Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

windows security service

Started by christhobald , Mar 24 2011 11:32 AM

  • Please log in to reply

#1
christhobald
Posted 24 March 2011 - 11:32 AM

christhobald

    New Member

  • Member
  • Pip
  • 2 posts
I had some problems with malware that caused a PC issue windows security service is turned off, and can't be started. First I scan my pc with malwarebytes, found 8 malwares, clean them all, no traces left. Scan my computer for virus, none. I've tried enabled security center in services I got error 1079 the account specified for this service is different from the account specified for other services running in the same process.
And also , I can't access windows update error 80072EFD


OTL logfile created on: 24/03/2011 1:26:10 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = E:\
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8080.16413)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 31.00% Memory free
8.00 Gb Paging File | 6.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 698.63 Gb Total Space | 449.11 Gb Free Space | 64.28% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 465.62 Gb Free Space | 99.97% Space Free | Partition Type: NTFS
Drive E: | 931.51 Gb Total Space | 110.01 Gb Free Space | 11.81% Space Free | Partition Type: NTFS

Computer Name: CHRISTIAN-PC | User Name: Christian | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/24 13:25:23 | 000,580,608 | ---- | M] (OldTimer Tools) -- E:\OTL.exe
PRC - [2011/02/25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/01/27 14:42:42 | 000,943,472 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2010/12/10 19:29:30 | 029,293,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Dragon Age\tools\toolssql\MSSQL.1\MSSQL\Binn\sqlservr.exe
PRC - [2010/08/04 17:22:12 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\ASTSRV.EXE
PRC - [2010/07/21 11:51:43 | 000,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2009/12/28 21:35:30 | 000,629,888 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AASP\1.01.02\aaCenter.exe
PRC - [2009/01/22 20:43:54 | 001,352,704 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe


========== Modules (SafeList) ==========

MOD - [2011/03/24 13:25:23 | 000,580,608 | ---- | M] (OldTimer Tools) -- E:\OTL.exe
MOD - [2010/11/20 07:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/03/20 09:09:12 | 001,431,888 | ---- | M] (Flexera Software, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2010/12/13 15:37:16 | 000,194,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS64.exe -- (MSCamSvc)
SRV:64bit: - [2010/11/25 11:24:26 | 000,639,488 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\GenArts\Monsters-OFX64\bin\FlowFinder3MonstersOFX64.exe -- (FlowFinder3MonstersOFX64)
SRV:64bit: - [2010/10/27 19:21:12 | 000,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV:64bit: - [2010/10/21 10:38:38 | 005,790,064 | ---- | M] (Wacom Technology, Corp.) [Disabled | Stopped] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2010/10/21 10:38:38 | 000,487,280 | ---- | M] (Wacom Technology, Corp.) [Disabled | Stopped] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/08/24 18:30:04 | 000,096,768 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Autodesk\mrsat3.8.1-maya2011\bin\raysat2011server.exe -- (RaySat2011Server)
SRV:64bit: - [2010/03/10 01:38:18 | 000,086,016 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe -- (mi-raysat_3dsmax2011_64)
SRV:64bit: - [2009/12/24 08:55:30 | 002,430,304 | ---- | M] (Diskeeper Corporation) [Disabled | Stopped] -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011/03/17 20:35:44 | 003,229,784 | ---- | M] () [Auto | Running] -- c:\Program Files (x86)\Common Files\Akamai\netsession_win_d76cf65.dll -- (Akamai)
SRV - [2011/02/28 19:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2011/02/23 01:17:26 | 000,378,984 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/02/02 14:08:16 | 000,018,656 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2010/12/11 02:00:40 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\srvany.exe -- (KMService)
SRV - [2010/12/10 19:29:30 | 029,293,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Dragon Age\tools\toolssql\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$BWDATOOLSET) SQL Server (BWDATOOLSET)
SRV - [2010/11/25 11:10:06 | 000,393,216 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\GenArts\Monsters-OFX64\bin\JawsServerOFX64.exe -- (JawsServerOFX64)
SRV - [2010/11/20 08:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/11/20 08:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010/11/20 08:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010/10/27 19:24:40 | 001,974,080 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/10/27 19:21:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/10/22 14:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/08/04 17:22:12 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\ASTSRV.EXE -- (astcc)
SRV - [2010/07/21 11:51:43 | 000,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010/06/03 12:13:04 | 001,540,096 | ---- | M] (Reprise Software Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\GenArts\rlm\rlm.exe -- (RLM-GenArts)
SRV - [2010/04/29 20:33:47 | 002,480,048 | ---- | M] (Acronis) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2010/04/16 12:34:22 | 001,045,256 | ---- | M] (Acresso Software Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/04/14 16:43:03 | 000,079,360 | ---- | M] (Creative Labs) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/10 02:10:38 | 000,086,016 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Autodesk\3ds Max Design 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe -- (mi-raysat_3dsmax2011_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/12/23 17:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Disabled | Stopped] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009/12/15 16:07:16 | 000,025,832 | ---- | M] (BioWare) [Disabled | Stopped] -- C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2009/12/15 06:55:32 | 000,034,816 | ---- | M] (3d-io GmbH) [Disabled | Stopped] -- C:\Program Files (x86)\3d-io plugins\licensing_v2\ActiveLockServerV2.exe -- (3d-io License Server v2.0)
SRV - [2009/11/12 03:50:24 | 000,894,136 | ---- | M] (Acronis) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2009/09/17 08:06:00 | 001,246,496 | ---- | M] (SafeNet, Inc) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe -- (SentinelProtectionServer)
SRV - [2009/09/17 02:03:00 | 000,369,952 | ---- | M] (SafeNet, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe -- (SentinelKeysServer)
SRV - [2009/09/17 02:00:02 | 000,292,128 | ---- | M] (SafeNet, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe -- (SentinelSecurityRuntime)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/02/23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Disabled | Stopped] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2007/11/20 11:52:30 | 000,045,700 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\cebas\ip-clamp\ipclamp.exe -- (IPClampService)
SRV - [2007/10/24 16:43:48 | 000,139,268 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\DCPFLICS\DCPFLICS.exe -- (DCPFLICS)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/02/08 02:06:42 | 000,056,968 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\networx.sys -- (networx)
DRV:64bit: - [2011/01/23 21:52:47 | 000,513,080 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2011/01/01 01:37:51 | 000,053,312 | ---- | M] (microOLAP Technologies LTD) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pssdk42.sys -- (PSSDK42)
DRV:64bit: - [2010/12/13 15:37:18 | 000,036,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nx6000.sys -- (MSHUSBVideo)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 09:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 09:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 07:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/10/23 14:16:24 | 000,082,048 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2010/10/05 14:26:10 | 000,018,288 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor)
DRV:64bit: - [2010/10/05 14:26:02 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV:64bit: - [2010/10/05 14:26:00 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/04/29 20:33:48 | 000,251,488 | ---- | M] (Acronis) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\afcdp.sys -- (afcdp)
DRV:64bit: - [2010/04/29 20:33:46 | 001,477,728 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tdrpm258.sys -- (tdrpman258) Acronis Try&Decide and Restore Points filter (build 258)
DRV:64bit: - [2010/04/29 20:33:43 | 000,943,712 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\timntr.sys -- (timounter)
DRV:64bit: - [2010/04/29 20:33:34 | 000,257,120 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\snapman.sys -- (snapman)
DRV:64bit: - [2010/04/14 16:24:05 | 000,716,800 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr7364.sys -- (netr7364)
DRV:64bit: - [2010/03/22 13:11:12 | 000,049,752 | ---- | M] (Sunbelt Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\sbredrv.sys -- (SBRE)
DRV:64bit: - [2009/12/10 14:48:44 | 000,051,120 | ---- | M] (Diskeeper Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DKRtWrt.sys -- (DKRtWrt)
DRV:64bit: - [2009/12/03 07:00:00 | 000,103,224 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\WibuKey64.sys -- (WIBUKEY)
DRV:64bit: - [2009/09/17 08:05:02 | 000,145,448 | ---- | M] (SafeNet, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\sentinel64.sys -- (Sentinel64)
DRV:64bit: - [2009/09/11 12:49:18 | 000,076,552 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV:64bit: - [2009/09/11 12:49:08 | 000,015,880 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV:64bit: - [2009/09/11 12:48:58 | 000,036,872 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmHidLo.sys -- (WmHidLo)
DRV:64bit: - [2009/09/11 12:48:46 | 000,041,096 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV:64bit: - [2009/09/11 12:48:36 | 000,026,248 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV:64bit: - [2009/07/16 11:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/10 11:14:36 | 000,043,264 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SaiBus.sys -- (SaiNtBus)
DRV:64bit: - [2009/06/10 11:14:36 | 000,016,000 | ---- | M] (Saitek) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SaiMini.sys -- (SaiMini)
DRV:64bit: - [2009/06/04 02:49:58 | 001,561,112 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ha20x2k.sys -- (ha20x2k)
DRV:64bit: - [2009/06/04 02:49:42 | 000,118,296 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\emupia2k.sys -- (emupia)
DRV:64bit: - [2009/06/04 02:49:34 | 000,213,016 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV:64bit: - [2009/06/04 02:49:26 | 000,015,896 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV:64bit: - [2009/06/04 02:49:18 | 000,179,224 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctoss2k.sys -- (ossrv)
DRV:64bit: - [2009/06/04 02:49:08 | 000,684,312 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV:64bit: - [2009/06/04 02:49:00 | 000,580,632 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctac32k.sys -- (ctac32k)
DRV:64bit: - [2009/06/04 02:48:50 | 001,417,240 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CTEXFIFX.sys -- (CTEXFIFX.SYS)
DRV:64bit: - [2009/06/04 02:48:50 | 001,417,240 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTEXFIFX.sys -- (CTEXFIFX)
DRV:64bit: - [2009/06/04 02:48:38 | 000,094,744 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CTHWIUT.sys -- (CTHWIUT.SYS)
DRV:64bit: - [2009/06/04 02:48:38 | 000,094,744 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTHWIUT.sys -- (CTHWIUT)
DRV:64bit: - [2009/06/04 02:48:30 | 000,202,776 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CT20XUT.sys -- (CT20XUT.SYS)
DRV:64bit: - [2009/06/04 02:48:30 | 000,202,776 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CT20XUT.sys -- (CT20XUT)
DRV:64bit: - [2009/04/08 14:28:46 | 000,068,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2008/10/22 14:48:40 | 000,131,584 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SaiKCB03.sys -- (SaiKCB03)
DRV:64bit: - [2007/05/01 15:48:56 | 000,171,144 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SaiH5F0D.sys -- (SaiH5F0D)
DRV:64bit: - [2007/05/01 15:48:56 | 000,034,304 | ---- | M] (Saitek) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SaiU5F0D.sys -- (SaiU5F0D)
DRV - [2010/10/07 14:34:32 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?l...en-ca&OCID=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 10 A2 F2 A8 91 26 CB 01 [binary data]
IE - HKCU\..\URLSearchHook: {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.90
FF - prefs.js..extensions.enabledItems: {01A8CA0A-4C96-465b-A49B-65C46FAD54F9}:6.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24


FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/04/26 10:22:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010/05/01 17:07:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2010/12/04 17:44:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/03/18 09:45:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/03/22 12:43:18 | 000,000,000 | ---D | M]

[2010/05/22 00:29:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christian\AppData\Roaming\Mozilla\Extensions
[2010/05/22 00:29:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christian\AppData\Roaming\Mozilla\Extensions\[email protected]
[2011/03/18 11:18:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\zd7edhc1.default\extensions
[2010/05/21 22:57:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\zd7edhc1.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2011/03/16 20:34:13 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\zd7edhc1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/09/11 15:28:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\zd7edhc1.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010/09/28 23:39:14 | 000,002,333 | ---- | M] () -- C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\zd7edhc1.default\searchplugins\askcom.xml
[2011/03/07 12:34:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/04/16 17:51:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/16 10:11:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/10/18 20:15:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/03 11:20:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/07 12:34:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2010/12/04 17:44:23 | 000,000,000 | ---D | M] (Adobe Acrobat - Create PDF) -- C:\PROGRAM FILES (X86)\ADOBE\ACROBAT 10.0\ACROBAT\BROWSER\WCFIREFOXEXTN
[2010/05/01 17:07:55 | 000,000,000 | ---D | M] (Adobe Contribute Toolbar) -- C:\PROGRAM FILES (X86)\ADOBE\ADOBE CONTRIBUTE CS5\PLUGINS\FIREFOXPLUGIN\{01A8CA0A-4C96-465B-A49B-65C46FAD54F9}
[2010/03/27 18:06:04 | 000,067,032 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npContribute.dll
[2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/07/31 13:06:48 | 001,654,784 | ---- | M] (LizardTech) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdjvu.dll
[2010/12/04 17:11:43 | 000,072,960 | ---- | M] (Foxit Software Company) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
[2010/12/09 06:47:06 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll

O1 HOSTS File: ([2011/01/18 20:00:42 | 000,002,395 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 28 more lines...
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O4 - HKLM..\Run: [] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Search Using Copernic Agent - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O8 - Extra context menu item: Search Using Copernic Agent - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O9 - Extra 'Tools' menuitem : Launch Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files (x86)\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files (x86)\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} http://cdn.scan.onec...a/wlscctrl2.cab (Windows Live OneCare safety scanner control)
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} http://das.microsoft...tail/DASAct.cab (DASWebDownload Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2_04)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx2.hotmail....NPUplden-ca.cab (Windows Live Hotmail Photo Upload Tool)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...15111/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files (x86)\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/02/08 11:24:10 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{f5b5875c-3e85-11e0-8fc3-0023540784db}\Shell - "" = AutoRun
O33 - MountPoints2\{f5b5875c-3e85-11e0-8fc3-0023540784db}\Shell\AutoRun\command - "" = N:\LaunchU3.exe -a
O33 - MountPoints2\M\Shell - "" = AutoRun
O33 - MountPoints2\M\Shell\AutoRun\command - "" = M:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/03/24 12:09:45 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/03/24 11:05:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live Safety Center
[2011/03/24 08:34:50 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{E4FB4CB2-AAB3-46B2-9001-CD103DDEA29B}
[2011/03/23 20:24:46 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{0F508BD1-09BA-45AE-A9F8-B0AAF5B3651A}
[2011/03/23 14:15:34 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Roaming\Malwarebytes
[2011/03/23 14:15:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/03/23 14:15:26 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/03/23 08:21:47 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{85D34C98-46F0-44B4-8E9F-598044E221C0}
[2011/03/22 08:04:08 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{7554D0F0-8115-40D7-BC57-AEF4F8BEEF29}
[2011/03/21 10:19:47 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Left 4 Dead 2
[2011/03/20 20:54:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Sandlot Games
[2011/03/20 13:26:07 | 000,000,000 | ---D | C] -- C:\ProgramData\CELSYS
[2011/03/20 13:25:55 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Roaming\Smith Micro
[2011/03/20 13:23:39 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\Smith Micro
[2011/03/20 13:23:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Manga Studio EX 4.0
[2011/03/20 13:23:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Smith Micro
[2011/03/20 10:30:52 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{C32C9C14-AA6D-4392-A349-74DB8BE84260}
[2011/03/20 09:27:29 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\Inventor Server x64 AutoCAD 2012 Language Pack - English
[2011/03/19 10:30:14 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{F1F42B8F-418E-46F5-A72A-B88602DAC8D2}
[2011/03/18 22:29:49 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{F46E6B21-0F2F-4B71-A95A-DD86A260D0B2}
[2011/03/18 21:13:08 | 000,067,176 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/03/18 21:13:08 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011/03/17 10:11:36 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{DB2D40F6-AF8F-4FCB-BF02-C4A049D1987A}
[2011/03/17 08:03:03 | 000,000,000 | ---D | C] -- C:\Users\Christian\Desktop\Games
[2011/03/16 10:10:59 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{AD933EFD-88CC-484F-8116-5974435575C1}
[2011/03/16 08:11:47 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\AnyDVDHD
[2011/03/16 08:11:37 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2011/03/15 10:10:20 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{2695689E-11F2-4BD9-9B84-6DFC8DB07EE4}
[2011/03/14 10:09:43 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{48B51C04-A5E0-4B16-9C77-4D5E9319AA30}
[2011/03/13 22:09:20 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{C00B0EBB-0F44-45F6-83F6-2E63CC694E5B}
[2011/03/13 10:08:56 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{0D0216C4-A537-47B1-B4B8-F0312942D794}
[2011/03/12 13:57:20 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{EFF181DA-E091-404F-AE7B-6BA4898F03BB}
[2011/03/10 21:18:27 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2011/03/10 21:18:13 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2011/03/10 21:18:13 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2011/03/10 21:18:12 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2011/03/10 21:18:10 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2011/03/10 21:18:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011
[2011/03/10 21:17:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2011
[2011/03/10 13:56:20 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{3DC8DBF1-3956-4FE8-A284-FA9D85C5646E}
[2011/03/10 01:55:55 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{6B68A972-FFBB-4A2E-96BA-FAAFECE1559A}
[2011/03/09 14:47:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dragon Age 2
[2011/03/09 13:55:31 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{4B9B5F71-D20E-4E86-A6CA-C9E1D43DAF08}
[2011/03/09 01:54:39 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{9F87C919-B2D3-4B2D-A92A-0557A8603ECC}
[2011/03/08 13:40:32 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{A85C7F85-D231-4000-B7C4-6DC20C30061E}
[2011/03/08 12:15:04 | 000,049,752 | ---- | C] (Sunbelt Software) -- C:\Windows\SysNative\drivers\sbredrv.sys
[2011/03/08 12:15:04 | 000,027,472 | ---- | C] (Sunbelt Software) -- C:\Windows\SysNative\sbbd.exe
