Jump to content

Search the Community

Showing results for tags 'black screen with cursor'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 5 results

  1. Okay so i'm having the black screen /w cursor and don't bother suggesting me any solutions as i've probably done them all. I've been working on this for 5 days and I just want to give up and reformat/wipe the pc. So first things first, this pc has a lot of important work data and i'm not really an expert into handling them during format. So how do I backup them all? Should I use my flash drive(14 gb) to store them all one by one? Because the important data can reach up to 100gb and my flash drive can only carry 14. Should I backup 14gb at a time then store them in google drive on another pc then repeat? Does anyone have a better method? I'm posting this to see if anyone has a more smooth method to backup all imporant stuff then wipe the system clean. Thank you.
  2. Hi. I was browsing my computer when Windows Explorer suddenly crashed. My discord window was still open and working fine. I tried pressing the windows key and nothing happened. I then tried opening task manager through ctrl+alt+delete, but it wouldn't open. I then tried to open my computer in safe mode with networking, but it will not connect to a network (even ethernet), leaving me unable to sign into my windows account. I tried anyway and was left with a never ending loading screen after putting in my passcode. I grabbed my windows installation disk, a flash drive with Farbar Recovery Scan Tool, opened the bios, ran it through the cmd prompt, and have attached the FRST.txt file to this post. If anyone knows a way to help, I'd sure appreciate it. Thanks! FRST.txt
  3. Hello everyone, I am new here. I am using a HP pavilion DM4, with windows 7 home premium, and about 20 days ago (7/8/2019, I got a black screen with a cursor only after logging into my Admin Account, even on safemode. the day before this issue occurred (7/7/2019), I had turned off my AVG, while trying to run a malwarebytes scan, to do so, I changed its (AVGs) permissions to EVERYONE and I also set the AVG off, and restarted my computer, Lo and Behold, I couldn't get back on my ADMIN main user!, I am currently writing this on the same laptop, but on the account of a secondary user. I can only open a few Antivirus programs such as malwarebytes and AVG, however I cannot run Roguekiller or MSERT as they freeze. Ive done many test and NONE concluded malware, except a Malware bytes Anti Rootkit scan which detected 4 trojan files located in C:$\recyclebin (system recycle bin?). I've since removed them and I am currently attempting all my options. The crazy thing is, I actually fixed the problem, via system restore, and all was good! however I became stupid in thinking and decided to RE-RESTORE the system, because I was upset that my google chrome had updated!!!, and thus the problem had returned, and the old restore points have vanished since!. I would really love some help because I am sure something has taken over the admin privileges of the system, and is running SVCHOST.EXE and CONSENT.EXE upon start. Ive studied the strings and the threads and they run at 25% CPUs, jamming the system up. Ive also noticed something keeps closing antiviruses and services.exe when i try to open them. (I see all this via PROCESSEXPLORER from the second account with admin privileges). I cannot run SERVICES.EXE, but i can run regedit, msconfig, task manager, etc. Ive done SFC/scan as well as CHKDSK and it found some corrupt files and "fixed them", but the issue persist. Ive downloaded FRST, roguekiller, combofix, adwcleaner,. I have not run them, I am awaiting assistance (from you guys). please help me!!!! thank you in advance!
  4. https://forums.malwarebytes.org/index.php?showtopic=134417 I have the exact same problem as this post. The screen is black, except for the cursor. Boot screens seem fine, but as soon as windows starts up, it's blank screen time. I cannot reach any form of safe mode. When I tried to use my Windows 7 disk it offered no recovery options. With my Windows 7 Recovery disk I was able to reach a command prompt. First I followed the instruction chkdsk C: /f /r /x Then I ran the Farbar Recovery Scan tool Here is my result. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by SYSTEM on MININT-3APNJEO on 24-03-2014 19:41:03 Running from E:\ Windows 7 Home Premium (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Recovery The current controlset is ControlSet003 ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log. The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2014-01-09] (Realtek Semiconductor) HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation) HKLM-x32\...\Run: [startCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [bingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2357984 2014-02-20] (Microsoft Corp.) HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2367512 2013-12-18] (Sony Corporation) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-01] (Apple Inc.) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated) HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [415232 2009-07-13] (Microsoft Corporation) HKU\nzomo\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-08-30] (AMD) HKU\nzomo\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHQA.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION) HKU\nzomo\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-09] (IObit) ==================== Services (Whitelisted) ================= S2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit) S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) S2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173280 2014-02-20] (Microsoft Corp.) S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-15] (McAfee, Inc.) S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [0 2009-07-13] () S2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation) S2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [481304 2013-12-18] (Sony Corporation) ==================== Drivers (Whitelisted) ==================== S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation) S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation) S0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit) S3 ALSysIO; \??\C:\Users\nzomo\AppData\Local\Temp\ALSysIO64.sys [X] S4 AsrCDDrv; \??\C:\Windows\SysWOW64\Drivers\AsrCDDrv.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-24 19:40 - 2014-03-24 19:41 - 00000000 ____D () C:\FRST 2014-03-23 23:45 - 2014-03-23 23:45 - 00000000 __SHD () C:\found.001 2014-03-23 22:39 - 2014-03-23 22:40 - 00451080 _____ () C:\Windows\Minidump\032414-16005-01.dmp 2014-03-20 09:24 - 2014-03-20 09:24 - 00455152 _____ () C:\Windows\Minidump\032014-39655-01.dmp 2014-03-19 21:05 - 2014-03-19 21:05 - 00000000 _____ () C:\Windows\Minidump\032014-18345-01.dmp 2014-03-17 15:44 - 2014-03-17 15:44 - 00274672 _____ () C:\Windows\Minidump\031714-39515-01.dmp 2014-03-12 06:02 - 2014-03-12 06:02 - 05777288 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2014-03-12 04:48 - 2014-02-28 22:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2014-03-12 04:48 - 2014-02-28 21:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2014-03-12 04:48 - 2014-02-28 21:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll 2014-03-12 04:48 - 2014-02-28 20:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2014-03-12 04:48 - 2014-02-28 20:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2014-03-12 04:48 - 2014-02-28 20:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll 2014-03-12 04:48 - 2014-02-28 20:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2014-03-12 04:48 - 2014-02-28 20:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2014-03-12 04:48 - 2014-02-28 20:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll 2014-03-12 04:48 - 2014-02-28 20:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2014-03-12 04:48 - 2014-02-28 20:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe 2014-03-12 04:48 - 2014-02-28 20:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll 2014-03-12 04:48 - 2014-02-28 20:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-03-12 04:48 - 2014-02-28 20:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2014-03-12 04:48 - 2014-02-28 20:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2014-03-12 