keyboard freezes! virus or hardware?

hi. me a newbie here.
a noob also.
T^T
since last 2 weeks i think, my lappy been going very weird.
i m using Dell Ispiron 1420. Currently on Windows 7. with Microsoft Security Essentials.

sometimes when i m typing an alphabet, it will come out wif a few others..n it is like attached to my mute button on my keyboard, n automatically mute my speaker. it happens much more often now. sometimes i cant even type now.
i really duno wht's wrong wif it. thinking whether izit hardware's prob.

after i realized the prob, i formatted my system drive, but not the other partition. but the prob still continues.

i had jus run Hiren's BootCD 10.6 for the SuperAntiSpyware. I only managed to catch the rootkit.unclassified usb n a few others. sry i didnt write down those. i have already removed all those tht is detected. lappy was running fine during the period of scanning.

i tried using the malware n spyware cleaning guide here to try again.
below are my logs

MBAM log

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4292

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

8/7/2010 11:52:53 PM
mbam-log-2010-07-08 (23-52-53).txt

Scan type: Quick scan
Objects scanned: 128054
Time elapsed: 6 minute(s), 39 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

GMER log

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-07-09 01:12:13
Windows 6.1.7600
Running: gmer.exe; Driver: C:\Users\SINYEE~1\AppData\Local\Temp\uwldypob.sys

---- System - GMER 1.0.15 ----

INT 0x1F \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A37AF8
INT 0x37 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A37104
INT 0xC1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A373F4
INT 0xD1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A202D8
INT 0xD2 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A1F898
INT 0xDF \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A371DC
INT 0xE1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A37958
INT 0xE3 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A376F8
INT 0xFD \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A37F2C
INT 0xFE \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82A381A8

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKeyEx + 13AD 82A97599 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82ABBF52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text C:\Windows\system32\DRIVERS\nvlddmkm.sys section is writeable [0x8EE16340, 0x3E9407, 0xE8000020]
.text peauth.sys 9A60AC9D 28 Bytes [1E, B5, 47, 90, 60, C2, 21, ...]
.text peauth.sys 9A60ACC1 28 Bytes [1E, B5, 47, 90, 60, C2, 21, ...]
PAGE peauth.sys 9A61102C 102 Bytes [41, 78, C4, D6, AD, 00, 6B, ...]

---- Devices - GMER 1.0.15 ----

Device \Driver\ACPI_HAL \Device\00000043 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00197ed8f249
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00197ed8f249 (not active ControlSet)
Reg HKLM\SOFTWARE\Microsoft\Windows Search\CatalogNames\Windows\SystemIndex@pkm:catalog:LastCatalogCrawlId 45
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\Crawls\46
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\Crawls\46@CrawlType 2
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\Crawls\46@InProgress 1
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\Crawls\46@DoneAddingCrawlSeeds 0
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\Crawls\46@IsCatalogLevel 0
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\Crawls\46@LogStartAddId 2
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex\StartPages\2@CrawlNumberInProgress 46

---- EOF - GMER 1.0.15 ----

OTL log

OTL logfile created on: 9/7/2010 1:16:51 AM - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Users\sin yee\Desktop
An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00004409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 68.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 29.30 Gb Total Space | 14.87 Gb Free Space | 50.77% Space Free | Partition Type: NTFS
Drive D: | 45.16 Gb Total Space | 0.18 Gb Free Space | 0.39% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SINYEE
Current User Name: sin yee
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/07/08 23:20:42 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\sin yee\Desktop\OTL.exe
PRC - [2010/06/01 14:53:46 | 001,093,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\msseces.exe
PRC - [2010/03/25 21:40:44 | 000,017,904 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
PRC - [2010/03/25 21:40:42 | 000,203,312 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Essentials\MpCmdRun.exe
PRC - [2009/10/31 13:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/14 09:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 09:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2009/07/14 09:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2008/06/05 17:13:38 | 000,385,024 | ---- | M] (Sony Corporation) -- D:\programmes\SonyUtility\PMBCore\SPUVolumeWatcher.exe
PRC - [2007/07/02 13:29:22 | 000,159,744 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2007/06/06 16:44:44 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2007/05/22 14:18:56 | 000,050,736 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2007/05/09 17:01:00 | 000,036,864 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\OEM02Mon.exe
PRC - [2006/09/08 15:10:22 | 000,040,960 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe

========== Modules (SafeList) ==========

MOD - [2010/07/08 23:20:42 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\sin yee\Desktop\OTL.exe
MOD - [2009/07/14 09:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/14 09:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/14 09:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009/07/14 09:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/14 09:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009/07/14 09:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/14 09:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/14 09:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/14 09:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/14 09:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/14 09:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009/07/14 09:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - [2010/06/20 17:14:21 | 000,077,944 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2010/06/20 12:47:47 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/03/25 21:40:44 | 000,017,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/07/14 09:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/14 09:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/14 09:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/14 09:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/14 09:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/14 09:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 09:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/14 09:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 09:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 09:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/14 09:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/14 09:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/14 09:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/14 09:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/14 09:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/14 09:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/14 09:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/14 09:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/14 09:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/14 09:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX Installer (AxInstSV)
SRV - [2009/07/14 09:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/14 09:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)

========== Driver Services (SafeList) ==========

DRV - [2010/03/25 21:30:22 | 000,151,216 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2010/03/25 21:30:22 | 000,042,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009/12/11 15:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/07/14 09:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/14 09:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/14 09:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/14 09:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/14 09:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/14 09:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/14 09:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/14 09:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/14 09:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009/07/14 09:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/14 09:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/14 09:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/14 09:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/14 09:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/14 09:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/14 09:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/14 09:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/14 09:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/14 09:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/14 09:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/14 09:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/14 09:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/14 09:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/14 09:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/14 09:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/14 09:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/14 09:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/14 09:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/14 09:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/14 09:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 09:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/14 09:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/14 09:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/14 09:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/14 09:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/14 09:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/14 09:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/14 09:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/14 09:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/14 09:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/14 09:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/14 09:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009/07/14 08:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/14 08:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009/07/14 08:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/14 07:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/14 07:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/14 07:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/14 07:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/14 07:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009/07/14 07:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/14 07:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/14 07:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/14 07:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/14 07:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/14 07:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/14 07:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 07:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/14 07:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/14 07:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009/07/14 07:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/14 07:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/14 06:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 06:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/14 06:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/14 06:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/14 06:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/14 06:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/14 06:13:46 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (SrvHsfV92)
DRV - [2009/07/14 06:13:45 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (SrvHsfWinac)
DRV - [2009/07/14 06:13:45 | 000,207,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (SrvHsfHDA)
DRV - [2009/07/14 06:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel®
DRV - [2009/07/14 06:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/14 06:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/14 06:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2008/06/09 07:23:00 | 007,522,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2007/10/10 17:03:00 | 000,235,648 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OEM02Dev.sys -- (OEM02Dev)
DRV - [2007/06/25 18:53:10 | 000,155,136 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2007/03/05 10:45:04 | 000,007,424 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OEM02Vfx.sys -- (OEM02Vfx)
DRV - [2006/11/14 17:35:20 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://malaysia.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-my
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 37 8A 74 06 D7 0F CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

O1 HOSTS File: ([2009/06/11 05:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\Windows\System32\nvHotkey.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe (Creative Technology Ltd.)
O4 - Startup: C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk = D:\programmes\SonyUtility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 05:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)

Drivers32: aux - C:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi - C:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\Windows\System32\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.divxa32 - C:\Windows\System32\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.imaadpcm - C:\Windows\System32\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - C:\Windows\System32\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Windows\System32\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Windows\System32\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.siren - C:\Windows\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32: VIDC.IYUV - C:\Windows\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.mrle - C:\Windows\System32\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\Windows\System32\msvidc32.dll (Microsoft Corporation)
Drivers32: VIDC.UYVY - C:\Windows\System32\msyuv.dll (Microsoft Corporation)
Drivers32: VIDC.YUY2 - C:\Windows\System32\msyuv.dll (Microsoft Corporation)
Drivers32: VIDC.YVU9 - C:\Windows\System32\tsbyuv.dll (Microsoft Corporation)
Drivers32: VIDC.YVYU - C:\Windows\System32\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\Windows\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\Windows\System32\msacm32.drv (Microsoft Corporation)