[2011/03/07 23:28:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2011/03/07 23:28:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2011/03/07 13:38:34 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{9924FC65-1A9A-4FBC-B32D-1E012E5AE7E5}
[2011/03/07 01:38:02 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{E2BFD0BA-F219-4ED2-BA4B-129CA34C25F7}
[2011/03/06 18:22:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011/03/06 18:21:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011/03/06 18:15:03 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011/03/06 18:14:30 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011/03/06 11:34:51 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{89B0D055-64AE-4672-9746-7178D4F95E39}
[2011/03/05 09:07:11 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{31634AE0-E2E0-4BCD-9713-D745EBD6094E}
[2011/03/04 21:06:46 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{959BD7F2-325D-479F-BA58-F65C641E231D}
[2011/03/04 17:21:19 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Roaming\AVS4YOU
[2011/03/04 17:20:39 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/04 17:19:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2011/03/04 17:19:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVSMedia
[2011/03/04 17:19:44 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2011/03/04 17:19:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVS4YOU
[2011/03/04 17:16:12 | 000,000,000 | ---D | C] -- C:\ProgramData\yCtSvaYGuPFv
[2011/03/04 09:06:16 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{1EC6F44A-5980-4581-AF94-B1F83F53A085}
[2011/03/03 20:23:56 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{A36BFDB7-3457-4552-B018-8729C55120A1}
[2011/03/03 08:23:23 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{3F66A1EF-E430-499F-A509-EBF37563AAC2}
[2011/03/03 02:20:09 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\Toon Boom Animate Pro Library
[2011/03/03 00:32:37 | 000,000,000 | ---D | C] -- C:\Users\Christian\Impostazioni locali
[2011/03/02 15:31:10 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{C6947935-687F-4A11-8006-108CA852B268}
[2011/03/02 03:30:43 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{660CC4DB-BA72-416D-A06B-A8D68A578914}
[2011/03/01 16:27:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3 Player Utilities 4.15
[2011/03/01 16:27:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MP3 Player Utilities 4.15
[2011/03/01 13:17:11 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{FD6F6030-6390-47B3-942F-B77B0C078287}
[2011/03/01 01:28:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LooksBuilder
[2011/02/28 11:09:25 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{01D28586-DF9C-4777-8222-D14A1EEBB812}
[2011/02/27 23:08:59 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{751BA857-5EB5-4C2F-AB48-AC30B66E6B89}
[2011/02/27 22:59:54 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bamboo
[2011/02/27 09:37:23 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{0B20B71B-E8E8-42ED-BAC6-A7D76F24C3E5}
[2011/02/26 18:06:25 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{01D1F61B-2313-47FA-BBAD-EE95BD0B8745}
[2011/02/26 17:50:57 | 000,000,000 | ---D | C] -- C:\Users\Christian\AppData\Local\{96BDCD7E-76B6-43B0-8E71-F437CD74EE03}
[2011/02/26 17:50:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Feedback Tool
[2011/02/26 17:48:18 | 000,000,000 | ---D | C] -- C:\Windows\en
[2011/02/26 17:40:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2011/02/26 01:33:24 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\Mari
[2011/02/26 01:33:24 | 000,000,000 | ---D | C] -- C:\Users\Christian\.mari
[2011/02/26 01:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\Mari1.2v1
[2011/02/25 21:26:58 | 000,592,803 | ---- | C] ( ) -- C:\Users\Christian\Desktop\CDRun_EN.exe
[2011/02/25 16:11:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Keyboard
[2011/02/25 16:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliType Pro
[2011/02/25 16:04:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cooler Master
[2011/02/25 16:04:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cooler Master
[2011/02/25 15:57:04 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\Inferno
[2011/02/24 12:08:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mayer-Johnson
[2011/02/24 12:07:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Boardmaker with SD Pro
[2011/02/24 12:07:42 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Boardmaker Software Family
[2011/02/24 10:46:01 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2011/02/23 22:00:24 | 000,000,000 | ---D | C] -- C:\Users\Christian\Documents\My Boards
[2010/10/23 14:16:24 | 000,082,048 | ---- | C] (VSO Software) -- C:\Users\Christian\AppData\Roaming\pcouffin.sys
[2009/06/04 00:57:38 | 000,060,928 | ---- | C] ( ) -- C:\Windows\SysWow64\a3d.dll
[2009/06/04 00:32:54 | 000,012,800 | ---- | C] ( ) -- C:\Windows\SysWow64\killapps.exe
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/03/24 13:01:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/03/24 12:03:14 | 000,016,000 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/24 12:03:14 | 000,016,000 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/24 12:00:19 | 001,018,914 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/03/24 12:00:19 | 000,835,738 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/03/24 12:00:19 | 000,188,122 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/03/24 11:54:30 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/03/24 11:53:18 | 000,000,312 | -HS- | M] () -- C:\Windows\tasks\rhuaqihk.job
[2011/03/24 11:52:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/03/24 11:52:18 | 3220,086,784 | -HS- | M] () -- C:\hiberfil.sys
[2011/03/24 11:51:31 | 000,062,788 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000005-00000000-00000007-00001102-00000005-00211102}.rfx
[2011/03/24 11:51:31 | 000,062,788 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000005-00000000-00000007-00001102-00000005-00211102}.rfx
[2011/03/24 11:51:31 | 000,000,788 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000005-00000000-00000007-00001102-00000005-00211102}.rfx