04:48 - 2014-02-28 20:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-03-12 04:48 - 2014-02-28 20:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll 2014-03-12 04:48 - 2014-02-28 19:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2014-03-12 04:48 - 2014-02-28 19:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-03-12 04:48 - 2014-02-28 19:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-03-12 04:48 - 2014-02-28 19:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-03-12 04:48 - 2014-02-28 19:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-03-12 04:48 - 2014-02-28 19:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-03-12 04:48 - 2014-02-28 19:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2014-03-12 04:48 - 2014-02-28 19:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-03-12 04:48 - 2014-02-28 19:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-03-12 04:48 - 2014-02-28 19:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-03-12 04:48 - 2014-02-28 19:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2014-03-12 04:48 - 2014-02-28 19:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2014-03-12 04:48 - 2014-02-28 19:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-03-12 04:48 - 2014-02-28 19:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-03-12 04:48 - 2014-02-28 19:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll 2014-03-12 04:48 - 2014-02-28 19:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-03-12 04:48 - 2014-02-28 19:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-03-12 04:48 - 2014-02-28 18:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-03-12 04:48 - 2014-02-28 18:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2014-03-12 04:48 - 2014-02-28 18:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-03-12 04:48 - 2014-02-28 18:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-03-12 04:48 - 2014-02-28 18:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2014-03-12 04:48 - 2014-02-28 18:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-03-12 04:48 - 2014-02-06 17:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys 2014-03-12 04:48 - 2014-01-28 18:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\System32\wer.dll 2014-03-12 04:48 - 2014-01-28 18:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2014-03-12 04:48 - 2014-01-27 18:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\System32\wwansvc.dll 2014-03-12 04:47 - 2014-02-03 18:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll 2014-03-12 04:47 - 2014-02-03 18:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll 2014-03-12 04:47 - 2014-02-03 18:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2014-03-12 04:47 - 2014-02-03 18:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2014-03-11 21:04 - 2014-03-11 21:05 - 33108116 _____ () C:\Users\nzomo\Desktop\trayvon2nzomo.wav 2014-03-11 20:50 - 2014-03-11 20:50 - 45480240 _____ () C:\Users\nzomo\Desktop\trayvon01.wav 2014-03-02 19:33 - 2014-03-02 19:33 - 01228854 _____ () C:\Users\nzomo\Desktop\Grabbed Frame 4.bmp 2014-02-24 21:04 - 2014-02-24 21:05 - 00274728 _____ () C:\Windows\Minidump\022514-23244-01.dmp ==================== One Month Modified Files and Folders ======= 2014-03-24 19:41 - 2014-03-24 19:40 - 00000000 ____D () C:\FRST 2014-03-23 23:45 - 2014-03-23 23:45 - 00000000 __SHD () C:\found.001 2014-03-23 22:40 - 2014-03-23 22:39 - 00451080 _____ () C:\Windows\Minidump\032414-16005-01.dmp 2014-03-23 22:39 - 2014-01-15 11:08 - 339620103 _____ () C:\Windows\MEMORY.DMP 2014-03-20 09:24 - 2014-03-20 09:24 - 00455152 _____ () C:\Windows\Minidump\032014-39655-01.dmp 2014-03-19 21:05 - 2014-03-19 21:05 - 00000000 _____ () C:\Windows\Minidump\032014-18345-01.dmp 2014-03-19 21:05 - 2014-01-15 11:08 - 00000000 ____D () C:\Windows\Minidump 2014-03-19 21:05 - 2014-01-10 10:30 - 00010996 _____ () C:\Windows\setupact.log 2014-03-19 21:04 - 2014-01-09 15:20 - 01566571 _____ () C:\Windows\WindowsUpdate.log 2014-03-19 21:02 - 2014-01-10 16:34 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-03-19 20:36 - 2009-07-13 21:32 - 00000000 ____D () C:\Windows\System32\FxsTmp 2014-03-19 20:35 - 2014-01-09 16:20 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-19 19:57 - 2014-01-09 15:22 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI 2014-03-19 19:57 - 2014-01-09 15:22 - 00000349 _____ () C:\ProgramData\Documents\PCLECHAL.INI 2014-03-19 18:35 - 2014-01-09 16:20 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-19 09:56 - 2014-01-14 22:49 - 00000000 ____D () C:\Users\nzomo\AppData\Local\CrashDumps 2014-03-19 06:39 - 2009-07-13 20:45 - 00023568 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-03-19 06:39 - 2009-07-13 20:45 - 00023568 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-03-19 06:38 - 2009-07-13 21:13 - 00781782 _____ () C:\Windows\System32\PerfStringBackup.INI 2014-03-19 06:32 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-03-17 18:18 - 2014-01-10 19:46 - 00006656 _____ () C:\Users\nzomo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-03-17 15:44 - 2014-03-17 15:44 - 00274672 _____ () C:\Windows\Minidump\031714-39515-01.dmp 2014-03-15 08:40 - 2014-01-09 16:47 - 00002188 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-15 08:40 - 2014-01-09 16:47 - 00002188 _____ () C:\ProgramData\Desktop\Google Chrome.lnk 2014-03-12 23:22 - 2014-01-09 17:37 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-12 23:22 - 2014-01-09 17:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-12 23:22 - 2009-07-13 20:45 - 00431560 _____ () C:\Windows\System32\FNTCACHE.DAT 2014-03-12 06:02 - 2014-03-12 06:02 - 05777288 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2014-03-12 06:02 - 2014-01-10 16:34 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-03-12 06:02 - 2014-01-10 16:34 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-03-12 06:02 - 2014-01-10 10:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-03-11 21:05 - 2014-03-11 21:04 - 33108116 _____ () C:\Users\nzomo\Desktop\trayvon2nzomo.wav 2014-03-11 20:50 - 2014-03-11 20:50 - 45480240 _____ () C:\Users\nzomo\Desktop\trayvon01.wav 2014-03-11 15:06 - 2014-01-09 13:31 - 00002210 _____ () C:\Users\Public\Desktop\Advanced SystemCare 7.lnk 2014-03-11 15:06 - 2014-01-09 13:31 - 00002210 _____ () C:\ProgramData\Desktop\Advanced SystemCare 7.lnk 2014-03-02 19:33 - 2014-03-02 19:33 - 01228854 _____ () C:\Users\nzomo\Desktop\Grabbed Frame 4.bmp 2014-02-28 22:05 - 2014-03-12 04:48 - 23133696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2014-02-28 21:17 - 2014-03-12 04:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2014-02-28 21:16 - 2014-03-12 04:48 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll 2014-02-28 20:58 - 2014-03-12 04:48 - 02765824 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2014-02-28 20:52 - 2014-03-12 04:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2014-02-28 20:51 - 2014-03-12 04:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll 2014-02-28 20:42 - 2014-03-12 04:48 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2014-02-28 20:40 - 2014-03-12 04:48 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2014-02-28 20:37 - 2014-03-12 04:48 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll 2014-02-28 20:33 - 2014-03-12 04:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2014-02-28 20:33 - 2014-03-12 04:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe 2014-02-28 20:32 - 2014-03-12 04:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll 2014-02-28 20:30 - 2014-03-12 04:48 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-02-28 20:23 - 2014-03-12 04:48 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2014-02-28 20:17 - 2014-03-12 04:48 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2014-02-28 20:11 - 2014-03-12 04:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-02-28 20:02 - 2014-03-12 04:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll 2014-02-28 19:54 - 2014-03-12 04:48 - 05768704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2014-02-28 19:52 - 2014-03-12 04:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-02-28 19:51 - 2014-03-12 04:48 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-02-28 19:47 - 2014-03-12 04:48 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-02-28 19:43 - 2014-03-12 04:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-02-28 19:43 - 2014-03-12 04:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-02-28 19:42 - 2014-03-12 04:48 - 00627200 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2014-02-28 19:40 - 2014-03-12 04:48 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-02-28 19:38 - 2014-03-12 04:48 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-02-28 19:37 - 2014-03-12 04:48 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-02-28 19:35 - 2014-03-12 04:48 - 02041856 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2014-02-28 19:18 - 2014-03-12 04:48 - 13051904 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2014-02-28 19:16 - 2014-03-12 04:48 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-02-28 19:14 - 2014-03-12 04:48 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-02-28 19:10 - 2014-03-12 04:48 - 02334208 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll 2014-02-28 19:03 - 2014-03-12 04:48 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-02-28 19:00 - 2014-03-12 04:48 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-02-28 18:57 - 2014-03-12 04:48 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-02-28 18:38 - 2014-03-12 04:48 - 01393664 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2014-02-28 18:32 - 2014-03-12 04:48 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-02-28 18:27 - 2014-03-12 04:48 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-02-28 18:25 - 2014-03-12 04:48 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2014-02-28 18:25 - 2014-03-12 04:48 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-02-24 21:05 - 2014-02-24 21:04 - 00274728 _____ () C:\Windows\Minidump\022514-23244-01.dmp 2014-02-24 21:04 - 2014-01-10 16:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-22 09:15 - 2014-01-10 17:44 - 00154624 ____H () C:\Users\nzomo\Desktop\~WRL2845.tmp Some content of TEMP: ==================== C:\Users\nzomo\AppData\Local\Temp\COIOSHelper.dll C:\Users\nzomo\AppData\Local\Temp\DSETUP.dll C:\Users\nzomo\AppData\Local\Temp\dsetup32.dll C:\Users\nzomo\AppData\Local\Temp\DXSETUP.exe C:\Users\nzomo\AppData\Local\Temp\google_toolbar_installer.exe C:\Users\nzomo\AppData\Local\Temp\ShellLink.dll C:\Users\nzomo\AppData\Local\Temp\uninstall.exe ==================== Known DLLs (Whitelisted) ================ ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= ==================== Memory info =========================== Percentage of memory in use: 10% Total physical RAM: 8185.49 MB Available physical RAM: 7351.77 MB Total Pagefile: 8183.64 MB Available Pagefile: 7351.78 MB Total Virtual: 8192 MB Available Virtual: 8191.87 MB ==================== Drives ================================ Drive c: (nzomo) (Fixed) (Total:931.51 GB) (Free:613.78 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (Repair disc Windows 7 64-bit) (CDROM) (Total:0.16 GB) (Free:0 GB) UDF Drive e: (Lexar) (Removable) (Total:7.47 GB) (Free:7.4 GB) NTFS Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 8F9AEECA) Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 7 GB) (Disk ID: C3072E18) Partition: GPT Partition Type. LastRegBack: 2014-03-11 17:23 ==================== End Of Log ============================
  5. Black screen with cursor, no task manager, no safe mode, no repair, no restore point after scan with Malwarebytes, Windows 7. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-02-2014 01Ran by SYSTEM on MININT-FQAQUOL on 01-03-2014 09:50:18Running from I:\Windows 7 Enterprise Service Pack 1 (X64) OS Language: English(US)Internet Explorer Version 9Boot Mode: Recovery The current controlset is ControlSet001ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log. The only official download link for FRST:Download link for 32-Bit version: Download link for 64-Bit Version: Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11772520 2011-01-04] (Realtek Semiconductor)HKLM-x32\...\Run: [Quick-Drop] - C:\Program Files (x86)\Corel\Corel DVD MovieFactory 7\Corel DVD MovieFactory 7\Quick-Drop.exe [389264 2008-06-02] (Corel Corporation)HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)HKLM\...\Policies\Explorer\Run: [57117] - C:\PROGRA~3\LOCALS~1\Temp\msumai.cmd No FileHKU\Ian\...\Run: [AdobeBridge] - [X]HKU\Ian\...\Run: [Octoshape Streaming Services] - C:\Users\Ian\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800 2011-03-24] (Octoshape ApS)HKU\Ian\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\Daemon Tools\DTLite.exe [4910912 2011-08-01] (DT Soft Ltd)HKU\Ian\...\Run: [Novation Automap Server] - C:\Program Files (x86)\Novation\Automap\AutomapServer.exe [3129344 2012-11-15] (Focusrite Audio Engineering Ltd.)HKU\Ian\...\Run: [Native Instruments Audio 4 DJ Control Panel] - C:\Program Files\Native Instruments\Audio 4 DJ Driver\a4djcpl.exe [12867584 2011-04-11] (Native Instruments GmbH)HKU\Ian\...\Run: [Remote Mouse] - C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe [1198080 2014-01-24] (RemoteMouse.net)HKU\Ian\...\Run: [EPSON T50 Series] - C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFFL.EXE [223232 2008-10-09] (SEIKO EPSON CORPORATION)Startup: C:\Users\Ian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnkShortcutTarget: Dropbox.lnk -> (No File) ==================== Services (Whitelisted) ================= S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)S2 FolderSize; C:\Program Files (x86)\FolderSize\FolderSizeSvc.exe [114688 2013-02-12] (Brio)S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [234776 2012-09-05] (McAfee, Inc.)S2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV)S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-02-24] ()S2 rtpMIDIService; C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe [1142272 2012-08-23] (Tobias Erichsen)S2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2012-12-22] () ==================== Drivers (Whitelisted) ==================== S0 a2c98e04fd2a64bf; C:\Windows\System32\Drivers\a2c98e04fd2a64bf.sys [78264 2014-02-20] () <===== ATTENTIONS3 a4djavs; C:\Windows\System32\Drivers\a4djavs.sys [358480 2011-04-11] (Native Instruments GmbH)S3 a4djusb_svc; C:\Windows\System32\Drivers\a4djusb.sys [97360 2011-04-11] (Native Instruments GmbH)S1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()S3 automap; C:\Windows\System32\DRIVERS\automap.sys [18776 2012-04-19] (Focusrite Audio Engineering Limited)S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2012-06-03] (DT Soft Ltd)S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-04-18] ()S3 NvnUsbAudio; C:\Windows\System32\DRIVERS\nvnusbaudio.sys [53080 2011-10-05] (Novation DMS Ltd.)S3 teVirtualMIDI64; C:\Windows\System32\DRIVERS\teVirtualMIDI64.sys [30208 2012-08-15] (Tobias Erichsen)S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)S3 dgderdrv; System32\drivers\dgderdrv.sys [X]S3 gdrv; \??\C:\Windows\gdrv.sys [X]S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]S3 VGPU; System32\drivers\rdvgkmd.sys [X] ========================== Drivers MD5 ======================= C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legitC:\Windows\System32\Drivers\a2c98e04fd2a64bf.sys 4333CF1F33BB6E32DAD4C3AE5984D3BAC:\Windows\System32\Drivers\a4djavs.sys 82984567C9B42F7E65B4ADB518282F21C:\Windows\System32\Drivers\a4djusb.sys 1D35F5E283ED449326B48DBC08A1630BC:\Windows\System32\drivers\ACPI.sys ==> MD5 is legitC:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legitC:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legitC:\Windows\system32\drivers\adpahci.sys ==> MD5 is legitC:\Windows\system32\drivers\adpu320.sys ==> MD5 is legitC:\Windows\system32\drivers\afd.sys 1C7857B62DE5994A75B054A9FD4C3825C:\Windows\system32\drivers\agp440.sys ==> MD5 is legitC:\Windows\system32\drivers\aliide.sys ==> MD5 is legitC:\Windows\system32\drivers\amdide.sys ==> MD5 is legitC:\Windows\system32\drivers\amdk8.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\atikmdag.sys 1BF58E56CA271FEF678DC3A9996FAB0AC:\Windows\System32\DRIVERS\atikmpag.sys 4DD3339D3818356145A4945C1B4CB4C5C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legitC:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legitC:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048C:\Windows\system32\drivers\appid.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\AppleCharger.sys 6BE11AD81D4527D299F0CB5F3731AABCC:\Windows\system32\drivers\arc.sys ==> MD5 is legitC:\Windows\system32\drivers\arcsas.