Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Trojan, hijackers, spyware, adware


  • This topic is locked This topic is locked

#16
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
It said it would show results after reboot. I never saw any results. It didn't say there were any problems detected while it was scanning, though.
  • 0

Advertisements


#17
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK so the memory is good, no apparent malware. When was the last time you defragmented your drive ?


Download and run Puran Disc Defragmenter

Again on completion let me know of any improvement
  • 0

#18
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
Last time I defragged was a few days ago, but I'm trying this one anyway.
  • 0

#19
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
What other symptoms do you have apart form high memory usage ?

Also when the memory usage is high can you open task manager and select processes and let me know which one is highest
  • 0

#20
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
That's the only symptom I have as far as I can tell. This browser is taking up the most memory, about 260mb. Then Defrag is about 114mb. Then the next one under that is only 33mb. Yet 1.09 GB are being used.
  • 0

#21
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
What is your main browser, as that is the initial suspect
  • 0

#22
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
Firefox. But when I close everything there's still 700mb of RAM being used, and it should be zero, or at least close to zero.

On a minor note, I still need help getting rid of yahoo toolbar and freecorder. Last night I started up a new firefox session and those things popped up, and all I can do is hide it.

On a second possibly minor note, I think I was scammed by the free version of STOPzilla (which I was referred to by an ad on this site) and it found all kinds of things (the things named in the title of this thread) and I'm not really sure if it was lying to get me to buy it or if I really am infested that badly. I was wondering if you could help me get rid of any trace of that too, because I saw its name listed in one of the last logs I posted to you. Also are you sure that the virus scanners we've used so far are the best there is? Is safe mode ever needed to really find out? I remember having to go to safe mode a lot when instructed on this forum, but I don't really remember what for. I'm just making sure, because there just has to be a virus on here somewhere.
  • 0

#23
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Run a fresh OTL log and select all users I will remove all signs of Yahoo and freecorder

Also Malwarebytes showed no sign of infection and I would use that over stopzilla any day. We have no control over which ads are displayed and we endorse no one programme

The tools I have used are the most effective at the moment, and none are reporting malware


This is my taskmanager - I have 3Gb of RAM and am just running a few programmes

  • 0

#24
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
I attached 2 screenshots. Shouldn't the ram being used in the processes add up to the ram being used in performance? I could've sworn that's always how it was. And I just tested Dead Space 2, and there is still a lot of lag during battles and the sound starts echoing. I've just been guessing that this can be attributed to the sudden suspiciously high ram usage plus the weird sound my hard drive is still making. Here's the OTL log.



OTL logfile created on: 6/23/2011 5:34:09 PM - Run 4
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\Matt\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.18 Gb Available Physical Memory | 58.79% Memory free
4.00 Gb Paging File | 2.65 Gb Available in Paging File | 66.26% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 233.76 Gb Total Space | 16.82 Gb Free Space | 7.19% Space Free | Partition Type: NTFS
Drive D: | 346.22 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: MATT-PC | User Name: Matt | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/21 14:31:47 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Matt\Downloads\OTL.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/05/25 02:09:14 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/04/14 12:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/04/01 05:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/03/28 16:15:40 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2011/03/28 16:15:30 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/03/28 16:15:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011/03/01 23:14:08 | 000,190,808 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2011/01/05 13:11:04 | 004,321,112 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AIM\aim.exe
PRC - [2008/12/19 14:17:24 | 000,333,088 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe


========== Modules (SafeList) ==========

MOD - [2011/06/21 14:31:47 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Matt\Downloads\OTL.exe
MOD - [2010/08/21 01:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/04/08 16:06:50 | 000,295,424 | ---- | M] (Puran Software) [Disabled | Stopped] -- C:\Windows\SysNative\PuranDefragS.exe -- (PuranDefrag)
SRV:64bit: - [2010/09/22 19:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/05/25 02:09:14 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/04/01 05:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/03/28 16:15:40 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/03/28 16:15:30 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/16 18:04:16 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011/05/25 02:09:17 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011/04/01 17:07:59 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011/04/01 17:07:59 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2011/04/01 05:07:54 | 004,184,672 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) Logitech HD Pro Webcam C910(UVC)
DRV:64bit: - [2011/04/01 05:06:22 | 000,341,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2011/04/01 05:04:32 | 000,023,904 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2011/03/10 04:19:06 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2011/03/10 04:19:04 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2011/02/04 19:02:46 | 000,034,120 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2010/12/07 15:39:32 | 000,187,912 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MAudioFastTrackPro.sys -- (MAUSBFASTTRACKPRO)
DRV:64bit: - [2010/09/23 01:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/05/07 19:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2010/05/07 19:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2009/12/17 18:25:17 | 000,034,472 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2009/08/09 17:25:45 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone)
DRV:64bit: - [2009/07/13 21:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 21:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:34:21 | 000,034,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\l260x64.sys -- (Atc002)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2007/10/24 04:00:00 | 000,053,488 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2007/02/03 11:30:58 | 000,058,528 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007/02/03 11:25:56 | 000,955,680 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CamDrL64.sys -- (CamDrL64) Logitech QuickCam Pro 3000(PID_08B0)
DRV:64bit: - [2005/03/29 02:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-208367613-3162222499-91438320-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-208367613-3162222499-91438320-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B8 57 9E 22 F8 2B CC 01 [binary data]
IE - HKU\S-1-5-21-208367613-3162222499-91438320-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.1.0.3
FF - prefs.js..extensions.enabledItems: [email protected]:3.3.3.2
FF - prefs.js..extensions.enabledItems: {1392b8d2-5c05-419f-a8f6-b9f15a596612}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://search.condui...d=CT1060933&q="


FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/06/16 14:22:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/06/16 14:19:25 | 000,000,000 | ---D | M]

[2011/01/05 19:59:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Extensions
[2011/06/23 15:27:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions
[2011/03/25 15:04:17 | 000,000,000 | ---D | M] (Freecorder Community Toolbar) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
[2011/06/23 02:57:10 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/03/25 15:04:17 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions\[email protected]
[2010/10/20 15:40:12 | 000,000,923 | ---- | M] () -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\searchplugins\conduit.xml
[2011/06/16 14:22:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/02/23 19:11:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\USERS\MATT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FOYI44H1.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\USERS\MATT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FOYI44H1.DEFAULT\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
[2011/04/14 12:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2011/02/23 19:11:44 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/06/23 13:56:53 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [M-Audio Taskbar Icon] C:\Windows\SysNative\M-AudioTaskBarIcon.exe (Avid Technology, Inc.)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-208367613-3162222499-91438320-1000..\Run: [Aim] C:\Program Files (x86)\AIM\aim.exe (AOL Inc.)
O4 - HKU\S-1-5-21-208367613-3162222499-91438320-1000..\Run: [Logitech Vid] C:\Program Files (x86)\Logitech\Vid HD\Vid.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-208367613-3162222499-91438320-1000..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKU\S-1-5-21-208367613-3162222499-91438320-1000..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-208367613-3162222499-91438320-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-208367613-3162222499-91438320-1003..\RunOnce: [mctadmin] File not found
O4 - Startup: C:\Users\Matt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMB Media Check Tool.lnk = C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKU\S-1-5-21-208367613-3162222499-91438320-1000\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKU\S-1-5-21-208367613-3162222499-91438320-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-208367613-3162222499-91438320-1003\Software\Policies\Microsoft\Internet Explorer\control panel present
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/18 20:00:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-208367613-3162222499-91438320-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2011/06/23 16:21:38 | 001,420,288 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranFD.exe
[2011/06/23 16:21:38 | 000,295,424 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDefragS.exe
[2011/06/23 16:21:38 | 000,292,352 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDC.exe
[2011/06/23 16:21:38 | 000,270,336 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDefrag.dll
[2011/06/23 16:21:38 | 000,132,608 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDefragBT.exe
[2011/06/23 16:21:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Puran Defrag
[2011/06/23 16:21:38 | 000,000,000 | ---D | C] -- C:\Program Files\Puran Defrag
[2011/06/23 15:26:53 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/06/23 14:03:48 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/06/23 13:35:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/06/23 13:35:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/06/23 13:35:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/06/23 13:35:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/06/21 17:52:07 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/06/20 18:56:41 | 000,607,310 | R--- | C] (Swearware) -- C:\Users\Matt\Desktop\dds.scr
[2011/06/20 18:48:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/06/20 18:48:29 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2011/06/20 18:48:29 | 000,083,120 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2011/06/20 18:48:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2011/06/20 18:48:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2011/06/20 18:19:38 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Matt\Desktop\HijackThis.exe
[2011/06/18 21:25:11 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\FatShark
[2011/06/18 20:56:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hamiltons Great Adventure
[2011/06/18 03:44:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2011/06/18 03:15:31 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\NPE
[2011/06/18 03:15:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2011/06/18 03:10:03 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\AIM
[2011/06/18 03:10:02 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\AOL
[2011/06/18 02:00:00 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\Adobe
[2011/06/17 23:17:44 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\SUPERAntiSpyware.com
[2011/06/16 18:09:18 | 000,607,310 | R--- | C] (Swearware) -- C:\Users\Matt\Desktop\dds.com
[2011/06/16 16:51:26 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\Yahoo!
[2011/06/16 14:29:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2011/06/16 01:09:30 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
[2011/06/16 01:09:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\iS3
[2011/06/15 22:45:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2011/06/15 22:35:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2011/06/14 23:12:07 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\Duke Nukem Forever
[2011/06/14 22:32:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911
[2011/06/13 21:56:57 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\{64CE9065-F746-487B-AC5E-E83A8AD54988}
[2011/06/11 22:35:24 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\GetRightToGo
[2011/06/11 22:35:24 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\Downloads
[2011/06/08 21:33:56 | 000,067,176 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/06/08 21:33:56 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011/06/08 19:26:01 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\EA Games
[2011/06/08 19:13:40 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\EA Games
[2011/06/08 13:58:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA Games
[2011/06/04 00:28:05 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2011/05/31 19:26:33 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\ElevatedDiagnostics