[2011/03/24 11:48:48 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/03/24 08:59:00 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011/03/24 08:59:00 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2011/03/23 20:59:18 | 001,027,752 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/03/23 12:16:03 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\SBRC.dat
[2011/03/23 10:57:05 | 000,093,696 | RHS- | M] () -- C:\Windows\SysWow64\xmltokg.dll
[2011/03/22 08:01:04 | 005,076,488 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/03/18 18:46:46 | 000,000,136 | ---- | M] () -- C:\Users\Christian\Desktop\Ratatouille Demo - Shortcut.lnk
[2011/03/18 17:27:55 | 000,005,120 | ---- | M] () -- C:\Users\Christian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/16 07:58:46 | 000,000,081 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011/03/15 04:31:40 | 000,000,336 | ---- | M] () -- C:\Windows\SysWow64\CountBlockedByFirewall.XML
[2011/03/14 21:20:42 | 001,889,498 | ---- | M] () -- C:\Users\Christian\Desktop\Circuit[1].pdf
[2011/03/10 21:18:06 | 000,002,209 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
[2011/03/10 21:18:06 | 000,002,191 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
[2011/03/09 21:41:49 | 000,000,438 | ---- | M] () -- C:\Windows\SysWow64\WSCConfig.xml
[2011/03/09 21:41:48 | 000,018,662 | ---- | M] () -- C:\Windows\SysWow64\FirewallConfig.xml
[2011/03/09 21:41:48 | 000,001,110 | ---- | M] () -- C:\Windows\SysWow64\ServiceConfig.xml
[2011/03/07 23:28:53 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011/03/07 23:22:33 | 000,000,124 | ---- | M] () -- C:\Users\Christian\Documents\ax_files.xml
[2011/03/04 17:19:58 | 000,001,237 | ---- | M] () -- C:\Users\Christian\Desktop\AVS Video Converter.lnk
[2011/02/26 18:04:01 | 000,001,437 | ---- | M] () -- C:\Users\Christian\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/02/26 17:53:04 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/02/26 17:53:03 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2011/02/24 12:08:48 | 000,001,070 | ---- | M] () -- C:\Users\Public\Desktop\AdaptedLearning.lnk
[2011/02/24 12:08:41 | 000,001,940 | ---- | M] () -- C:\Users\Public\Desktop\Boardmaker with SD Pro v6 Demo.LNK
[2011/02/24 10:46:01 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2011/02/23 04:28:00 | 000,067,176 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/02/23 04:28:00 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011/02/23 04:28:00 | 000,007,621 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/03/24 08:56:39 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011/03/24 08:56:39 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2011/03/23 20:59:41 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/03/23 12:16:03 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\SBRC.dat
[2011/03/23 10:57:05 | 000,093,696 | RHS- | C] () -- C:\Windows\SysWow64\xmltokg.dll
[2011/03/23 10:57:05 | 000,000,312 | -HS- | C] () -- C:\Windows\tasks\rhuaqihk.job
[2011/03/18 18:46:46 | 000,000,136 | ---- | C] () -- C:\Users\Christian\Desktop\Ratatouille Demo - Shortcut.lnk
[2011/03/15 04:31:40 | 000,000,336 | ---- | C] () -- C:\Windows\SysWow64\CountBlockedByFirewall.XML
[2011/03/14 21:20:42 | 001,889,498 | ---- | C] () -- C:\Users\Christian\Desktop\Circuit[1].pdf
[2011/03/10 21:18:06 | 000,002,209 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
[2011/03/10 21:18:06 | 000,002,191 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
[2011/03/10 21:18:01 | 000,002,203 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011
[2011/03/09 21:41:49 | 000,000,438 | ---- | C] () -- C:\Windows\SysWow64\WSCConfig.xml
[2011/03/09 21:41:47 | 000,001,110 | ---- | C] () -- C:\Windows\SysWow64\ServiceConfig.xml
[2011/03/09 21:41:46 | 000,018,662 | ---- | C] () -- C:\Windows\SysWow64\FirewallConfig.xml
[2011/03/07 23:28:53 | 000,001,950 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2011/03/06 18:17:54 | 000,095,744 | ---- | C] () -- C:\Windows\SysNative\RDVGHelper.exe
[2011/03/06 18:17:07 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011/03/06 18:14:02 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011/03/06 18:13:34 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011/03/06 18:13:34 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011/03/06 18:13:02 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc
[2011/03/06 18:13:02 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011/03/04 17:19:58 | 000,001,237 | ---- | C] () -- C:\Users\Christian\Desktop\AVS Video Converter.lnk
[2011/02/26 17:53:04 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/02/26 17:53:03 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/02/24 12:08:48 | 000,001,070 | ---- | C] () -- C:\Users\Public\Desktop\AdaptedLearning.lnk
[2011/02/24 12:08:41 | 000,001,940 | ---- | C] () -- C:\Users\Public\Desktop\Boardmaker with SD Pro v6 Demo.LNK
[2011/02/23 21:25:31 | 000,000,081 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011/02/18 17:29:08 | 000,000,187 | ---- | C] () -- C:\ProgramData\{DBA95D57-EA1E-4EC4-8018-ED2556560AC1}_WiseFW.ini
[2011/02/18 17:26:26 | 000,000,205 | ---- | C] () -- C:\ProgramData\{44D4A549-ED93-452B-902E-735CB5794756}_WiseFW.ini
[2011/02/18 00:19:48 | 000,073,220 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2011/02/18 00:19:48 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2011/02/18 00:19:48 | 000,029,114 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2011/02/18 00:19:48 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2011/02/18 00:19:48 | 000,021,021 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2011/02/18 00:19:48 | 000,015,670 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2011/02/18 00:19:48 | 000,013,280 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2011/02/18 00:19:48 | 000,010,673 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2011/02/18 00:19:48 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2011/02/18 00:19:48 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2011/02/18 00:19:48 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2011/02/18 00:19:48 | 000,001,137 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2011/02/18 00:19:48 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2011/02/18 00:19:48 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2011/02/18 00:19:48 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2011/02/18 00:19:48 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2011/02/18 00:18:55 | 000,000,071 | ---- | C] () -- C:\Windows\EPNX110.ini