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legitC:\Windows\System32\drivers\atapi.sys ==> MD5 is legitC:\Windows\System32\drivers\AtihdW76.sys 37CB595C0AB20ECBFA5170D3185690DBC:\Windows\System32\DRIVERS\automap.sys 62656382273E8E8BA91A5351EEB6645AC:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legitC:\Windows\System32\Drivers\Beep.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legitC:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legitC:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legitC:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legitC:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legitC:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legitC:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legitC:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legitC:\Windows\system32\drivers\circlass.sys ==> MD5 is legitC:\Windows\System32\CLFS.sys ==> MD5 is legitC:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legitC:\Windows\system32\drivers\cmdide.sys ==> MD5 is legitC:\Windows\System32\Drivers\cng.sys 9AC4F97C2D3E93367E2148EA940CD2CDC:\Windows\System32\drivers\compbatt.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legitC:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legitC:\Windows\System32\drivers\csc.sys ==> MD5 is legitC:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legitC:\Windows\System32\drivers\discache.sys ==> MD5 is legitC:\Windows\System32\drivers\disk.sys ==> MD5 is legitC:\Windows\system32\drivers\dmvsc.sys 5DB085A8A6600BE6401F2B24EECB5415C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legitC:\Windows\SysWOW64\Drivers\DrvAgent64.SYS 1ED08A6264C5C92099D6D1DAE5E8F530C:\Windows\System32\DRIVERS\dtsoftbus01.sys D3D64CF7B2BCEAA34A270F45A3FFFB36C:\Windows\System32\drivers\dxgkrnl.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\E1G6032E.sys ==> MD5 is legitC:\Windows\system32\drivers\evbda.sys ==> MD5 is legitC:\Windows\system32\drivers\elxstor.sys ==> MD5 is legitC:\Windows\system32\drivers\errdev.sys ==> MD5 is legitC:\Windows\System32\Drivers\exfat.sys ==> MD5 is legitC:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legitC:\Windows\system32\drivers\fdc.sys ==> MD5 is legitC:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legitC:\Windows\System32\drivers\filetrace.sys ==> MD5 is legitC:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legitC:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legitC:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legitC:\Windows\SysWOW64\FsUsbExDisk.SYS DDEE99DC54EFA20BD5A442CD733C4462C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7BC:\Windows\System32\DRIVERS\fvevol.sys ==> MD5 is legitC:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092FC:\Windows\System32\DRIVERS\ggflt.sys 16C2A6BCDDA8952C2035DEC861492A19C:\Windows\System32\DRIVERS\ggsemc.sys 6B503DF845EABF3457E49FBBDA26C10EC:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legitC:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373AC:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legitC:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legitC:\Windows\system32\drivers\hidbth.sys ==> MD5 is legitC:\Windows\system32\drivers\hidir.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legitC:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legitC:\Windows\System32\drivers\HTTP.sys ==> MD5 is legitC:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legitC:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legitC:\Windows\System32\drivers\RTKVHD64.sys 03076F51AF9F78A272CCCDE03E9340CEC:\Windows\system32\drivers\intelide.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legitC:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legitC:\Windows\System32\drivers\ipnat.sys ==> MD5 is legitC:\Windows\System32\drivers\irenum.sys ==> MD5 is legitC:\Windows\system32\drivers\isapnp.sys ==> MD5 is legitC:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legitC:\Windows\System32\Drivers\ksecdd.sys 97A7070AEA4C058B6418519E869A63B4C:\Windows\System32\Drivers\ksecpkg.sys 26C43A7C2862447EC59DEDA188D1DA07C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legitC:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legitC:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legitC:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legitC:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legitC:\Windows\system32\drivers\luafv.sys ==> MD5 is legitC:\Windows\system32\drivers\megasas.sys ==> MD5 is legitC:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\HECIx64.sys 1C6E73FC46B509EFF9D0086AA37132DFC:\Windows\System32\drivers\modem.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legitC:\Windows\system32\drivers\mouhid.sys ==> MD5 is legitC:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legitC:\Windows\system32\drivers\mpio.sys ==> MD5 is legitC:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legitC:\Windows\system32\drivers\mrxdav.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68ACC:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30CC:\Windows\system32\drivers\msahci.sys ==> MD5 is legitC:\Windows\system32\drivers\msdsm.sys ==> MD5 is legitC:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legitC:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legitC:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legitC:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legitC:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legitC:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legitC:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legitC:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legitC:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legitC:\Windows\System32\Drivers\mup.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legitC:\Windows\System32\drivers\ndis.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legitC:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legitC:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legitC:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legitC:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legitC:\Windows\System32\Drivers\Ntfs.sys A2F74975097F52A00745F9637451FDD8C:\Windows\System32\Drivers\Null.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\nvnusbaudio.sys 7AEAB7A9C665E97F8CF2CC87D9CCEEBBC:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66ADC:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4AC:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legitC:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\parport.sys ==> MD5 is legitC:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9CC:\Windows\System32\drivers\pci.sys ==> MD5 is legitC:\Windows\System32\drivers\pciide.sys ==> MD5 is legitC:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legitC:\Windows\System32\drivers\pcw.sys ==> MD5 is legitC:\Windows\System32\drivers\peauth.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legitC:\Windows\system32\drivers\processr.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legitC:\Windows\System32\Drivers\PxHlpa64.sys BC08F7F3C53CBEE68670ED1314E290FDC:\Windows\system32\drivers\ql2300.sys ==> MD5 is legitC:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legitC:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legitC:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legitC:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legitC:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legitC:\Windows\System32\drivers\rdpvideominiport.sys ==> MD5 is legitC:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0AC:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\revoflt.sys 9C3AC71A9934B884FAC567A8807E9C4DC:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legitC:\Windows\System32\Drivers\RtsUStor.sys 907C4464381B5EBDFDC60F6C7D0DEDFCC:\Windows\System32\DRIVERS\Rt64win7.sys 712944C0A377E9B8743F95BD83E882D4C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legitC:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legitC:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legitC:\Windows\system32\drivers\sermouse.sys ==> MD5 is legitC:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legitC:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legitC:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legitC:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legitC:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legitC:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legitC:\Windows\System32\Drivers\spldr.