========== Files - Modified Within 30 Days ==========

[2011/06/23 17:10:22 | 000,053,850 | ---- | M] () -- C:\Users\Matt\Desktop\shot2.png
[2011/06/23 17:09:50 | 000,068,007 | ---- | M] () -- C:\Users\Matt\Desktop\shot1.png
[2011/06/23 16:36:45 | 000,007,629 | ---- | M] () -- C:\Users\Matt\AppData\Local\Resmon.ResmonCfg
[2011/06/23 16:23:02 | 000,000,017 | ---- | M] () -- C:\Windows\SysNative\npd6.d
[2011/06/23 15:52:22 | 000,020,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/23 15:52:22 | 000,020,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/23 15:44:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/23 15:44:44 | 1610,014,720 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/23 13:56:53 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2011/06/22 20:26:12 | 000,054,767 | ---- | M] () -- C:\Users\Matt\Desktop\avptool_sysinfo.zip
[2011/06/22 20:18:52 | 000,000,244 | -HS- | M] () -- C:\Windows\setup_9.0.0.722_22.06.2011_21-00drv.spi
[2011/06/20 18:56:42 | 000,607,310 | R--- | M] (Swearware) -- C:\Users\Matt\Desktop\dds.scr
[2011/06/20 18:55:29 | 000,000,000 | ---- | M] () -- C:\Users\Matt\defogger_reenable
[2011/06/20 18:55:00 | 000,050,477 | ---- | M] () -- C:\Users\Matt\Desktop\Defogger.exe
[2011/06/20 18:48:45 | 000,002,072 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/06/20 18:19:39 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Matt\Desktop\HijackThis.exe
[2011/06/19 20:59:34 | 000,114,384 | ---- | M] () -- C:\Users\Matt\Desktop\144914_700b_v1.jpg
[2011/06/16 18:09:19 | 000,607,310 | R--- | M] (Swearware) -- C:\Users\Matt\Desktop\dds.com
[2011/06/16 14:22:02 | 000,001,144 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/06/16 01:27:05 | 000,016,896 | ---- | M] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2011/06/15 22:45:28 | 000,002,074 | ---- | M] () -- C:\Users\Public\Desktop\Brink.lnk
[2011/06/14 22:50:11 | 000,336,279 | ---- | M] () -- C:\Users\Matt\Desktop\9500b9cd5fb021cfbda29d8057cf01c9.jpg
[2011/06/07 23:25:21 | 000,000,221 | ---- | M] () -- C:\Users\Matt\Desktop\Dungeon Siege III - Demo.url
[2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/05/25 02:09:14 | 000,067,176 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/05/25 02:09:14 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011/05/25 02:09:12 | 000,007,384 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb

========== Files Created - No Company Name ==========

[2011/06/23 17:10:20 | 000,053,850 | ---- | C] () -- C:\Users\Matt\Desktop\shot2.png
[2011/06/23 17:09:47 | 000,068,007 | ---- | C] () -- C:\Users\Matt\Desktop\shot1.png
[2011/06/23 16:21:43 | 000,000,017 | ---- | C] () -- C:\Windows\SysNative\npd6.d
[2011/06/23 13:35:46 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/06/23 13:35:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/06/23 13:35:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/06/23 13:35:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/06/23 13:35:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/06/23 00:48:34 | 245,803,058 | ---- | C] () -- C:\Users\Matt\Desktop\Rogue Trader - Core Rulebook (2009).pdf
[2011/06/22 20:27:16 | 000,054,767 | ---- | C] () -- C:\Users\Matt\Desktop\avptool_sysinfo.zip
[2011/06/22 20:18:52 | 000,000,244 | -HS- | C] () -- C:\Windows\setup_9.0.0.722_22.06.2011_21-00drv.spi
[2011/06/20 18:55:29 | 000,000,000 | ---- | C] () -- C:\Users\Matt\defogger_reenable
[2011/06/20 18:54:58 | 000,050,477 | ---- | C] () -- C:\Users\Matt\Desktop\Defogger.exe
[2011/06/20 18:48:45 | 000,002,072 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/06/19 20:59:33 | 000,114,384 | ---- | C] () -- C:\Users\Matt\Desktop\144914_700b_v1.jpg
[2011/06/18 20:57:35 | 000,000,160 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hamiltons Great Adventure.lnk
[2011/06/16 17:20:18 | 000,007,629 | ---- | C] () -- C:\Users\Matt\AppData\Local\Resmon.ResmonCfg
[2011/06/16 14:22:02 | 000,001,156 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/06/16 14:22:02 | 000,001,144 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/06/16 01:22:52 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/06/16 01:18:12 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2011/06/15 22:45:28 | 000,002,074 | ---- | C] () -- C:\Users\Public\Desktop\Brink.lnk
[2011/06/14 22:50:04 | 000,336,279 | ---- | C] () -- C:\Users\Matt\Desktop\9500b9cd5fb021cfbda29d8057cf01c9.jpg
[2011/06/07 23:25:21 | 000,000,221 | ---- | C] () -- C:\Users\Matt\Desktop\Dungeon Siege III - Demo.url
[2011/05/20 22:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011/05/18 21:35:52 | 000,771,962 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/04/01 05:07:02 | 010,877,272 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2011/04/01 05:07:02 | 000,102,744 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/04/01 05:06:56 | 000,331,608 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2011/02/12 02:09:08 | 000,000,262 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2010/10/14 02:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