[2011/02/15 11:13:52 | 000,034,308 | ---- | C] () -- C:\ProgramData\mazuki.dll
[2011/02/11 04:32:50 | 000,000,132 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/01/29 16:10:52 | 000,052,265 | ---- | C] () -- C:\Windows\MaxwellMaxPluginUninstall.exe
[2011/01/23 21:44:58 | 000,000,000 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\chrtmp
[2011/01/14 15:33:07 | 000,052,373 | ---- | C] () -- C:\Windows\MaxwellMayaPluginUninstall.exe
[2010/12/30 13:00:01 | 000,005,120 | ---- | C] () -- C:\Users\Christian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/11 02:01:15 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe
[2010/12/02 12:17:15 | 000,061,493 | ---- | C] () -- C:\ProgramData\bdinstall.bin
[2010/11/26 03:38:28 | 000,000,207 | ---- | C] () -- C:\Windows\MSUTIL.INI
[2010/10/23 14:17:50 | 000,000,014 | ---- | C] () -- C:\Windows\SysWow64\systeminfo3.dll
[2010/10/23 14:16:24 | 000,093,696 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\ezpinst.exe
[2010/10/23 14:16:24 | 000,007,176 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\pcouffin.cat
[2010/10/23 14:16:24 | 000,001,167 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\pcouffin.inf
[2010/10/14 02:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010/09/23 09:49:11 | 000,056,414 | ---- | C] () -- C:\Windows\RFMayaPluginUninstall.exe
[2010/09/23 09:48:23 | 000,056,732 | ---- | C] () -- C:\Windows\RFMaxPluginUninstall.exe
[2010/09/22 01:03:13 | 000,052,171 | ---- | C] () -- C:\Windows\RFC4DPluginUninstall.exe
[2010/09/10 19:33:33 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat
[2010/08/10 00:02:07 | 000,000,110 | ---- | C] () -- C:\ProgramData\{B688D716-6A1A-47F7-9734-11A24071909A}_WiseFW.ini
[2010/08/09 23:57:00 | 000,000,110 | ---- | C] () -- C:\ProgramData\{22D3D528-C34C-4AB7-B16A-C1F627166C4E}_WiseFW.ini
[2010/08/09 23:54:29 | 000,000,110 | ---- | C] () -- C:\ProgramData\{5234D1A7-1C23-42D1-B894-58A6384680ED}_WiseFW.ini
[2010/08/09 23:23:37 | 000,000,187 | ---- | C] () -- C:\ProgramData\{092C0736-ED4A-46A6-96CF-1DCC5C6FB11D}_WiseFW.ini
[2010/08/09 23:22:02 | 000,000,187 | ---- | C] () -- C:\ProgramData\{DA16098E-E65E-46CC-9E45-26EE862C5845}_WiseFW.ini
[2010/08/09 23:08:37 | 000,000,208 | ---- | C] () -- C:\ProgramData\{6BC52438-5DE4-4102-846E-64C225A0A04E}_WiseFW.ini
[2010/08/03 09:27:00 | 000,109,782 | ---- | C] () -- C:\Windows\CopernicAgentUninstall.exe
[2010/08/01 23:04:11 | 000,000,102 | ---- | C] () -- C:\Windows\Antidote7.ini
[2010/07/28 10:13:58 | 000,000,036 | -H-- | C] () -- C:\Users\Christian\AppData\Roaming\swk.ini
[2010/07/21 11:51:43 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2010/07/08 10:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe
[2010/05/18 16:36:55 | 000,667,136 | ---- | C] () -- C:\Windows\SysWow64\OGACheckControl.dll
[2010/05/13 17:24:28 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\xmltok.dll
[2010/05/13 17:24:28 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\xmlparse.dll
[2010/05/12 16:11:31 | 000,222,757 | ---- | C] () -- C:\Windows\hpwins24.dat
[2010/05/12 16:11:31 | 000,001,832 | ---- | C] () -- C:\Windows\hpwmdl24.dat
[2010/05/11 16:48:24 | 000,534,016 | ---- | C] () -- C:\Windows\SysWow64\LS3Renderer.dll
[2010/04/28 13:58:45 | 001,048,576 | ---- | C] () -- C:\Windows\2102.BIN
[2010/04/26 10:20:07 | 000,023,145 | ---- | C] () -- C:\Windows\hpqins15.dat
[2010/04/20 09:33:20 | 000,215,128 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010/04/20 09:33:07 | 002,506,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2010/04/20 09:33:07 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010/04/17 14:54:40 | 000,221,380 | ---- | C] () -- C:\Windows\hpoins19.dat
[2010/04/17 14:54:40 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2010/04/17 11:14:08 | 001,027,752 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/04/15 11:41:49 | 000,000,025 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\bdfvconp.ini
[2010/04/14 16:41:47 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2010/04/14 16:41:47 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2010/04/14 16:34:23 | 000,013,368 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsUpIO.sys
[2010/04/14 16:31:39 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2010/04/14 16:31:39 | 000,013,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010/04/14 16:31:36 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010/04/14 16:31:36 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010/04/14 16:24:23 | 000,200,704 | ---- | C] () -- C:\Windows\SysWow64\UpdateDriver.exe
[2010/04/14 16:24:23 | 000,005,224 | ---- | C] () -- C:\Windows\SysWow64\ucuiinfo.ini
[2010/03/12 18:25:10 | 000,057,344 | R--- | C] () -- C:\Windows\SysWow64\XSIChooser.exe
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/06/04 01:37:08 | 000,021,093 | ---- | C] () -- C:\Windows\SysWow64\instwdm.ini
[2009/06/04 01:37:06 | 000,000,054 | ---- | C] () -- C:\Windows\SysWow64\ctzapxx.ini
[2009/06/04 00:55:20 | 000,002,560 | ---- | C] () -- C:\Windows\SysWow64\CTXFIRES.DLL
[2009/06/04 00:40:44 | 000,321,512 | ---- | C] () -- C:\Windows\SysWow64\ctdlang.dat
[2009/06/04 00:40:44 | 000,056,509 | ---- | C] () -- C:\Windows\SysWow64\ctdnlstr.dat
[2009/06/04 00:33:04 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\enlocstr.exe
[2009/05/27 09:49:00 | 000,000,285 | ---- | C] () -- C:\Windows\SysWow64\kill.ini
[2006/03/06 11:41:02 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\AMV_DecDLL.dll
[2004/09/16 14:26:40 | 000,012,634 | ---- | C] () -- C:\Windows\SysWow64\drivers\ADFUUD.SYS
[2004/09/16 14:26:40 | 000,012,634 | ---- | C] () -- C:\Windows\ADFUUD.SYS

