:27:30 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll [2010/11/05 13:27:28 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll [2010/11/05 13:27:28 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll [2010/11/05 13:27:28 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll [2010/11/05 13:27:28 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll [2010/11/05 13:27:27 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll [2010/11/05 13:27:27 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll [2010/11/05 13:27:24 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll [2010/11/05 13:27:24 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll [2010/11/05 13:27:22 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll [2010/11/05 13:27:22 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll [2010/11/05 13:27:21 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll [2010/11/05 13:27:21 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll [2010/11/05 13:27:20 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll [2010/11/05 13:27:20 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll [2010/11/05 13:27:19 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll [2010/11/05 13:27:19 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll [2010/11/05 13:27:19 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll [2010/11/05 13:27:19 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll [2010/11/05 13:27:19 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll [2010/11/05 13:27:19 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll [2010/11/05 13:27:17 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll [2010/11/05 13:27:17 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll [2010/11/05 13:27:17 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll [2010/11/05 13:27:17 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll [2010/11/05 13:27:17 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll [2010/11/05 13:27:17 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll [2010/11/05 13:27:17 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll [2010/11/05 13:27:17 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll [2010/11/05 13:27:16 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll [2010/11/05 13:27:16 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll [2010/11/05 13:27:16 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll [2010/11/05 13:27:16 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll [2010/11/05 13:27:15 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll [2010/11/05 13:27:15 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll [2010/11/05 13:27:15 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll [2010/11/05 13:27:15 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll [2010/11/05 13:27:15 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll [2010/11/05 13:27:15 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll [2010/11/05 13:27:14 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll [2010/11/05 13:27:14 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll [2010/11/05 13:27:13 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll [2010/11/05 13:27:13 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll [2010/11/05 13:27:13 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll [2010/11/05 13:27:13 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll [2010/11/05 13:27:13 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll [2010/11/05 13:27:13 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll [2010/11/05 13:27:13 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll [2010/11/05 13:27:13 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll [2010/11/05 13:27:12 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll [2010/11/05 13:27:12 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll [2010/11/05 13:27:12 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll [2010/11/05 13:27:12 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll [2010/11/05 13:27:12 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll [2010/11/05 13:27:12 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll [2010/11/05 13:27:11 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll [2010/11/05 13:27:11 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll [2010/11/05 13:27:11 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll [2010/11/05 13:27:11 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll [2010/11/05 13:27:10 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll [2010/11/05 13:27:10 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll [2010/11/05 13:27:09 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll [2010/11/05 13:27:09 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll [2010/11/05 13:27:09 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll [2010/11/05 13:27:09 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll [2010/11/05 13:27:09 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll [2010/11/05 13:27:09 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll [2010/11/05 13:27:08 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll [2010/11/05 13:27:08 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll [2010/11/05 13:27:07 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll [2010/11/05 13:27:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll [2010/11/05 13:27:06 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll [2010/11/05 13:27:06 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll [2010/11/05 13:27:06 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll [2010/11/05 13:27:06 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll [2010/11/05 13:27:05 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll [2010/11/05 13:27:05 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll [2010/11/05 13:27:05 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll [2010/11/05 13:27:05 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll [2010/11/05 13:27:04 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll [2010/11/05 13:27:04 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll [2010/11/05 13:27:03 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll [2010/11/05 13:27:03 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll [2010/11/05 13:27:01 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll [2010/11/05 13:27:01 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll [2010/11/05 13:27:01 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll [2010/11/05 13:27:01 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll [2010/11/05 13:27:01 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll [2010/11/05 13:27:01 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll [2010/11/05 13:26:59 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll [2010/11/05 13:26:59 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll [2010/11/05 13:26:58 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll [2010/11/05 13:26:58 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll [2010/11/05 13:26:58 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll [2010/11/05 13:26:58 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll [2010/11/05 13:26:58 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll [2010/11/05 13:26:58 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll [2010/11/05 13:26:54 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll [2010/11/05 13:26:54 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll [2010/11/05 13:26:54 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll [2010/11/05 13:26:54 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll [2010/11/05 13:26:52 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll [2010/11/05 13:26:52 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll [2010/11/05 13:26:52 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll [2010/11/05 13:26:52 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll [2010/11/05 13:26:52 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll [2010/11/05 13:26:52 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll [2010/11/05 13:26:51 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll [2010/11/05 13:26:51 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll [2010/11/05 13:26:49 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll [2010/11/05 13:26:49 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll [2010/11/05 13:26:49 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll [2010/11/05 13:26:49 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll [2010/11/05 13:26:49 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll [2010/11/05 13:26:49 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll [2010/11/05 13:26:47 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll [2010/11/05 13:26:47 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll [2010/11/05 13:26:46 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll [2010/11/05 13:26:46 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll [2010/11/05 13:26:45 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll [2010/11/05 13:26:45 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll [2010/11/05 13:26:45 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll [2010/11/05 13:26:45 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll [2010/11/05 13:26:44 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll [2010/11/05 13:26:44 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll [2010/11/05 13:26:44 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll [2010/11/05 13:26:44 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll [2010/11/05 13:26:44 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll [2010/11/05 13:26:44 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll [2010/11/05 13:26:43 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll [2010/11/05 13:26:43 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll [2010/11/05 13:26:43 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll [2010/11/05 13:26:43 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll [2010/11/05 13:26:40 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll [2010/11/05 13:26:40 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll [2010/11/05 13:26:40 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll [2010/11/05 13:26:40 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll [2010/11/05 13:26:39 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll [2010/11/05 13:26:39 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll [2010/11/05 13:26:30 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll [2010/11/05 13:26:30 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll [2010/11/05 13:26:26 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll [2010/11/05 13:26:26 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll [2010/11/05 13:26:26 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll [2010/11/05 13:26:26 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll [2010/11/05 13:26:26 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll [2010/11/05 13:26:26 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll [2010/11/05 13:26:25 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll [2010/11/05 13:26:25 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll [2010/11/05 13:26:25 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll [2010/11/05 13:26:25 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll [2010/11/05 13:26:24 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll [2010/11/05 13:26:24 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll [2010/11/05 13:26:23 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll [2010/11/05 13:26:23 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll [2010/11/05 13:26:21 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll [2010/11/05 13:26:21 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll [2010/11/05 13:17:32 | 000,000,000 | -H-D | C] -- C:\Windows\msdownld.tmp [2010/11/05 13:17:28 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx [2010/11/03 00:31:34 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010/11/03 00:31:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010/11/02 23:25:54 | 000,020,048 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys [2010/11/02 23:25:53 | 000,121,936 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys [2010/11/02 23:25:50 | 000,028,752 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys [2010/11/02 23:25:45 | 000,051,280 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys [2010/11/02 23:25:35 | 000,061,008 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys [2010/11/02 23:25:09 | 000,167,592 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe [2010/11/02 23:25:09 | 000,038,848 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr [2010/11/02 02:06:03 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys [2010/11/02 01:59:45 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll [2010/11/02 01:59:45 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll [2010/11/02 01:59:44 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2010/11/02 01:59:44 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2010/11/02 01:59:44 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2010/11/02 01:59:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2010/11/02 01:59:44 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2010/11/02 01:59:43 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll [2010/11/02 01:59:43 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys [2010/11/01 18:05:02 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat [2010/11/01 18:05:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat [2010/11/01 17:49:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0 [2010/11/01 17:47:39 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll [2010/11/01 17:47:39 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll [2010/11/01 17:47:39 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe [2010/11/01 17:47:39 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe [2010/11/01 17:47:39 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll [2010/11/01 17:47:39 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll [2010/11/01 17:47:39 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll [2010/11/01 17:47:39 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll [2010/11/01 17:02:54 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2010/11/01 17:02:45 | 000,702,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2010/11/01 17:02:45 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll [2010/11/01 17:02:44 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2010/11/01 17:02:44 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2010/11/01 17:02:44 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2010/11/01 17:02:44 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2010/11/01 17:02:43 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2010/11/01 17:02:43 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2010/11/01 17:02:43 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2010/11/01 17:02:43 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2010/11/01 17:02:43 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2010/11/01 17:02:43 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2010/11/01 17:02:43 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2010/11/01 17:02:43 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2010/11/01 17:01:27 | 002,085,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll [2010/11/01 17:01:26 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2010/11/01 17:01:25 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe [2010/11/01 17:01:24 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe [2010/11/01 17:01:00 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll [2010/11/01 17:00:57 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2010/11/01 17:00:57 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2010/11/01 17:00:56 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2010/11/01 17:00:55 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll [2010/11/01 17:00:55 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll [2010/11/01 17:00:52 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll [2010/11/01 17:00:52 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll [2010/11/01 17:00:44 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll [2010/11/01 17:00:43 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll [2010/11/01 17:00:33 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2010/11/01 17:00:33 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2010/11/01 17:00:29 | 014,627,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2010/11/01 17:00:27 | 011,406,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2010/11/01 17:00:25 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2010/11/01 17:00:24 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2010/11/01 17:00:22 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll [2010/11/01 17:00:19 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll [2010/11/01 17:00:19 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll [2010/11/01 17:00:18 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll [2010/11/01 17:00:18 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll [2010/11/01 17:00:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll [2010/11/01 17:00:16 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll [2010/11/01 17:00:16 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll [2010/11/01 17:00:16 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll [2010/11/01 16:59:32 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll [2010/11/01 16:59:32 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll [2010/11/01 16:59:21 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll [2010/11/01 16:59:20 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2010/11/01 16:58:28 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll [2010/11/01 16:57:10 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2010/11/01 16:57:10 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2010/11/01 16:57:10 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll [2010/11/01 16:57:10 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll [2010/11/01 16:57:10 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2010/11/01 16:57:10 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2010/11/01 16:56:40 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll [2010/10/26 18:28:51 | 000,000,000 | ---D | C] -- C:\Users\mike\AppData\Roaming\Malwarebytes [2010/10/26 18:28:40 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2010/10/26 18:28:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010/10/26 04:43:58 | 000,000,000 | ---D | C] -- C:\Users\mike\AppData\Local\{6F8B1001-E04C-4285-9498-560232F5AD2D} [2010/10/11 00:57:49 | 000,000,000 | -H-D | C] -- C:\Users\Public\Documents\Server [35 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010/11/09 21:40:46 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010/11/09 21:40:46 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010/11/09 21:37:49 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010/11/09 21:37:49 | 000,624,178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010/11/09 21:37:49 | 000,106,522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010/11/09 21:33:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/11/09 21:33:18 | 2361,806,848 | -HS- | M] () -- C:\hiberfil.sys [2010/11/09 07:24:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-329689184-2713047746-1803584903-1000UA.job [2010/11/08 23:24:04 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-329689184-2713047746-1803584903-1000Core.job [2010/11/05 12:47:54 | 000,003,232 | ---- | M] () -- C:\Users\mike\Documents\Attach.zip [2010/11/05 12:23:33 | 000,000,000 | ---- | M] () -- C:\Users\mike\defogger_reenable [2010/11/05 03:26:28 | 000,002,354 | ---- | M] () -- C:\Users\mike\Desktop\Google Chrome.lnk [2010/11/03 02:21:49 | 000,000,629 | ---- | M] () -- C:\Windows\SysNative\mapisvc.inf [2010/11/03 00:31:36 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010/11/02 23:25:54 | 000,001,852 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2010/11/02 23:25:35 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt [2010/11/01 19:14:38 | 000,001,291 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk [2010/11/01 18:06:40 | 000,355,240 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010/10/26 05:01:52 | 000,000,006 | ---- | M] () -- C:\Users\mike\AppData\Roaming\start [2010/10/26 05:00:33 | 000,000,006 | ---- | M] () -- C:\Users\mike\AppData\Roaming\completescan [2010/10/26 04:56:12 | 000,000,010 | ---- | M] () -- C:\Users\mike\AppData\Roaming\install [2010/10/25 21:07:35 | 000,000,290 | ---- | M] () -- C:\ProgramData\hpqp.ini [2010/10/19 21:53:30 | 000,012,960 | ---- | M] () -- C:\Users\mike\Documents\eCommerce Questionnaire.docx [35 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2010/11/05 12:47:54 | 000,003,232 | ---- | C] () -- C:\Users\mike\Documents\Attach.zip [2010/11/05 12:23:33 | 000,000,000 | ---- | C] () -- C:\Users\mike\defogger_reenable [2010/11/03 00:31:36 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2010/11/02 23:25:54 | 000,001,852 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2010/11/01 18:37:43 | 000,001,291 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk [2010/10/26 05:01:52 | 000,000,006 | ---- | C] () -- C:\Users\mike\AppData\Roaming\start [2010/10/26 05:00:33 | 000,000,006 | ---- | C] () -- C:\Users\mike\AppData\Roaming\completescan [2010/10/26 04:56:12 | 000,000,010 | ---- | C] () -- C:\Users\mike\AppData\Roaming\install [2010/10/18 15:27:38 | 000,012,960 | ---- | C] () -- C:\Users\mike\Documents\eCommerce Questionnaire.docx [2010/09/28 02:29:06 | 000,815,104 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2010/09/28 02:29:06 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2010/08/25 17:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll [2010/08/25 17:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll [2010/05/08 16:09:51 | 000,000,106 | ---- | C] () -- C:\Users\mike\AppData\Roaming\wklnhst.dat [2010/04/17 11:15:13 | 000,000,262 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini [2010/03/20 19:45:51 | 000,000,000 | ---- | C] () -- C:\Windows\OpPrintServer.INI [2010/02/09 07:57:15 | 000,003,584 | ---- | C] () -- C:\Users\mike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/12/28 22:45:42 | 000,000,021 | ---- | C] () -- C:\ProgramData\hpqp.txt [2009/12/25 13:39:45 | 000,000,362 | ---- | C] () -- C:\ProgramData\hpzinstall.log [2009/12/25 13:10:13 | 000,000,000 | ---- | C] () -- C:\Users\mike\AppData\Local\QSwitch.txt [2009/12/25 13:10:13 | 000,000,000 | ---- | C] () -- C:\Users\mike\AppData\Local\DSwitch.txt [2009/12/25 13:10:13 | 000,000,000 | ---- | C] () -- C:\Users\mike\AppData\Local\AtStart.txt [2009/12/25 13:10:12 | 000,000,281 | ---- | C] () -- C:\ProgramData\HPWALog.txt [2009/10/28 07:56:35 | 000,000,105 | ---- | C] () -- C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log [2009/10/28 07:56:28 | 000,000,032 | ---- | C] () -- C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log [2009/10/28 07:56:12 | 000,000,032 | ---- | C] () -- C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log [2009/10/28 07:55:50 | 000,000,032 | ---- | C] () -- C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log [2009/10/28 07:55:11 | 000,000,290 | ---- | C] () -- C:\ProgramData\hpqp.ini [2009/10/28 07:55:09 | 000,000,032 | ---- | C] () -- C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log [2009/08/17 12:22:33 | 000,000,109 | ---- | C] () -- C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log [2009/08/17 12:18:04 | 000,000,110 | ---- | C] () -- C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log [2009/08/17 12:16:01 | 000,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log [2009/08/17 12:15:15 | 000,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log [2009/07/13 15:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009/07/13 13:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll < End of report >
-
second log (MBRcheck): MBRCheck, version 1.2.3 © 2010, AD Command-line: Windows Version: Windows 7 Home Premium Edition Windows Information: (build 7600), 64-bit Base Board Manufacturer: Wistron BIOS Manufacturer: Hewlett-Packard System Manufacturer: Hewlett-Packard System Product Name: HP G60 Notebook PC Logical Drives Mask: 0x0000001c Kernel Drivers (total 235): 0x02C12000 \SystemRoot\system32\ntoskrnl.exe 0x031EE000 \SystemRoot\system32\hal.dll 0x00BBF000 \SystemRoot\system32\kdcom.dll 0x00C4B000 \SystemRoot\system32\mcupdate_GenuineIntel.dll 0x00C8F000 \SystemRoot\system32\PSHED.dll 0x00CA3000 \SystemRoot\system32\CLFS.SYS 0x00D01000 \SystemRoot\system32\CI.dll 0x00E43000 \SystemRoot\system32\drivers\Wdf01000.sys 0x00EE7000 \SystemRoot\system32\drivers\WDFLDR.SYS 0x00EF6000 \SystemRoot\system32\DRIVERS\ACPI.sys 0x00F4D000 \SystemRoot\system32\DRIVERS\WMILIB.SYS 0x00F56000 \SystemRoot\system32\DRIVERS\msisadrv.sys 0x00F60000 \SystemRoot\system32\DRIVERS\pci.sys 0x00F93000 \SystemRoot\system32\DRIVERS\vdrvroot.sys 0x00FA0000 \SystemRoot\system32\DRIVERS\isapnp.sys 0x00FA9000 \SystemRoot\system32\DRIVERS\mpio.sys 0x00FD3000 \SystemRoot\System32\drivers\partmgr.sys 0x00FE8000 \SystemRoot\system32\DRIVERS\compbatt.sys 0x00FF1000 \SystemRoot\system32\DRIVERS\BATTC.SYS 0x00E00000 \SystemRoot\system32\DRIVERS\volmgr.sys 0x010B5000 \SystemRoot\System32\drivers\volmgrx.sys 0x01111000 \SystemRoot\system32\DRIVERS\intelide.sys 0x01119000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS 0x01129000 \SystemRoot\system32\DRIVERS\aliide.sys 0x01130000 \SystemRoot\system32\DRIVERS\amdide.sys 0x01137000 \SystemRoot\system32\DRIVERS\cmdide.sys 0x0113F000 \SystemRoot\System32\drivers\mountmgr.sys 0x01159000 \SystemRoot\system32\DRIVERS\msdsm.sys 0x0117F000 \SystemRoot\system32\DRIVERS\nvraid.sys 0x011A8000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS 0x011D8000 \SystemRoot\system32\DRIVERS\pciide.sys 0x011DF000 \SystemRoot\system32\DRIVERS\viaide.sys 0x01205000 \SystemRoot\system32\DRIVERS\iaStorV.sys 0x01323000 \SystemRoot\system32\DRIVERS\atapi.sys 0x0132C000 \SystemRoot\system32\DRIVERS\ataport.SYS 0x01356000 \SystemRoot\system32\DRIVERS\lsi_sas.sys 0x01373000 \SystemRoot\system32\DRIVERS\storport.sys 0x013D5000 \SystemRoot\system32\DRIVERS\msahci.sys 0x013E0000 \SystemRoot\system32\DRIVERS\HpSAMD.sys 0x01000000 \SystemRoot\system32\DRIVERS\adp94xx.sys 0x0144C000 \SystemRoot\system32\DRIVERS\adpahci.sys 0x014A2000 \SystemRoot\system32\DRIVERS\adpu320.sys 0x014D1000 \SystemRoot\system32\DRIVERS\amdsata.sys 0x014EF000 \SystemRoot\system32\DRIVERS\amdsbs.sys 0x01536000 \SystemRoot\system32\DRIVERS\amdxata.sys 0x01541000 \SystemRoot\system32\DRIVERS\arc.sys 0x0155A000 \SystemRoot\system32\DRIVERS\arcsas.sys 0x01575000 \SystemRoot\system32\DRIVERS\elxstor.sys 0x01400000 \SystemRoot\system32\DRIVERS\iirsp.sys 0x01411000 \SystemRoot\system32\DRIVERS\lsi_fc.sys 0x01430000 \SystemRoot\system32\DRIVERS\lsi_sas2.sys 0x0107B000 \SystemRoot\system32\DRIVERS\lsi_scsi.sys 0x0109A000 \SystemRoot\system32\DRIVERS\megasas.sys 0x01637000 \SystemRoot\system32\DRIVERS\MegaSR.sys 0x016DB000 \SystemRoot\system32\DRIVERS\nfrd960.sys 0x016EB000 \SystemRoot\system32\DRIVERS\nvstor.sys 0x01817000 \SystemRoot\system32\DRIVERS\ql2300.sys 0x01716000 \SystemRoot\system32\DRIVERS\ql40xx.sys 0x019BB000 \SystemRoot\system32\DRIVERS\SiSRaid2.sys 0x019C9000 \SystemRoot\system32\DRIVERS\sisraid4.sys 0x019E1000 \SystemRoot\system32\DRIVERS\stexstor.sys 0x01775000 \SystemRoot\system32\DRIVERS\vsmraid.sys 0x0179F000 \SystemRoot\system32\drivers\fltmgr.sys 0x019EB000 \SystemRoot\system32\drivers\fileinfo.sys 0x01A14000 \SystemRoot\System32\Drivers\Ntfs.sys 0x01CDE000 \SystemRoot\System32\Drivers\msrpc.sys 0x01D3C000 \SystemRoot\System32\Drivers\ksecdd.sys 0x01D56000 \SystemRoot\System32\Drivers\cng.sys 0x01DC9000 \SystemRoot\System32\drivers\pcw.sys 0x01DDA000 \SystemRoot\System32\Drivers\Fs_Rec.sys 0x01E3F000 \SystemRoot\system32\drivers\ndis.sys 0x01F31000 \SystemRoot\system32\drivers\NETIO.SYS 0x01F91000 \SystemRoot\System32\Drivers\ksecpkg.sys 0x02002000 \SystemRoot\System32\drivers\tcpip.sys 0x01C00000 \SystemRoot\System32\drivers\fwpkclnt.sys 0x01FBC000 \SystemRoot\system32\DRIVERS\wd.sys 0x01C4A000 \SystemRoot\system32\DRIVERS\volsnap.sys 0x01FC4000 \SystemRoot\System32\Drivers\spldr.sys 0x01FCC000 \SystemRoot\system32\DRIVERS\sbp2port.sys 0x01E00000 \SystemRoot\System32\drivers\rdyboost.sys 0x01FE9000 \SystemRoot\System32\Drivers\mup.sys 0x01C96000 \SystemRoot\System32\drivers\hwpolicy.sys 0x01C9F000 \SystemRoot\System32\DRIVERS\fvevol.sys 0x01DE4000 \SystemRoot\system32\DRIVERS\disk.sys 0x01600000 \SystemRoot\system32\DRIVERS\cdrom.sys 0x01BEF000 \SystemRoot\System32\Drivers\Null.SYS 0x01BF8000 \SystemRoot\System32\Drivers\Beep.SYS 0x01A00000 \SystemRoot\System32\drivers\vga.sys 0x00E15000 \SystemRoot\System32\drivers\VIDEOPRT.SYS 0x01800000 \SystemRoot\System32\drivers\watchdog.sys 