========== LOP Check ==========

[2011/05/08 20:48:58 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\.minecraft
[2011/02/10 01:17:08 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\A Gypsy's Tale - The Tower of Secrets
[2011/01/05 20:00:47 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\acccore
[2011/02/02 05:05:52 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Apowersoft
[2011/02/11 00:22:02 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Big Fish Games
[2011/06/18 21:14:24 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\BitTorrent
[2011/06/18 21:25:11 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\FatShark
[2011/03/21 20:26:44 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\FileZilla
[2011/06/11 22:44:50 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\GetRightToGo
[2011/03/04 21:05:48 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Leadertech
[2011/03/15 14:20:14 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\RIFT
[2011/02/22 04:05:16 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\ScummVM
[2011/03/04 18:30:15 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\SystemRequirementsLab
[2011/01/30 22:43:43 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\TikisLab
[2011/03/10 05:00:21 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Ubisoft
[2011/05/09 15:18:23 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Windows Live Writer
[2009/07/14 01:08:49 | 000,020,090 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 191 bytes -> C:\ProgramData\TEMP:8E5EA40F
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:A5584049

< End of report >

Attached Thumbnails

  • shot1.png
  • shot2.png

  • 0

#25
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts

the weird sound my hard drive is still making.

What does it sound like ? How old is the hard disc as weird noises could be a sign of imminent failure. The most RAM is taken up with AOL messenger but you have over 1Gb available if needed. Windows 7 keeps files in memory ready for use, even if that programme is no longer active.

Lets get rid of Yahoo etc now

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    FF - prefs.js..extensions.enabledItems: {1392b8d2-5c05-419f-a8f6-b9f15a596612}:3.3.3.2
    FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313
    [2011/03/25 15:04:17 | 000,000,000 | ---D | M] (Freecorder Community Toolbar) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
    [2011/06/23 02:57:10 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
    () (No name found) -- C:\USERS\MATT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FOYI44H1.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
    () (No name found) -- C:\USERS\MATT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FOYI44H1.DEFAULT\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
    [2011/06/16 16:51:26 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\Yahoo!
    [2011/06/16 01:09:30 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
    [2011/06/22 20:26:12 | 000,054,767 | ---- | M] () -- C:\Users\Matt\Desktop\avptool_sysinfo.zip

    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [EMPTYFLASH]
    [CREATERESTOREPOINT]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

Advertisements


#26
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
I just figured out what the noise was. This is really stupid.... I had taken a fan and turned it upside down and placed it on top of my graphics card a couple weeks ago... it was coming from that. I even made sure the fan wasn't bumping into anything. It's just the noise the fan makes when you turn it a certain way because it's shifted in its little case. Could I just have a problem with my graphics card? Maybe a cooling problem?






OTL logfile created on: 6/24/2011 1:32:23 PM - Run 5
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\Matt\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.97 Gb Available Physical Memory | 48.59% Memory free
4.00 Gb Paging File | 2.72 Gb Available in Paging File | 67.94% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 233.76 Gb Total Space | 16.43 Gb Free Space | 7.03% Space Free | Partition Type: NTFS
Drive D: | 346.22 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: MATT-PC | User Name: Matt | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/21 14:31:47 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Matt\Downloads\OTL.exe
PRC - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/05/25 02:09:14 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/04/14 12:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/04/01 05:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/03/28 16:15:40 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2011/03/28 16:15:30 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/03/28 16:15:29 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011/03/01 23:14:08 | 000,190,808 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2011/01/05 13:11:04 | 004,321,112 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AIM\aim.exe
PRC - [2008/12/19 14:17:24 | 000,333,088 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe


========== Modules (SafeList) ==========

MOD - [2011/06/21 14:31:47 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Matt\Downloads\OTL.exe
MOD - [2010/08/21 01:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/04/08 16:06:50 | 000,295,424 | ---- | M] (Puran Software) [Disabled | Stopped] -- C:\Windows\SysNative\PuranDefragS.exe -- (PuranDefrag)
SRV:64bit: - [2010/09/22 19:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/05/25 02:09:14 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/04/01 05:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/03/28 16:15:40 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/03/28 16:15:30 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/16 18:04:16 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011/05/25 02:09:17 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011/04/01 17:07:59 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011/04/01 17:07:59 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2011/04/01 05:07:54 | 004,184,672 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) Logitech HD Pro Webcam C910(UVC)
DRV:64bit: - [2011/04/01 05:06:22 | 000,341,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2011/04/01 05:04:32 | 000,023,904 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2011/03/10 04:19:06 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2011/03/10 04:19:04 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2011/02/04 19:02:46 | 000,034,120 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2010/12/07 15:39:32 | 000,187,912 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MAudioFastTrackPro.sys -- (MAUSBFASTTRACKPRO)
DRV:64bit: - [2010/09/23 01:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/05/07 19:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2010/05/07 19:43:30 | 000,030,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2009/12/17 18:25:17 | 000,034,472 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2009/08/09 17:25:45 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone)
DRV:64bit: - [2009/07/13 21:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 21:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:34:21 | 000,034,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\l260x64.sys -- (Atc002)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2007/10/24 04:00:00 | 000,053,488 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2007/02/03 11:30:58 | 000,058,528 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007/02/03 11:25:56 | 000,955,680 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CamDrL64.sys -- (CamDrL64) Logitech QuickCam Pro 3000(PID_08B0)
DRV:64bit: - [2005/03/29 02:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B8 57 9E 22 F8 2B CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"


FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/06/16 14:22:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/06/16 14:19:25 | 000,000,000 | ---D | M]

[2011/01/05 19:59:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Extensions
[2011/06/24 13:24:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions
[2011/03/25 15:04:17 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\extensions\[email protected]
[2010/10/20 15:40:12 | 000,000,923 | ---- | M] () -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\foyi44h1.default\searchplugins\conduit.xml
[2011/06/16 14:22:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/02/23 19:11:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\USERS\MATT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FOYI44H1.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\USERS\MATT\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FOYI44H1.DEFAULT\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
[2011/04/14 12:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2011/02/23 19:11:44 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/06/24 13:24:39 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [M-Audio Taskbar Icon] C:\Windows\SysNative\M-AudioTaskBarIcon.exe (Avid Technology, Inc.)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [Aim] C:\Program Files (x86)\AIM\aim.exe (AOL Inc.)
O4 - HKCU..\Run: [Logitech Vid] C:\Program Files (x86)\Logitech\Vid HD\Vid.exe (Logitech Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Users\Matt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMB Media Check Tool.lnk = C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/18 20:00:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2011/06/24 13:30:29 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\Yahoo!
[2011/06/24 03:51:32 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\AIMLogger
[2011/06/23 16:21:38 | 001,420,288 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranFD.exe
[2011/06/23 16:21:38 | 000,295,424 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDefragS.exe
[2011/06/23 16:21:38 | 000,292,352 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDC.exe
[2011/06/23 16:21:38 | 000,270,336 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDefrag.dll
[2011/06/23 16:21:38 | 000,132,608 | ---- | C] (Puran Software) -- C:\Windows\SysNative\PuranDefragBT.exe
[2011/06/23 16:21:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Puran Defrag
[2011/06/23 16:21:38 | 000,000,000 | ---D | C] -- C:\Program Files\Puran Defrag
[2011/06/23 15:26:53 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/06/23 14:03:48 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/06/23 13:35:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/06/23 13:35:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/06/23 13:35:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/06/23 13:35:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/06/21 17:52:07 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/06/20 18:56:41 | 000,607,310 | R--- | C] (Swearware) -- C:\Users\Matt\Desktop\dds.scr
[2011/06/20 18:48:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011/06/20 18:48:29 | 000,116,568 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2011/06/20 18:48:29 | 000,083,120 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2011/06/20 18:48:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2011/06/20 18:48:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2011/06/20 18:19:38 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Matt\Desktop\HijackThis.exe
[2011/06/18 21:25:11 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\FatShark
[2011/06/18 20:56:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hamiltons Great Adventure
[2011/06/18 03:44:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2011/06/18 03:15:31 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\NPE
[2011/06/18 03:15:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2011/06/18 03:10:03 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\AIM
[2011/06/18 03:10:02 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\AOL
[2011/06/18 02:00:00 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\Adobe
[2011/06/17 23:17:44 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\SUPERAntiSpyware.com
[2011/06/16 18:09:18 | 000,607,310 | R--- | C] (Swearware) -- C:\Users\Matt\Desktop\dds.com
[2011/06/16 14:29:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2011/06/16 01:09:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\iS3
[2011/06/15 22:45:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2011/06/15 22:35:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2011/06/14 23:12:07 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\Duke Nukem Forever
[2011/06/14 22:32:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911
[2011/06/13 21:56:57 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\{64CE9065-F746-487B-AC5E-E83A8AD54988}
[2011/06/11 22:35:24 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\GetRightToGo
[2011/06/11 22:35:24 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\Downloads
[2011/06/08 21:33:56 | 000,067,176 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011/06/08 21:33:56 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011/06/08 19:26:01 | 000,000,000 | ---D | C] -- C:\Users\Matt\Documents\EA Games
[2011/06/08 19:13:40 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\EA Games
[2011/06/08 13:58:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA Games
[2011/06/04 00:28:05 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2011/05/31 19:26:33 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Local\ElevatedDiagnostics