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0BC:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3C:\Windows\System32\DRIVERS\ss_bus.sys D21FF3592DAEE244EE8376830A672B52C:\Windows\System32\DRIVERS\ss_mdfl.sys 451DB3D10E6112E06B4506D4A7BECEC1C:\Windows\System32\DRIVERS\ss_mdm.sys EF40C8A268A5263A0EF48FED8E57CBEDC:\Windows\system32\drivers\stexstor.sys ==> MD5 is legitC:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legitC:\Windows\system32\drivers\storvsc.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legitC:\Windows\system32\drivers\Synth3dVsc.sys C3A39C4079305480972D29C44B868C78C:\Windows\System32\drivers\tcpip.sys ACB82BDA8F46C84F465C1AFA517DC4B9C:\Windows\System32\DRIVERS\tcpip.sys ACB82BDA8F46C84F465C1AFA517DC4B9C:\Windows\System32\drivers\tcpipreg.sys ==> MD5 is legitC:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legitC:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legitC:\Windows\system32\drivers\terminpt.sys 2B5BDFF688EC9871D7EC5837833374E9C:\Windows\System32\DRIVERS\teVirtualMIDI64.sys B1074E2324C61D424EE478122B18ECB7C:\Windows\System32\DRIVERS\tssecsrv.sys ==> MD5 is legitC:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legitC:\Windows\system32\drivers\TsUsbGD.sys 9CC2CCAE8A84820EAECB886D477CBCB8C:\Windows\system32\drivers\tsusbhub.sys E1748D04AE40118B62BC18AC86032192C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legitC:\Windows\system32\drivers\uagp35.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legitC:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legitC:\Windows\system32\drivers\umpass.sys ==> MD5 is legitC:\Windows\System32\drivers\usbaudio.sys 82E8F44688E6FAC57B5B7C6FC7ADBC2AC:\Windows\System32\DRIVERS\usbccgp.sys 6F1A3157A1C89435352CEB543CDB359CC:\Windows\system32\drivers\usbcir.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\usbehci.sys C025055FE7B87701EB042095DF1A2D7BC:\Windows\System32\DRIVERS\usbhub.sys 287C6C9410B111B68B52CA298F7B8C24C:\Windows\system32\drivers\usbohci.sys 9840FC418B4CBD632D3D0A667A725C31C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6C:\Windows\system32\drivers\usbuhci.sys 62069A34518BCF9C1FD9E74B3F6DB7CDC:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legitC:\Windows\System32\drivers\vga.sys ==> MD5 is legitC:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legitC:\Windows\system32\drivers\viaide.sys ==> MD5 is legitC:\Windows\system32\drivers\vmbus.sys ==> MD5 is legitC:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legitC:\Windows\System32\drivers\volmgr.sys ==> MD5 is legitC:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legitC:\Windows\System32\drivers\volsnap.sys ==> MD5 is legitC:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legitC:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legitC:\Windows\system32\drivers\wacompen.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legitC:\Windows\system32\drivers\wd.sys ==> MD5 is legitC:\Windows\System32\drivers\Wdf01000.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legitC:\Windows\System32\drivers\wimmount.sys ==> MD5 is legitC:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legitC:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys 0C0195C48B6B8582FA6F6373032118DAC:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906DC:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legitC:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legitC:\Windows\System32\drivers\WudfPf.sys ==> MD5 is legitC:\Windows\System32\DRIVERS\WUDFRd.sys ==> MD5 is legit ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-25 19:12 - 2014-03-01 09:50 - 00000000 ____D () C:\FRST2014-02-21 15:56 - 2010-06-03 11:33 - 00021218 _____ () C:\Users\Ian\Downloads\Modelos de motores Coure-charade.odt2014-02-21 15:56 - 2010-05-14 04:18 - 00017376 _____ () C:\Users\Ian\Downloads\Modelos.odt2014-02-21 15:54 - 2014-02-21 15:54 - 00861795 _____ () C:\Users\Ian\Downloads\Manuales_Vs.zip2014-02-21 07:47 - 2014-02-21 07:47 - 00068894 _____ () C:\Users\Ian\Downloads\369462.rar2014-02-20 22:07 - 2014-02-20 22:07 - 00015449 _____ () C:\Users\Ian\Downloads\334874.rar2014-02-20 07:50 - 2014-02-20 07:50 - 00078264 _____ () C:\Windows\System32\Drivers\a2c98e04fd2a64bf.sys2014-02-19 20:47 - 2014-02-19 20:47 - 00046664 _____ () C:\Users\Ian\Downloads\349779.rar2014-02-18 14:58 - 2014-02-18 14:58 - 00063304 _____ () C:\Users\Ian\Downloads\Daddy_Yankee_-_Limbo_[audiodump_com] - Part_1.wav2014-02-18 14:49 - 2014-02-18 14:49 - 00194798 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_4.wav2014-02-18 14:47 - 2014-02-18 14:47 - 00253882 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_3.wav2014-02-18 14:47 - 2014-02-18 14:47 - 00218210 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_2.wav2014-02-18 14:46 - 2014-02-18 14:46 - 00247950 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_1.wav2014-02-18 07:56 - 2014-02-18 07:56 - 00058131 _____ () C:\Users\Ian\Downloads\spandau_ballet-true.mid2014-02-18 07:51 - 2014-02-18 07:51 - 00031248 _____ () C:\Users\Ian\Downloads\Whitesnake - Is This Love.mid2014-02-16 10:21 - 2014-02-16 10:21 - 06538836 _____ () C:\Users\Ian\Downloads\Damas Gratis Vs Audio Killers & Knife Party - Bomba Gratis - Derko & Verdun Remix.Mp3.zip2014-02-15 15:37 - 2014-02-15 15:37 - 00017380 _____ () C:\Users\Ian\AppData\Local\soulseek-client.dat.13925074629432014-02-14 16:08 - 2014-02-14 16:08 - 00339968 _____ () C:\Users\Ian\Downloads\Beckers,_D-Nox_-_Confusion_(Original_Mix)_[audiodump_com] - Part_2.wav2014-02-14 16:02 - 2014-02-14 16:02 - 00045916 _____ () C:\Users\Ian\Downloads\Beckers,_D-Nox_-_Confusion_(Original_Mix)_[audiodump_com] - Part_1.wav2014-02-13 22:16 - 2014-02-13 22:16 - 00047732 _____ () C:\Users\Ian\Downloads\362818.rar2014-02-13 20:42 - 2014-02-13 20:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-02-12 12:25 - 2014-02-12 12:25 - 00302132 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_4.wav2014-02-12 12:24 - 2014-02-12 12:24 - 00306372 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_3.wav2014-02-12 12:22 - 2014-02-12 12:22 - 00017344 _____ () C:\Users\Ian\AppData\Local\soulseek-client.dat.13922365714082014-02-12 12:18 - 2014-02-12 12:18 - 00826244 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_2.wav2014-02-12 12:17 - 2014-02-12 12:17 - 00267360 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_1.wav2014-02-12 09:30 - 2014-02-12 09:30 - 00046067 _____ () C:\Users\Ian\Downloads\174980.rar2014-02-12 06:48 - 2014-02-12 06:48 - 00230074 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_5.wav2014-02-12 06:46 - 2014-02-12 06:46 - 00495522 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_4.wav2014-02-11 17:41 - 2014-02-11 17:41 - 00034788 _____ () C:\Users\Ian\Downloads\366821.rar2014-02-11 14:17 - 2014-02-11 14:17 - 00344554 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_2 - Part_1.wav2014-02-11 14:11 - 2014-02-11 14:11 - 00404812 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIERNES VIOLETA - Part_7.wav2014-02-11 14:09 - 2014-02-11 14:09 - 00275854 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_3.wav2014-02-11 14:08 - 2014-02-11 14:08 - 00457382 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_1 - Part_1.wav2014-02-11 14:06 - 2014-02-11 14:06 - 00404812 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIERNES VIOLETA - Part_6.wav2014-02-11 14:05 - 2014-02-11 14:05 - 00884786 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_2.wav2014-02-11 14:05 - 2014-02-11 14:05 - 00509090 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_1.wav2014-02-11 08:35 - 2014-02-11 08:35 - 00519270 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_2.wav2014-02-11 08:28 - 2014-02-11 08:28 - 00302174 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_1.wav2014-02-11 07:21 - 2014-02-22 15:40 - 00003788 _____ () C:\Windows\PFRO.log2014-02-10 12:44 - 2014-02-10 12:44 - 00371698 _____ () C:\Users\Ian\Downloads\OFF ZEBRA MARLOS - Part_1.wav2014-02-10 11:20 - 2014-02-20 19:59 - 00001680 _____ () C:\Windows\setupact.log2014-02-10 11:20 - 2014-02-10 11:20 - 00000000 _____ () C:\Windows\setuperr.log2014-02-09 22:46 - 2014-02-09 22:46 - 00005765 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log2014-02-09 22:46 - 2014-02-09 22:46 - 00000000 ____D () C:\ProgramData\Oracle2014-02-09 22:46 - 2013-12-18 16:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll2014-02-09 22:46 - 2013-12-18 16:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe2014-02-09 22:46 - 2013-12-18 16:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe2014-02-09 22:46 - 2013-12-18 16:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe2014-02-09 14:32 - 2014-02-09 14:32 - 00073602 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-look_around.mid2014-02-09 14:32 - 2014-02-09 14:32 - 00037534 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-give_it_away.mid2014-02-09 14:31 - 2014-02-09 14:31 - 00035296 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-cant_stop.mid2014-02-09 14:30 - 2014-02-09 14:30 - 00050662 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-otherside.mid2014-02-09 14:29 - 2014-02-09 14:29 - 00045391 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-aeroplane.mid2014-02-09 14:29 - 2014-02-09 14:29 - 00017703 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-road_trippin.mid2014-02-09 14:28 - 2014-02-09 14:28 - 00016592 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-higher_ground.mid2014-02-09 14:27 - 2014-02-09 14:27 - 00053601 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-californication.mid2014-02-09 14:21 - 2014-02-09 14:21 - 00019766 _____ () C:\Users\Ian\Downloads\Hail_To_The_King_-_Avenged_Sevenfold_-_Piano.mid2014-02-09 14:17 - 2014-02-09 14:17 - 00088079 _____ () C:\Users\Ian\Downloads\avenged_sevenfold-afterlife.mid2014-02-09 09:42 - 2014-02-09 09:42 - 00061135 _____ () C:\Users\Ian\Downloads\Fleetwood Mac - Everywhere 1.mid2014-02-08 18:03 - 2014-02-08 18:03 - 00072639 _____ () C:\Users\Ian\Downloads\366111.rar2014-02-07 13:06 - 2014-02-07 13:06 - 00131740 _____ () C:\Users\Ian\Downloads\Come_and_Hell_-_Supastar_(Victor_Ruiz_Remix)_[audiodump_com] - Part_1.wav2014-02-06 13:58 - 2014-02-06 13:58 - 00000233 _____ () C:\Users\Ian\Desktop\01.mid2014-02-06 13:42 - 2014-02-06 13:43 - 90464042 _____ () C:\Users\Ian\Downloads\funky 4 samplers.rar2014-02-05 11:25 - 2014-02-05 11:25 - 00017358 _____ () C:\Users\Ian\AppData\Local\soulseek-client.dat.13916283452982014-02-04 16:07 - 2014-02-04 16:07 - 00002908 _____ () C:\Users\Ian\Downloads\Mord_Fustang_-_We_Are_Now_Connected__Frozen_Ray_20120105054228.mid2014-02-04 16:00 - 2014-02-04 16:00 - 00000631 _____ () C:\Users\Ian\Downloads\Mord_Fustang_-_Milky_Way__robocat_20110922014639.mid2014-02-04 15:46 - 2014-02-04 15:46 - 00558320 _____ () C:\Users\Ian\Downloads\Froxic__Quasar_(Original_Mix)_[audiodump_com].mp3.sfk2014-02-03 22:09 - 2014-02-03 22:09 - 00001054 _____ () C:\Users\Public\Desktop\Remote Mouse.lnk2014-02-03 22:09 - 2014-02-03 22:09 - 00001054 _____ () C:\ProgramData\Desktop\Remote Mouse.lnk2014-02-03 22:09 - 2014-02-03 22:09 - 00000000 ____D () C:\Program Files (x86)\Remote Mouse2014-02-03 22:08 - 2014-02-03 22:08 - 00482333 _____ (Remote Mouse ) C:\Users\Ian\Downloads\RemoteMouse.exe2014-02-03 19:52 - 2014-02-03 19:52 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_Kernel_ggsemc_01009.Wdf2014-02-03 19:52 - 2014-02-03 19:52 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_Kernel_ggflt_01009.Wdf2014-02-03 19:47 - 2014-02-03 19:47 - 00027760 _____ (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\ggsemc.sys2014-02-03 19:47 - 2014-02-03 19:47 - 00014448 _____ (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\ggflt.sys2014-02-03 19:47 - 2014-02-03 19:47 - 00000000 ____D () C:\ProgramData\Sony Mobile2014-02-03 19:46 - 2014-02-03 19:46 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile2014-02-03 19:40 - 2014-02-03 19:40 - 00000000 ____D () C:\Users\Ian\.android2014-02-03 19:39 - 2014-02-03 19:39 - 00000000 ____D () C:\Program Files (x86)\ClockworkMod2014-02-03 19:38 - 2014-02-03 19:39 - 11060224 _____ () C:\Users\Ian\Downloads\CarbonSetup.msi2014-02-03 14:48 - 2014-02-03 14:48 - 00164932 _____ () C:\Users\Ian\Downloads\fgdhfi909 - Part_1.wav2014-02-03 14:47 - 2014-02-03 14:47 - 00278408 _____ () C:\Users\Ian\Downloads\fgdhfi909.wav2014-02-03 14:46 - 2014-02-03 14:46 - 00298780 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_5.wav2014-02-03 14:44 - 2014-02-03 14:44 - 00176172 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_4.wav2014-02-03 14:42 - 2014-02-03 14:42 - 00170772 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_3.wav2014-02-03 14:41 - 2014-02-03 14:41 - 00200116 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_2.wav2014-02-03 14:41 - 2014-02-03 14:41 - 00120116 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_1.wav2014-02-01 14:31 - 2014-02-01 14:31 - 00043498 _____ () C:\Users\Ian\Downloads\james_brown-sex_machine.mid2014-02-01 14:14 - 2014-02-01 14:14 - 00076137 _____ () C:\Users\Ian\Downloads\Stevie Wonder - Superstition.mid2014-02-01 14:14 - 2014-02-01 14:14 - 00072821 _____ () C:\Users\Ian\Downloads\Stevie_Wonder_-_Superstition.mid2014-02-01 14:10 - 2014-02-01 14:10 - 00072821 _____ () C:\Users\Ian\Downloads\stevie_wonder-superstition.mid2014-02-01 14:02 - 2014-02-01 14:02 - 00053248 _____ () C:\Users\Ian\Downloads\Curtis Mayfield - SUPERFLY.mid2014-02-01 13:07 - 2014-02-01 13:07 - 00000000 ____D () C:\Users\Ian\Superior Drummer2014-02-01 12:56 - 2012-02-06 08:55 - 00974848 _____ (Uderzo Software e Consulenza Informatica) C:\Users\Ian\Desktop\SpaceSniffer.exe2014-02-01 12:55 - 2014-02-01 12:55 - 01536858 _____ () C:\Users\Ian\Downloads\spacesniffer_1_1_4_0.zip2014-02-01 12:47 - 2014-02-01 12:47 - 00000000 ____D () C:\Users\Ian\Documents\Toontrack ==================== One Month Modified Files and Folders ======= 2014-03-01 09:50 - 2014-02-25 19:12 - 00000000 ____D () C:\FRST2014-02-23 10:32 - 2009-07-13 20:45 - 00003072 _____ () C:\Windows\System32\umstartup.etl2014-02-22 15:40 - 2014-02-11 07:21 - 00003788 _____ () C:\Windows\PFRO.log2014-02-21 18:45 - 2012-10-15 15:37 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job2014-02-21 18:45 - 2012-06-01 18:40 - 00001030 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-02-21 16:24 - 2012-08-29 10:19 - 00000920 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3453534919-3466754778-1962564136-1000UA.job2014-02-21 15:54 - 2014-02-21 15:54 - 00861795 _____ () C:\Users\Ian\Downloads\Manuales_Vs.zip2014-02-21 11:45 - 2012-06-01 18:40 - 00001026 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-02-21 10:24 - 2012-08-29 10:19 - 00000898 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3453534919-3466754778-1962564136-1000Core.job2014-02-21 07:48 - 2013-03-21 03:58 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer2014-02-21 07:47 - 2014-02-21 07:47 - 00068894 _____ () C:\Users\Ian\Downloads\369462.rar2014-02-21 05:13 - 2012-06-01 20:25 - 00000000 ____D () C:\Users\Ian\AppData\Roaming\uTorrent2014-02-20 22:07 - 2014-02-20 22:07 - 00015449 _____ () C:\Users\Ian\Downloads\334874.rar2014-02-20 20:45 - 2012-10-15 15:37 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater2014-02-20 20:45 - 2012-06-01 18:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2014-02-20 20:45 - 2012-06-01 18:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl2014-02-20 19:59 - 2014-02-10 11:20 - 00001680 _____ () C:\Windows\setupact.log2014-02-20 19:58 - 2013-06-08 09:12 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job2014-02-20 19:58 - 2013-05-31 08:42 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job2014-02-20 19:58 - 2012-12-20 12:33 - 00000000 ___RD () C:\Users\Ian\Dropbox2014-02-20 19:58 - 2012-12-20 12:30 - 00000000 ____D () C:\Users\Ian\AppData\Roaming\Dropbox2014-02-20 19:58 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-02-20 18:18 - 2013-09-23 11:57 - 00000000 ____D () C:\Users\Ian\AppData\Local\CrashDumps2014-02-20 18:15 - 2013-03-19 06:03 - 00000000 ____D () C:\Users\Ian\AppData\Roaming\piServer2014-02-20 07:50 - 2014-02-20 07:50 - 00078264 _____ () C:\Windows\System32\Drivers\a2c98e04fd2a64bf.sys2014-02-20 07:49 - 2012-06-01 17:02 - 01994932 _____ () C:\Windows\WindowsUpdate.log2014-02-19 20:47 - 2014-02-19 20:47 - 00046664 _____ () C:\Users\Ian\Downloads\349779.rar2014-02-18 14:58 - 2014-02-18 14:58 - 00063304 _____ () C:\Users\Ian\Downloads\Daddy_Yankee_-_Limbo_[audiodump_com] - Part_1.wav2014-02-18 14:49 - 2014-02-18 14:49 - 00194798 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_4.wav2014-02-18 14:47 - 2014-02-18 14:47 - 00253882 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_3.wav2014-02-18 14:47 - 2014-02-18 14:47 - 00218210 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_2.wav2014-02-18 14:46 - 2014-02-18 14:46 - 00247950 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIOLETA - TOPETE - Part_1.wav2014-02-18 07:56 - 2014-02-18 07:56 - 00058131 _____ () C:\Users\Ian\Downloads\spandau_ballet-true.mid2014-02-18 07:51 - 2014-02-18 07:51 - 00031248 _____ () C:\Users\Ian\Downloads\Whitesnake - Is This Love.mid2014-02-18 05:35 - 2012-07-24 21:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2014-02-16 10:21 - 2014-02-16 10:21 - 06538836 _____ () C:\Users\Ian\Downloads\Damas Gratis Vs Audio Killers & Knife Party - Bomba Gratis - Derko & Verdun Remix.Mp3.zip2014-02-15 15:37 - 2014-02-15 15:37 - 00017380 _____ () C:\Users\Ian\AppData\Local\soulseek-client.dat.13925074629432014-02-14 16:08 - 2014-02-14 16:08 - 00339968 _____ () C:\Users\Ian\Downloads\Beckers,_D-Nox_-_Confusion_(Original_Mix)_[audiodump_com] - Part_2.wav2014-02-14 16:02 - 2014-02-14 16:02 - 00045916 _____ () C:\Users\Ian\Downloads\Beckers,_D-Nox_-_Confusion_(Original_Mix)_[audiodump_com] - Part_1.wav2014-02-13 22:16 - 2014-02-13 22:16 - 00047732 _____ () C:\Users\Ian\Downloads\362818.rar2014-02-13 20:42 - 2014-02-13 20:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-02-12 12:25 - 2014-02-12 12:25 - 00302132 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_4.wav2014-02-12 12:24 - 2014-02-12 12:24 - 00306372 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_3.wav2014-02-12 12:22 - 2014-02-12 12:22 - 00017344 _____ () C:\Users\Ian\AppData\Local\soulseek-client.dat.13922365714082014-02-12 12:18 - 2014-02-12 12:18 - 00826244 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_2.wav2014-02-12 12:17 - 2014-02-12 12:17 - 00267360 _____ () C:\Users\Ian\Downloads\OFF TRANSLATION TEAM Y GRANDIET - Part_1.wav2014-02-12 09:30 - 2014-02-12 09:30 - 00046067 _____ () C:\Users\Ian\Downloads\174980.rar2014-02-12 09:27 - 2012-06-01 23:21 - 00000000 ____D () C:\Users\Ian\.smplayer2014-02-12 06:48 - 2014-02-12 06:48 - 00230074 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_5.wav2014-02-12 06:46 - 2014-02-12 06:46 - 00495522 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_4.wav2014-02-11 17:41 - 2014-02-11 17:41 - 00034788 _____ () C:\Users\Ian\Downloads\366821.rar2014-02-11 14:17 - 2014-02-11 14:17 - 00344554 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_2 - Part_1.wav2014-02-11 14:11 - 2014-02-11 14:11 - 00404812 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIERNES VIOLETA - Part_7.wav2014-02-11 14:09 - 2014-02-11 14:09 - 00275854 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_3.wav2014-02-11 14:08 - 2014-02-11 14:08 - 00457382 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_1 - Part_1.wav2014-02-11 14:06 - 2014-02-11 14:06 - 00404812 _____ () C:\Users\Ian\Downloads\OFF ZEBRA - VIERNES VIOLETA - Part_6.wav2014-02-11 14:05 - 2014-02-11 14:05 - 00884786 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_2.wav2014-02-11 14:05 - 2014-02-11 14:05 - 00509090 _____ () C:\Users\Ian\Downloads\OFF ZEBRA CORAZON - Part_1.wav2014-02-11 08:35 - 2014-02-11 08:35 - 00519270 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_2.wav2014-02-11 08:28 - 2014-02-11 08:28 - 00302174 _____ () C:\Users\Ian\Downloads\OFF ZEBRA ENAMORADOS - Part_1.wav2014-02-10 12:44 - 2014-02-10 12:44 - 00371698 _____ () C:\Users\Ian\Downloads\OFF ZEBRA MARLOS - Part_1.wav2014-02-10 11:40 - 2012-06-01 18:40 - 00004026 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA2014-02-10 11:40 - 2012-06-01 18:40 - 00003774 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore2014-02-10 11:20 - 2014-02-10 11:20 - 00000000 _____ () C:\Windows\setuperr.log2014-02-10 11:20 - 2012-06-01 19:33 - 00000920 _____ () C:\Windows\Tasks\RockMeltUpdateTaskUserS-1-5-21-3453534919-3466754778-1962564136-1000UA.job2014-02-10 11:20 - 2012-06-01 19:33 - 00000868 _____ () C:\Windows\Tasks\RockMeltUpdateTaskUserS-1-5-21-3453534919-3466754778-1962564136-1000Core.job2014-02-09 22:48 - 2012-06-01 19:33 - 00003898 _____ () C:\Windows\System32\Tasks\RockMeltUpdateTaskUserS-1-5-21-3453534919-3466754778-1962564136-1000UA2014-02-09 22:48 - 2012-06-01 19:33 - 00003502 _____ () C:\Windows\System32\Tasks\RockMeltUpdateTaskUserS-1-5-21-3453534919-3466754778-1962564136-1000Core2014-02-09 22:46 - 2014-02-09 22:46 - 00005765 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log2014-02-09 22:46 - 2014-02-09 22:46 - 00000000 ____D () C:\ProgramData\Oracle2014-02-09 22:46 - 2012-09-25 18:54 - 00000000 ____D () C:\Program Files (x86)\Java2014-02-09 14:32 - 2014-02-09 14:32 - 00073602 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-look_around.mid2014-02-09 14:32 - 2014-02-09 14:32 - 00037534 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-give_it_away.mid2014-02-09 14:31 - 2014-02-09 14:31 - 00035296 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-cant_stop.mid2014-02-09 14:30 - 2014-02-09 14:30 - 00050662 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-otherside.mid2014-02-09 14:29 - 2014-02-09 14:29 - 00045391 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-aeroplane.mid2014-02-09 14:29 - 2014-02-09 14:29 - 00017703 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-road_trippin.mid2014-02-09 14:28 - 2014-02-09 14:28 - 00016592 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-higher_ground.mid2014-02-09 14:27 - 2014-02-09 14:27 - 00053601 _____ () C:\Users\Ian\Downloads\red_hot_chili_peppers-californication.mid2014-02-09 14:21 - 2014-02-09 14:21 - 00019766 _____ () C:\Users\Ian\Downloads\Hail_To_The_King_-_Avenged_Sevenfold_-_Piano.mid2014-02-09 14:17 - 2014-02-09 14:17 - 00088079 _____ () C:\Users\Ian\Downloads\avenged_sevenfold-afterlife.mid2014-02-09 09:42 - 2014-02-09 09:42 - 00061135 _____ () C:\Users\Ian\Downloads\Fleetwood Mac - Everywhere 1.mid2014-02-08 20:42 - 2013-12-29 12:51 - 00000000 ____D () C:\Users\Ian\Desktop\Día por día2014-02-08 18:03 - 2014-02-08 18:03 - 00072639 _____ () C:\Users\Ian\Downloads\366111.rar2014-02-07 13:06 - 2014-02-07 13:06 - 00131740 _____ () C:\Users\Ian\Downloads\Come_and_Hell_-_Supastar_(Victor_Ruiz_Remix)_[audiodump_com] - Part_1.wav2014-02-07 12:58 - 2012-06-10 06:15 - 00000021 _____ () C:\Windows\SurCode.INI2014-02-07 08:42 - 2012-06-03 13:01 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite2014-02-06 15:07 - 2012-07-24 18:43 - 00000000 ____D () C:\Program Files (x86)\Native Instruments2014-02-06 15:07 - 2012-06-02 13:49 - 00000000 ____D () C:\Program Files (x86)\VstPlugins2014-02-06 13:58 - 2014-02-06 13:58 - 00000233 _____ () C:\Users\Ian\Desktop\01.mid2014-02-06 13:43 - 2014-02-06 13:42 - 90464042 _____ () C:\Users\Ian\Downloads\funky 4 samplers.rar2014-02-05 11:25 - 2014-02-05 11:25 - 00017358 _____ () C:\Users\Ian\AppData\Local\soulseek-client.dat.13916283452982014-02-05 10:32 - 2014-01-29 19:53 - 00000000 ____D () C:\Users\Ian\Downloads\CD YO2014-02-04 16:07 - 2014-02-04 16:07 - 00002908 _____ () C:\Users\Ian\Downloads\Mord_Fustang_-_We_Are_Now_Connected__Frozen_Ray_20120105054228.mid2014-02-04 16:00 - 2014-02-04 16:00 - 00000631 _____ () C:\Users\Ian\Downloads\Mord_Fustang_-_Milky_Way__robocat_20110922014639.mid2014-02-04 15:46 - 2014-02-04 15:46 - 00558320 _____ () C:\Users\Ian\Downloads\Froxic__Quasar_(Original_Mix)_[audiodump_com].mp3.sfk2014-02-04 04:59 - 2012-06-26 13:34 - 00001456 _____ () C:\Users\Ian\AppData\Local\Adobe Save for Web 13.0 Prefs2014-02-03 22:09 - 2014-02-03 22:09 - 00001054 _____ () C:\Users\Public\Desktop\Remote Mouse.lnk2014-02-03 22:09 - 2014-02-03 22:09 - 00001054 _____ () C:\ProgramData\Desktop\Remote Mouse.lnk2014-02-03 22:09 - 2014-02-03 22:09 - 00000000 ____D () C:\Program Files (x86)\Remote Mouse2014-02-03 22:08 - 2014-02-03 22:08 - 00482333 _____ (Remote Mouse ) C:\Users\Ian\Downloads\RemoteMouse.exe2014-02-03 19:52 - 2014-02-03 19:52 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_Kernel_ggsemc_01009.Wdf2014-02-03 19:52 - 2014-02-03 19:52 - 00000000 ____H () C:\Windows\System32\Drivers\Msft_Kernel_ggflt_01009.Wdf2014-02-03 19:47 - 2014-02-03 19:47 - 00027760 _____ (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\ggsemc.sys2014-02-03 19:47 - 2014-02-03 19:47 - 00014448 _____ (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\ggflt.sys2014-02-03 19:47 - 2014-02-03 19:47 - 00000000 ____D () C:\ProgramData\Sony Mobile2014-02-03 19:46 - 2014-02-03 19:46 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile2014-02-03 19:40 - 2014-02-03 19:40 - 00000000 ____D () C:\Users\Ian\.android2014-02-03 19:40 - 2012-06-01 17:00 - 00000000 ____D () C:\users\Ian2014-02-03 19:39 - 2014-02-03 19:39 - 00000000 ____D () C:\Program Files (x86)\ClockworkMod2014-02-03 19:39 - 2014-02-03 19:38 - 11060224 _____ () C:\Users\Ian\Downloads\CarbonSetup.msi2014-02-03 19:12 - 2013-11-14 13:24 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk2014-02-03 19:12 - 2013-11-14 13:24 - 00002026 _____ () C:\ProgramData\Desktop\Sony PC Companion 2.1.lnk2014-02-03 19:12 - 2012-06-01 17:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-02-03 14:48 - 2014-02-03 14:48 - 00164932 _____ () C:\Users\Ian\Downloads\fgdhfi909 - Part_1.wav2014-02-03 14:47 - 2014-02-03 14:47 - 00278408 _____ () C:\Users\Ian\Downloads\fgdhfi909.wav2014-02-03 14:46 - 2014-02-03 14:46 - 00298780 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_5.wav2014-02-03 14:44 - 2014-02-03 14:44 - 00176172 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_4.wav2014-02-03 14:42 - 2014-02-03 14:42 - 00170772 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_3.wav2014-02-03 14:41 - 2014-02-03 14:41 - 00200116 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_2.wav2014-02-03 14:41 - 2014-02-03 14:41 - 00120116 _____ () C:\Users\Ian\Downloads\OFF ZEBRA JUEVES 6 Y VIERNES 7 - Part_1.wav2014-02-03 02:26 - 2012-06-12 05:03 - 00000432 _____ () C:\Windows\Tasks\At1.job2014-02-01 14:31 - 2014-02-01 14:31 - 00043498 _____ () C:\Users\Ian\Downloads\james_brown-sex_machine.mid2014-02-01 14:14 - 2014-02-01 14:14 - 00076137 _____ () C:\Users\Ian\Downloads\Stevie Wonder - Superstition.mid2014-02-01 14:14 - 2014-02-01 14:14 - 00072821 _____ () C:\Users\Ian\Downloads\Stevie_Wonder_-_Superstition.mid2014-02-01 14:10 - 2014-02-01 14:10 - 00072821 _____ () C:\Users\Ian\Downloads\stevie_wonder-superstition.mid2014-02-01 14:02 - 2014-02-01 14:02 - 00053248 _____ () C:\Users\Ian\Downloads\Curtis Mayfield - SUPERFLY.mid2014-02-01 13:07 - 2014-02-01 13:07 - 00000000 ____D () C:\Users\Ian\Superior Drummer2014-02-01 12:55 - 2014-02-01 12:55 - 01536858 _____ () C:\Users\Ian\Downloads\spacesniffer_1_1_4_0.zip2014-02-01 12:47 - 2014-02-01 12:47 - 00000000 ____D () C:\Users\Ian\Documents\Toontrack Files to move or delete:====================C:\Windows\Tasks\At1.job Some content of TEMP:====================C:\Users\Ian\AppData\Local\Temp\javasysmo2390211161915115658.dllC:\Users\Ian\AppData\Local\Temp\javasysmo2553462891198296815.dllC:\Users\Ian\AppData\Local\Temp\javasysmo2713995137915530137.dllC:\Users\Ian\AppData\Local\Temp\javasysmo3208668797512452993.dllC:\Users\Ian\AppData\Local\Temp\javasysmo5535621217281191994.dllC:\Users\Ian\AppData\Local\Temp\javasysmo6308476793707859565.dllC:\Users\Ian\AppData\Local\Temp\javasysmo6916697602651644984.dllC:\Users\Ian\AppData\Local\Temp\javasysmo7102880802229240220.dllC:\Users\Ian\AppData\Local\Temp\javasysmo7572713171699864898.dllC:\Users\Ian\AppData\Local\Temp\javasysmo8097214107177319727.dllC:\Users\Ian\AppData\Local\Temp\javasysmo8357967155125780854.dllC:\Users\Ian\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exeC:\Users\Ian\AppData\Local\Temp\Setup-yabrowser.exeC:\Users\Ian\AppData\Local\Temp\yupdate-exec-yabrowser.exe ==================== Known DLLs (Whitelisted) ================ ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legitC:\Windows\System32\wininit.exe => MD5 is legitC:\Windows\SysWOW64\wininit.exe => MD5 is legitC:\Windows\explorer.exe[2012-04-07 07:36] - [2011-02-25 22:14] - 2871808 ____A (Microsoft Corporation) 3B69712041F3D63605529BD66DC00C48 C:\Windows\SysWOW64\explorer.exe[2012-04-07 07:36] - [2011-02-25 22:14] - 2871808 ____A (Microsoft Corporation) 3B69712041F3D63605529BD66DC00C48 C:\Windows\System32\svchost.exe => MD5 is legitC:\Windows\SysWOW64\svchost.exe => MD5 is legitC:\Windows\System32\services.exe => MD5 is legitC:\Windows\System32\User32.dll => MD5 is legitC:\Windows\SysWOW64\User32.dll => MD5 is legitC:\Windows\System32\userinit.exe => MD5 is legitC:\Windows\SysWOW64\userinit.exe => MD5 is legitC:\Windows\System32\rpcss.dll => MD5 is legitC:\Windows\System32\Drivers\volsnap.sys => MD5 is legit testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION! ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OKHKLM\...\exefile\DefaultIcon: %1 => OKHKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= ==================== BCD ================================ Windows Boot Manager--------------------identifier {bootmgr}device partition=D:description Windows Boot Managerlocale en-USinherit {globalsettings}default {default}resumeobject {64361e83-acd3-11e1-907c-e4026dbd1cbc}displayorder {default}toolsdisplayorder {memdiag}timeout 30 Windows Boot Loader-------------------identifier {default}device partition=C:path \Windows\system32\winload.exedescription Windows 7locale en-USinherit {bootloadersettings}recoverysequence {current}recoveryenabled Yestestsigning Yesosdevice partition=C:systemroot \Windowsresumeobject {64361e83-acd3-11e1-907c-e4026dbd1cbc}nx OptInnumproc 4usefirmwarepcisettings No Windows Boot Loader-------------------identifier {current}device ramdisk=[C:]\Recovery\64361e85-acd3-11e1-907c-e4026dbd1cbc\Winre.wim,{64361e86-acd3-11e1-907c-e4026dbd1cbc}path \windows\system32\winload.exedescription Windows Recovery Environmentinherit {bootloadersettings}osdevice ramdisk=[C:]\Recovery\64361e85-acd3-11e1-907c-e4026dbd1cbc\Winre.wim,{64361e86-acd3-11e1-907c-e4026dbd1cbc}systemroot \windowsnx OptInwinpe Yes Resume from Hibernate---------------------identifier {64361e83-acd3-11e1-907c-e4026dbd1cbc}device partition=C:path \Windows\system32\winresume.exedescription Windows Resume Applicationlocale en-USinherit {resumeloadersettings}filedevice partition=C:filepath \hiberfil.sysdebugoptionenabled No Windows Memory Tester---------------------identifier {memdiag}device partition=D:path \boot\memtest.exedescription Windows Memory Diagnosticlocale en-USinherit {globalsettings}badmemoryaccess Yes EMS Settings------------identifier {emssettings}bootems Yes Debugger Settings-----------------identifier {dbgsettings}debugtype Serialdebugport 1baudrate 115200 RAM Defects-----------identifier {badmemory} Global Settings---------------identifier {globalsettings}inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings--------------------identifier {bootloadersettings}inherit {globalsettings} {hypervisorsettings} Hypervisor Settings-------------------identifier {hypervisorsettings}hypervisordebugtype Serialhypervisordebugport 1hypervisorbaudrate 115200 Resume Loader Settings----------------------identifier {resumeloadersettings}inherit {globalsettings} Device options--------------identifier {64361e86-acd3-11e1-907c-e4026dbd1cbc}description Ramdisk Optionsramdisksdidevice partition=C:ramdisksdipath \Recovery\64361e85-acd3-11e1-907c-e4026dbd1cbc\boot.sdi ==================== Memory info =========================== Percentage of memory in use: 16%Total physical RAM: 4079.43 MBAvailable physical RAM: 3418.44 MBTotal Pagefile: 4077.63 MBAvailable Pagefile: 3407.12 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.87 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:99.9 GB) (Free:11.88 GB) NTFSDrive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from reading drive)]Drive f: () (Fixed) (Total:100 GB) (Free:8.47 GB) NTFSDrive g: () (Fixed) (Total:731.51 GB) (Free:122.71 GB) NTFSDrive h: (W8_X64_X86_AIO_EN-US) (CDROM) (Total:3.83 GB) (Free:0 GB) UDFDrive i: (EOS_DIGITAL) (Removable) (Total:14.91 GB) (Free:14.8 GB) NTFSDrive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFSDrive y: (TB) (Fixed) (Total:931.51 GB) (Free:23.55 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ========================================================Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: A1DA5E56) Partition: GPT Partition Type. ========================================================Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F970AF9A) Partition: GPT Partition Type. ========================================================Disk: 2 (Size: 15 GB) (Disk ID: EB27EB27) Partition: GPT Partition Type. LastRegBack: 2014-02-18 05:55 ==================== End Of Log ============================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.