========== Files/Folders - Created Within 90 Days ==========

[2010/07/09 01:13:51 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010/07/09 01:05:50 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\WinRAR
[2010/07/08 23:43:50 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/07/08 23:43:05 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Users\sin yee\Desktop\erunt_setup.exe
[2010/07/08 23:31:39 | 000,444,416 | ---- | C] (OldTimer Tools) -- C:\Users\sin yee\Desktop\TFC.exe
[2010/07/08 23:31:35 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\sin yee\Desktop\OTL.exe
[2010/07/08 23:08:49 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Malwarebytes
[2010/07/08 23:08:36 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/07/08 23:08:34 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/07/08 23:08:34 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/07/08 23:08:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/07/08 23:00:16 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/07/04 22:30:23 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Real
[2010/06/24 14:47:14 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Opera
[2010/06/24 09:49:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010/06/23 12:00:47 | 000,000,000 | ---D | C] -- C:\Users\sin yee\Office Genuine Advantage
[2010/06/23 10:55:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Office Genuine Advantage
[2010/06/22 16:08:11 | 000,000,000 | ---D | C] -- C:\Users\sin yee\Documents\Picture Motion Browser
[2010/06/22 16:05:58 | 000,000,000 | ---D | C] -- C:\ProgramData\PDF reDirect
[2010/06/22 10:51:33 | 000,000,000 | ---D | C] -- C:\Users\sin yee\Documents\Updater
[2010/06/22 10:40:36 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010/06/20 21:21:55 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010/06/20 18:34:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe Systems
[2010/06/20 18:18:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Adobe PDF
[2010/06/20 18:16:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe Systems Shared
[2010/06/20 18:16:28 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010/06/20 17:55:56 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Sony Corporation
[2010/06/20 17:35:09 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010/06/20 17:34:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine
[2010/06/20 17:33:01 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\InstallShield
[2010/06/20 17:28:23 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Media Player Classic
[2010/06/20 17:16:04 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010/06/20 17:15:50 | 000,000,000 | -HSD | C] -- C:\Boot
[2010/06/20 17:12:51 | 000,000,000 | ---D | C] -- C:\Program Files\AnswerWorks 4.0
[2010/06/20 17:11:14 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Autodesk
[2010/06/20 17:11:14 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Autodesk
[2010/06/20 17:11:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Autodesk
[2010/06/20 17:03:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010/06/20 17:03:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010/06/20 17:03:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010/06/20 17:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010/06/20 16:53:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2010/06/20 16:50:55 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\GRETECH
[2010/06/20 16:44:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/06/20 16:44:06 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/06/20 16:41:44 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010/06/20 15:29:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2010/06/20 15:28:52 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk
[2010/06/20 15:25:15 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Adobe
[2010/06/20 15:20:09 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\PDF reDirect
[2010/06/20 15:20:02 | 000,000,000 | ---D | C] -- C:\Program Files\PDF reDirect
[2010/06/20 15:09:23 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Microsoft Help
[2010/06/20 15:09:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010/06/20 14:33:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010/06/20 14:33:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/06/20 14:01:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010/06/20 13:57:23 | 000,000,000 | ---D | C] -- C:\Users\sin yee\Documents\My Received Files
[2010/06/20 13:53:35 | 000,000,000 | ---D | C] -- C:\Users\sin yee\Tracing
[2010/06/20 13:44:35 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2010/06/20 13:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010/06/20 13:35:59 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010/06/20 13:35:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010/06/20 13:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010/06/20 13:33:57 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/06/20 13:31:45 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\ElevatedDiagnostics
[2010/06/20 13:13:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010/06/20 12:59:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010/06/20 12:58:12 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010/06/20 12:57:53 | 000,000,000 | ---D | C] -- C:\Program Files\DellTPad
[2010/06/20 12:57:46 | 000,000,000 | ---D | C] -- C:\dell
[2010/06/20 12:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010/06/20 12:53:23 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010/06/20 01:47:36 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010/06/20 01:40:29 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Macromedia
[2010/06/20 01:40:16 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Adobe
[2010/06/20 01:31:11 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Google
[2010/06/20 01:30:51 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Apps
[2010/06/20 01:30:50 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Deployment
[2010/06/20 01:26:57 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Searches
[2010/06/20 01:26:57 | 000,000,000 | -H-D | C] -- C:\Users\sin yee\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2010/06/20 01:26:47 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Identities
[2010/06/20 01:26:45 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Contacts
[2010/06/20 01:26:38 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\VirtualStore
[2010/06/20 01:26:36 | 000,000,000 | --SD | C] -- C:\Users\sin yee\AppData\Roaming\Microsoft
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Videos
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Saved Games
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Pictures
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Music
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Links
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Favorites
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Downloads
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\My Documents
[2010/06/20 01:26:36 | 000,000,000 | R--D | C] -- C:\Users\sin yee\Desktop
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\AppData\Local\Temporary Internet Files
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Templates
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Start Menu
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\SendTo
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Recent
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\PrintHood
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\NetHood
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Documents\My Videos
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Documents\My Pictures
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Documents\My Music
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\My Documents
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Local Settings
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\AppData\Local\History
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Cookies
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\Application Data
[2010/06/20 01:26:36 | 000,000,000 | -HSD | C] -- C:\Users\sin yee\AppData\Local\Application Data
[2010/06/20 01:26:36 | 000,000,000 | -H-D | C] -- C:\Users\sin yee\AppData
[2010/06/20 01:26:36 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Temp
[2010/06/20 01:26:36 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Local\Microsoft
[2010/06/20 01:26:36 | 000,000,000 | ---D | C] -- C:\Users\sin yee\AppData\Roaming\Media Center Programs
[2010/06/20 01:26:22 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010/06/20 01:19:57 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010/06/20 01:17:45 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010/06/20 01:16:46 | 000,000,000 | -HSD | C] -- C:\System Volume Information