========== Files - Modified Within 30 Days ==========

[2011/06/24 13:35:56 | 000,020,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/24 13:35:56 | 000,020,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/24 13:28:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/24 13:28:16 | 1610,014,720 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/24 13:24:39 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2011/06/23 16:36:45 | 000,007,629 | ---- | M] () -- C:\Users\Matt\AppData\Local\Resmon.ResmonCfg
[2011/06/23 16:23:02 | 000,000,017 | ---- | M] () -- C:\Windows\SysNative\npd6.d
[2011/06/22 20:18:52 | 000,000,244 | -HS- | M] () -- C:\Windows\setup_9.0.0.722_22.06.2011_21-00drv.spi
[2011/06/20 18:56:42 | 000,607,310 | R--- | M] (Swearware) -- C:\Users\Matt\Desktop\dds.scr
[2011/06/20 18:55:29 | 000,000,000 | ---- | M] () -- C:\Users\Matt\defogger_reenable
[2011/06/20 18:55:00 | 000,050,477 | ---- | M] () -- C:\Users\Matt\Desktop\Defogger.exe
[2011/06/20 18:48:45 | 000,002,072 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/06/20 18:19:39 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Matt\Desktop\HijackThis.exe
[2011/06/19 20:59:34 | 000,114,384 | ---- | M] () -- C:\Users\Matt\Desktop\144914_700b_v1.jpg
[2011/06/16 18:09:19 | 000,607,310 | R--- | M] (Swearware) -- C:\Users\Matt\Desktop\dds.com
[2011/06/16 14:22:02 | 000,001,144 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/06/16 01:27:05 | 000,016,896 | ---- | M] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2011/06/15 22:45:28 | 000,002,074 | ---- | M] () -- C:\Users\Public\Desktop\Brink.lnk
[2011/06/14 22:50:11 | 000,336,279 | ---- | M] () -- C:\Users\Matt\Desktop\9500b9cd5fb021cfbda29d8057cf01c9.jpg
[2011/06/07 23:25:21 | 000,000,221 | ---- | M] () -- C:\Users\Matt\Desktop\Dungeon Siege III - Demo.url
[2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys

========== Files Created - No Company Name ==========

[2011/06/23 16:21:43 | 000,000,017 | ---- | C] () -- C:\Windows\SysNative\npd6.d
[2011/06/23 13:35:46 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/06/23 13:35:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/06/23 13:35:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/06/23 13:35:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/06/23 13:35:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/06/23 00:48:34 | 245,803,058 | ---- | C] () -- C:\Users\Matt\Desktop\Rogue Trader - Core Rulebook (2009).pdf
[2011/06/22 20:18:52 | 000,000,244 | -HS- | C] () -- C:\Windows\setup_9.0.0.722_22.06.2011_21-00drv.spi
[2011/06/20 18:55:29 | 000,000,000 | ---- | C] () -- C:\Users\Matt\defogger_reenable
[2011/06/20 18:54:58 | 000,050,477 | ---- | C] () -- C:\Users\Matt\Desktop\Defogger.exe
[2011/06/20 18:48:45 | 000,002,072 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011/06/19 20:59:33 | 000,114,384 | ---- | C] () -- C:\Users\Matt\Desktop\144914_700b_v1.jpg
[2011/06/18 20:57:35 | 000,000,160 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hamiltons Great Adventure.lnk
[2011/06/16 17:20:18 | 000,007,629 | ---- | C] () -- C:\Users\Matt\AppData\Local\Resmon.ResmonCfg
[2011/06/16 14:22:02 | 000,001,156 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/06/16 14:22:02 | 000,001,144 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/06/16 01:22:52 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011/06/16 01:18:12 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2011/06/15 22:45:28 | 000,002,074 | ---- | C] () -- C:\Users\Public\Desktop\Brink.lnk
[2011/06/14 22:50:04 | 000,336,279 | ---- | C] () -- C:\Users\Matt\Desktop\9500b9cd5fb021cfbda29d8057cf01c9.jpg
[2011/06/07 23:25:21 | 000,000,221 | ---- | C] () -- C:\Users\Matt\Desktop\Dungeon Siege III - Demo.url
[2011/05/20 22:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011/05/18 21:35:52 | 000,771,962 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/04/01 05:07:02 | 010,877,272 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2011/04/01 05:07:02 | 000,102,744 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/04/01 05:06:56 | 000,331,608 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2011/02/12 02:09:08 | 000,000,262 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2010/10/14 02:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

========== LOP Check ==========

[2011/05/08 20:48:58 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\.minecraft
[2011/02/10 01:17:08 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\A Gypsy's Tale - The Tower of Secrets
[2011/01/05 20:00:47 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\acccore
[2011/02/02 05:05:52 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Apowersoft
[2011/02/11 00:22:02 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Big Fish Games
[2011/06/18 21:14:24 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\BitTorrent
[2011/06/18 21:25:11 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\FatShark
[2011/03/21 20:26:44 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\FileZilla
[2011/06/11 22:44:50 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\GetRightToGo
[2011/03/04 21:05:48 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Leadertech
[2011/03/15 14:20:14 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\RIFT
[2011/02/22 04:05:16 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\ScummVM
[2011/03/04 18:30:15 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\SystemRequirementsLab
[2011/01/30 22:43:43 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\TikisLab
[2011/03/10 05:00:21 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Ubisoft
[2011/05/09 15:18:23 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Windows Live Writer
[2009/07/14 01:08:49 | 000,020,590 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 191 bytes -> C:\ProgramData\TEMP:8E5EA40F
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:A5584049

< End of report >
  • 0

#27
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
Also if you click on resource monitor under the performance tab of the task manager, what is the difference between the different sets of memory usage? "Private" under the processes tab doesn't really add up to 1gb (which is what i have being used) but if I look at "working set" or "commit" they look like they might add up.

Edited by wickkidda, 24 June 2011 - 11:53 AM.

  • 0

#28
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts

I had taken a fan and turned it upside down and placed it on top of my graphics card a couple weeks ago... it was coming from that. I even made sure the fan wasn't bumping into anything I

That is now blowing hot air onto the card as opposed to extracting it, I am surprised you haven't blown the card

The resource monitor shows all processes including background ones that task manager does not show

If you could set the fan the right way around, does that make a difference
  • 0

#29
wickkidda

wickkidda

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 129 posts
Ok so instead of blowing air right onto the card it's now blowing air away from it. Is that what you meant? I did that. I can't see that alone causing graphics to lag really bad. Is there a way to test temperature of all the different hardware?

Edited by wickkidda, 24 June 2011 - 12:27 PM.

  • 0

#30
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Yep it will make the video card overheat and slow down - or fail

Download Speedfan and install it. Once it's installed, run the program and post here the information it shows. The information I want you to post is the stuff that is circled in the example picture I have attached.
If you are running on a vista machine, please go to where you installed the program and run the program as administrator.

Posted Image
(this is a screenshot from a vista machine)
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP