Jump to content

Windows only runs normally after use of system restore

peterussell534
 Share

Recommended Posts

peterussell534

peterussell534

Posted
  • Author
Posted

Kevin
OTL first report attached.

I have had problems updating Adobe reader - installation stops at 5% with connection failed - even with virus monitor turned off. Until the main problem is resolved I have uninstalled Adobe Reader hope this is ok. Always seem to have problems updating Adobe!.

 

OTL logfile created on: 9/23/2013 11:30:12 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\peter\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
3.97 Gb Total Physical Memory | 2.14 Gb Available Physical Memory | 53.89% Memory free
7.93 Gb Paging File | 5.29 Gb Available in Paging File | 66.77% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.85 Gb Total Space | 392.21 Gb Free Space | 86.80% Space Free | Partition Type: NTFS
 
Computer Name: PETER-PC | User Name: peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013/09/23 11:27:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\peter\Desktop\OTL.com
PRC - [2013/09/10 23:18:16 | 002,476,312 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
PRC - [2013/09/10 23:18:16 | 001,435,928 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
PRC - [2013/08/17 15:31:54 | 000,276,376 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012/10/03 22:22:29 | 000,216,072 | ---- | M] (Emsisoft GmbH) -- C:\Program Files (x86)\Online Armor\oacat.exe
PRC - [2012/01/18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/09/06 19:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/08/18 17:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 17:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/12 12:19:40 | 000,680,984 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2011/08/12 12:18:42 | 000,205,336 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2011/08/12 12:18:30 | 000,265,240 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
PRC - [2011/08/01 19:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/01/13 03:01:28 | 006,129,496 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
PRC - [2011/01/10 15:24:20 | 000,993,848 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psia.exe
PRC - [2011/01/10 15:24:20 | 000,399,416 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\sua.exe
PRC - [2010/11/17 10:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/03/03 20:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/01/12 12:11:24 | 000,278,528 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
PRC - [2010/01/11 19:20:48 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013/09/16 13:09:52 | 000,991,984 | ---- | M] () -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportMS.dll
MOD - [2013/09/11 10:41:30 | 011,914,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\6ebbfafc5521934f7e1c154937a2788b\System.Web.ni.dll
MOD - [2013/09/11 10:41:17 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll
MOD - [2013/08/18 14:54:25 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\9e38ddbb3a90cc3e782a0640788b1fcb\System.Core.ni.dll
MOD - [2013/08/18 14:53:13 | 000,452,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\0149e914e4cfbde7da65d4558af19ce0\IAStorUtil.ni.dll
MOD - [2013/08/18 13:46:42 | 014,340,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\930e99b2f62cea8c4aa070527d15f748\PresentationFramework.ni.dll
MOD - [2013/08/18 13:46:28 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
MOD - [2013/08/18 13:46:21 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/08/18 13:46:18 | 012,238,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\585b8f6cc7ba86886462d0dc9753c98f\PresentationCore.ni.dll
MOD - [2013/08/18 13:46:08 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1f6f220f9efe936d1158c79b9d4b451f\WindowsBase.ni.dll
MOD - [2013/08/18 13:46:01 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013/08/18 13:45:56 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll
MOD - [2013/08/18 13:45:54 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/08/17 15:31:35 | 003,551,640 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/07/12 09:16:57 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a2920ed81e097f8551231a9350697bbd\PresentationFramework.Aero.ni.dll
MOD - [2013/07/12 09:15:23 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2012/06/27 15:09:06 | 000,557,056 | ---- | M] () -- C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
MOD - [2011/08/22 15:47:44 | 000,336,408 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
MOD - [2011/08/19 10:26:16 | 000,183,320 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\SharedBin\LvApi11.dll
MOD - [2011/08/18 17:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2011/08/12 12:19:40 | 000,680,984 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
MOD - [2011/08/12 12:18:30 | 000,265,240 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
MOD - [2011/03/01 23:15:28 | 000,126,808 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
MOD - [2011/03/01 23:15:28 | 000,027,480 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
MOD - [2011/03/01 23:15:04 | 000,340,824 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll
MOD - [2011/03/01 23:14:42 | 007,954,776 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll
MOD - [2011/03/01 23:14:30 | 002,143,576 | ---- | M] () -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll
MOD - [2011/01/13 02:57:34 | 000,751,616 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll
MOD - [2011/01/13 02:55:28 | 000,027,472 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\SDL.dll
MOD - [2010/11/24 22:44:02 | 000,375,280 | ---- | M] () -- c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
MOD - [2010/11/17 10:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
MOD - [2009/04/22 22:53:56 | 000,969,040 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll
MOD - [2009/04/10 00:04:56 | 002,141,008 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll
MOD - [2009/03/03 23:18:08 | 000,138,064 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll
MOD - [2009/03/03 23:18:06 | 000,035,152 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll
MOD - [2009/03/03 23:18:06 | 000,029,008 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll
MOD - [2009/03/03 23:17:46 | 011,311,952 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll
MOD - [2009/03/03 23:17:46 | 000,363,856 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll
MOD - [2009/03/03 23:17:44 | 000,200,016 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll
MOD - [2009/03/03 23:17:40 | 000,475,472 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll
MOD - [2009/03/03 23:17:38 | 007,704,400 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll
MOD - [2009/03/03 23:17:32 | 000,291,664 | ---- | M] () -- C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2013/06/20 20:33:08 | 000,366,600 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013/06/20 20:33:08 | 000,023,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2013/05/27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/01/11 19:20:48 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2013/09/10 23:56:57 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/09/10 23:18:16 | 001,435,928 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2013/08/17 15:31:53 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/10/03 22:23:44 | 004,463,864 | ---- | M] (Emsisoft GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Online Armor\OAsrv.exe -- (SvcOnlineArmor)
SRV - [2012/10/03 22:22:29 | 000,216,072 | ---- | M] (Emsisoft GmbH) [Auto | Running] -- C:\Program Files (x86)\Online Armor\oacat.exe -- (OAcat)
SRV - [2012/01/18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/08/18 17:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/01/10 15:24:20 | 000,993,848 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\psia.exe -- (Secunia PSI Agent)
SRV - [2011/01/10 15:24:20 | 000,399,416 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2010/11/25 05:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 05:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/08/25 20:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/01/12 12:11:24 | 000,278,528 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe -- (WSWNA3100)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
========== Driver Services (All) ==========
 
DRV:64bit: - [2013/09/10 23:18:28 | 000,295,696 | ---- | M] (Trusteer Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RapportKE64.sys -- (RapportKE64)
DRV:64bit: - [2013/07/06 07:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tcpip.sys -- (TCPIP6)
DRV:64bit: - [2013/07/06 07:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tcpip.sys -- (Tcpip)
DRV:64bit: - [2013/06/18 21:50:08 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\MpFilter.sys -- (MpFilter)
DRV:64bit: - [2013/06/18 21:50:08 | 000,139,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013/06/15 05:32:16 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tssecsrv.sys -- (tssecsrv)
DRV:64bit: - [2013/04/12 15:45:08 | 001,656,680 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\ntfs.sys -- (Ntfs)
DRV:64bit: - [2013/04/10 07:01:53 | 000,983,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV:64bit: - [2013/01/24 07:01:01 | 000,223,752 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV:64bit: - [2012/10/03 22:24:39 | 000,035,376 | ---- | M] (Emsisoft) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\OAnet.sys -- (OAnet)
DRV:64bit: - [2012/10/03 17:07:26 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tcpipreg.sys -- (tcpipreg)
DRV:64bit: - [2012/08/24 19:13:17 | 000,154,480 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV:64bit: - [2012/08/24 19:09:34 | 000,458,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)
DRV:64bit: - [2012/08/23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ndis.sys -- (NDIS)
DRV:64bit: - [2012/07/26 05:55:47 | 000,785,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Wdf01000.sys -- (Wdf01000)
DRV:64bit: - [2012/07/26 03:26:45 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV:64bit: - [2012/07/26 03:26:06 | 000,198,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFRd.sys -- (WUDFRd)
DRV:64bit: - [2012/06/02 06:48:16 | 000,095,600 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecdd.sys -- (KSecDD)
DRV:64bit: - [2012/04/28 04:55:21 | 000,210,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpwd.sys -- (RDPWD)
DRV:64bit: - [2012/03/17 08:58:57 | 000,075,120 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\partmgr.sys -- (partmgr)
DRV:64bit: - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/17 05:57:32 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tdtcp.sys -- (TDTCP)
DRV:64bit: - [2012/01/18 07:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/01/18 07:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2012/01/18 07:44:14 | 000,025,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2011/12/28 04:59:24 | 000,498,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afd.sys -- (AFD)
DRV:64bit: - [2011/07/09 03:46:28 | 000,288,768 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mrxsmb10.sys -- (mrxsmb10)
DRV:64bit: - [2011/06/10 07:34:52 | 000,539,240 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/04/29 04:06:10 | 000,467,456 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\srv.sys -- (srv)
DRV:64bit: - [2011/04/29 04:05:49 | 000,410,112 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\srv2.sys -- (srv2)
DRV:64bit: - [2011/04/29 04:05:37 | 000,168,448 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\srvnet.sys -- (srvnet)
DRV:64bit: - [2011/04/27 03:40:40 | 000,158,208 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mrxsmb.sys -- (mrxsmb)
DRV:64bit: - [2011/04/27 03:39:37 | 000,128,000 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mrxsmb20.sys -- (mrxsmb20)
DRV:64bit: - [2011/04/19 10:52:20 | 001,254,464 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcmwlhigh664.sys -- (BCMH43XX)
DRV:64bit: - [2011/03/25 04:29:26 | 000,343,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbhub.sys -- (usbhub)
DRV:64bit: - [2011/03/25 04:29:14 | 000,098,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbccgp.sys -- (usbccgp)
DRV:64bit: - [2011/03/25 04:29:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbehci.sys -- (usbehci)
DRV:64bit: - [2011/03/25 04:29:04 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbohci.sys -- (usbohci)
DRV:64bit: - [2011/03/25 04:29:03 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbuhci.sys -- (usbuhci)
DRV:64bit: - [2011/03/11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvstor.sys -- (nvstor)
DRV:64bit: - [2011/03/11 07:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvraid.sys -- (nvraid)
DRV:64bit: - [2011/03/11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaStorV.sys -- (iaStorV)
DRV:64bit: - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/03/11 05:37:16 | 000,091,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBSTOR.SYS -- (USBSTOR)
DRV:64bit: - [2011/02/23 05:55:04 | 000,090,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\bowser.sys -- (bowser)
DRV:64bit: - [2011/02/11 19:16:38 | 010,628,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/11/20 14:34:02 | 000,295,808 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volsnap.sys -- (volsnap)
DRV:64bit: - [2010/11/20 14:34:01 | 000,363,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volmgrx.sys -- (volmgrx)
DRV:64bit: - [2010/11/20 14:34:01 | 000,071,552 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volmgr.sys -- (volmgr)
DRV:64bit: - [2010/11/20 14:34:00 | 000,215,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV:64bit: - [2010/11/20 14:33:57 | 000,063,360 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\termdd.sys -- (TermDD)
DRV:64bit: - [2010/11/20 14:33:54 | 000,103,808 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sbp2port.sys -- (sbp2port)
DRV:64bit: - [2010/11/20 14:33:53 | 000,213,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
DRV:64bit: - [2010/11/20 14:33:48 | 000,184,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pci.sys -- (pci)
DRV:64bit: - [2010/11/20 14:33:45 | 000,366,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msrpc.sys -- (MsRPC)
DRV:64bit: - [2010/11/20 14:33:45 | 000,273,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msiscsi.sys -- (iScsiPrt)
DRV:64bit: - [2010/11/20 14:33:44 | 000,155,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mpio.sys -- (mpio)
DRV:64bit: - [2010/11/20 14:33:44 | 000,140,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msdsm.sys -- (msdsm)
DRV:64bit: - [2010/11/20 14:33:44 | 000,031,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msahci.sys -- (msahci)
DRV:64bit: - [2010/11/20 14:33:43 | 000,094,592 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mountmgr.sys -- (mountmgr)
DRV:64bit: - [2010/11/20 14:33:36 | 000,014,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV:64bit: - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 14:33:34 | 000,289,664 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\fltMgr.sys -- (FltMgr)
DRV:64bit: - [2010/11/20 14:32:46 | 000,334,208 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpi.sys -- (ACPI)
DRV:64bit: - [2010/11/20 11:52:37 | 000,088,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wanarp.sys -- (Wanarpv6)
DRV:64bit: - [2010/11/20 11:52:37 | 000,088,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wanarp.sys -- (WANARP)
DRV:64bit: - [2010/11/20 11:52:35 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rasl2tp.sys -- (Rasl2tp)
DRV:64bit: - [2010/11/20 11:52:34 | 000,164,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ndiswan.sys -- (NdisWan)
DRV:64bit: - [2010/11/20 11:52:32 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\raspptp.sys -- (PptpMiniport)
DRV:64bit: - [2010/11/20 11:52:20 | 000,131,584 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\pacer.sys -- (Psched)
DRV:64bit: - [2010/11/20 11:52:20 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ndproxy.sys -- (NDProxy)
DRV:64bit: - [2010/11/20 11:52:19 | 000,082,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV:64bit: - [2010/11/20 11:51:50 | 000,125,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tunnel.sys -- (tunnel)
DRV:64bit: - [2010/11/20 11:50:08 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ndisuio.sys -- (Ndisuio)
DRV:64bit: - [2010/11/20 11:44:56 | 000,229,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV:64bit: - [2010/11/20 11:44:37 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\umbus.sys -- (umbus)
DRV:64bit: - [2010/11/20 11:43:56 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winusb.sys -- (WinUsb)
DRV:64bit: - [2010/11/20 11:43:52 | 000,109,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBAUDIO.sys -- (usbaudio)
DRV:64bit: - [2010/11/20 11:43:49 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hidusb.sys -- (HidUsb)
DRV:64bit: - [2010/11/20 11:43:43 | 000,122,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hdaudbus.sys -- (HDAudBus)
DRV:64bit: - [2010/11/20 11:34:00 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sffp_sd.sys -- (sffp_sd)
DRV:64bit: - [2010/11/20 11:33:25 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbdhid.sys -- (kbdhid)
DRV:64bit: - [2010/11/20 11:33:17 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
DRV:64bit: - [2010/11/20 11:14:37 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)
DRV:64bit: - [2010/11/20 11:09:59 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV:64bit: - [2010/11/20 11:04:53 | 000,078,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IPMIDrv.sys -- (IPMIDRV)
DRV:64bit: - [2010/11/20 10:30:42 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV:64bit: - [2010/11/20 10:27:54 | 000,309,248 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\rdbss.sys -- (rdbss)
DRV:64bit: - [2010/11/20 10:26:42 | 000,140,800 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mrxdav.sys -- (MRxDAV)
DRV:64bit: - [2010/11/20 10:26:32 | 000,102,400 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\dfsc.sys -- (DfsC)
DRV:64bit: - [2010/11/20 10:26:11 | 000,328,192 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\udfs.sys -- (udfs)
DRV:64bit: - [2010/11/20 10:25:14 | 000,753,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\http.sys -- (HTTP)
DRV:64bit: - [2010/11/20 10:23:20 | 000,261,632 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\netbt.sys -- (NetBT)
DRV:64bit: - [2010/11/20 10:21:56 | 000,119,296 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tdx.sys -- (tdx)
DRV:64bit: - [2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cdrom.sys -- (cdrom)
DRV:64bit: - [2010/09/01 09:30:58 | 000,017,976 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\psi_mf.sys -- (PSI)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/11/27 07:19:56 | 000,212,992 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rtenic64.sys -- (RTLE8023x64)
DRV:64bit: - [2009/10/21 02:55:12 | 002,012,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTKVHD64.sys -- (IntcAzAudAddService)
DRV:64bit: - [2009/10/20 11:19:54 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:64bit: - [2009/07/20 19:27:34 | 000,027,136 | ---- | M] (Realtek                                            ) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\RtNdPt60.sys -- (RtNdPt60)
DRV:64bit: - [2009/07/14 02:52:31 | 000,367,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\clfs.sys -- (CLFS)
DRV:64bit: - [2009/07/14 02:52:31 | 000,021,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\compbatt.sys -- (Compbatt)
DRV:64bit: - [2009/07/14 02:52:31 | 000,017,488 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cmdide.sys -- (cmdide)
DRV:64bit: - [2009/07/14 02:52:21 | 000,491,088 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\adp94xx.sys -- (adp94xx)
DRV:64bit: - [2009/07/14 02:52:21 | 000,339,536 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\adpahci.sys -- (adpahci)
DRV:64bit: - [2009/07/14 02:52:21 | 000,182,864 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\adpu320.sys -- (adpu320)
DRV:64bit: - [2009/07/14 02:52:21 | 000,097,856 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\arcsas.sys -- (arcsas)
DRV:64bit: - [2009/07/14 02:52:21 | 000,087,632 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\arc.sys -- (arc)
DRV:64bit: - [2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AGP440.sys -- (agp440)
DRV:64bit: - [2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atapi.sys -- (atapi)
DRV:64bit: - [2009/07/14 02:52:21 | 000,015,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdide.sys -- (amdide)
DRV:64bit: - [2009/07/14 02:52:21 | 000,015,440 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aliide.sys -- (aliide)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:27 | 000,060,496 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\mup.sys -- (Mup)
DRV:64bit: - [2009/07/14 02:48:27 | 000,049,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mouclass.sys -- (mouclass)
DRV:64bit: - [2009/07/14 02:48:27 | 000,032,320 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mssmbios.sys -- (mssmbios)
DRV:64bit: - [2009/07/14 02:48:27 | 000,015,424 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\msisadrv.sys -- (msisadrv)
DRV:64bit: - [2009/07/14 02:48:26 | 000,122,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NV_AGP.SYS -- (nv_agp)
DRV:64bit: - [2009/07/14 02:48:26 | 000,051,264 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nfrd960.sys -- (nfrd960)
DRV:64bit: - [2009/07/14 02:48:04 | 000,284,736 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MegaSR.sys -- (MegaSR)
DRV:64bit: - [2009/07/14 02:48:04 | 000,115,776 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV:64bit: - [2009/07/14 02:48:04 | 000,114,752 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_fc.sys -- (LSI_FC)
DRV:64bit: - [2009/07/14 02:48:04 | 000,106,560 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas.sys -- (LSI_SAS)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:48:04 | 000,050,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbdclass.sys -- (kbdclass)
DRV:64bit: - [2009/07/14 02:48:04 | 000,044,112 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iirsp.sys -- (iirsp)
DRV:64bit: - [2009/07/14 02:48:04 | 000,035,392 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\megasas.sys -- (megasas)
DRV:64bit: - [2009/07/14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\isapnp.sys -- (isapnp)
DRV:64bit: - [2009/07/14 02:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelide.sys -- (intelide)
DRV:64bit: - [2009/07/14 02:47:49 | 000,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV:64bit: - [2009/07/14 02:47:48 | 000,530,496 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\elxstor.sys -- (elxstor)
DRV:64bit: - [2009/07/14 02:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\disk.sys -- (Disk)
DRV:64bit: - [2009/07/14 02:47:48 | 000,070,224 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\fileinfo.sys -- (FileInfo)
DRV:64bit: - [2009/07/14 02:47:48 | 000,065,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\GAGP30KX.SYS -- (gagp30kx)
DRV:64bit: - [2009/07/14 02:47:48 | 000,024,144 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\crcdisk.sys -- (crcdisk)
DRV:64bit: - [2009/07/14 02:45:56 | 000,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV:64bit: - [2009/07/14 02:45:55 | 000,161,872 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vsmraid.sys -- (vsmraid)
DRV:64bit: - [2009/07/14 02:45:55 | 000,064,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ULIAGPKX.SYS -- (uliagpkx)
DRV:64bit: - [2009/07/14 02:45:55 | 000,064,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UAGP35.SYS -- (uagp35)
DRV:64bit: - [2009/07/14 02:45:55 | 000,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 02:45:55 | 000,021,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wd.sys -- (Wd)
DRV:64bit: - [2009/07/14 02:45:55 | 000,019,008 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spldr.sys -- (spldr)
DRV:64bit: - [2009/07/14 02:45:55 | 000,017,488 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\viaide.sys -- (viaide)
DRV:64bit: - [2009/07/14 02:45:55 | 000,012,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swenum.sys -- (swenum)
DRV:64bit: - [2009/07/14 02:45:46 | 001,524,816 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ql2300.sys -- (ql2300)
DRV:64bit: - [2009/07/14 02:45:46 | 000,080,464 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sisraid4.sys -- (SiSRaid4)
DRV:64bit: - [2009/07/14 02:45:45 | 000,220,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcmcia.sys -- (pcmcia)
DRV:64bit: - [2009/07/14 02:45:45 | 000,128,592 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ql40xx.sys -- (ql40xx)
DRV:64bit: - [2009/07/14 02:45:45 | 000,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV:64bit: - [2009/07/14 02:45:45 | 000,043,584 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sisraid2.sys -- (SiSRaid2)
DRV:64bit: - [2009/07/14 02:45:45 | 000,012,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pciide.sys -- (pciide)
DRV:64bit: - [2009/07/14 02:19:07 | 000,286,720 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrSerId.sys -- (Brserid)
DRV:64bit: - [2009/07/14 02:01:19 | 000,651,264 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PEAuth.sys -- (PEAUTH)
DRV:64bit: - [2009/07/14 01:38:18 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbprint.sys -- (usbprint)
DRV:64bit: - [2009/07/14 01:17:46 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
DRV:64bit: - [2009/07/14 01:16:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV:64bit: - [2009/07/14 01:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPENCDD.sys -- (RDPENCDD)
DRV:64bit: - [2009/07/14 01:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPCDD.sys -- (RDPCDD)
DRV:64bit: - [2009/07/14 01:16:32 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tdpipe.sys -- (TDPIPE)
DRV:64bit: - [2009/07/14 01:10:48 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\modem.sys -- (Modem)
DRV:64bit: - [2009/07/14 01:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV:64bit: - [2009/07/14 01:10:25 | 000,083,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rassstp.sys -- (RasSstp)
DRV:64bit: - [2009/07/14 01:10:24 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn)
DRV:64bit: - [2009/07/14 01:10:17 | 000,092,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\raspppoe.sys -- (RasPppoe)
DRV:64bit: - [2009/07/14 01:10:13 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\asyncmac.sys -- (AsyncMac)
DRV:64bit: - [2009/07/14 01:10:09 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rasacd.sys -- (RasAcd)
DRV:64bit: - [2009/07/14 01:10:03 | 000,116,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipnat.sys -- (IPNAT)
DRV:64bit: - [2009/07/14 01:10:00 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ndistapi.sys -- (NdisTapi)
DRV:64bit: - [2009/07/14 01:09:48 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV:64bit: - [2009/07/14 01:09:26 | 000,044,544 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\netbios.sys -- (NetBIOS)
DRV:64bit: - [2009/07/14 01:09:26 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
DRV:64bit: - [2009/07/14 01:09:09 | 000,093,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\smb.sys -- (Smb)
DRV:64bit: - [2009/07/14 01:08:59 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irenum.sys -- (IRENUM)
DRV:64bit: - [2009/07/14 01:08:51 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rspndr.sys -- (rspndr)
DRV:64bit: - [2009/07/14 01:08:51 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lltdio.sys -- (lltdio)
DRV:64bit: - [2009/07/14 01:08:25 | 000,077,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mpsdrv.sys -- (mpsdrv)
DRV:64bit: - [2009/07/14 01:08:13 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
DRV:64bit: - [2009/07/14 01:07:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vwifimp.sys -- (vwifimp)
DRV:64bit: - [2009/07/14 01:07:23 | 000,318,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nwifi.sys -- (NativeWifiP)
DRV:64bit: - [2009/07/14 01:07:22 | 000,059,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vwififlt.sys -- (VWiFiFlt)
DRV:64bit: - [2009/07/14 01:07:21 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV:64bit: - [2009/07/14 01:06:52 | 000,100,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbth.sys -- (HidBth)
DRV:64bit: - [2009/07/14 01:06:52 | 000,072,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthmodem.sys -- (BTHMODEM)
DRV:64bit: - [2009/07/14 01:06:52 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV:64bit: - [2009/07/14 01:06:45 | 000,072,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ohci1394.sys -- (ohci1394)
DRV:64bit: - [2009/07/14 01:06:37 | 000,100,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbcir.sys -- (usbcir)
DRV:64bit: - [2009/07/14 01:06:34 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\circlass.sys -- (circlass)
DRV:64bit: - [2009/07/14 01:06:24 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:64bit: - [2009/07/14 01:06:23 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidir.sys -- (HidIr)
DRV:64bit: - [2009/07/14 01:06:16 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\drmkaud.sys -- (drmkaud)
DRV:64bit: - [2009/07/14 01:02:08 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV:64bit: - [2009/07/14 01:02:07 | 000,027,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacompen.sys -- (WacomPen)
DRV:64bit: - [2009/07/14 01:01:03 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sffp_mmc.sys -- (sffp_mmc)
DRV:64bit: - [2009/07/14 01:01:02 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sfloppy.sys -- (sfloppy)
DRV:64bit: - [2009/07/14 01:01:01 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sffdisk.sys -- (sffdisk)
DRV:64bit: - [2009/07/14 01:00:54 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fdc.sys -- (fdc)
DRV:64bit: - [2009/07/14 01:00:54 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\flpydisk.sys -- (flpydisk)
DRV:64bit: - [2009/07/14 01:00:41 | 000,097,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\parport.sys -- (Parport)
DRV:64bit: - [2009/07/14 01:00:40 | 000,094,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serial.sys -- (Serial)
DRV:64bit: - [2009/07/14 01:00:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serenum.sys -- (Serenum)
DRV:64bit: - [2009/07/14 01:00:20 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mouhid.sys -- (mouhid)
DRV:64bit: - [2009/07/14 01:00:20 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sermouse.sys -- (sermouse)
DRV:64bit: - [2009/07/14 01:00:19 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ksthunk.sys -- (ksthunk)
DRV:64bit: - [2009/07/14 01:00:18 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mskssrv.sys -- (MSKSSRV)
DRV:64bit: - [2009/07/14 01:00:17 | 000,008,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mstee.sys -- (MSTEE)
DRV:64bit: - [2009/07/14 01:00:17 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mspclock.sys -- (MSPCLOCK)
DRV:64bit: - [2009/07/14 01:00:17 | 000,006,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mspqm.sys -- (MSPQM)
DRV:64bit: - [2009/07/14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep)
DRV:64bit: - [2009/07/14 00:38:52 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\monitor.sys -- (monitor)
DRV:64bit: - [2009/07/14 00:38:47 | 000,029,184 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vga.sys -- (VgaSave)
DRV:64bit: - [2009/07/14 00:38:47 | 000,029,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vgapnp.sys -- (vga)
DRV:64bit: - [2009/07/14 00:37:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\discache.sys -- (discache)
DRV:64bit: - [2009/07/14 00:35:59 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\blbdrive.sys -- (blbdrive)
DRV:64bit: - [2009/07/14 00:31:06 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV:64bit: - [2009/07/14 00:31:04 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\errdev.sys -- (ErrDev)
DRV:64bit: - [2009/07/14 00:31:03 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV:64bit: - [2009/07/14 00:31:02 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wmiacpi.sys -- (WmiAcpi)
DRV:64bit: - [2009/07/14 00:26:13 | 000,113,152 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\luafv.sys -- (luafv)
DRV:64bit: - [2009/07/14 00:25:40 | 000,034,304 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\filetrace.sys -- (Filetrace)
DRV:64bit: - [2009/07/14 00:23:29 | 000,204,800 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\fastfat.sys -- (fastfat)
DRV:64bit: - [2009/07/14 00:23:29 | 000,195,072 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\exfat.sys -- (exfat)
DRV:64bit: - [2009/07/14 00:21:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nsiproxy.sys -- (nsiproxy)
DRV:64bit: - [2009/07/14 00:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\i8042prt.sys -- (i8042prt)
DRV:64bit: - [2009/07/14 00:19:48 | 000,044,032 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\npfs.sys -- (Npfs)
DRV:64bit: - [2009/07/14 00:19:47 | 000,092,160 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cdfs.sys -- (cdfs)
DRV:64bit: - [2009/07/14 00:19:47 | 000,026,112 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\msfs.sys -- (Msfs)
DRV:64bit: - [2009/07/14 00:19:38 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\null.sys -- (Null)
DRV:64bit: - [2009/07/14 00:19:25 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdk8.sys -- (AmdK8)
DRV:64bit: - [2009/07/14 00:19:25 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\intelppm.sys -- (intelppm)
DRV:64bit: - [2009/07/14 00:19:25 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV:64bit: - [2009/07/14 00:19:25 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\processr.sys -- (Processor)
DRV:64bit: - [2009/06/10 21:41:10 | 000,047,104 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrSerWdm.sys -- (BrSerWdm)
DRV:64bit: - [2009/06/10 21:41:10 | 000,014,976 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV:64bit: - [2009/06/10 21:41:10 | 000,014,720 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrUsbSer.sys -- (BrUsbSer)
DRV:64bit: - [2009/06/10 21:41:06 | 000,018,432 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrFiltLo.sys -- (BrFiltLo)
DRV:64bit: - [2009/06/10 21:41:06 | 000,008,704 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrFiltUp.sys -- (BrFiltUp)
DRV:64bit: - [2009/06/10 21:37:19 | 000,023,040 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\secdrv.sys -- (secdrv)
DRV:64bit: - [2009/06/10 21:35:36 | 000,867,328 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/05 03:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/26 13:13:10 | 000,138,752 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2009/03/02 15:12:18 | 000,011,576 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\SSPORT.SYS -- (SSPORT)
DRV:64bit: - [2009/03/02 15:12:14 | 000,053,816 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\DGIVECP.SYS -- (DgiVecp)
DRV:64bit: - [2008/10/24 19:55:28 | 000,043,008 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (TEAM)
DRV:64bit: - [2008/10/24 19:55:28 | 000,043,008 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (RTTEAMPT)
DRV:64bit: - [2007/12/03 19:20:54 | 000,024,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan60.sys -- (RTVLANPT)
DRV:64bit: - [2007/01/19 19:24:24 | 000,025,312 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV:64bit: - [2006/11/01 12:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:64bit: - [2006/08/24 06:43:54 | 000,574,592 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ZD1211BU.sys -- (ZD1211BU(ZyDAS)
DRV - [2013/09/16 13:09:48 | 000,589,872 | ---- | M] () [Kernel | System | Running] -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_56758.sys -- (RapportCerberus_56758)
DRV - [2013/09/10 23:18:30 | 000,265,872 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys -- (RapportEI64)
DRV - [2013/09/10 23:18:28 | 000,384,432 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys -- (RapportPG64)
DRV - [2012/10/03 22:24:39 | 000,040,520 | ---- | M] (Emsisoft) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\OAmon.sys -- (OAmon)
DRV - [2012/10/03 22:24:38 | 000,061,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysWOW64\drivers\OADriver.sys -- (OADevice)
DRV - [2012/10/03 22:22:44 | 000,062,016 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysWOW64\drivers\oahlp64.sys -- (oahlpXX)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {49606DC7-976D-4030-A74E-9FB5C842FA68}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{49606DC7-976D-4030-A74E-9FB5C842FA68}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {49606DC7-976D-4030-A74E-9FB5C842FA68}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{49606DC7-976D-4030-A74E-9FB5C842FA68}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/USCON/2
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.co.uk/iesearch/default.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http:/www.google.co.uk
IE - HKCU\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {49606DC7-976D-4030-A74E-9FB5C842FA68}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{6905E720-BBAB-4CF1-9E54-4F3F345D14C6}: "URL" = http://search.orange.co.uk/all?brand=ouk&tab=web&p=_adr&q={searchTerms}
IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://search.chatzum.com/?q={SearchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledAddons: %7B4DC70064-89E2-4a55-8FC6-E8CDEAE3618C%7D:0.7.7
FF - prefs.js..extensions.enabledAddons: gmailnoads%40mywebber.com:3.9.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: C:\Program Files (x86)\FunWebProducts\Installr\4.bin\NPFunWeb.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\peter\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/09/23 11:25:21 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/09/23 11:25:21 | 000,000,000 | ---D | M]
 