0x0162A000 \SystemRoot\System32\DRIVERS\RDPCDD.sys 0x017EB000 \SystemRoot\system32\drivers\rdpencdd.sys 0x017F4000 \SystemRoot\system32\drivers\rdprefmp.sys 0x010A6000 \SystemRoot\System32\Drivers\Msfs.SYS 0x011E7000 \SystemRoot\System32\Drivers\Npfs.SYS 0x00DC1000 \SystemRoot\system32\DRIVERS\tdx.sys 0x00DDF000 \SystemRoot\system32\DRIVERS\TDI.SYS 0x00DEC000 \SystemRoot\System32\Drivers\aswTdi.SYS 0x03427000 \SystemRoot\system32\drivers\afd.sys 0x034B1000 \SystemRoot\System32\Drivers\aswRdr.SYS 0x034BB000 \SystemRoot\System32\DRIVERS\netbt.sys 0x03500000 \SystemRoot\system32\DRIVERS\wfplwf.sys 0x03509000 \SystemRoot\system32\DRIVERS\pacer.sys 0x0352F000 \SystemRoot\system32\DRIVERS\vwififlt.sys 0x03545000 \SystemRoot\system32\DRIVERS\netbios.sys 0x03571000 \SystemRoot\system32\DRIVERS\wanarp.sys 0x0358C000 \SystemRoot\system32\DRIVERS\termdd.sys 0x035A0000 \SystemRoot\system32\DRIVERS\rdbss.sys 0x035F1000 \SystemRoot\system32\drivers\nsiproxy.sys 0x03400000 \SystemRoot\system32\DRIVERS\mssmbios.sys 0x0340B000 \SystemRoot\System32\drivers\discache.sys 0x00C00000 \SystemRoot\System32\Drivers\dfsc.sys 0x03554000 \SystemRoot\system32\DRIVERS\blbdrive.sys 0x00C1E000 \SystemRoot\System32\Drivers\aswSP.SYS 0x03EB8000 \SystemRoot\system32\DRIVERS\tunnel.sys 0x03EDE000 \SystemRoot\system32\DRIVERS\intelppm.sys 0x03EF4000 \SystemRoot\system32\DRIVERS\wmiacpi.sys 0x04282000 \SystemRoot\system32\DRIVERS\igdkmd64.sys 0x04CA1000 \SystemRoot\System32\drivers\dxgkrnl.sys 0x04D95000 \SystemRoot\System32\drivers\dxgmms1.sys 0x04DDB000 \SystemRoot\system32\DRIVERS\usbuhci.sys 0x04200000 \SystemRoot\system32\DRIVERS\USBPORT.SYS 0x04256000 \SystemRoot\system32\DRIVERS\usbehci.sys 0x03EFD000 \SystemRoot\system32\DRIVERS\HDAudBus.sys 0x03F21000 \SystemRoot\system32\DRIVERS\Rt64win7.sys 0x0546A000 \SystemRoot\system32\DRIVERS\athrx.sys 0x055D9000 \SystemRoot\system32\DRIVERS\vwifibus.sys 0x05400000 \SystemRoot\system32\DRIVERS\i8042prt.sys 0x0541E000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys 0x0542A000 \SystemRoot\system32\DRIVERS\kbdclass.sys 0x03F5A000 \SystemRoot\system32\DRIVERS\SynTP.sys 0x05439000 \SystemRoot\system32\DRIVERS\USBD.SYS 0x0543B000 \SystemRoot\system32\DRIVERS\mouclass.sys 0x0544A000 \SystemRoot\system32\DRIVERS\CmBatt.sys 0x0544F000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys 0x055E6000 \SystemRoot\system32\DRIVERS\CompositeBus.sys 0x04267000 \SystemRoot\system32\DRIVERS\AgileVpn.sys 0x03FA3000 \SystemRoot\system32\DRIVERS\rasl2tp.sys 0x0545C000 \SystemRoot\system32\DRIVERS\ndistapi.sys 0x03FC7000 \SystemRoot\system32\DRIVERS\ndiswan.sys 0x03E00000 \SystemRoot\system32\DRIVERS\raspppoe.sys 0x03E1B000 \SystemRoot\system32\DRIVERS\raspptp.sys 0x03E3C000 \SystemRoot\system32\DRIVERS\rassstp.sys 0x05468000 \SystemRoot\system32\DRIVERS\swenum.sys 0x03E56000 \SystemRoot\system32\DRIVERS\ks.sys 0x04DE8000 \SystemRoot\system32\DRIVERS\umbus.sys 0x05072000 \SystemRoot\system32\DRIVERS\usbhub.sys 0x050CC000 \SystemRoot\System32\Drivers\NDProxy.SYS 0x050E1000 \SystemRoot\system32\drivers\CHDRT64.sys 0x0518F000 \SystemRoot\system32\drivers\portcls.sys 0x051CC000 \SystemRoot\system32\drivers\drmk.sys 0x051EE000 \SystemRoot\system32\drivers\ksthunk.sys 0x05000000 \SystemRoot\system32\DRIVERS\CAXHWAZL.sys 0x05810000 \SystemRoot\system32\DRIVERS\CAX_DPV.sys 0x05AD0000 \SystemRoot\system32\DRIVERS\CAX_CNXT.sys 0x05B9B000 \SystemRoot\system32\drivers\modem.sys 0x05BAA000 \SystemRoot\system32\drivers\IntcHdmi.sys 0x00010000 \SystemRoot\System32\win32k.sys 0x05BD1000 \SystemRoot\System32\drivers\Dxapi.sys 0x05BDD000 \SystemRoot\system32\DRIVERS\monitor.sys 0x00420000 \SystemRoot\System32\TSDDD.dll 0x006B0000 \SystemRoot\System32\cdd.dll 0x05A00000 \SystemRoot\system32\DRIVERS\udfs.sys 0x00980000 \SystemRoot\System32\ATMFD.DLL 0x05A54000 \SystemRoot\System32\Drivers\crashdmp.sys 0x05A62000 \SystemRoot\System32\Drivers\dump_dumpata.sys 0x05A6E000 \SystemRoot\System32\Drivers\dump_msahci.sys 0x05A79000 \SystemRoot\System32\Drivers\dump_dumpfve.sys 0x05A8C000 \SystemRoot\system32\drivers\luafv.sys 0x05984000 \??\C:\Windows\system32\drivers\aswMonFlt.sys 0x05AAF000 \SystemRoot\System32\Drivers\aswFsBlk.SYS 0x059BE000 \SystemRoot\system32\drivers\WudfPf.sys 0x05AB8000 \SystemRoot\system32\DRIVERS\lltdio.sys 0x02E62000 \SystemRoot\system32\DRIVERS\nwifi.sys 0x02EB5000 \SystemRoot\system32\DRIVERS\ndisuio.sys 0x02EC8000 \SystemRoot\system32\DRIVERS\rspndr.sys 0x02EE0000 \SystemRoot\system32\drivers\HTTP.sys 0x02FA8000 \SystemRoot\system32\DRIVERS\bowser.sys 0x02FC6000 \SystemRoot\System32\drivers\mpsdrv.sys 0x02E00000 \SystemRoot\system32\DRIVERS\mrxsmb.sys 0x03230000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys 0x0327E000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys 0x032A1000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys 0x032A6000 \SystemRoot\system32\drivers\peauth.sys 0x0334C000 \SystemRoot\System32\Drivers\secdrv.SYS 0x03357000 \SystemRoot\System32\DRIVERS\srvnet.sys 0x03384000 \SystemRoot\System32\drivers\tcpipreg.sys 0x03396000 \SystemRoot\system32\DRIVERS\XAudio64.sys 0x04E4E000 \SystemRoot\System32\DRIVERS\srv2.sys 0x04EB5000 \SystemRoot\System32\DRIVERS\srv.sys 0x04F4B000 \SystemRoot\system32\DRIVERS\usbccgp.sys 0x04F68000 \SystemRoot\system32\DRIVERS\hidusb.sys 0x04F76000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS 0x04F8F000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS 0x04F98000 \SystemRoot\system32\DRIVERS\mouhid.sys 0x77B60000 \Windows\System32\ntdll.dll 0x48420000 \Windows\System32\smss.exe 0xFFE80000 \Windows\System32\apisetschema.dll 0xFFED0000 \Windows\System32\autochk.exe 0xFFD60000 \Windows\System32\msctf.dll 0xFFB00000 \Windows\System32\iertutil.dll 0xFFA90000 \Windows\System32\gdi32.dll 0xFFA60000 \Windows\System32\imm32.dll 0xFF850000 \Windows\System32\ole32.dll 0xFEAC0000 \Windows\System32\shell32.dll 0xFE9E0000 \Windows\System32\advapi32.dll 0xFE860000 \Windows\System32\urlmon.dll 0xFE7E0000 \Windows\System32\difxapi.dll 0xFE6B0000 \Windows\System32\wininet.dll 0x77D30000 \Windows\System32\normaliz.dll 0x77A60000 \Windows\System32\user32.dll 0x77940000 \Windows\System32\kernel32.dll 0x77D20000 \Windows\System32\psapi.dll 0xFE580000 \Windows\System32\rpcrt4.dll 0xFE4E0000 \Windows\System32\comdlg32.dll 0xFE410000 \Windows\System32\usp10.dll 0xFE230000 \Windows\System32\setupapi.dll 0xFE190000 \Windows\System32\clbcatq.dll 0xFE0B0000 \Windows\System32\oleaut32.dll 0xFE0A0000 \Windows\System32\lpk.dll 0xFE020000 \Windows\System32\shlwapi.dll 0xFDFD0000 \Windows\System32\ws2_32.dll 0xFDF80000 \Windows\System32\Wldap32.dll 0xFDF60000 \Windows\System32\imagehlp.dll 0xFDF50000 \Windows\System32\nsi.dll 0xFDF30000 \Windows\System32\sechost.dll 0xFDE90000 \Windows\System32\msvcrt.dll 0xFDE50000 \Windows\System32\cfgmgr32.dll 0xFDDE0000 \Windows\System32\KernelBase.dll 0xFDD40000 \Windows\System32\comctl32.dll 0xFDBD0000 \Windows\System32\crypt32.dll 0xFDB90000 \Windows\System32\wintrust.dll 0xFDB70000 \Windows\System32\devobj.dll 0xFDB60000 \Windows\System32\msasn1.dll 0x77D10000 \Windows\SysWOW64\normaliz.dll Processes (total 52): 0 System Idle Process 4 System 232 C:\Windows\System32\smss.exe 336 csrss.exe 388 C:\Windows\System32\wininit.exe 400 csrss.exe 456 C:\Windows\System32\winlogon.exe 492 C:\Windows\System32\services.exe 500 C:\Windows\System32\lsass.exe 508 C:\Windows\System32\lsm.exe 616 C:\Windows\System32\svchost.exe 732 C:\Windows\System32\svchost.exe 784 C:\Windows\System32\svchost.exe 900 C:\Windows\System32\svchost.exe 960 C:\Windows\System32\svchost.exe 356 C:\Windows\System32\svchost.exe 1056 C:\Windows\System32\svchost.exe 1140 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe 1328 C:\Windows\System32\spoolsv.exe 1364 C:\Windows\System32\svchost.exe 1476 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 1496 C:\Program Files (x86)\Bonjour\mDNSResponder.exe 1556 C:\Windows\System32\svchost.exe 1592 C:\Windows\System32\svchost.exe 1616 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 1652 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 1692 C:\Windows\System32\svchost.exe 2472 C:\Windows\System32\taskhost.exe 2520 C:\Windows\System32\dwm.exe 2532 C:\Windows\explorer.exe 2668 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 2676 C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe 2692 C:\Windows\System32\igfxtray.exe 2700 C:\Windows\System32\hkcmd.exe 2708 C:\Windows\System32\igfxpers.exe 2716 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe 3040 C:\Windows\System32\igfxsrvc.exe 544 C:\Program Files\Windows Media Player\wmpnetwk.exe 2120 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe 3080 C:\Windows\System32\svchost.exe 472 C:\Windows\System32\audiodg.exe 2640 C:\Windows\System32\msiexec.exe 992 C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe 3976 C:\Windows\System32\SearchIndexer.exe 3268 C:\Windows\winsxs\wow64_microsoft-windows-notepad_31bf3856ad364e35_6.1.7600.16385_none_d5642974be118415\notepad.exe 3716 C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe 1848 C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe 2856 C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe 988 C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe 2064 C:\Users\mike\Downloads\MBRCheck.exe 3848 C:\Windows\System32\conhost.exe 3588 C:\Windows\System32\dllhost.exe \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`0c800000 (NTFS) \\.\D: --> \\.\PhysicalDrive0 at offset 0x00000037`41000000 (NTFS) PhysicalDrive0 Model Number: HitachiHTS545025B9A300, Rev: PB2OCA0G Size Device Name MBR Status -------------------------------------------- 232 GB \\.\PhysicalDrive0 Unknown MBR code SHA1: 74514A4A2FF1F413024A469C0E6781B42D465460 Found non-standard or infected MBR. Enter 'Y' and hit ENTER for more options, or 'N' to exit: Done!