OTL logfile created on: 12/28/2010 8:58:04 AM - Run 1
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Users\Kaarnanyx\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 66.00% Memory free
8.00 Gb Paging File | 6.00 Gb Available in Paging File | 79.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 224.20 Gb Total Space | 174.71 Gb Free Space | 77.93% Space Free | Partition Type: NTFS
Drive D: | 6.52 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Computer Name: KAARNANYX-PC | User Name: Kaarnanyx | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2010/12/28 08:55:41 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Kaarnanyx\Downloads\OTL.exe
PRC - [2010/12/23 23:49:50 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\KBDMLT47wow.exe
PRC - [2010/12/23 11:12:10 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\wscapiwow.exe
PRC - [2010/12/22 23:58:03 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\defaultlocationcplwow.exe
PRC - [2010/12/22 14:26:27 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\mciseqwow.exe
PRC - [2010/12/22 14:14:49 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\kbd106wow.exe
PRC - [2010/12/21 18:54:53 | 000,331,776 | -HS- | M] () -- C:\Windows\cdosyswow.exe
PRC - [2010/12/21 06:20:51 | 000,331,776 | -HS- | M] () -- C:\Windows\ws2helpwow.exe
PRC - [2010/12/21 06:20:51 | 000,331,776 | -HS- | M] () -- C:\Windows\VIDRESZRwow.exe
PRC - [2010/12/20 15:42:01 | 000,331,776 | -HS- | M] () -- C:\Windows\api-ms-win-core-heap-l1-1-0wow.exe
PRC - [2010/12/19 23:42:35 | 000,331,776 | -HS- | M] () -- C:\Windows\api-ms-win-core-threadpool-l1-1-0wow.exe
PRC - [2010/12/19 23:15:47 | 000,331,776 | -HS- | M] () -- C:\Windows\msxml6wow.exe
PRC - [2010/12/19 21:00:22 | 000,331,776 | -HS- | M] () -- C:\Windows\UIRibbonReswow.exe
PRC - [2010/12/18 16:51:54 | 000,331,776 | -HS- | M] () -- C:\Windows\mciavi32wow.exe
PRC - [2010/12/18 16:51:54 | 000,331,776 | -HS- | M] () -- C:\Windows\adsldpwow.exe
PRC - [2010/12/15 13:56:25 | 000,499,200 | -HS- | M] (Borland Software Corporation) -- C:\Windows\SampleReswow.exe
PRC - [2010/12/13 23:19:18 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\iaswow.exe
PRC - [2010/12/11 20:41:37 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\odbccr32wow.exe
PRC - [2010/12/11 20:41:37 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\nlsbreswow.exe
PRC - [2010/12/11 12:57:11 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\SortServer2003Compatwow.exe
PRC - [2010/12/11 07:31:19 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\NlsData004cwow.exe
PRC - [2010/12/08 15:28:23 | 000,991,800 | ---- | M] (Google Inc.) -- C:\Users\Kaarnanyx\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010/12/07 21:42:50 | 000,193,536 | -H-- | M] (Borland Software Corporation) -- C:\Users\Kaarnanyx\AppData\Roaming\Desktop\lsass.exe
PRC - [2010/12/07 21:42:50 | 000,193,536 | -H-- | M] (Borland Software Corporation) -- C:\Users\Kaarnanyx\AppData\Roaming\Microsoft\Windows\csrss.exe
PRC - [2010/12/07 21:41:24 | 001,383,424 | ---- | M] (Borland Software Corporation) -- C:\ProgramData\imagesp132.exe
PRC - [2010/12/07 21:41:24 | 001,383,424 | ---- | M] (Borland Software Corporation) -- C:\Windows\SysWOW64\atiu9pag32.exe
PRC - [2010/09/07 07:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 07:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/02/22 12:25:08 | 001,992,008 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
PRC - [2010/02/22 12:25:08 | 000,095,560 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe
PRC - [2010/02/22 12:24:42 | 002,409,800 | ---- | M] (Sensible Vision ) -- c:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
PRC - [2009/12/29 13:35:38 | 000,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/12/15 20:14:56 | 001,169,904 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
PRC - [2009/12/15 20:14:22 | 000,498,160 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2009/09/02 07:06:18 | 000,383,544 | ---- | M] (Advanced Micro Devices) -- c:\Program Files (x86)\AMD\Fusion Utility for Mobility\FusionSVC.exe
PRC - [2009/06/24 13:21:38 | 000,409,744 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2009/06/09 06:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2009/05/21 05:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
PRC - [2009/05/21 05:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
PRC - [2008/11/17 20:52:42 | 000,028,672 | ---- | M] (Dell Inc.) -- C:\Program Files (x86)\Dell\Dell Photo P703w AIO Printer\Printer\Center\dlSvc.exe
PRC - [2008/11/09 12:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/03/09 10:09:58 | 000,063,712 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\Dell Photo P703w AIO Printer\3.2\Apps\apdproxy.exe
========== Modules (SafeList) ========== MOD - [2010/12/28 08:55:41 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Kaarnanyx\Downloads\OTL.exe
MOD - [2010/08/20 21:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2009/07/13 17:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\powrprof.dll
MOD - [2009/07/13 17:15:27 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\IconCodecService.dll
MOD - [2009/07/13 17:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dsound.dll
========== Win32 Services (SafeList) ========== SRV:
64bit: - File not found [Auto | Running] -- C:\Windows\SysNative\atiu9pag32.exe -- (PolicyAgent32)
SRV:
64bit: - [2010/09/07 07:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:
64bit: - [2010/09/07 07:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:
64bit: - [2010/09/07 07:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:
64bit: - [2010/04/26 22:49:36 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:
64bit: - [2009/07/17 09:06:22 | 000,033,280 | ---- | M] () [Auto | Running] -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:
64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:
64bit: - [2009/06/29 12:44:38 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe -- (STacSV)
SRV:
64bit: - [2009/06/09 06:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2010/12/07 21:41:24 | 001,383,424 | ---- | M] (Borland Software Corporation) [Auto | Running] -- C:\Windows\SysWOW64\atiu9pag32.exe -- (PolicyAgent32)
SRV - [2010/09/01 14:24:59 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/22 12:24:42 | 002,409,800 | ---- | M] (Sensible Vision ) [Auto | Running] -- c:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe -- (FAService)
SRV - [2009/09/02 07:06:18 | 000,383,544 | ---- | M] (Advanced Micro Devices) [Auto | Running] -- c:\Program Files (x86)\AMD\Fusion Utility for Mobility\FusionSVC.exe -- (AMDFusionSVC)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/05/21 05:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
SRV - [2008/11/17 20:52:42 | 000,028,672 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Photo P703w AIO Printer\printer\center\dlSvc.exe -- (dlSvc)
SRV - [2008/11/09 12:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/09/09 13:59:18 | 000,275,696 | ---- | M] (Dell) [Auto | Stopped] -- C:\Program Files (x86)\Dell\Dell Photo P703w AIO Printer\Printer\Device\DLDiscovery.exe -- (Dell Network Discovery Service)
========== Driver Services (SafeList) ========== DRV:
64bit: - [2010/09/07 06:47:33 | 000,061,008 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:
64bit: - [2010/04/27 04:56:34 | 006,659,072 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:
64bit: - [2010/04/26 22:17:26 | 000,195,584 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:
64bit: - [2009/07/17 09:06:20 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:
64bit: - [2009/07/17 09:06:18 | 002,769,400 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:
64bit: - [2009/07/13 17:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:
64bit: - [2009/07/13 17:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:
64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:
64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:
64bit: - [2009/07/13 17:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:
64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:
64bit: - [2009/07/09 02:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:
64bit: - [2009/06/29 12:44:38 | 000,487,424 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:
64bit: - [2009/06/24 11:00:18 | 000,216,576 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:
64bit: - [2009/06/15 10:06:42 | 000,172,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:
64bit: - [2009/06/10 12:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:
64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:
64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:
64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:
64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:
64bit: - [2009/06/05 03:53:42 | 000,034,872 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:
64bit: - [2009/05/22 22:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:
64bit: - [2009/05/05 10:00:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO)
DRV:
64bit: - [2009/04/22 11:32:22 | 000,047,672 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmdLLD64.sys -- (AmdLLD64)
DRV:
64bit: - [2009/02/05 19:54:10 | 000,225,328 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:
64bit: - [2008/09/24 16:36:14 | 000,238,848 | ---- | M] (Sensible Vision ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\facap.sys -- (FACAP)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://g.msn.com/USCON/1IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.msn.com/IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = EE E8 D3 01 CA C5 BC 44 9C 76 09 91 C1 63 D3 BB [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[2010/09/17 17:41:57 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Mozilla\Extensions
[2010/09/17 17:41:57 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Mozilla\Extensions\
[email protected] O1 HOSTS File: ([2009/06/10 13:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (e65f4503) - {01811C8C-BBA6-041E-55C4-FEABC682D828} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (no name) - {01D3E8EE-C5CA-44BC-9C76-0991C163D3Bb} - C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (e65f4503) - {041A9101-C228-29D5-F6E3-11D9FCD28303} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {07C9ED57-40CA-BC10-53ED-6EAD97165224} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {0C78A0C9-BF67-6D6E-C17E-085DF419DC2A} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {2E30A189-A7A3-FE64-3143-F9477B3204DC} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {3EAA3F59-A277-C08C-C098-72F0C9F63557} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {3ECBB1E6-D40F-32CE-7CEE-9DAF87800363} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {45F2BBB2-2898-078F-C785-60FB6A0D4566} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {5357B92A-46CC-1D96-199E-116747304450} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {5805CFF7-29EE-ED6E-F6F9-8B367E7EE89B} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {5995ABD7-1176-5EDB-2120-BFBD210D7179} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (e65f4503) - {65326418-3BE7-7422-5A44-27496C9CB51B} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {65FAFDC2-2FAC-E5D0-6B76-B2560DF44A90} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {6EBD5F73-EF6D-F1DB-8DD0-B235A51E463F} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {7865E9EA-6FD5-CE43-450D-DEE0AD3B5F7E} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {7ABD6C5C-AEA5-5FEA-F8F4-9C012C4CF508} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {8C08D810-58B3-268F-9FA8-9D3DD3DEC4B1} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {8D6D2CF9-1B34-EE01-F568-A69873C16638} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {90B7434E-3AD8-6756-7340-FA9FA94C0B0A} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {91471F2F-225F-D8C3-9E67-2D264CDC93E7} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {998420C4-518C-C994-1D77-DA0A60E33947} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {9B377D5B-FCE9-CD7A-9E41-C0F95F6B40C9} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {9BFD15C3-C2F4-CD7C-8BB3-C3EA9C7F9EDD} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {A25B88E5-22B8-3090-C518-9B8E6F10124A} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (FAIESSOHelper Class) - {A2F122DA-055F-4df7-8F24-7354DBDBA85B} - c:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll (Sensible Vision )
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (e65f4503) - {B4A6F399-CCC6-F735-6CCD-9DCB16A2E0F3} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {B635DE61-18D1-172E-0E81-CFDFF35CE108} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {BDCCA9F2-214D-5B08-C027-1DE9EA6B47C8} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {D28F198D-A145-D422-4DA5-079309C3F23F} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {DC440E21-41DA-C9DC-3AF1-9C585966FC36} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {DDD1BB0D-24C2-E23E-0C7D-D28A2F04A41A} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {ECFA4236-AAB5-A04A-ED49-E1C308A9EC61} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {F67D2D32-97B9-847C-B4FC-8BDF5064E26D} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {F7ED9885-4DAA-82A6-24CE-93A634699C3E} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (e65f4503) - {FC1BCCE2-E21C-52CB-26E2-B42161795A27} - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
O3:
64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:
64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:
64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:
64bit: - HKLM..\Run: [DLKAStatusMonitor] C:\Windows\SysNative\spool\drivers\x64\3\DLKAMUI.exe (Dell Inc.)
O4:
64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:
64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\Dell Photo P703w AIO Printer\3.2\Apps\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [adsldpwow.exe] C:\Windows\adsldpwow.exe ()
O4 - HKLM..\Run: [api-ms-win-core-heap-l1-1-0wow.exe] C:\Windows\api-ms-win-core-heap-l1-1-0wow.exe ()
O4 - HKLM..\Run: [api-ms-win-core-threadpool-l1-1-0wow.exe] C:\Windows\api-ms-win-core-threadpool-l1-1-0wow.exe ()
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [cdosyswow.exe] C:\Windows\cdosyswow.exe ()
O4 - HKLM..\Run: [Conime] C:\Windows\SysWow64\conime.exe File not found
O4 - HKLM..\Run: [defaultlocationcplwow.exe] C:\Windows\defaultlocationcplwow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [Desktop Disc Tool] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [FAStartup] File not found
O4 - HKLM..\Run: [FATrayAlert] c:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe (Sensible Vision )
O4 - HKLM..\Run: [iaswow.exe] C:\Windows\iaswow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [kbd106wow.exe] C:\Windows\kbd106wow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [kbdmlt47wow.exe] C:\Windows\KBDMLT47wow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [mciavi32wow.exe] C:\Windows\mciavi32wow.exe ()
O4 - HKLM..\Run: [mciseqwow.exe] C:\Windows\mciseqwow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [msxml6wow.exe] C:\Windows\msxml6wow.exe ()
O4 - HKLM..\Run: [nlsbreswow.exe] C:\Windows\nlsbreswow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [nlsdata004cwow.exe] C:\Windows\NlsData004cwow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [odbccr32wow.exe] C:\Windows\odbccr32wow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RTHDBPL] C:\Users\Kaarnanyx\AppData\Roaming\Desktop\lsass.exe (Borland Software Corporation)
O4 - HKLM..\Run: [samplereswow.exe] C:\Windows\SampleReswow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [sortserver2003compatwow.exe] C:\Windows\SortServer2003Compatwow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [syssetupwow.exe] c:\Windows\syssetupwow.exe (Borland Software Corporation)
O4 - HKLM..\Run: [uiribbonreswow.exe] C:\Windows\UIRibbonReswow.exe ()
O4 - HKLM..\Run: [vidreszrwow.exe] C:\Windows\VIDRESZRwow.exe ()
O4 - HKLM..\Run: [ws2helpwow.exe] C:\Windows\ws2helpwow.exe ()
O4 - HKLM..\Run: [wscapiwow.exe] C:\Windows\wscapiwow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [adsldpwow.exe] C:\Windows\adsldpwow.exe ()
O4 - HKCU..\Run: [api-ms-win-core-heap-l1-1-0wow.exe] C:\Windows\api-ms-win-core-heap-l1-1-0wow.exe ()
O4 - HKCU..\Run: [api-ms-win-core-threadpool-l1-1-0wow.exe] C:\Windows\api-ms-win-core-threadpool-l1-1-0wow.exe ()
O4 - HKCU..\Run: [cdosyswow.exe] C:\Windows\cdosyswow.exe ()
O4 - HKCU..\Run: [ctapo32wow.exe] C:\Windows\ctapo32wow.exe File not found
O4 - HKCU..\Run: [defaultlocationcplwow.exe] C:\Windows\defaultlocationcplwow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [iaswow.exe] C:\Windows\iaswow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [kbd106wow.exe] C:\Windows\kbd106wow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [KBDMLT47wow.exe] C:\Windows\KBDMLT47wow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [mciavi32wow.exe] C:\Windows\mciavi32wow.exe ()
O4 - HKCU..\Run: [mciseqwow.exe] C:\Windows\mciseqwow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [msfeedsbswow.exe] C:\Windows\msfeedsbswow.exe File not found
O4 - HKCU..\Run: [msiwow.exe] C:\Windows\msiwow.exe File not found
O4 - HKCU..\Run: [msxml6wow.exe] C:\Windows\msxml6wow.exe ()
O4 - HKCU..\Run: [nlsbreswow.exe] C:\Windows\nlsbreswow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [NlsData004cwow.exe] C:\Windows\NlsData004cwow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [odbccr32wow.exe] C:\Windows\odbccr32wow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [SampleReswow.exe] C:\Windows\SampleReswow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [SortServer2003Compatwow.exe] C:\Windows\SortServer2003Compatwow.exe (Borland Software Corporation)
O4 - HKCU..\Run: [UIRibbonReswow.exe] C:\Windows\UIRibbonReswow.exe ()
O4 - HKCU..\Run: [VIDRESZRwow.exe] C:\Windows\VIDRESZRwow.exe ()
O4 - HKCU..\Run: [wmdrmnetwow.exe] C:\Windows\wmdrmnetwow.exe File not found
O4 - HKCU..\Run: [WMSPDMOEwow.exe] C:\Windows\WMSPDMOEwow.exe File not found
O4 - HKCU..\Run: [ws2helpwow.exe] C:\Windows\ws2helpwow.exe ()
O4 - HKCU..\Run: [wscapiwow.exe] C:\Windows\wscapiwow.exe (Borland Software Corporation)
O4 - Startup: C:\Users\Kaarnanyx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:
64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:
64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll) - C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll (Borland Software Corporation)
O20:
64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:
64bit: - Winlogon\Notify\GoToAssist: DllName - Reg Error: Key error. - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll File not found
O20 - Winlogon\Notify\FastAccess: DllName - c:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll - c:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll ()
O21:
64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/18 01:11:44 | 000,000,078 | R--- | M] () - D:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{cfe819ec-b625-11df-8a65-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{cfe819ec-b625-11df-8a65-806e6f6e6963}\Shell\AutoRun\command - "" = D:\setup.exe -- [2010/06/18 02:05:02 | 001,568,768 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:
64bit: - HKLM\..comfile [open] -- "%1" %*
O35:
64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:
64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
Drivers32:
64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
SafeBootMin:
64bit: AppMgmt - Service
SafeBootMin:
64bit: Base - Driver Group
SafeBootMin:
64bit: Boot Bus Extender - Driver Group
SafeBootMin:
64bit: Boot file system - Driver Group
SafeBootMin:
64bit: File system - Driver Group
SafeBootMin:
64bit: Filter - Driver Group
SafeBootMin:
64bit: HelpSvc - Service
SafeBootMin:
64bit: MCODS - Reg Error: Value error.
SafeBootMin:
64bit: PCI Configuration - Driver Group
SafeBootMin:
64bit: PNP Filter - Driver Group
SafeBootMin:
64bit: Primary disk - Driver Group
SafeBootMin:
64bit: sacsvr - Service
SafeBootMin:
64bit: SCSI Class - Driver Group
SafeBootMin:
64bit: System Bus Extender - Driver Group
SafeBootMin:
64bit: vmms - Service
SafeBootMin:
64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:
64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:
64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:
64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:
64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:
64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:
64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:
64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:
64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:
64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:
64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:
64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:
64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:
64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:
64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:
64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:
64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:
64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: MCODS - Reg Error: Value error.
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet:
64bit: AppMgmt - Service
SafeBootNet:
64bit: Base - Driver Group
SafeBootNet:
64bit: Boot Bus Extender - Driver Group
SafeBootNet:
64bit: Boot file system - Driver Group
SafeBootNet:
64bit: File system - Driver Group
SafeBootNet:
64bit: Filter - Driver Group
SafeBootNet:
64bit: HelpSvc - Service
SafeBootNet:
64bit: MCODS - Reg Error: Value error.
SafeBootNet:
64bit: Messenger - Service
SafeBootNet:
64bit: NDIS Wrapper - Driver Group
SafeBootNet:
64bit: NetBIOSGroup - Driver Group
SafeBootNet:
64bit: NetDDEGroup - Driver Group
SafeBootNet:
64bit: Network - Driver Group
SafeBootNet:
64bit: NetworkProvider - Driver Group
SafeBootNet:
64bit: PCI Configuration - Driver Group
SafeBootNet:
64bit: PNP Filter - Driver Group
SafeBootNet:
64bit: PNP_TDI - Driver Group
SafeBootNet:
64bit: Primary disk - Driver Group
SafeBootNet:
64bit: rdsessmgr - Service
SafeBootNet:
64bit: sacsvr - Service
SafeBootNet:
64bit: SCSI Class - Driver Group
SafeBootNet:
64bit: Streams Drivers - Driver Group
SafeBootNet:
64bit: System Bus Extender - Driver Group
SafeBootNet:
64bit: TDI - Driver Group
SafeBootNet:
64bit: vmms - Service
SafeBootNet:
64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:
64bit: WudfUsbccidDriver - Driver
SafeBootNet:
64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:
64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:
64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:
64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:
64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:
64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:
64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:
64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:
64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:
64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:
64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:
64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:
64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:
64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:
64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:
64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:
64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:
64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:
64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:
64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:
64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:
64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: MCODS - Reg Error: Value error.
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX:
64bit: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX:
64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:
64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:
64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:
64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:
64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:
64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:
64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:
64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:
64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:
64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:
64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:
64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:
64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:
64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:
64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:
64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:
64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:
64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:
64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:
64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:
64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:
64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - Reg Error: Value error.
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
========== Files/Folders - Created Within 30 Days ========== [2010/12/25 18:35:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\City Interactive
[2010/12/24 01:36:26 | 000,487,424 | -HS- | C] (Borland Software Corporation) -- C:\Windows\KBDMLT47wow.exe
[2010/12/23 11:12:10 | 000,487,424 | -HS- | C] (Borland Software Corporation) -- C:\Windows\wscapiwow.exe
[2010/12/22 23:58:03 | 000,487,424 | -HS- | C] (Borland Software Corporation) -- C:\Windows\defaultlocationcplwow.exe
[2010/12/22 14:26:27 | 000,487,424 | -HS- | C] (Borland Software Corporation) -- C:\Windows\mciseqwow.exe
[2010/12/22 14:25:19 | 000,487,424 | -HS- | C] (Borland Software Corporation) -- C:\Windows\kbd106wow.exe
[2010/12/19 02:44:00 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\Documents\My Games
[2010/12/18 19:37:16 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\Happyville__
[2010/12/18 18:32:30 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\Supermarket Mania 2
[2010/12/18 17:43:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Supermarket Mania 2
[2010/12/18 17:43:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HappyVille - Quest for Utopia
[2010/12/15 13:57:12 | 000,499,200 | -HS- | C] (Borland Software Corporation) -- C:\Windows\SampleReswow.exe
[2010/12/13 23:19:19 | 000,495,104 | -HS- | C] (Borland Software Corporation) -- C:\Windows\iaswow.exe
[2010/12/13 15:33:11 | 000,495,104 | -HS- | C] (Borland Software Corporation) -- C:\Windows\nlsbreswow.exe
[2010/12/13 15:33:06 | 000,495,104 | -HS- | C] (Borland Software Corporation) -- C:\Windows\syssetupwow.exe
[2010/12/13 15:32:59 | 000,495,104 | -HS- | C] (Borland Software Corporation) -- C:\Windows\odbccr32wow.exe
[2010/12/13 14:04:06 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\Amazon
[2010/12/13 14:00:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Amazon
[2010/12/12 03:16:33 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\WinRAR
[2010/12/11 12:57:11 | 000,495,104 | -HS- | C] (Borland Software Corporation) -- C:\Windows\SortServer2003Compatwow.exe
[2010/12/11 07:31:20 | 000,495,104 | -HS- | C] (Borland Software Corporation) -- C:\Windows\NlsData004cwow.exe
[2010/12/11 07:31:20 | 000,000,000 | -HSD | C] -- C:\ProgramData\68B2BBB852549658DC1EC6BAD0B2064E
[2010/12/07 21:49:41 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\FreeFileViewer
[2010/12/07 21:43:29 | 000,000,000 | -HSD | C] -- C:\ProgramData\SysWoW32
[2010/12/07 21:43:14 | 000,000,000 | ---D | C] -- C:\ProgramData\605975089
[2010/12/07 21:42:52 | 001,383,424 | ---- | C] (Borland Software Corporation) -- C:\ProgramData\imagesp132.exe
[2010/12/07 21:42:52 | 000,264,704 | ---- | C] (Borland Software Corporation) -- C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll
[2010/12/07 21:42:52 | 000,000,000 | -HSD | C] -- C:\Users\Kaarnanyx\AppData\Roaming\Desktop
[2010/12/07 21:42:50 | 001,383,424 | ---- | C] (Borland Software Corporation) -- C:\Windows\SysWow64\atiu9pag32.exe
[2010/12/07 21:42:50 | 000,193,536 | ---- | C] (Borland Software Corporation) -- C:\Windows\SysWow64\imagesp132.exe
[2010/12/07 21:42:49 | 000,408,064 | ---- | C] (Borland Software Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-032.dll
[2010/12/06 22:53:10 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Local\Yahoo!
[2010/12/04 16:45:14 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\Documents\My Digital Editions
[2010/12/04 16:44:05 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\Documents\My Barnes & Noble eBooks
[2010/12/04 16:43:40 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\Barnes & Noble
[2010/12/04 16:43:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Barnes & Noble
[2010/12/04 15:45:55 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Roaming\ViquaSoft
[2010/12/04 12:23:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Shop-n-Spree
[2010/11/28 11:11:14 | 000,000,000 | ---D | C] -- C:\Users\Kaarnanyx\AppData\Local\ElevatedDiagnostics
========== Files - Modified Within 30 Days ========== [2010/12/28 08:51:19 | 000,001,185 | ---- | M] () -- C:\ProgramData\1716940330
[2010/12/28 08:48:59 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/12/28 08:48:59 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/12/28 08:41:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/12/28 08:41:27 | 3219,955,712 | -HS- | M] () -- C:\hiberfil.sys
[2010/12/28 01:07:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2461102510-1184381975-1191852334-1001UA.job
[2010/12/27 23:05:33 | 000,000,887 | -HS- | M] () -- C:\ProgramData\1182549254
[2010/12/27 21:22:09 | 000,000,872 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2461102510-1184381975-1191852334-1001Core.job
[2010/12/25 19:41:29 | 000,002,076 | ---- | M] () -- C:\Users\Kaarnanyx\Desktop\Art of Murder - FBI Confidential.lnk
[2010/12/24 23:30:35 | 000,003,743 | ---- | M] () -- C:\Windows\SysWow64\GnuHashes.ini
[2010/12/23 23:49:50 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\KBDMLT47wow.exe
[2010/12/23 11:12:10 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\wscapiwow.exe
[2010/12/22 23:58:03 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\defaultlocationcplwow.exe
[2010/12/22 14:26:27 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\mciseqwow.exe
[2010/12/22 14:14:49 | 000,487,424 | -HS- | M] (Borland Software Corporation) -- C:\Windows\kbd106wow.exe
[2010/12/21 18:54:53 | 000,331,776 | -HS- | M] () -- C:\Windows\cdosyswow.exe
[2010/12/21 06:20:51 | 000,331,776 | -HS- | M] () -- C:\Windows\ws2helpwow.exe
[2010/12/21 06:20:51 | 000,331,776 | -HS- | M] () -- C:\Windows\VIDRESZRwow.exe
[2010/12/20 15:42:01 | 000,331,776 | -HS- | M] () -- C:\Windows\api-ms-win-core-heap-l1-1-0wow.exe
[2010/12/19 23:42:35 | 000,331,776 | -HS- | M] () -- C:\Windows\api-ms-win-core-threadpool-l1-1-0wow.exe
[2010/12/19 23:15:47 | 000,331,776 | -HS- | M] () -- C:\Windows\msxml6wow.exe
[2010/12/19 21:00:22 | 000,331,776 | -HS- | M] () -- C:\Windows\UIRibbonReswow.exe
[2010/12/19 01:22:08 | 000,001,264 | ---- | M] () -- C:\Users\Public\Desktop\More Great Games.lnk
[2010/12/18 17:43:41 | 000,002,018 | ---- | M] () -- C:\Users\Public\Desktop\Play Supermarket Mania 2.lnk
[2010/12/18 17:43:17 | 000,002,094 | ---- | M] () -- C:\Users\Public\Desktop\Play HappyVille - Quest for Utopia.lnk
[2010/12/18 16:51:54 | 000,331,776 | -HS- | M] () -- C:\Windows\mciavi32wow.exe
[2010/12/18 16:51:54 | 000,331,776 | -HS- | M] () -- C:\Windows\adsldpwow.exe
[2010/12/17 08:36:42 | 000,322,856 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/12/15 13:56:25 | 000,499,200 | -HS- | M] (Borland Software Corporation) -- C:\Windows\SampleReswow.exe
[2010/12/14 11:20:08 | 000,000,165 | ---- | M] () -- C:\ProgramData\sl664655764
[2010/12/14 07:00:02 | 000,002,429 | ---- | M] () -- C:\Users\Kaarnanyx\Desktop\Google Chrome.lnk
[2010/12/13 23:19:18 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\iaswow.exe
[2010/12/11 20:41:37 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\syssetupwow.exe
[2010/12/11 20:41:37 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\odbccr32wow.exe
[2010/12/11 20:41:37 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\nlsbreswow.exe
[2010/12/11 12:57:11 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\SortServer2003Compatwow.exe
[2010/12/11 07:31:19 | 000,495,104 | -HS- | M] (Borland Software Corporation) -- C:\Windows\NlsData004cwow.exe
[2010/12/07 23:10:53 | 000,002,208 | ---- | M] () -- C:\Users\Kaarnanyx\Application Data\Microsoft\Internet Explorer\Quick Launch\Adobe Digital Editions.lnk
[2010/12/07 23:10:53 | 000,002,184 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Digital Editions.lnk
[2010/12/07 21:43:14 | 000,203,776 | -HS- | M] () -- C:\ProgramData\unrar.exe
[2010/12/07 21:42:52 | 000,264,704 | ---- | M] (Borland Software Corporation) -- C:\ProgramData\api-ms-win-core-memory-l1-1-032.dll
[2010/12/07 21:42:52 | 000,000,108 | ---- | M] () -- C:\Windows\SysWow64\1820459553
[2010/12/07 21:42:50 | 000,193,536 | ---- | M] (Borland Software Corporation) -- C:\Windows\SysWow64\imagesp132.exe
[2010/12/07 21:42:49 | 000,408,064 | ---- | M] (Borland Software Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-032.dll
[2010/12/07 21:41:24 | 001,383,424 | ---- | M] (Borland Software Corporation) -- C:\ProgramData\imagesp132.exe
[2010/12/07 21:41:24 | 001,383,424 | ---- | M] (Borland Software Corporation) -- C:\Windows\SysWow64\atiu9pag32.exe
[2010/12/06 20:09:50 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/12/06 20:09:50 | 000,624,178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/12/06 20:09:50 | 000,106,522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/12/05 16:18:37 | 000,002,016 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/12/04 16:43:43 | 000,001,214 | ---- | M] () -- C:\Users\Kaarnanyx\Desktop\NOOK for PC.lnk
[2010/12/04 12:24:00 | 000,001,941 | ---- | M] () -- C:\Users\Public\Desktop\Play Shop-n-Spree.lnk
========== Files Created - No Company Name ========== [2010/12/25 18:39:26 | 000,002,076 | ---- | C] () -- C:\Users\Kaarnanyx\Desktop\Art of Murder - FBI Confidential.lnk
[2010/12/21 20:50:57 | 000,331,776 | -HS- | C] () -- C:\Windows\cdosyswow.exe
[2010/12/21 14:56:51 | 000,331,776 | -HS- | C] () -- C:\Windows\ws2helpwow.exe
[2010/12/21 14:56:51 | 000,331,776 | -HS- | C] () -- C:\Windows\VIDRESZRwow.exe
[2010/12/20 15:42:02 | 000,331,776 | -HS- | C] () -- C:\Windows\api-ms-win-core-heap-l1-1-0wow.exe
[2010/12/20 06:02:01 | 000,331,776 | -HS- | C] () -- C:\Windows\api-ms-win-core-threadpool-l1-1-0wow.exe
[2010/12/19 23:40:55 | 000,331,776 | -HS- | C] () -- C:\Windows\msxml6wow.exe
[2010/12/19 21:47:09 | 000,331,776 | -HS- | C] () -- C:\Windows\UIRibbonReswow.exe
[2010/12/19 03:36:35 | 000,331,776 | -HS- | C] () -- C:\Windows\mciavi32wow.exe
[2010/12/19 03:36:34 | 000,331,776 | -HS- | C] () -- C:\Windows\adsldpwow.exe
[2010/12/18 17:43:41 | 000,002,018 | ---- | C] () -- C:\Users\Public\Desktop\Play Supermarket Mania 2.lnk
[2010/12/18 17:43:17 | 000,002,094 | ---- | C] () -- C:\Users\Public\Desktop\Play HappyVille - Quest for Utopia.lnk
[2010/12/18 17:42:56 | 000,001,264 | ---- | C] () -- C:\Users\Public\Desktop\More Great Games.lnk
[2010/12/14 11:20:08 | 000,000,165 | ---- | C] () -- C:\ProgramData\sl664655764
[2010/12/07 23:10:53 | 000,002,208 | ---- | C] () -- C:\Users\Kaarnanyx\Application Data\Microsoft\Internet Explorer\Quick Launch\Adobe Digital Editions.lnk
[2010/12/07 23:10:53 | 000,002,184 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Digital Editions.lnk
[2010/12/07 21:51:11 | 000,003,743 | ---- | C] () -- C:\Windows\SysWow64\GnuHashes.ini
[2010/12/07 21:43:58 | 000,000,887 | -HS- | C] () -- C:\ProgramData\1182549254
[2010/12/07 21:43:56 | 000,001,185 | ---- | C] () -- C:\ProgramData\1716940330
[2010/12/07 21:43:14 | 000,203,776 | -HS- | C] () -- C:\ProgramData\unrar.exe
[2010/12/07 21:42:50 | 000,000,108 | ---- | C] () -- C:\Windows\SysWow64\1820459553
[2010/12/04 16:43:43 | 000,001,214 | ---- | C] () -- C:\Users\Kaarnanyx\Desktop\NOOK for PC.lnk
[2010/12/04 12:24:00 | 000,001,941 | ---- | C] () -- C:\Users\Public\Desktop\Play Shop-n-Spree.lnk
[2010/12/03 13:04:23 | 000,002,429 | ---- | C] () -- C:\Users\Kaarnanyx\Desktop\Google Chrome.lnk
[2010/09/27 23:47:05 | 000,080,690 | ---- | C] () -- C:\Users\Kaarnanyx\AppData\Local\installer.log
[2010/09/27 22:58:46 | 000,000,114 | ---- | C] () -- C:\Users\Kaarnanyx\AppData\Roaming\wklnhst.dat
[2010/09/17 10:15:19 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/02/22 12:25:56 | 000,089,416 | ---- | C] () -- C:\Windows\SysWow64\FAIEExtension.dll
[2010/02/22 12:25:12 | 000,059,208 | ---- | C] () -- C:\Windows\SysWow64\FAib.dll
[2010/02/22 12:24:10 | 000,247,624 | ---- | C] () -- C:\Windows\SysWow64\FACrashRpt.dll
[2009/07/13 15:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 13:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
========== LOP Check ========== [2010/11/07 12:48:38 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Aerohills
[2010/12/19 23:40:36 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Amazon
[2010/10/17 22:02:36 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Artifex Mundi
[2010/12/04 16:43:40 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Barnes & Noble
[2010/09/17 21:11:00 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Be a King
[2010/10/12 23:04:51 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Be a King 2
[2010/09/17 16:18:58 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Big Fish Games
[2010/09/17 12:08:36 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Coby
[2010/09/17 12:11:52 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Coby Media Manager
[2010/12/07 21:42:52 | 000,000,000 | -HSD | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Desktop
[2010/09/18 02:31:46 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\DivoGames
[2010/12/07 21:53:55 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\FreeFileViewer
[2010/09/18 12:38:58 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Friday's games
[2010/12/13 15:32:53 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\FrostWire
[2010/09/26 22:38:57 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Fugazo
[2010/10/01 20:33:26 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\game
[2010/10/01 02:29:06 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Gamers Digital
[2010/10/18 09:07:50 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Ghost Ship Studios
[2010/12/18 19:37:16 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Happyville__
[2010/09/17 19:19:45 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Ladia Group
[2010/10/01 20:33:26 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Meridian93
[2010/11/21 13:22:14 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Merscom
[2010/10/18 09:56:28 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Mutant Arcade
[2010/09/18 03:08:24 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\NatGeoGames
[2010/11/18 11:01:09 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\PlayFirst
[2010/09/17 15:11:08 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\quickclick
[2010/12/18 18:33:56 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Supermarket Mania 2
[2010/09/27 23:47:29 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Temp
[2010/09/27 22:58:49 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\Template
[2010/12/04 15:45:55 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\ViquaSoft
[2010/10/01 02:16:18 | 000,000,000 | ---D | M] -- C:\Users\Kaarnanyx\AppData\Roaming\World-Loom
[2009/07/13 21:08:49 | 000,017,540 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 232 bytes -> C:\ProgramData\TEMP:178093AE
@Alternate Data Stream - 229 bytes -> C:\ProgramData\TEMP:90595C34
@Alternate Data Stream - 228 bytes -> C:\ProgramData\TEMP:0915A718
@Alternate Data Stream - 219 bytes -> C:\ProgramData\TEMP:3815BC84
@Alternate Data Stream - 215 bytes -> C:\ProgramData\TEMP:1B9E79B3
@Alternate Data Stream - 215 bytes -> C:\ProgramData\TEMP:08801FDB
@Alternate Data Stream - 203 bytes -> C:\ProgramData\TEMP:DF0BC727
@Alternate Data Stream - 190 bytes -> C:\ProgramData\TEMP:60A4BB64
@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:0696EC8E
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:A26AFC00
@Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:A819A132
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:46A2F27B
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:79875988
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:9D6EAEC3
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:C76CFF82
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:CF1334B0
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:BF6A2C54
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:DE875C30
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:66871744
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:5CE91C67
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:CFF6B3FF
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:A1023D41
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:32FFF2D1
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:8DD20B4A
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:D453E38B
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:7AF9CAEB
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CA0CE093
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:831C6B2D
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:0C13C008
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:9F50A55A
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:BDF08FAF
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:9EE6560D
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:F7F6E6CB
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:74091520
< End of report >