[2011/03/10 16:26:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\peter\AppData\Roaming\Mozilla\Extensions
[2013/09/20 14:59:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\peter\AppData\Roaming\Mozilla\Firefox\Profiles\ipp84za1.default-1375799371344\extensions
[2013/08/06 15:51:22 | 000,021,861 | ---- | M] () (No name found) -- C:\Users\peter\AppData\Roaming\Mozilla\Firefox\Profiles\ipp84za1.default-1375799371344\extensions\gmailnoads@mywebber.com.xpi
[2013/08/06 15:46:04 | 000,013,345 | ---- | M] () (No name found) -- C:\Users\peter\AppData\Roaming\Mozilla\Firefox\Profiles\ipp84za1.default-1375799371344\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3618C}.xpi
[2013/08/06 15:57:00 | 000,824,302 | ---- | M] () (No name found) -- C:\Users\peter\AppData\Roaming\Mozilla\Firefox\Profiles\ipp84za1.default-1375799371344\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/08/17 15:31:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/08/17 15:31:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/08/17 15:31:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/08/17 15:31:55 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {8B68564D-53FD-4293-B80C-993A9F3988EE} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [@OnlineArmor GUI] C:\Program Files (x86)\Online Armor\oaui.exe (Emsisoft GmbH)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [igfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" File not found
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKCU..\Run: [Logitech Vid] C:\Program Files (x86)\Logitech\Vid HD\Vid.exe (Logitech Inc.)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O4 - Startup: C:\Users\peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk =  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3


O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://www.shockwave.com/content/bejeweled2/sis/popcaploader_v10.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2CE5A145-0319-429D-8A61-D5B364665CC8}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{93F760F4-C83A-4126-948B-E93F2E31C50B}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013/09/23 11:27:46 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\peter\Desktop\OTL.com
[2013/09/22 22:59:31 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013/09/22 22:41:57 | 000,000,000 | ---D | C] -- C:\OS
[2013/09/22 20:17:40 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/09/22 20:17:15 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/09/21 20:58:30 | 000,000,000 | ---D | C] -- C:\Users\peter\Doctor Web
[2013/09/21 19:57:09 | 000,000,000 | ---D | C] -- C:\Users\peter\Desktop\RK_Quarantine
[2013/09/21 16:47:07 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/09/21 15:10:29 | 000,000,000 | ---D | C] -- C:\FRST
[2013/09/20 13:51:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Utilities Software Limited
[2013/09/20 13:51:17 | 000,000,000 | ---D | C] -- C:\SWSETUP
[2013/09/20 12:07:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Advanced Fix 2013
[2013/09/20 12:00:50 | 000,000,000 | ---D | C] -- C:\ProgramData\SecTaskMan
[2013/09/20 12:00:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Security Task Manager
[2013/09/20 11:43:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DLLSuite
[2013/09/16 13:08:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Endpoint Protection
[2013/09/11 14:21:57 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/09/11 14:21:57 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/09/11 14:21:55 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/09/11 14:21:55 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/09/11 14:21:55 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/09/11 14:21:54 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/09/11 14:21:54 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/09/11 14:21:54 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/09/11 14:21:54 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/09/11 14:21:54 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/09/11 14:21:54 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/09/11 14:21:51 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/09/11 14:21:50 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/09/11 14:21:50 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/09/11 14:21:49 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/09/11 10:32:51 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2013/09/11 10:32:37 | 005,550,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/09/11 10:32:37 | 003,968,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/09/11 10:32:37 | 003,913,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/09/11 10:32:37 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/09/11 10:32:36 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/09/11 10:32:35 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/09/11 10:32:34 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/09/11 10:32:34 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013/09/11 10:32:32 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/09/11 10:32:31 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/09/11 10:32:31 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/09/11 10:32:31 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013/09/11 10:32:30 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/09/11 10:32:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/09/11 10:32:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/09/11 10:32:29 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/09/11 10:32:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/11 10:32:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/09/11 10:32:28 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/09/11 10:32:28 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/09/11 10:32:28 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/09/11 10:32:28 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/09/11 10:32:28 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/11 10:32:27 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/11 10:32:27 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/11 10:32:27 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/11 10:32:27 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/09/11 10:32:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/09/11 10:32:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/09/11 10:32:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/09/11 10:32:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/09/11 10:32:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/11 10:32:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/11 10:32:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/09/11 10:32:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/09/11 10:32:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/11 10:32:24 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/11 10:32:24 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/11 10:32:23 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/09/11 10:32:23 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/11 10:32:23 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/11 10:32:23 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/09/11 10:32:22 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/11 10:32:22 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/11 10:32:22 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/11 10:32:21 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/11 10:32:21 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/11 10:32:21 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/09/11 10:32:21 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/09/11 10:32:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/09/11 10:32:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/09/11 10:32:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/11 10:32:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/09/11 10:32:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/09/11 10:32:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/11 10:32:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/11 10:32:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/11 10:32:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/11 10:32:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/11 10:32:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/09/11 10:32:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/09/11 10:32:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/11 10:32:15 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/11 10:32:14 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/09/11 10:32:14 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/11 10:32:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/11 10:32:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/11 10:32:13 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/09/11 10:32:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/09/11 10:32:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/09/11 10:32:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/09/11 10:32:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/09/11 10:32:11 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/09/11 10:32:11 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/09/11 10:32:11 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013/09/11 10:32:11 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2013/09/11 10:32:11 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/09/11 10:31:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/08/26 11:53:00 | 000,000,000 | ---D | C] -- C:\Users\peter\AppData\Local\{5E7A8679-998E-4360-A833-E7A5D4D7D17F}
[2013/08/24 14:21:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2013/08/24 14:21:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2013/08/24 14:19:05 | 000,000,000 | ---D | C] -- C:\Users\peter\Documents\castle2
 
========== Files - Modified Within 30 Days ==========
 
[2013/09/23 11:27:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\peter\Desktop\OTL.com
[2013/09/23 10:56:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/23 09:27:30 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/23 09:27:30 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/23 09:19:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/23 09:19:03 | 3193,688,064 | -HS- | M] () -- C:\hiberfil.sys
[2013/09/22 00:01:47 | 000,295,600 | ---- | M] () -- C:\Users\peter\Documents\2 fig in boot ini.PNG
[2013/09/21 23:56:31 | 000,271,692 | ---- | M] () -- C:\Users\peter\Documents\sys config fig4.PNG
[2013/09/21 23:51:42 | 000,270,434 | ---- | M] () -- C:\Users\peter\Documents\Unsys config 3.png
[2013/09/11 16:24:46 | 000,341,184 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/09/10 23:56:56 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/09/10 23:56:56 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/09/10 23:18:28 | 000,295,696 | ---- | M] (Trusteer Ltd.) -- C:\Windows\SysNative\drivers\RapportKE64.sys
[2013/09/04 11:09:37 | 000,000,784 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/08/26 11:52:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
 
========== Files Created - No Company Name ==========
 
[2013/09/22 10:06:36 | 000,001,940 | ---- | C] () -- C:\Users\peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2013/09/22 00:02:02 | 000,295,600 | ---- | C] () -- C:\Users\peter\Documents\2 fig in boot ini.PNG
[2013/09/21 23:57:16 | 000,271,692 | ---- | C] () -- C:\Users\peter\Documents\sys config fig4.PNG
[2013/09/21 23:52:15 | 000,270,434 | ---- | C] () -- C:\Users\peter\Documents\Unsys config 3.png
[2013/08/26 11:52:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/09/20 23:37:18 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2012/05/19 16:10:19 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/03/18 17:09:31 | 000,062,016 | ---- | C] () -- C:\Windows\SysWow64\drivers\oahlp64.sys
[2012/03/18 17:09:31 | 000,061,632 | ---- | C] () -- C:\Windows\SysWow64\drivers\OADriver.sys
[2012/01/18 07:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012/01/18 07:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012/01/18 07:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/04/15 07:35:08 | 000,007,605 | ---- | C] () -- C:\Users\peter\AppData\Local\Resmon.ResmonCfg
[2011/03/29 17:33:26 | 000,000,000 | ---- | C] () -- C:\Users\peter\AppData\Local\rx_image32.Cache
[2011/03/10 00:09:15 | 000,303,104 | ---- | C] () -- C:\Program Files (x86)\Common Files\FDEUnInstaller.exe
 
========== ZeroAccess Check ==========
 
[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2011/03/12 12:42:15 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\AVG10
[2013/08/22 10:08:23 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\coupons
[2012/09/20 00:00:29 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\FreeTorrentViewer
[2012/05/27 13:42:12 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\Keynote Systems
[2011/05/28 23:23:38 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\Leadertech
[2012/03/18 17:10:51 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\OnlineArmor
[2011/03/14 17:07:16 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\PCDr
[2011/03/13 12:42:07 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\PlayFirst
[2012/05/19 15:58:00 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\SoftGrid Client
[2011/05/01 17:20:06 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\TP
[2011/03/12 19:07:33 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\Trusteer
[2013/08/06 15:25:37 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\uTorrent
[2011/03/10 16:12:26 | 000,000,000 | ---D | M] -- C:\Users\peter\AppData\Roaming\Windows Live Writer
 
========== Purity Check ==========
 
 
 
========== Files - Unicode (All) ==========
[2013/03/28 01:11:10 | 000,000,040 | ---- | M] ()(C:\Windows\SysNative\?¿) -- C:\Windows\SysNative\ꯀ¿
[2013/03/28 01:11:10 | 000,000,040 | ---- | C] ()(C:\Windows\SysNative\?¿) -- C:\Windows\SysNative\ꯀ¿

< End of report >

Link to post
Share on other sites
  • Replies 52
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

second OTL report attached:-

 

OTL Extras logfile created on: 9/23/2013 11:30:12 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\peter\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
3.97 Gb Total Physical Memory | 2.14 Gb Available Physical Memory | 53.89% Memory free
7.93 Gb Paging File | 5.29 Gb Available in Paging File | 66.77% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.85 Gb Total Space | 392.21 Gb Free Space | 86.80% Space Free | Partition Type: NTFS
 
Computer Name: PETER-PC | User Name: peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0D3CF685-ACF6-4637-8905-81892EFEDE3F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{31EEC0B8-641F-47EC-945F-0A1A8B54EEA3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{448EA608-C06E-4DE9-B1EB-351A2FE5C857}" = rport=138 | protocol=17 | dir=out | app=system |
"{57CAA9EF-D580-41F0-BAEC-B78FB1F4BD6A}" = rport=139 | protocol=6 | dir=out | app=system |
"{61662E49-E7CC-4517-B912-802B118C380E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{6E5B228D-E3BB-45A7-9C62-1C2577783474}" = rport=137 | protocol=17 | dir=out | app=system |
"{70B41153-E744-43B8-8E81-6E739655F045}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{7328747F-8163-4AD9-8C45-6600617BB3CB}" = lport=10243 | protocol=6 | dir=in | app=system |
"{75F28AC1-EF1C-45E1-8A0B-A8CD9068BEB3}" = lport=138 | protocol=17 | dir=in | app=system |
"{881BB4E7-551F-4547-A384-9645BEF0FE28}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{90A1DE12-4D16-4A15-AB1E-2565FE7243DA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{96180A4F-918E-4B46-9BE7-B4202A85BC97}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9AFBC586-D6AA-428F-AA58-7948791A6F14}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A0B0BEDE-B653-4C9E-8225-98E06E8FCE89}" = lport=139 | protocol=6 | dir=in | app=system |
"{A2F69EBD-6E64-49A2-967D-668B45B0C883}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{AF6FDBA0-C902-47F7-B23C-63D3BBFFA86A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B97D5155-D82F-4092-9F8C-C8D470917AD2}" = rport=445 | protocol=6 | dir=out | app=system |
"{D3CE43BD-CD8D-4325-9A4B-4EF424B5ED5D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E4799BDD-9CCC-4A34-85FF-B30D9B0EC1FA}" = lport=445 | protocol=6 | dir=in | app=system |
"{E5E1E9E6-2027-493B-93B0-44F3AAE0DC7F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EC347F91-BAF6-4CE4-BDC3-34DE6194D058}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ECAB3D11-2024-4D59-8CD9-6D03CB68AD10}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F391E745-91D0-4CE5-8B38-DB852F679378}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{F453039C-8FB3-45AF-8C80-204574CBC2A8}" = lport=137 | protocol=17 | dir=in | app=system |
"{FF0A2EF7-F9DB-4C3F-A3CD-428510518822}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02F90325-EBD5-4AFB-9815-431D6ECDB509}" = protocol=17 | dir=in | app=c:\program files (x86)\expressfiles\expressfiles.exe |
"{0A0018DB-AF42-4FED-8FC1-8E523A0316B6}" = protocol=6 | dir=in | app=c:\program files (x86)\expressfiles\expressdl.exe |
"{0F3C9056-714E-4C26-BE1B-1251696BB2B2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{157DDFFA-7D18-47C3-B846-C8AF8B862A79}" = protocol=6 | dir=in | app=c:\program files (x86)\expressfiles\expressfiles.exe |
"{1BFF454D-10A9-48A6-B0FF-C748C47813EE}" = protocol=17 | dir=in | app=c:\program files (x86)\expressfiles\expressdl.exe |
"{27D7AE11-D646-4AA8-B28F-5A7754CB20A1}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{30E09457-EA24-4091-8607-A4FD186F68C9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{38BEB3B8-3E0C-4482-A9A2-2E9D9DA5D85B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{44B17437-06C3-4981-96A7-DDE41ACF65F4}" = protocol=6 | dir=in | app=c:\users\peter\appdata\roaming\utorrent\utorrent.exe |
"{4C4B8FB4-1B95-4904-8B0F-B8EF61B67525}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4CE4E7E0-10B5-4079-B742-D2B7ED5E6263}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{55DB78E0-9816-4335-BFFC-E06C82218FAD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{586BA6B5-F3F6-4387-BA70-8F3089ACFFC5}" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
"{5941E719-48D7-43C0-A1CB-2BEB0694799B}" = protocol=6 | dir=out | app=system |
"{598926AF-164B-4E34-8133-8B04EF3116AB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{59D057BD-4521-4430-BFF9-4F2B8B847715}" = protocol=17 | dir=in | app=c:\users\peter\appdata\roaming\utorrent\utorrent.exe |
"{5CA1D7D8-4212-4D08-9E29-B287E77C04A2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5F561B19-3214-43C5-928D-5C50404F4553}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{64884454-5386-4ED9-A8B5-1209BAB0B31F}" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
"{812DA1D0-DA1F-4EDC-BF09-290A7B5C5937}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{8514F307-BEC1-43C2-8178-F4DEE235E986}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8DAA8A65-F95C-4442-AFA1-B1D1C9EF88D6}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{8F0F040C-102A-4809-B1AA-FCE83BFB2B2B}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9CAAC503-81FB-4819-B89B-CABEC758DB52}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{B0F8BA11-756C-490B-9AEF-98476293ED7C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BD62FBFC-375A-42D5-AF41-2D15230D7FE6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C4E62381-95BE-44D5-87B6-8C9F5232E324}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D5B338E7-3DBB-45D4-B71F-EC51749A757D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D842BFB2-1619-4483-B146-2FFB7E0A21BC}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{F0895820-938F-417E-B3AE-B837456559E0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{79E76B78-472B-40E1-9B77-61A20A867329}C:\program files (x86)\logitech\vid hd\vid.exe" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
"UDP Query User{F8672288-C4CF-4E2F-BC8C-021709539C19}C:\program files (x86)\logitech\vid hd\vid.exe" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}" = Rapport
"{27726449-83B8-428D-92DE-101346C1E15C}" = Microsoft Security Client
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"0832A37FBEDDDCEBE59E6EE45424D02F9A821BD0" = Windows Driver Package - Realtek (RTL8169) Net  (09/02/2009 6.227.0902.2009)
"574C023BAAE2CDC70C4BB7CC9371E3D842F7EEE4" = Windows Driver Package - Realtek (RTL8167) Net  (11/05/2009 7.009.1105.2009)
"6F052E4795F390FE6A484435D7D64C2C2D1BA826" = Windows Driver Package - Realtek Semiconductor Corp. (RTLE8023x64) Net  (11/25/2009 5.742.1125.2009)
"CCleaner" = CCleaner
"HDMI" = Intel® Graphics Media Accelerator Driver
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"PC-Doctor for Windows" = My Dell
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0099B484-C24C-4D5F-8167-B0F6DF196E72}" = Adobe Shockwave Player 12.0
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}" = Rapport
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}" = Bing Rewards Client Installer
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
"{7236672F-6430-439E-9B27-27EDEAF1D676}" = Diagnostic Utility
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{77B5AD60-8F14-11D4-9BC9-0050041A1090}" = American McGee's Alice
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7EC66A95-AC2D-4127-940B-0445A526AB2F}" = Dell DataSafe Online
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1" = Panda Cloud Cleaner
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C2425F91-1F7B-4037-9A05-9F290184798D}" = NETGEAR WNA3100 wireless USB 2.0 adapter
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7B31233-EE2B-4911-AA3F-2A8C28843D3B}" = SkyPlayer for Windows Media Center
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"7-Zip" = 7-Zip 9.20
"Adobe Digital Editions 2.0" = Adobe Digital Editions 2.0
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"Dell Dock" = Dell Dock
"Logitech Vid" = Logitech Vid HD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Mozilla Firefox 23.0.1 (x86 en-US)" = Mozilla Firefox 23.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"OnlineArmor_is1" = Online Armor 5.5
"Plants vs. Zombies" = Plants vs. Zombies
"Rapport_msi" = Trusteer Endpoint Protection
"Samsung ML-1510_700 Series" = Samsung ML-1510_700 Series
"Secunia PSI" = Secunia PSI (2.0.0.3001)
"SpywareBlaster_is1" = SpywareBlaster 5.0
"WinLiveSuite" = Windows Live Essentials
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Amazon Kindle" = Amazon Kindle
"Screencast-O-Matic" = Screencast-O-Matic
"UnityWebPlayer" = Unity Web Player
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 9/20/2013 6:49:28 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 1023
Description =
 
Error - 9/20/2013 6:52:02 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 11406
Description =
 
Error - 9/20/2013 6:52:29 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 1023
Description =
 
Error - 9/20/2013 6:55:01 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 11406
Description =
 
Error - 9/20/2013 6:55:28 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 1023
Description =
 
Error - 9/20/2013 6:58:06 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 11406
Description =
 
Error - 9/20/2013 6:58:29 PM | Computer Name = peter-PC | Source = MsiInstaller | ID = 1023
Description =
 
Error - 9/21/2013 4:42:24 AM | Computer Name = peter-PC | Source = Windows Backup | ID = 4103
Description =
 
Error - 9/22/2013 3:17:06 PM | Computer Name = peter-PC | Source = Application Error | ID = 1000
Description = Faulting application name: oasrv.exe, version: 6.0.0.1736, time stamp:
 0x2a425e19  Faulting module name: oasrv.exe, version: 6.0.0.1736, time stamp: 0x2a425e19
Exception
 code: 0xc0000005  Fault offset: 0x00002946  Faulting process id: 0x6f4  Faulting application
 start time: 0x01ceb7c6e98a2c32  Faulting application path: C:\Program Files (x86)\Online
 Armor\oasrv.exe  Faulting module path: C:\Program Files (x86)\Online Armor\oasrv.exe
Report
 Id: 9157ca1c-23bb-11e3-a9b0-b8ac6fe2e7a5
 
Error - 9/22/2013 3:58:19 PM | Computer Name = peter-PC | Source = Application Hang | ID = 1002
Description = The program oaui.exe version 6.0.0.1736 stopped interacting with Windows
 and was closed. To see if more information about the problem is available, check
 the problem history in the Action Center control panel.    Process ID: ebc    Start Time:
 01ceb7cc538eda36    Termination Time: 9    Application Path: C:\Program Files (x86)\Online
 Armor\oaui.exe    Report Id: 4ca48a57-23c1-11e3-99f6-b8ac6fe2e7a5  
 
Error - 9/23/2013 6:21:40 AM | Computer Name = peter-PC | Source = Application Hang | ID = 1002
Description = The program psi.exe version 2.0.0.3001 stopped interacting with Windows
 and was closed. To see if more information about the problem is available, check
 the problem history in the Action Center control panel.    Process ID: 29a4    Start Time:
 01ceb846a7b3b7a9    Termination Time: 7    Application Path: C:\Program Files (x86)\Secunia\PSI\psi.exe

Report
 Id: eba491c1-2439-11e3-9c07-b8ac6fe2e7a5  
 
[ Dell Events ]
Error - 7/14/2011 9:10:18 AM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 7/21/2011 10:56:03 AM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 7/21/2011 10:56:03 AM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 7/28/2011 11:21:56 AM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 7/28/2011 11:21:56 AM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 9/1/2011 5:55:25 PM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 9/1/2011 5:55:25 PM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 9/19/2011 5:44:38 PM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 9/19/2011 5:44:38 PM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
Error - 11/7/2011 7:12:38 PM | Computer Name = peter-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
 
[ Media Center Events ]
Error - 7/30/2011 10:42:14 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 15:42:13 - Error connecting to the internet.  15:42:13 -     Unable
to contact server..  
 
Error - 8/3/2011 8:07:26 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 13:07:26 - Error connecting to the internet.  13:07:26 -     Unable
to contact server..  
 
Error - 8/3/2011 8:07:34 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 13:07:31 - Error connecting to the internet.  13:07:31 -     Unable
to contact server..  
 
Error - 3/18/2012 3:58:30 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 07:58:26 - Error connecting to the internet.  07:58:26 -     Unable
to contact server..  
 
Error - 6/8/2012 5:43:40 PM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 22:43:40 - Error connecting to the internet.  22:43:40 -     Unable
to contact server..  
 
Error - 6/8/2012 5:43:50 PM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 22:43:45 - Error connecting to the internet.  22:43:45 -     Unable
to contact server..  
 
Error - 7/1/2012 8:10:59 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 13:10:59 - Error connecting to the internet.  13:10:59 -     Unable
to contact server..  
 
Error - 7/1/2012 8:11:24 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 13:11:05 - Error connecting to the internet.  13:11:05 -     Unable
to contact server..  
 
Error - 7/1/2012 9:11:31 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 14:11:31 - Error connecting to the internet.  14:11:31 -     Unable
to contact server..  
 
Error - 7/1/2012 9:11:39 AM | Computer Name = peter-PC | Source = MCUpdate | ID = 0
Description = 14:11:36 - Error connecting to the internet.  14:11:36 -     Unable
to contact server..  
 
[ System Events ]
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = DCOM | ID = 10005
Description =
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = DCOM | ID = 10005
Description =
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/23/2013 4:14:50 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/23/2013 4:15:31 AM | Computer Name = peter-PC | Source = DCOM | ID = 10005
Description =
 
Error - 9/23/2013 4:20:15 AM | Computer Name = peter-PC | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error:   %%20
 
 
< End of report >

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

I no longer see references to Kaspersky, did you remove that? do the following:

 

Re-Run otlDesktopIcon.png  by double left click, Vista and Widows 7 users accept UAC alert.

  • Under the customFix.png box at the bottom, paste in the following, start with and include the colon plus OTL . :OTL

    :OTLIE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://search.chatzum.com/?q={SearchTerms}FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: C:\Program Files (x86)\FunWebProducts\Installr\4.bin\NPFunWeb.dll File not foundO2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.O3 - HKLM\..\Toolbar: (no name) - {37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} - No CLSID value found.O3 - HKLM\..\Toolbar: (no name) - {8B68564D-53FD-4293-B80C-993A9F3988EE} - No CLSID value found.O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.:Filesipconfig /flushdns /cC:\Users\peter\AppData\Roaming\AVG10:Commands[emptytemp]
  • Then click runFixbutton.png button at the top
  • Let the program run unhindered, when done it will say "Fix Complete press ok to open the log"
  • Please post that log in your next reply.



Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process.
If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start > All Programs > Accessories > Notepad), click File > Open, in the File Name box enter  *.log and press the Enter key, navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.
 

Next,

 

Can you UNinstall Online Armor Firewall and revert back to Windows native FW

 

Also UNinstall Secunia. Reboot after the uninstalls

 

Next,

 

Close all windows, Select > start icon > all programs > accessories > Right click on "command prompt" > select > Run as administrator > ok any alerts > at the command prompt type or copy and paste sfc /scannow > then tap enter.When finished type exit Tap enter, re-boot your PC.

***Note the space between sfc and /scannow.

To get report, at command promt type or copy and paste:
findstr /c:"[sR]" %windir%\logs\cbs\cbs.log >%userprofile%\Desktop\sfcdetails.txt

 

Any improvement?

 

Kevin

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin.

 

Yes I uninstalled the Kaspersky scanner when I started to get problems as it appeared to be causing conflicts - there should not be anything left now.

Secunia and online armor uninstalled and windows firewall running.

 

Have tried several times to use the command prompt instructions you gave me - have both typed and cut and pasted - all get the same answer -the syntax of the command is incorrect.

 

Otl report attached.

 

Peter

 

 

All processes killed
========== OTL ==========
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@funwebproducts.com/Plugin\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8B68564D-53FD-4293-B80C-993A9F3988EE} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8B68564D-53FD-4293-B80C-993A9F3988EE}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\peter\Downloads\cmd.bat deleted successfully.
C:\Users\peter\Downloads\cmd.txt deleted successfully.
C:\Users\peter\AppData\Roaming\AVG10\cfgall folder moved successfully.
C:\Users\peter\AppData\Roaming\AVG10 folder moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Guest
->Temp folder emptied: 822035 bytes
->Temporary Internet Files folder emptied: 114673924 bytes
->Java cache emptied: 654939 bytes
->FireFox cache emptied: 80474336 bytes
->Flash cache emptied: 546 bytes
 
User: peter
->Temp folder emptied: 8769707 bytes
->Temporary Internet Files folder emptied: 14514409 bytes
->Java cache emptied: 1404363 bytes
->FireFox cache emptied: 18204760 bytes
->Flash cache emptied: 546 bytes
 
User: Public
->Temp folder emptied: 0 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 558998 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 1029987 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 749 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 230.00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 09232013_130522

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

The syntax for that command is correct what I posted, sfc /scannow. OK if it will not run from the command propt at admin level lets try a different way. Go to the following link: http://www.sevenforums.com/tutorials/139810-sfc-scannow-run-command-prompt-boot.html follow the instructions to run the System File Checker at boot, let me know if that makes any difference...

 

Kevin...

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

I am struggling! to say the least- looked at the link you provided and tried the command prompt again- even playing around with spaces/capitals I cant get it to work.

 

So I reread the link instructions again - managed to create a repair disk- struggled to start the Bios - found by starting computer and pressing F12 i got bios start up choices - got the system to start up from CD?DVD drive - inserted the repair disk- windows started -moved to windows repair facility - offered system restore - I declined - let it run the repair scan and then reboot/start windows got the blue screen again.

Nowhere have I been able to get to a Diskpart command window.

I am going to have a break/tea before trying again- as you may have gathered I am now far outside my comfort zone

 

Peter

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Hiya Peter,

 

Don`t get stressed trying to run the System File Checker, obviously something aint quite right. Normally sfc /scannow works without issue from an elevated command prompt.

 

We`ve done several scans with tools that under usual circumstances will find the majority of malware/infections that we routinely deal with. I`d like to run an offline tool and be sure that your system is clean....

 

If possible use another PC to create the Widows Defender Offline Tool, I give the instructions to load to a USB flash drive, you can load to a CD if required.

Download the tool from here :- http://windows.microsoft.com/en-US/windows/what-is-windows-defender-offline and save to the Desktop.

You will have to select the correct version for your system, either 32 or 64 bit

Run the tool, Windows 7 or Vista user right click and select "Run as Administrator"

Read the instructions in the new window and select "Next"

WD2.png

In the new window accept the agreement:

WD2a.png

In the new window select your USB Flash Drive, then select "Next"

WD3.png

In the new window ensure you Flash drive is selected, if not click on "Refresh" then select "Next"

WD3a.png

In the new window accept the formatting alert by selecting "Next"

WD3b.png

Files will be Downloaded:

WD4.png

Files will be processed and created

WD5.png

Flash drive will be formatted and prepared

WD6.png

Files will be added to the Flash Drive and the tool will be created.

WD7.png

The procedure is finished and the Tool created, click on "Finish" to complete.

WD8.png

Plug the USB into the sick PC and boot up, if it does not boot from the flash drive change the boot options as required,  Use F12 as it boots, change options...
As it boots you`ll see files being loaded and the windows splash screen, eventually the tool will run a "Quick Scan" follow the prompts and deal with what it finds.
When complete do a full scan, deal with what it finds.
When finished, remove the USB stick then press the Esc key to boot into regular windows.
Navigate to the following file:

"C:\windows\windows defender offline\support\mssWrapper.log" Open with notepad and copy and paste it into a reply.

 

Kevin...

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

Refreshed I tried again- got to BIOS andto the diskpart section-got the volumes etc and then typed in the instruction which resulted in the following - which was not as expected- by the way the volumes etc are :-

                          letter                                        fs                              type

Volume  O            D          repair disc               udf                            dvd rom           169gb

               1            I           recovery                  NTFS                        partition             13gb

                2           C            OS                        NTFS                        partition             451gb

                7           -             -                              FAT                         partition               101 hidden

 

 

After typing the scannowoffboot etc

the response I got was :_

 

Microsoft<R> Windows<R>Resource checker version6.0

Scans the integrity of all protected system files and replaces incorrect versions with correct Microsoft versions

 

SFC{/Scannow} {/verify only} {/scanfile=<file>}  {/verifyfile=<file>} {/offwindir=<offline windows directory}{/offbootdir=<offline boot directory}

 

/Scannow Scans integrity of all protected system files and repairs files with problems when possible

 

/Verifyonly Scans integrity of allprotected system files - no repair operations performed

/Scanfile Scans integrity of the refererenced file repairs file if problems are identified - specify full file path

/Verify file  verifies the integrity of th efile - no repairs performed

/offboot dir for offline reirs specify the location of the offline boot directory

offboodir for offline repairs specify the location of the offline windows directory.

 

 

What I did not get when I entered the scannow command  ws the blinking cursor while a search was undertaken-

 

I am obviously close to getting there but not quite there - are you able to push me the final bit of the way

 

Regards

 

Peter

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

I`m not really sure what you`ve done wrong, if anything.. If you have followed the instructions as per the link and typed the following command at the prompt:

sfc /scannow /offbootdir=C:\  /offwindir=C:\windows

 

You would expect System File Checker to run..... One query I do have follows...

 

When you accessed the BIOS to set CD/DVD first you posted this log:

 

Volume  O            D          repair disc               udf                            dvd rom           169gb

               1            I           recovery                  NTFS                        partition             13gb

                2           C            OS                        NTFS                        partition             451gb
 
                7           -             -                              FAT                         partition               101 hidden

 

What is the partition i`ve highlighted red, do you know what that partition is or used for?

 

***Edit...

 

Scrub the partition query it is the Dell Utility Partition, so is expected.... Can you miss out trying the sfc /scannow attempt for now, go back to my reply #32 and run that ofline tool...

 

Kevin....

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

I am using wifes laptop to answer as having problems getting windows to work other than in safe mode.

 

looking at your last answer I can see where I possibly went wrong with the Bios route - when I typed the directories following the SFCscannow I used C to start with but put D as the final drive as I thought you needed to use the repair CD.

 

Its now getting late so I shall leave it for the night and start again in the morning.

 

Many thanks for sticking with me.

 

Regards

 

 

Peter

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

Limited success - I got the SFC thing to run in the command prompt screen-it found corrupted files which it says it has cured - I have followed the links to the logs it gave -5 in all - do you need these?.

 

Windows seems to be starting ok at the moment - twice - but I am getting a note that "Windows failed toconnect to the Windows event viewer" the note goes on but disapears before I can finish reading.

We seem to be a long way forward - but the computer is still very slow -and several things are not as they used to be.

 

Will look at those again in the morning -hopefully refreshed

 

Regards

 

Peter

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

I will send cbs\cbs logs seperately - every tim I try to paste the log Firefox stops.

Other than that computer is much improved - started twice today -quickly and without problem.

No recurrence of the windows event viewer note - time clock has required several adjsts to keep to GMT - but again seems to have settled.

Will post again with logs

Peter

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

Not sure what is happening here - yet again when i cut and paste the log I get to the window that says I have to paste the log into another window because of my browser settings by pressing Ctrl and V - do this there is a delay before the log appears in the box and then firefox seizes up completely had no problems like this with all the other logs I hav e sent you.

 

I will try using internet exporer to get log to you

Peter

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Quite a considerable log to chew over, for now do the following:

 

  • Download OTC by OldTimer from here http://oldtimer.geekstogo.com/OTC.exe or here http://www.itxassociates.com/OT-Tools/OTC.exe and save to your Desktop.
  • Double click OTC_Icon.jpg icon to start the program.
    If you are using Vista or Windows 7 accept UAC
  • Then Click the big CleanUp.jpg button.
  • You will get a prompt saying "Begining Cleanup Process". Please select Yes.
  • Restart your computer when prompted.
  • This will remove tools we have used and itself.

 

Next,

 

Download tfc_icon.png TFC  to your desktop, from either of the following links

http://oldtimer.geekstogo.com/TFC.exe

http://itxassociates.com/OT-Tools/TFC.exe


  •    
  • Save any open work. TFC will close all open application windows.
       
  • Double-click TFC.exe to run the program. Vista or Windows 7 users accept the UAC alert.
       
  • If prompted, click "Yes" to reboot.

TFC will automatically close any open programs, including your Desktop. Let it run uninterrupted. It shouldn't take longer take a couple of minutes, and may only take a few seconds.  TFC may re-boot your system, if not Re-boot it yourself to  complete cleaning process <---- Very Important

 

Keep TFC it is an excellent, run weekly utility to keep your system optimized, it empties all user temp folders, Java cache etc etc.  Always remember to re-boot after a run, even if not prompted

 

If you have any issues running TFC, turn off internet and Security.

 

Next,

 

I now want you to run SFC command from inside normal windows. Ensure to boot into the Account with Admin status, then as follows:

 

Close all windows, Select > start icon > all programs > accessories > Right click on "command prompt" > select > Run as administrator > ok any alerts > at the command prompt type or copy and paste sfc /scannow > then tap enter. When finished type exit Tap enter, re-boot your PC.

***Note the space between sfc and /scannow.

To get report, at command promt type or copy and paste:

findstr /c:"[sR]" %windir%\logs\cbs\cbs.log >%userprofile%\Desktop\sfcdetails.txt 

 

The report should be on your desktop...

 

Post the log, give an update on your system, how it responds, what issues/concerns remain...

 

Kevin

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

Sfc report attached below.

 

Dare I say all seems to be ok now- shutdown and start up appear to be happening in normal timescale and when Windows opens now there is no blue screen at all or indeed any delay in going to normal wallpaper.

 

Are you able to tell me - was there a virus or was it a corrupted file.

 

I am still currently relying on the Windows firewall and MS essentials and Rapport. I was always given to understand that the windows firewall was not adequate-do you have any suggestions please.

 

Can I send my really sincere thanks for all your patience help and understanding in what has been a quite exhausting and very long winded episode.

 

KInd Regards

 

Peter

 

 

 

 

 

 

 

 

 

 

 

2013-09-24 13:39:33, Info                  CSI    00000009 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:33, Info                  CSI    0000000a [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:34, Info                  CSI    0000000c [sR] Verify complete
2013-09-24 13:39:35, Info                  CSI    0000000d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:35, Info                  CSI    0000000e [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:36, Info                  CSI    00000010 [sR] Verify complete
2013-09-24 13:39:36, Info                  CSI    00000011 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:36, Info                  CSI    00000012 [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:38, Info                  CSI    00000014 [sR] Verify complete
2013-09-24 13:39:38, Info                  CSI    00000015 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:38, Info                  CSI    00000016 [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:39, Info                  CSI    00000018 [sR] Verify complete
2013-09-24 13:39:40, Info                  CSI    00000019 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:40, Info                  CSI    0000001a [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:41, Info                  CSI    0000001c [sR] Verify complete
2013-09-24 13:39:41, Info                  CSI    0000001d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:41, Info                  CSI    0000001e [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:42, Info                  CSI    00000020 [sR] Verify complete
2013-09-24 13:39:42, Info                  CSI    00000021 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:42, Info                  CSI    00000022 [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:44, Info                  CSI    00000024 [sR] Verify complete
2013-09-24 13:39:45, Info                  CSI    00000025 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:45, Info                  CSI    00000026 [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:47, Info                  CSI    00000028 [sR] Verify complete
2013-09-24 13:39:47, Info                  CSI    00000029 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:47, Info                  CSI    0000002a [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:49, Info                  CSI    0000002c [sR] Verify complete
2013-09-24 13:39:49, Info                  CSI    0000002d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:49, Info                  CSI    0000002e [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:50, Info                  CSI    00000030 [sR] Verify complete
2013-09-24 13:39:50, Info                  CSI    00000031 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:50, Info                  CSI    00000032 [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:52, Info                  CSI    00000034 [sR] Verify complete
2013-09-24 13:39:53, Info                  CSI    00000035 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:53, Info                  CSI    00000036 [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:54, Info                  CSI    00000038 [sR] Verify complete
2013-09-24 13:39:55, Info                  CSI    00000039 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:55, Info                  CSI    0000003a [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:55, Info                  CSI    0000003c [sR] Verify complete
2013-09-24 13:39:55, Info                  CSI    0000003d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:55, Info                  CSI    0000003e [sR] Beginning Verify and Repair transaction
2013-09-24 13:39:58, Info                  CSI    00000040 [sR] Verify complete
2013-09-24 13:39:58, Info                  CSI    00000041 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:39:58, Info                  CSI    00000042 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:03, Info                  CSI    00000045 [sR] Verify complete
2013-09-24 13:40:03, Info                  CSI    00000046 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:03, Info                  CSI    00000047 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:07, Info                  CSI    0000004c [sR] Verify complete
2013-09-24 13:40:07, Info                  CSI    0000004d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:07, Info                  CSI    0000004e [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:10, Info                  CSI    00000051 [sR] Verify complete
2013-09-24 13:40:11, Info                  CSI    00000052 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:11, Info                  CSI    00000053 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:15, Info                  CSI    00000055 [sR] Verify complete
2013-09-24 13:40:15, Info                  CSI    00000056 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:15, Info                  CSI    00000057 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:23, Info                  CSI    00000079 [sR] Verify complete
2013-09-24 13:40:23, Info                  CSI    0000007a [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:23, Info                  CSI    0000007b [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:27, Info                  CSI    00000080 [sR] Verify complete
2013-09-24 13:40:27, Info                  CSI    00000081 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:27, Info                  CSI    00000082 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:31, Info                  CSI    00000084 [sR] Verify complete
2013-09-24 13:40:32, Info                  CSI    00000085 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:32, Info                  CSI    00000086 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:34, Info                  CSI    00000088 [sR] Verify complete
2013-09-24 13:40:35, Info                  CSI    00000089 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:35, Info                  CSI    0000008a [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:39, Info                  CSI    0000008c [sR] Verify complete
2013-09-24 13:40:39, Info                  CSI    0000008d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:39, Info                  CSI    0000008e [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:43, Info                  CSI    00000090 [sR] Verify complete
2013-09-24 13:40:43, Info                  CSI    00000091 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:43, Info                  CSI    00000092 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:47, Info                  CSI    00000094 [sR] Verify complete
2013-09-24 13:40:47, Info                  CSI    00000095 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:47, Info                  CSI    00000096 [sR] Beginning Verify and Repair transaction
2013-09-24 13:40:55, Info                  CSI    000000b9 [sR] Verify complete
2013-09-24 13:40:56, Info                  CSI    000000ba [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:40:56, Info                  CSI    000000bb [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:01, Info                  CSI    000000bd [sR] Verify complete
2013-09-24 13:41:02, Info                  CSI    000000be [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:02, Info                  CSI    000000bf [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:11, Info                  CSI    000000c1 [sR] Verify complete
2013-09-24 13:41:11, Info                  CSI    000000c2 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:11, Info                  CSI    000000c3 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:17, Info                  CSI    000000c7 [sR] Verify complete
2013-09-24 13:41:17, Info                  CSI    000000c8 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:17, Info                  CSI    000000c9 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:18, Info                  CSI    000000cb [sR] Verify complete
2013-09-24 13:41:19, Info                  CSI    000000cc [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:19, Info                  CSI    000000cd [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:19, Info                  CSI    000000cf [sR] Verify complete
2013-09-24 13:41:20, Info                  CSI    000000d0 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:20, Info                  CSI    000000d1 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:25, Info                  CSI    000000db [sR] Verify complete
2013-09-24 13:41:25, Info                  CSI    000000dc [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:25, Info                  CSI    000000dd [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:30, Info                  CSI    000000e8 [sR] Verify complete
2013-09-24 13:41:30, Info                  CSI    000000e9 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:30, Info                  CSI    000000ea [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:31, Info                  CSI    000000ec [sR] Verify complete
2013-09-24 13:41:32, Info                  CSI    000000ed [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:32, Info                  CSI    000000ee [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:34, Info                  CSI    000000f0 [sR] Verify complete
2013-09-24 13:41:34, Info                  CSI    000000f1 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:34, Info                  CSI    000000f2 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:37, Info                  CSI    000000f4 [sR] Verify complete
2013-09-24 13:41:38, Info                  CSI    000000f5 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:38, Info                  CSI    000000f6 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:44, Info                  CSI    000000fa [sR] Verify complete
2013-09-24 13:41:44, Info                  CSI    000000fb [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:44, Info                  CSI    000000fc [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:49, Info                  CSI    000000fe [sR] Verify complete
2013-09-24 13:41:49, Info                  CSI    000000ff [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:49, Info                  CSI    00000100 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:51, Info                  CSI    00000102 [sR] Verify complete
2013-09-24 13:41:51, Info                  CSI    00000103 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:51, Info                  CSI    00000104 [sR] Beginning Verify and Repair transaction
2013-09-24 13:41:56, Info                  CSI    00000106 [sR] Verify complete
2013-09-24 13:41:57, Info                  CSI    00000107 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:41:57, Info                  CSI    00000108 [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:01, Info                  CSI    0000010a [sR] Verify complete
2013-09-24 13:42:02, Info                  CSI    0000010b [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:02, Info                  CSI    0000010c [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:07, Info                  CSI    0000010e [sR] Verify complete
2013-09-24 13:42:07, Info                  CSI    0000010f [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:07, Info                  CSI    00000110 [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:16, Info                  CSI    00000118 [sR] Verify complete
2013-09-24 13:42:16, Info                  CSI    00000119 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:16, Info                  CSI    0000011a [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:23, Info                  CSI    0000012c [sR] Verify complete
2013-09-24 13:42:23, Info                  CSI    0000012d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:23, Info                  CSI    0000012e [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:28, Info                  CSI    00000130 [sR] Verify complete
2013-09-24 13:42:28, Info                  CSI    00000131 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:28, Info                  CSI    00000132 [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:40, Info                  CSI    00000134 [sR] Verify complete
2013-09-24 13:42:41, Info                  CSI    00000135 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:41, Info                  CSI    00000136 [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:50, Info                  CSI    00000139 [sR] Verify complete
2013-09-24 13:42:51, Info                  CSI    0000013a [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:51, Info                  CSI    0000013b [sR] Beginning Verify and Repair transaction
2013-09-24 13:42:57, Info                  CSI    0000013d [sR] Verify complete
2013-09-24 13:42:57, Info                  CSI    0000013e [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:42:57, Info                  CSI    0000013f [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:02, Info                  CSI    00000141 [sR] Verify complete
2013-09-24 13:43:02, Info                  CSI    00000142 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:02, Info                  CSI    00000143 [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:07, Info                  CSI    00000145 [sR] Verify complete
2013-09-24 13:43:08, Info                  CSI    00000146 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:08, Info                  CSI    00000147 [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:13, Info                  CSI    0000014b [sR] Verify complete
2013-09-24 13:43:13, Info                  CSI    0000014c [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:13, Info                  CSI    0000014d [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:22, Info                  CSI    0000014f [sR] Verify complete
2013-09-24 13:43:23, Info                  CSI    00000150 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:23, Info                  CSI    00000151 [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:30, Info                  CSI    00000153 [sR] Verify complete
2013-09-24 13:43:30, Info                  CSI    00000154 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:30, Info                  CSI    00000155 [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:36, Info                  CSI    00000158 [sR] Verify complete
2013-09-24 13:43:37, Info                  CSI    00000159 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:37, Info                  CSI    0000015a [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:43, Info                  CSI    0000015d [sR] Verify complete
2013-09-24 13:43:43, Info                  CSI    0000015e [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:43, Info                  CSI    0000015f [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:49, Info                  CSI    00000161 [sR] Verify complete
2013-09-24 13:43:49, Info                  CSI    00000162 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:49, Info                  CSI    00000163 [sR] Beginning Verify and Repair transaction
2013-09-24 13:43:57, Info                  CSI    00000166 [sR] Verify complete
2013-09-24 13:43:58, Info                  CSI    00000167 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:43:58, Info                  CSI    00000168 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:03, Info                  CSI    0000016a [sR] Verify complete
2013-09-24 13:44:03, Info                  CSI    0000016b [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:03, Info                  CSI    0000016c [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:09, Info                  CSI    0000016e [sR] Verify complete
2013-09-24 13:44:09, Info                  CSI    0000016f [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:09, Info                  CSI    00000170 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:15, Info                  CSI    00000173 [sR] Verify complete
2013-09-24 13:44:15, Info                  CSI    00000174 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:15, Info                  CSI    00000175 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:22, Info                  CSI    00000177 [sR] Verify complete
2013-09-24 13:44:22, Info                  CSI    00000178 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:22, Info                  CSI    00000179 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:26, Info                  CSI    0000017b [sR] Verify complete
2013-09-24 13:44:26, Info                  CSI    0000017c [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:26, Info                  CSI    0000017d [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:31, Info                  CSI    00000180 [sR] Verify complete
2013-09-24 13:44:31, Info                  CSI    00000181 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:31, Info                  CSI    00000182 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:37, Info                  CSI    00000185 [sR] Verify complete
2013-09-24 13:44:38, Info                  CSI    00000186 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:38, Info                  CSI    00000187 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:43, Info                  CSI    0000018a [sR] Verify complete
2013-09-24 13:44:43, Info                  CSI    0000018b [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:43, Info                  CSI    0000018c [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:49, Info                  CSI    0000018e [sR] Verify complete
2013-09-24 13:44:50, Info                  CSI    0000018f [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:50, Info                  CSI    00000190 [sR] Beginning Verify and Repair transaction
2013-09-24 13:44:56, Info                  CSI    00000193 [sR] Verify complete
2013-09-24 13:44:56, Info                  CSI    00000194 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:44:56, Info                  CSI    00000195 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:00, Info                  CSI    00000197 [sR] Verify complete
2013-09-24 13:45:01, Info                  CSI    00000198 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:01, Info                  CSI    00000199 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:04, Info                  CSI    0000019b [sR] Verify complete
2013-09-24 13:45:04, Info                  CSI    0000019c [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:04, Info                  CSI    0000019d [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:08, Info                  CSI    0000019f [sR] Verify complete
2013-09-24 13:45:08, Info                  CSI    000001a0 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:08, Info                  CSI    000001a1 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:13, Info                  CSI    000001a3 [sR] Verify complete
2013-09-24 13:45:13, Info                  CSI    000001a4 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:13, Info                  CSI    000001a5 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:18, Info                  CSI    000001a7 [sR] Verify complete
2013-09-24 13:45:19, Info                  CSI    000001a8 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:19, Info                  CSI    000001a9 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:22, Info                  CSI    000001ab [sR] Verify complete
2013-09-24 13:45:22, Info                  CSI    000001ac [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:22, Info                  CSI    000001ad [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:27, Info                  CSI    000001af [sR] Verify complete
2013-09-24 13:45:27, Info                  CSI    000001b0 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:27, Info                  CSI    000001b1 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:37, Info                  CSI    000001b3 [sR] Verify complete
2013-09-24 13:45:38, Info                  CSI    000001b4 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:38, Info                  CSI    000001b5 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:48, Info                  CSI    000001b7 [sR] Verify complete
2013-09-24 13:45:49, Info                  CSI    000001b8 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:49, Info                  CSI    000001b9 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:53, Info                  CSI    000001bb [sR] Verify complete
2013-09-24 13:45:53, Info                  CSI    000001bc [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:53, Info                  CSI    000001bd [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:56, Info                  CSI    000001bf [sR] Verify complete
2013-09-24 13:45:56, Info                  CSI    000001c0 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:56, Info                  CSI    000001c1 [sR] Beginning Verify and Repair transaction
2013-09-24 13:45:59, Info                  CSI    000001c3 [sR] Verify complete
2013-09-24 13:45:59, Info                  CSI    000001c4 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:45:59, Info                  CSI    000001c5 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:03, Info                  CSI    000001c7 [sR] Verify complete
2013-09-24 13:46:03, Info                  CSI    000001c8 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:03, Info                  CSI    000001c9 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:07, Info                  CSI    000001cb [sR] Verify complete
2013-09-24 13:46:07, Info                  CSI    000001cc [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:07, Info                  CSI    000001cd [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:09, Info                  CSI    000001cf [sR] Verify complete
2013-09-24 13:46:09, Info                  CSI    000001d0 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:09, Info                  CSI    000001d1 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:10, Info                  CSI    000001d3 [sR] Verify complete
2013-09-24 13:46:11, Info                  CSI    000001d4 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:11, Info                  CSI    000001d5 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:16, Info                  CSI    000001dd [sR] Verify complete
2013-09-24 13:46:16, Info                  CSI    000001de [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:16, Info                  CSI    000001df [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:20, Info                  CSI    000001e1 [sR] Verify complete
2013-09-24 13:46:20, Info                  CSI    000001e2 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:20, Info                  CSI    000001e3 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:23, Info                  CSI    000001e5 [sR] Verify complete
2013-09-24 13:46:23, Info                  CSI    000001e6 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:23, Info                  CSI    000001e7 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:26, Info                  CSI    000001e9 [sR] Verify complete
2013-09-24 13:46:27, Info                  CSI    000001ea [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:27, Info                  CSI    000001eb [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:32, Info                  CSI    000001ed [sR] Verify complete
2013-09-24 13:46:33, Info                  CSI    000001ee [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:33, Info                  CSI    000001ef [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:39, Info                  CSI    000001f2 [sR] Verify complete
2013-09-24 13:46:39, Info                  CSI    000001f3 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:39, Info                  CSI    000001f4 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:41, Info                  CSI    000001f6 [sR] Verify complete
2013-09-24 13:46:41, Info                  CSI    000001f7 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:41, Info                  CSI    000001f8 [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:44, Info                  CSI    000001fa [sR] Verify complete
2013-09-24 13:46:45, Info                  CSI    000001fb [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:45, Info                  CSI    000001fc [sR] Beginning Verify and Repair transaction
2013-09-24 13:46:56, Info                  CSI    00000201 [sR] Verify complete
2013-09-24 13:46:56, Info                  CSI    00000202 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:46:56, Info                  CSI    00000203 [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:03, Info                  CSI    00000208 [sR] Verify complete
2013-09-24 13:47:03, Info                  CSI    00000209 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:03, Info                  CSI    0000020a [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:10, Info                  CSI    0000020d [sR] Verify complete
2013-09-24 13:47:10, Info                  CSI    0000020e [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:10, Info                  CSI    0000020f [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:16, Info                  CSI    0000021a [sR] Verify complete
2013-09-24 13:47:17, Info                  CSI    0000021b [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:17, Info                  CSI    0000021c [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:23, Info                  CSI    00000222 [sR] Verify complete
2013-09-24 13:47:23, Info                  CSI    00000223 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:23, Info                  CSI    00000224 [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:28, Info                  CSI    00000226 [sR] Verify complete
2013-09-24 13:47:28, Info                  CSI    00000227 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:28, Info                  CSI    00000228 [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:32, Info                  CSI    0000022c [sR] Verify complete
2013-09-24 13:47:32, Info                  CSI    0000022d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:32, Info                  CSI    0000022e [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:36, Info                  CSI    00000230 [sR] Verify complete
2013-09-24 13:47:36, Info                  CSI    00000231 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:36, Info                  CSI    00000232 [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:43, Info                  CSI    00000257 [sR] Verify complete
2013-09-24 13:47:43, Info                  CSI    00000258 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:43, Info                  CSI    00000259 [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:47, Info                  CSI    0000025b [sR] Verify complete
2013-09-24 13:47:48, Info                  CSI    0000025c [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:48, Info                  CSI    0000025d [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:51, Info                  CSI    0000025f [sR] Verify complete
2013-09-24 13:47:52, Info                  CSI    00000260 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:52, Info                  CSI    00000261 [sR] Beginning Verify and Repair transaction
2013-09-24 13:47:56, Info                  CSI    00000263 [sR] Verify complete
2013-09-24 13:47:56, Info                  CSI    00000264 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:47:56, Info                  CSI    00000265 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:01, Info                  CSI    00000273 [sR] Verify complete
2013-09-24 13:48:02, Info                  CSI    00000274 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:02, Info                  CSI    00000275 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:09, Info                  CSI    00000277 [sR] Verify complete
2013-09-24 13:48:10, Info                  CSI    00000278 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:10, Info                  CSI    00000279 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:16, Info                  CSI    00000287 [sR] Verify complete
2013-09-24 13:48:16, Info                  CSI    00000288 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:16, Info                  CSI    00000289 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:18, Info                  CSI    0000028b [sR] Verify complete
2013-09-24 13:48:19, Info                  CSI    0000028c [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:19, Info                  CSI    0000028d [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:24, Info                  CSI    00000290 [sR] Verify complete
2013-09-24 13:48:24, Info                  CSI    00000291 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:24, Info                  CSI    00000292 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:27, Info                  CSI    00000294 [sR] Verify complete
2013-09-24 13:48:27, Info                  CSI    00000295 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:27, Info                  CSI    00000296 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:29, Info                  CSI    00000298 [sR] Verify complete
2013-09-24 13:48:29, Info                  CSI    00000299 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:29, Info                  CSI    0000029a [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:35, Info                  CSI    0000029c [sR] Verify complete
2013-09-24 13:48:35, Info                  CSI    0000029d [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:35, Info                  CSI    0000029e [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:40, Info                  CSI    000002a0 [sR] Verify complete
2013-09-24 13:48:40, Info                  CSI    000002a1 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:40, Info                  CSI    000002a2 [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:48, Info                  CSI    000002bb [sR] Verify complete
2013-09-24 13:48:48, Info                  CSI    000002bc [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:48, Info                  CSI    000002bd [sR] Beginning Verify and Repair transaction
2013-09-24 13:48:53, Info                  CSI    000002c0 [sR] Verify complete
2013-09-24 13:48:53, Info                  CSI    000002c1 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:48:53, Info                  CSI    000002c2 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:03, Info                  CSI    000002c4 [sR] Verify complete
2013-09-24 13:49:03, Info                  CSI    000002c5 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:03, Info                  CSI    000002c6 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:07, Info                  CSI    000002c8 [sR] Verify complete
2013-09-24 13:49:07, Info                  CSI    000002c9 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:07, Info                  CSI    000002ca [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:11, Info                  CSI    000002cd [sR] Verify complete
2013-09-24 13:49:11, Info                  CSI    000002ce [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:11, Info                  CSI    000002cf [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:14, Info                  CSI    000002d2 [sR] Verify complete
2013-09-24 13:49:15, Info                  CSI    000002d3 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:15, Info                  CSI    000002d4 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:19, Info                  CSI    000002d6 [sR] Verify complete
2013-09-24 13:49:19, Info                  CSI    000002d7 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:19, Info                  CSI    000002d8 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:24, Info                  CSI    000002da [sR] Verify complete
2013-09-24 13:49:24, Info                  CSI    000002db [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:24, Info                  CSI    000002dc [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:28, Info                  CSI    000002df [sR] Verify complete
2013-09-24 13:49:28, Info                  CSI    000002e0 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:28, Info                  CSI    000002e1 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:32, Info                  CSI    000002e3 [sR] Verify complete
2013-09-24 13:49:32, Info                  CSI    000002e4 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:32, Info                  CSI    000002e5 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:36, Info                  CSI    000002e7 [sR] Verify complete
2013-09-24 13:49:37, Info                  CSI    000002e8 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:37, Info                  CSI    000002e9 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:41, Info                  CSI    000002eb [sR] Verify complete
2013-09-24 13:49:41, Info                  CSI    000002ec [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:41, Info                  CSI    000002ed [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:47, Info                  CSI    000002f0 [sR] Verify complete
2013-09-24 13:49:48, Info                  CSI    000002f1 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:48, Info                  CSI    000002f2 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:50, Info                  CSI    000002f4 [sR] Verify complete
2013-09-24 13:49:51, Info                  CSI    000002f5 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:51, Info                  CSI    000002f6 [sR] Beginning Verify and Repair transaction
2013-09-24 13:49:56, Info                  CSI    000002f8 [sR] Verify complete
2013-09-24 13:49:56, Info                  CSI    000002f9 [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:49:56, Info                  CSI    000002fa [sR] Beginning Verify and Repair transaction
2013-09-24 13:50:00, Info                  CSI    000002fc [sR] Verify complete
2013-09-24 13:50:00, Info                  CSI    000002fd [sR] Verifying 100 (0x0000000000000064) components
2013-09-24 13:50:00, Info                  CSI    000002fe [sR] Beginning Verify and Repair transaction
2013-09-24 13:50:05, Info                  CSI    00000300 [sR] Verify complete
2013-09-24 13:50:05, Info                  CSI    00000301 [sR] Verifying 44 (0x000000000000002c) components
2013-09-24 13:50:05, Info                  CSI    00000302 [sR] Beginning Verify and Repair transaction
2013-09-24 13:50:07, Info                  CSI    00000304 [sR] Verify complete
2013-09-24 13:50:07, Info                  CSI    00000305 [sR] Repairing 0 components
2013-09-24 13:50:07, Info                  CSI    00000306 [sR] Beginning Verify and Repair transaction
2013-09-24 13:50:07, Info                  CSI    00000308 [sR] Repair complete

Link to post
Share on other sites
kevinf80

kevinf80

Posted
Posted

Hiya Peter,

 

I do not believe we were dealing with an infection, It would appear we had corrupt system files maybe from previous infection removal or similar. I`ve got to out shortly, maybe we can continue this a bit later, probably a couple of hours or so.

 

Regarding security, well I did use Online Armor FW myself, but only on XP. From Vista, W7 and W8 the native FW is more than adequate. I give you my own set up:

 

 

My own security set up is :-

 

Windows own Firewall, Microsoft Security Essentials and Malwarebytes Pro. Windows FW and MSE are free, MB does also have a free version, however I prefer the pro version as it provides auto updates and realtime protection. Cost is about £20 for a lifetime license.

 

As an extra layer I also use WinPatrol, the free version is adeqaute for general home use. Available here: http://www.winpatrol.com/download.html

 

For my browser I use Firefox with these addons: Web of Trust, Adblock Plus, Flash Block, NoScipt, Ghostery. When Firefox is open select these keys together :- Ctrl - Shift - A that will access Addons manger, this gives access to find addons, use, start, stop or disable those features etc....

Before using NoScript read from this link http://noscript.net/ makes it easy to understand....

 

Understanding Windows 7 Firewall - http://windows.microsoft.com/en-GB/windows7/Understanding-Windows-Firewall-settings

 

Understanding Microsoft Security Essentials - http://www.microsoft.com/en-gb/security/pc-security/mse.aspx

 

Understanding Malwarebytes, how to create an exclusion in MSE - http://forums.malwarebytes.org/index.php?showtopic=10138&st=0&p=162100entry162100

 

Understanding WinPatrol - http://www.winpatrol.com/features.html

 

I also use the Professional version of Sandboxie, I believe there is also free version available. Visit this link http://www.sandboxie.com/ for access to d/l, also make sure to use the "Help and FAQ" option to understand its uses, specifically how to run your browser sandboxed!.

 

Lets see how your system responds, use it freely for a couple of hours or so. I`ll probably be back online about 5pm my local time, thats about 3 hours from now...

 

Is that ok with you..

 

Kevin

Link to post
Share on other sites
peterussell534

peterussell534

Posted
  • Author
Posted

Kevin

 

Thanks for the note and for the suggestions for the future - these will obviously take a bit of setting up/putting in place - very grateful for those by the way.

 

As to previous infection - have not had to come to you before with this computer-but there are so many infections out there who knows what happens.

 

May have to delay usage for a while with family visiting but will let you know how I get on in due course.

 

 

Peter

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.