========== Files - Modified Within 90 Days ==========

[2010/07/09 01:14:51 | 000,028,029 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010/07/09 01:14:51 | 000,028,029 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010/07/09 01:14:05 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/07/09 01:13:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/07/09 01:13:40 | 1609,072,640 | -HS- | M] () -- C:\hiberfil.sys
[2010/07/09 01:12:27 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/07/09 01:12:27 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/07/09 01:09:05 | 001,572,864 | -HS- | M] () -- C:\Users\sin yee\ntuser.dat
[2010/07/09 01:03:28 | 002,750,538 | -H-- | M] () -- C:\Users\sin yee\AppData\Local\IconCache.db
[2010/07/09 01:00:05 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-977807910-3724825906-2951066556-1001UA.job
[2010/07/08 23:45:19 | 000,713,888 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/07/08 23:45:19 | 000,619,642 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/07/08 23:45:19 | 000,107,792 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/07/08 23:43:54 | 000,001,074 | ---- | M] () -- C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2010/07/08 23:43:52 | 000,000,894 | ---- | M] () -- C:\Users\sin yee\Desktop\NTREGOPT.lnk
[2010/07/08 23:43:52 | 000,000,875 | ---- | M] () -- C:\Users\sin yee\Desktop\ERUNT.lnk
[2010/07/08 23:20:42 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\sin yee\Desktop\OTL.exe
[2010/07/08 23:18:12 | 000,284,915 | ---- | M] () -- C:\Users\sin yee\Desktop\gmer.zip
[2010/07/08 23:08:39 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/07/08 22:37:28 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Users\sin yee\Desktop\erunt_setup.exe
[2010/07/08 22:33:36 | 000,444,416 | ---- | M] (OldTimer Tools) -- C:\Users\sin yee\Desktop\TFC.exe
[2010/07/02 14:37:28 | 000,000,864 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-977807910-3724825906-2951066556-1001Core.job
[2010/07/02 10:06:09 | 000,002,405 | ---- | M] () -- C:\Users\sin yee\Desktop\Google Chrome.lnk
[2010/07/02 09:35:23 | 000,001,734 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/06/30 09:34:18 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/06/24 14:49:38 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010/06/22 10:47:12 | 000,000,880 | ---- | M] () -- C:\Users\Public\Desktop\Media Player Classic.lnk
[2010/06/21 19:37:53 | 002,513,664 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/06/21 19:36:39 | 000,172,968 | ---- | M] () -- C:\Users\sin yee\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/06/20 18:59:01 | 000,000,036 | ---- | M] () -- C:\Users\sin yee\AppData\Local\housecall.guid.cache
[2010/06/20 18:19:09 | 000,001,339 | ---- | M] () -- C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
[2010/06/20 17:37:24 | 000,000,968 | ---- | M] () -- C:\Users\Public\Desktop\Music Transfer.lnk
[2010/06/20 17:36:45 | 000,000,890 | ---- | M] () -- C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk
[2010/06/20 17:35:29 | 000,000,892 | ---- | M] () -- C:\Users\Public\Desktop\PMB.lnk
[2010/06/20 17:35:29 | 000,000,803 | ---- | M] () -- C:\Users\Public\Desktop\PMB Guide.lnk
[2010/06/20 17:15:52 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010/06/20 17:13:23 | 000,002,188 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoCAD Startup Accelerator.lnk
[2010/06/20 17:13:22 | 000,001,675 | ---- | M] () -- C:\Users\Public\Desktop\AutoCAD 2007.lnk
[2010/06/20 17:09:31 | 000,002,086 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk DWF Viewer.lnk
[2010/06/20 16:50:24 | 000,000,761 | ---- | M] () -- C:\Users\Public\Desktop\GOM Player.lnk
[2010/06/20 12:57:56 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2010/06/20 12:46:55 | 000,000,068 | ---- | M] () -- C:\Windows\spwdr.INI
[2010/06/20 03:30:24 | 000,000,068 | ---- | M] () -- C:\Windows\spn.INI
[2010/06/20 03:07:56 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/06/20 02:21:58 | 000,524,288 | -HS- | M] () -- C:\Users\sin yee\ntuser.dat{17b312f3-7bc7-11df-84c4-00197ed8f249}.TMContainer00000000000000000002.regtrans-ms
[2010/06/20 02:21:58 | 000,524,288 | -HS- | M] () -- C:\Users\sin yee\ntuser.dat{17b312f3-7bc7-11df-84c4-00197ed8f249}.TMContainer00000000000000000001.regtrans-ms
[2010/06/20 02:21:58 | 000,065,536 | -HS- | M] () -- C:\Users\sin yee\ntuser.dat{17b312f3-7bc7-11df-84c4-00197ed8f249}.TM.blf
[2010/06/20 01:44:05 | 000,001,407 | ---- | M] () -- C:\Users\sin yee\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/06/20 01:41:42 | 000,524,288 | -HS- | M] () -- C:\Users\sin yee\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010/06/20 01:41:42 | 000,524,288 | -HS- | M] () -- C:\Users\sin yee\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010/06/20 01:41:42 | 000,065,536 | -HS- | M] () -- C:\Users\sin yee\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010/06/20 01:26:36 | 000,000,020 | -HS- | M] () -- C:\Users\sin yee\ntuser.ini
[2010/06/20 01:20:58 | 000,042,049 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010/06/06 22:20:02 | 000,065,344 | ---- | M] () -- C:\Windows\System32\PDFreDirectMonNT.dll
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2010/07/08 23:43:54 | 000,001,074 | ---- | C] () -- C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2010/07/08 23:43:52 | 000,000,894 | ---- | C] () -- C:\Users\sin yee\Desktop\NTREGOPT.lnk
[2010/07/08 23:43:52 | 000,000,875 | ---- | C] () -- C:\Users\sin yee\Desktop\ERUNT.lnk
[2010/07/08 23:33:41 | 000,284,915 | ---- | C] () -- C:\Users\sin yee\Desktop\gmer.zip
[2010/07/08 23:08:39 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/22 10:47:12 | 000,000,880 | ---- | C] () -- C:\Users\Public\Desktop\Media Player Classic.lnk
[2010/06/20 18:59:01 | 000,000,036 | ---- | C] () -- C:\Users\sin yee\AppData\Local\housecall.guid.cache
[2010/06/20 18:19:09 | 000,001,339 | ---- | C] () -- C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
[2010/06/20 17:37:24 | 000,000,968 | ---- | C] () -- C:\Users\Public\Desktop\Music Transfer.lnk
[2010/06/20 17:36:45 | 000,000,890 | ---- | C] () -- C:\Users\sin yee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk
[2010/06/20 17:35:29 | 000,000,892 | ---- | C] () -- C:\Users\Public\Desktop\PMB.lnk
[2010/06/20 17:35:29 | 000,000,803 | ---- | C] () -- C:\Users\Public\Desktop\PMB Guide.lnk
[2010/06/20 17:15:52 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2010/06/20 17:15:50 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2010/06/20 17:13:23 | 000,002,188 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoCAD Startup Accelerator.lnk
[2010/06/20 17:13:22 | 000,001,675 | ---- | C] () -- C:\Users\Public\Desktop\AutoCAD 2007.lnk
[2010/06/20 17:09:31 | 000,002,086 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk DWF Viewer.lnk
[2010/06/20 16:50:24 | 000,000,761 | ---- | C] () -- C:\Users\Public\Desktop\GOM Player.lnk
[2010/06/20 16:41:44 | 000,028,029 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2010/06/20 16:41:44 | 000,028,029 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010/06/20 14:33:45 | 000,001,734 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/06/20 13:59:19 | 000,189,571 | ---- | C] () -- C:\Windows\System32\nvapps.xml
[2010/06/20 13:59:17 | 000,035,415 | ---- | C] () -- C:\Windows\System32\nvwsapps.xml
[2010/06/20 13:59:15 | 000,008,429 | ---- | C] () -- C:\Windows\System32\nvdisp.nvu
[2010/06/20 13:11:25 | 000,002,405 | ---- | C] () -- C:\Users\sin yee\Desktop\Google Chrome.lnk
[2010/06/20 12:57:56 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2010/06/20 12:55:45 | 000,000,916 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-977807910-3724825906-2951066556-1001UA.job
[2010/06/20 12:55:43 | 000,000,864 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-977807910-3724825906-2951066556-1001Core.job
[2010/06/20 12:53:27 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/06/20 03:30:35 | 000,000,068 | ---- | C] () -- C:\Windows\spwdr.INI
[2010/06/20 03:08:18 | 000,000,068 | ---- | C] () -- C:\Windows\spn.INI
[2010/06/20 03:07:56 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/06/20 01:44:05 | 000,001,407 | ---- | C] () -- C:\Users\sin yee\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/06/20 01:43:31 | 000,524,288 | -HS- | C] () -- C:\Users\sin yee\ntuser.dat{17b312f3-7bc7-11df-84c4-00197ed8f249}.TMContainer00000000000000000002.regtrans-ms
[2010/06/20 01:43:31 | 000,524,288 | -HS- | C] () -- C:\Users\sin yee\ntuser.dat{17b312f3-7bc7-11df-84c4-00197ed8f249}.TMContainer00000000000000000001.regtrans-ms
[2010/06/20 01:43:31 | 000,065,536 | -HS- | C] () -- C:\Users\sin yee\ntuser.dat{17b312f3-7bc7-11df-84c4-00197ed8f249}.TM.blf
[2010/06/20 01:26:36 | 001,572,864 | -HS- | C] () -- C:\Users\sin yee\ntuser.dat
[2010/06/20 01:26:36 | 000,524,288 | -HS- | C] () -- C:\Users\sin yee\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010/06/20 01:26:36 | 000,524,288 | -HS- | C] () -- C:\Users\sin yee\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010/06/20 01:26:36 | 000,262,144 | -HS- | C] () -- C:\Users\sin yee\ntuser.dat.LOG1
[2010/06/20 01:26:36 | 000,065,536 | -HS- | C] () -- C:\Users\sin yee\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010/06/20 01:26:36 | 000,000,290 | ---- | C] () -- C:\Users\sin yee\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2010/06/20 01:26:36 | 000,000,272 | ---- | C] () -- C:\Users\sin yee\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2010/06/20 01:26:36 | 000,000,020 | -HS- | C] () -- C:\Users\sin yee\ntuser.ini
[2010/06/20 01:26:36 | 000,000,000 | -HS- | C] () -- C:\Users\sin yee\ntuser.dat.LOG2
[2010/06/20 01:16:46 | 1609,072,640 | -HS- | C] () -- C:\hiberfil.sys
[2010/06/06 22:20:02 | 000,065,344 | ---- | C] () -- C:\Windows\System32\PDFreDirectMonNT.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/07/14 07:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 07:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2005/05/06 19:06:00 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll

========== LOP Check ==========

[2010/06/20 17:55:25 | 000,000,000 | ---D | M] -- C:\Users\sin yee\AppData\Roaming\Autodesk
[2010/06/24 14:47:14 | 000,000,000 | ---D | M] -- C:\Users\sin yee\AppData\Roaming\Opera
[2010/06/22 16:05:58 | 000,000,000 | ---D | M] -- C:\Users\sin yee\AppData\Roaming\PDF reDirect
[2009/07/14 12:53:46 | 000,013,330 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2009/06/11 05:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/07/14 09:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2010/06/20 17:15:52 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009/06/11 05:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2010/07/09 01:13:40 | 1609,072,640 | -HS- | M] () -- C:\hiberfil.sys
[2010/07/09 01:13:40 | 2145,431,552 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%\system32\*.wt >

< %systemroot%\system32\*.ruy >

< %systemroot%\Fonts\*.com >
[2009/07/14 12:52:25 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2009/07/14 12:52:25 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2009/07/14 12:52:25 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/07/14 12:52:25 | 000,043,318 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2009/06/11 05:31:19 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2009/07/14 09:15:35 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
[2009/07/14 09:16:19 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/14 09:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtmsft.dll
[2009/07/14 09:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtrans.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\user32.dll /md5 >
[2009/07/14 09:16:17 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=34B7E222E81FAFA885F0C5F2CFA56861 -- C:\Windows\System32\user32.dll

< %systemroot%\system32\ws2_32.dll /md5 >
[2009/07/14 09:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\System32\ws2_32.dll

< %systemroot%\system32\ws2help.dll /md5 >
[2009/07/14 09:11:26 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=808AABDF9337312195CAFF76D1804786 -- C:\Windows\System32\ws2help.dll

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-07-03 16:26:29

========== Files - Unicode (All) ==========
[2010/06/20 17:56:57 | 000,000,890 | ---- | M] ()(C:\Users\sin yee\Desktop\????.lnk) -- C:\Users\sin yee\Desktop\千千静听.lnk
[2010/06/20 17:56:57 | 000,000,890 | ---- | C] ()(C:\Users\sin yee\Desktop\????.lnk) -- C:\Users\sin yee\Desktop\千千静听.lnk

< End of report >

Extras Log

OTL Extras logfile created on: 9/7/2010 1:16:51 AM - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Users\sin yee\Desktop
An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00004409 | Country: Malaysia | Language: ENM | Date Format: d/M/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 68.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 29.30 Gb Total Space | 14.87 Gb Free Space | 50.77% Space Free | Partition Type: NTFS
Drive D: | 45.16 Gb Total Space | 0.18 Gb Free Space | 0.39% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SINYEE
Current User Name: sin yee
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Users\sin yee\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{14291118-0C19-45EA-A4FA-5C1C0F5FDE09}" = Primo
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{5783F2D7-5001-0409-0002-0060B0CE6BBA}" = AutoCAD 2007 - English
"{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0
"{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.3
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0
"{CE2121C6-C94D-4A73-8EA4-6943F33EE335}" = Music Transfer
"{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E62A1F01-07B7-4541-A835-EE5B0BF064C2}" = Microsoft Antimalware
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{EF98A02A-1748-4762-9B7D-5ED1600520D5}" = Microsoft Security Essentials
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"Autodesk DWF Viewer" = Autodesk DWF Viewer
"Creative OEM002" = Laptop Integrated Webcam Driver (1.04.01.1011)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ERUNT_is1" = ERUNT 1.1j
"GOM Player" = GOM Player
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft Security Essentials" = Microsoft Security Essentials
"NVIDIA Drivers" = NVIDIA Drivers
"PDF reDirect" = PDF reDirect (remove only)
"RealAlt_is1" = Real Alternative 2.0.2
"ShockwaveFlash" = Macromedia Flash Player 8
"TTPlayer" = 千千静听 5.2
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 5/7/2010 12:33:26 PM | Computer Name = sinyee | Source = Application Error | ID = 1000
Description = Faulting application name: mplayerc.exe, version: 6.4.9.1, time stamp:
0x4b780a3b Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000096 Fault offset: 0x031c4233 Faulting process id: 0xa38 Faulting application
start time: 0x01cb1c5fcac9ca12 Faulting application path: D:\programmes\Real Alternative\Media
Player Classic\mplayerc.exe Faulting module path: unknown Report Id: 090788e3-8853-11df-95a6-001ec9066840

Error - 5/7/2010 12:33:26 PM | Computer Name = sinyee | Source = Application Error | ID = 1005
Description = Windows cannot access the file for one of the following reasons: there
is a problem with the network connection, the disk that the file is stored on,
or the storage drivers installed on this computer; or the disk is missing. Windows
closed the program Media Player Classic because of this error. Program: Media Player
Classic File: The error value is listed in the Additional Data section. User Action
1.
Open the file again. This situation might be a temporary problem that corrects itself
when the program runs again. 2. If the file still cannot be accessed and - It is on
the network, your network administrator should verify that there is not a problem
with the network and that the server can be contacted. - It is on a removable disk,
for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into
the computer. 3. Check and repair the file system by running CHKDSK. To run CHKDSK,
click Start, click Run, type CMD, and then click OK. At the command prompt, type
CHKDSK /F, and then press ENTER. 4. If the problem persists, restore the file from
a backup copy. 5. Determine whether other files on the same disk can be opened.
If not, the disk might be damaged. If it is a hard disk, contact your administrator
or computer hardware vendor for further assistance. Additional Data Error value: 00000000
Disk
type: 0

Error - 5/7/2010 12:34:17 PM | Computer Name = sinyee | Source = Application Error | ID = 1000
Description = Faulting application name: mplayerc.exe, version: 6.4.9.1, time stamp:
0x4b780a3b Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000096 Fault offset: 0x036d4233 Faulting process id: 0xa40 Faulting application
start time: 0x01cb1c5fe92c0744 Faulting application path: D:\programmes\Real Alternative\Media
Player Classic\mplayerc.exe Faulting module path: unknown Report Id: 27591c73-8853-11df-95a6-001ec9066840

Error - 5/7/2010 12:34:17 PM | Computer Name = sinyee | Source = Application Error | ID = 1005
Description = Windows cannot access the file for one of the following reasons: there
is a problem with the network connection, the disk that the file is stored on,
or the storage drivers installed on this computer; or the disk is missing. Windows
closed the program Media Player Classic because of this error. Program: Media Player
Classic File: The error value is listed in the Additional Data section. User Action
1.
Open the file again. This situation might be a temporary problem that corrects itself
when the program runs again. 2. If the file still cannot be accessed and - It is on
the network, your network administrator should verify that there is not a problem
with the network and that the server can be contacted. - It is on a removable disk,
for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into
the computer. 3. Check and repair the file system by running CHKDSK. To run CHKDSK,
click Start, click Run, type CMD, and then click OK. At the command prompt, type
CHKDSK /F, and then press ENTER. 4. If the problem persists, restore the file from
a backup copy. 5. Determine whether other files on the same disk can be opened.
If not, the disk might be damaged. If it is a hard disk, contact your administrator
or computer hardware vendor for further assistance. Additional Data Error value: 00000000
Disk
type: 0

Error - 5/7/2010 12:34:31 PM | Computer Name = sinyee | Source = Application Error | ID = 1000
Description = Faulting application name: mplayerc.exe, version: 6.4.9.1, time stamp:
0x4b780a3b Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000096 Fault offset: 0x03624233 Faulting process id: 0x180 Faulting application
start time: 0x01cb1c5ff13748e0 Faulting application path: D:\programmes\Real Alternative\Media
Player Classic\mplayerc.exe Faulting module path: unknown Report Id: 2f72a651-8853-11df-95a6-001ec9066840

Error - 5/7/2010 12:34:31 PM | Computer Name = sinyee | Source = Application Error | ID = 1005
Description = Windows cannot access the file for one of the following reasons: there
is a problem with the network connection, the disk that the file is stored on,
or the storage drivers installed on this computer; or the disk is missing. Windows
closed the program Media Player Classic because of this error. Program: Media Player
Classic File: The error value is listed in the Additional Data section. User Action
1.
Open the file again. This situation might be a temporary problem that corrects itself
when the program runs again. 2. If the file still cannot be accessed and - It is on
the network, your network administrator should verify that there is not a problem
with the network and that the server can be contacted. - It is on a removable disk,
for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into
the computer. 3. Check and repair the file system by running CHKDSK. To run CHKDSK,
click Start, click Run, type CMD, and then click OK. At the command prompt, type
CHKDSK /F, and then press ENTER. 4. If the problem persists, restore the file from
a backup copy. 5. Determine whether other files on the same disk can be opened.
If not, the disk might be damaged. If it is a hard disk, contact your administrator
or computer hardware vendor for further assistance. Additional Data Error value: 00000000
Disk
type: 0

Error - 6/7/2010 9:12:21 PM | Computer Name = sinyee | Source = Google Update | ID = 20
Description =

Error - 6/7/2010 9:20:57 PM | Computer Name = sinyee | Source = Google Update | ID = 20
Description =

Error - 8/7/2010 7:41:15 AM | Computer Name = sinyee | Source = WindowsLiveMessenger | ID = 15728647
Description =

Error - 8/7/2010 1:00:05 PM | Computer Name = sinyee | Source = Google Update | ID = 20
Description =

[ System Events ]
Error - 8/7/2010 11:19:41 AM | Computer Name = sinyee | Source = Microsoft Antimalware | ID = 2001
Description = %%861 has encountered an error trying to update signatures. New Signature
Version: Previous Signature Version: 1.85.1695.0 Update Source: %%859 Update Stage:
%%854 Source Path: http://www.microsoft.com Signature Type: %%800 Update Type: %%803

User:
NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.5902.0 Error
code: 0x80070643 Error description: Fatal error during installation.

Error - 8/7/2010 11:20:19 AM | Computer Name = sinyee | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Definition Update for Microsoft Security Essentials - KB972696
(Definition 1.85.1714.0).

Error - 8/7/2010 11:29:18 AM | Computer Name = sinyee | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR5.

Error - 8/7/2010 11:29:19 AM | Computer Name = sinyee | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR5.

Error - 8/7/2010 11:29:19 AM | Computer Name = sinyee | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR5.

Error - 8/7/2010 11:29:20 AM | Computer Name = sinyee | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR5.

Error - 8/7/2010 11:29:20 AM | Computer Name = sinyee | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR5.

Error - 8/7/2010 11:34:42 AM | Computer Name = sinyee | Source = Service Control Manager | ID = 7034
Description = The NVIDIA Display Driver Service service terminated unexpectedly.
It has done this 1 time(s).

Error - 8/7/2010 1:13:45 PM | Computer Name = sinyee | Source = EventLog | ID = 6008
Description = The previous system shutdown at 1:12:20 AM on ?9/?7/?2010 was unexpected.

Error - 8/7/2010 1:13:56 PM | Computer Name = sinyee | Source = BugCheck | ID = 1001
Description =

< End of report >

thanks a lot!
i just wana identify whether izit virus/ malware/ spyware or the hardware's prob..
thanks a lot!

#1
ayrez7

Posted 08 July 2010 - 11:30 AM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us