========== LOP Check ==========

[2010/04/21 19:24:00 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\2K Sports
[2011/03/17 15:52:41 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Ace
[2010/04/29 20:41:54 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Acronis
[2010/05/20 01:17:31 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Activision
[2011/03/20 09:58:42 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Autodesk
[2010/05/21 22:56:51 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Azureus
[2010/12/31 17:16:08 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Blender Foundation
[2010/06/07 04:28:03 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/04/15 08:22:02 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/08/03 09:28:55 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Copernic
[2010/04/16 15:25:59 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\DAEMON Tools Lite
[2010/04/21 18:16:34 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\DAEMON Tools Pro
[2011/02/17 04:23:08 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\DesktopCockpit
[2010/06/01 10:50:41 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Dragon Age Toolset
[2010/08/01 23:03:14 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Druide
[2011/02/08 21:32:47 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\e-on software
[2010/11/09 01:28:25 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Embarcadero
[2011/03/06 16:39:26 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Epson
[2011/02/10 15:58:46 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\eyeon
[2010/04/26 10:12:49 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Fallout 3
[2010/08/19 15:56:10 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Farm Mania 2
[2010/10/06 14:48:18 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Firaxis
[2011/01/29 01:39:24 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\foobar2000
[2010/12/04 17:11:59 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Foxit
[2010/12/03 17:54:04 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Free PDF Tablet
[2010/05/13 15:20:09 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Leadertech
[2011/02/10 12:09:35 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Luxology
[2010/08/24 10:26:06 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Mask Pro 4.0
[2010/09/18 19:07:17 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\MAXON
[2010/12/07 15:42:31 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\mentalimages
[2010/05/22 00:28:27 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\MusicNet
[2010/08/24 10:31:44 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\onOne Software
[2010/04/14 17:15:34 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Opera
[2011/02/19 10:41:01 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\PACE Anti-Piracy
[2011/02/19 18:13:53 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Pixar
[2010/12/02 12:17:51 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\QuickScan
[2010/07/08 10:08:30 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\ResourceCentral.E6E1B28A311BC518DB6C6883EA3757FDE0E90ADC.1
[2011/01/09 11:25:14 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Rovio
[2010/07/13 01:53:01 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\SecondLife
[2010/10/24 20:22:31 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\SmartDraw
[2011/03/20 13:25:55 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Smith Micro
[2010/05/01 21:11:26 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010/10/25 09:43:38 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\TechSmith
[2011/01/24 18:09:38 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Toon Boom Animation
[2011/02/21 22:09:46 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\TopoGun64
[2010/11/11 17:04:18 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\TuneUp Software
[2010/09/10 16:10:41 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Tunngle
[2011/02/19 10:42:39 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Unity
[2010/10/23 14:17:26 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Vso
[2010/12/17 17:54:45 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\Wacom
[2010/12/17 17:54:48 | 000,000,000 | ---D | M] -- C:\Users\Christian\AppData\Roaming\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1
[2010/08/03 09:28:48 | 000,000,431 | ---- | M] () -- C:\Windows\Tasks\1 Copernic Intra-Daily ~Christian-PC Christian.job
[2010/08/03 09:28:48 | 000,000,407 | ---- | M] () -- C:\Windows\Tasks\2 Copernic Daily ~Christian-PC Christian.job
[2010/08/03 09:28:48 | 000,000,412 | ---- | M] () -- C:\Windows\Tasks\3 Copernic Weekly ~Christian-PC Christian.job
[2010/08/03 09:28:48 | 000,000,417 | ---- | M] () -- C:\Windows\Tasks\4 Copernic Monthly ~Christian-PC Christian.job
[2011/03/24 11:53:18 | 000,000,312 | -HS- | M] () -- C:\Windows\Tasks\rhuaqihk.job
[2011/02/24 11:26:40 | 000,032,554 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 24 bytes -> C:\Windows:198520D0444529C2
@Alternate Data Stream - 1333 bytes -> C:\ProgramData\Microsoft:Y4I2wMyQjyb7bCgJqaBn15q
@Alternate Data Stream - 1296 bytes -> C:\ProgramData\Microsoft:e7N9jVtOAtL4Sb90xnxPDPjL
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:9857FAE3
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:C8B8CEBD
@Alternate Data Stream - 1173 bytes -> C:\Users\Christian\AppData\Local\Temp:2iCGoWPvbBDiVIB3Ny0CWFts
@Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:459B4633

< End of report >

Edited by christhobald, 26 March 2011 - 08:57 AM.

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP