Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

BSOD about once a day: PAGE_FAULT_IN_NONPAGED_AREA

Started by beather64 , Aug 07 2011 03:35 AM

  • Please log in to reply

#1
beather64
Posted 07 August 2011 - 03:35 AM

beather64

    New Member

  • Member
  • Pip
  • 1 posts
Hi,

I'm on a laptop EliteBook 8530p with the following specs:
Intel® Core™2 Duo CPU P8600 @ 2.40GHz
Instructions sets MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, EM64T, VT-x
ATI Mobility Radeon HD 3650

OS: Windows XP Professional x64

Lately my laptop sometimes gets a BSOD: PAGE_FAULT_IN_NONPAGED_AREA relating to win32k.sys

I read the list of common BSODS, and mine would mean that I recently installed a driver of something.
While this is possible I really can't remember anything that I installed. I installed a printer sometime ago, but I haven't used that
printer in the last two weeks.

Also, can a BSOD occur even if the bad hardware driver is not even used?

Here is an OTL report. I realise that this is normally not allowed in this thread, however I read somewhere that this error might be caused by malware on my system as well.

Some other notes: I have a dualboot with Ubuntu and recently updated my GRUB boot file.

OTL logfile created on: 7/08/2011 11:13:28 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrator\My Documents\Downloads
64bit-Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000813 | Country: Belgium | Language: NLB | Date Format: d/MM/yyyy

3,96 Gb Total Physical Memory | 2,41 Gb Available Physical Memory | 60,72% Memory free
7,68 Gb Paging File | 6,41 Gb Available in Paging File | 83,50% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 223,25 Gb Total Space | 9,07 Gb Free Space | 4,06% Space Free | Partition Type: NTFS
Drive D: | 655,29 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: NIKKEPC | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/07 11:13:10 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\My Documents\Downloads\OTL.exe
PRC - [2011/08/04 12:40:13 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\steam.exe
PRC - [2011/04/12 22:53:28 | 003,951,616 | ---- | M] () -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
PRC - [2011/04/12 22:53:28 | 000,015,872 | ---- | M] () -- C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr32.exe
PRC - [2011/03/18 19:53:06 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/03/15 09:24:25 | 002,071,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgtray.exe
PRC - [2011/02/18 11:47:12 | 000,079,192 | ---- | M] (Research In Motion Limited) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
PRC - [2011/01/22 12:07:42 | 000,023,040 | ---- | M] (Brian Apps Products) -- C:\Program Files (x86)\Sizer\sizer.exe
PRC - [2011/01/08 23:44:51 | 000,177,152 | ---- | M] (Code Sector Inc.) -- C:\Program Files (x86)\Direct Folders\df.exe
PRC - [2010/12/08 23:15:44 | 000,063,360 | ---- | M] (DivX, LLC) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe
PRC - [2010/12/01 20:26:10 | 000,044,448 | ---- | M] () -- C:\Program Files (x86)\TortoiseHg\TortoiseHgOverlayServer.exe
PRC - [2010/11/24 20:47:56 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe
PRC - [2010/08/19 14:09:23 | 000,066,872 | ---- | M] () -- C:\WINDOWS\SysWOW64\PnkBstrA.exe
PRC - [2010/08/02 09:05:16 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe
PRC - [2010/08/01 09:44:22 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
PRC - [2010/03/10 03:10:38 | 000,086,016 | ---- | M] () -- C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
PRC - [2009/05/27 14:46:44 | 000,007,680 | ---- | M] () -- C:\Program Files\FileBX\Fbx32helper.exe
PRC - [2009/03/12 17:36:24 | 000,086,016 | ---- | M] () -- C:\Program Files (x86)\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe
PRC - [2008/12/29 12:40:30 | 000,687,560 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
PRC - [2008/07/25 11:17:10 | 001,172,472 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Administrator\Local Settings\Temp\svhost.exe


========== Modules (SafeList) ==========

MOD - [2011/08/07 11:13:10 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\My Documents\Downloads\OTL.exe
MOD - [2011/04/12 22:53:28 | 000,013,312 | ---- | M] () -- C:\Program Files (x86)\WinSplit Revolution\WinSplitHook32.dll
MOD - [2011/01/22 12:07:38 | 000,013,312 | ---- | M] (Brian Apps Products) -- C:\Program Files (x86)\Sizer\sizer.dll
MOD - [2009/05/27 14:46:42 | 000,301,568 | ---- | M] (Hyperionics Technology LLC) -- C:\Program Files\FileBX\FileBXH32.dll
MOD - [2009/05/04 01:18:36 | 000,241,730 | ---- | M] () -- C:\Program Files (x86)\Direct Folders\Hook.dll
MOD - [2007/11/15 23:32:08 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\MSCTFIME.IME
MOD - [2007/02/18 14:00:00 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\comres.dll
MOD - [2007/02/17 07:58:24 | 001,051,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\wow64_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.3790.3959_x-ww_5FA17F4E\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/08/01 15:25:32 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2010/07/13 14:26:12 | 000,719,216 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe -- (TouchServicePen)
SRV:64bit: - [2010/07/13 14:26:08 | 007,329,648 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe -- (TabletServicePen)
SRV:64bit: - [2009/07/14 22:09:38 | 000,893,440 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\Ati2evxx.exe -- (Ati HotKey Poller)
SRV:64bit: - [2009/06/10 14:23:16 | 000,659,968 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\wzcsvc.dll -- (WZCSVC)
SRV:64bit: - [2009/03/20 01:42:16 | 000,227,840 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\services.exe -- (PlugPlay)
SRV:64bit: - [2009/03/20 01:42:16 | 000,227,840 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\services.exe -- (Eventlog)
SRV:64bit: - [2009/03/20 01:41:40 | 001,065,472 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\advapi32.dll -- (Wmi)
SRV:64bit: - [2008/10/16 21:07:34 | 000,022,552 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\wuauserv.dll -- (wuauserv)
SRV:64bit: - [2008/08/28 04:34:32 | 000,399,872 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\dmadmin.exe -- (dmadmin)
SRV:64bit: - [2008/08/26 15:02:20 | 000,016,896 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV:64bit: - [2008/07/29 13:20:28 | 004,737,024 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe -- (msvsmon90)
SRV:64bit: - [2007/12/14 11:40:18 | 000,133,120 | ---- | M] () [Disabled | Stopped] -- C:\WINDOWS\SysNative\smlogsvc.exe -- (SysmonLog)
SRV:64bit: - [2007/02/18 14:00:00 | 000,794,112 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\ntmssvc.dll -- (NtmsSvc)
SRV:64bit: - [2007/02/18 14:00:00 | 000,326,144 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\xmlprov.dll -- (xmlprov)
SRV:64bit: - [2007/02/18 14:00:00 | 000,285,184 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2007/02/18 14:00:00 | 000,265,728 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\imapi.exe -- (ImapiService)
SRV:64bit: - [2007/02/18 14:00:00 | 000,166,400 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\SCardSvr.exe -- (SCardSvr)
SRV:64bit: - [2007/02/18 14:00:00 | 000,160,768 | ---- | M] () [Disabled | Stopped] -- C:\WINDOWS\SysNative\netdde.exe -- (NetDDEdsdm)
SRV:64bit: - [2007/02/18 14:00:00 | 000,160,768 | ---- | M] () [Disabled | Stopped] -- C:\WINDOWS\SysNative\netdde.exe -- (NetDDE)
SRV:64bit: - [2007/02/18 14:00:00 | 000,049,664 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\clipsrv.exe -- (ClipSrv)
SRV:64bit: - [2007/02/18 14:00:00 | 000,037,376 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysNative\dmserver.dll -- (dmserver)
SRV:64bit: - [2007/02/18 14:00:00 | 000,034,816 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\ups.exe -- (UPS)
SRV:64bit: - [2007/02/18 14:00:00 | 000,031,744 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysNative\ersvc.dll -- (ERSvc)
SRV:64bit: - [2007/02/18 14:00:00 | 000,008,704 | ---- | M] () [Disabled | Stopped] -- C:\WINDOWS\SysNative\cisvc.exe -- (CiSvc)
SRV - [2011/08/03 09:50:49 | 003,542,616 | ---- | M] () [Auto | Running] -- c:\Program Files (x86)\Common Files\Akamai\netsession_win_2da1ebd.dll -- (Akamai)
SRV - [2011/01/16 23:46:37 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/10/05 21:32:01 | 000,120,712 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe -- (LMIMaint)
SRV - [2010/09/27 14:52:18 | 000,373,640 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2010/08/19 14:09:23 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010/08/02 09:05:16 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/08/01 09:44:22 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/10 03:10:38 | 000,086,016 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe -- (mi-raysat_3dsmax2011_32)
SRV - [2010/01/27 12:22:02 | 000,057,920 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe -- (LogMeIn)
SRV - [2009/03/12 17:36:24 | 000,086,016 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe -- (mi-raysat_3dsmax2010_32)
SRV - [2008/07/25 11:17:02 | 000,069,632 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/02/18 14:00:00 | 000,077,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc)
SRV - [2006/10/18 20:05:24 | 000,913,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/06/23 11:24:21 | 000,029,696 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x)
DRV:64bit: - [2011/05/06 08:53:55 | 000,317,520 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\SysNative\Drivers\avgtdia.sys -- (AvgTdiA)
DRV:64bit: - [2011/02/16 18:23:46 | 000,074,240 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\Drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - [2011/01/15 18:21:04 | 000,036,352 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\VClone.sys -- (VClone)
DRV:64bit: - [2010/10/08 15:52:38 | 000,144,784 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2010/10/05 21:31:53 | 000,087,456 | ---- | M] () [File_System | Disabled | Stopped] -- C:\WINDOWS\SysNative\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV:64bit: - [2010/09/15 13:36:06 | 000,018,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\wacmoumonitor.sys -- (wacmoumonitor)
DRV:64bit: - [2010/08/02 08:57:40 | 000,828,912 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/08/01 09:45:26 | 000,269,904 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\SysNative\Drivers\avgldx64.sys -- (AvgLdx64)
DRV:64bit: - [2010/08/01 09:45:25 | 000,035,536 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\SysNative\Drivers\avgmfx64.sys -- (AvgMfx64)
DRV:64bit: - [2010/05/14 11:33:36 | 000,319,536 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/02/01 11:13:52 | 007,431,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\NETw5x64.sys -- (NETw5x64) Intel®
DRV:64bit: - [2010/01/27 12:22:02 | 000,072,216 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\SysNative\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV:64bit: - [2010/01/27 12:21:36 | 000,011,552 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\lmimirr.sys -- (lmimirr)
DRV:64bit: - [2009/09/21 16:29:22 | 000,016,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2009/07/20 15:05:50 | 000,059,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\rismcx64.sys -- (rismcx64)
DRV:64bit: - [2009/07/15 00:20:46 | 005,965,312 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\ati2mtag.sys -- (ati2mtag)
DRV:64bit: - [2009/07/01 10:46:50 | 001,848,496 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2009/06/25 17:04:20 | 000,067,584 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2009/06/25 16:38:52 | 000,057,856 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2009/06/25 16:13:44 | 000,055,296 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2009/06/10 14:23:16 | 000,138,240 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/06/10 14:23:16 | 000,072,704 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\imapi.sys -- (imapi)
DRV:64bit: - [2009/06/10 14:09:04 | 000,326,800 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\e1y51x64.sys -- (e1yexpress) Intel®
DRV:64bit: - [2009/06/10 14:04:53 | 000,407,576 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/06/02 09:20:36 | 000,150,032 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\mcdbus.sys -- (mcdbus)
DRV:64bit: - [2009/01/09 15:02:08 | 000,031,744 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\RimSerial_AMD64.sys -- (RimVSerPort)
DRV:64bit: - [2009/01/08 19:46:24 | 000,246,784 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\dmio.sys -- (dmio)
DRV:64bit: - [2008/12/26 12:56:04 | 000,021,504 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV:64bit: - [2008/10/29 16:55:52 | 001,253,376 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2008/10/16 13:56:54 | 000,445,440 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV:64bit: - [2008/05/14 08:08:12 | 000,070,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\Drivers\btwusb.sys -- (BTWUSB)
DRV:64bit: - [2008/05/14 08:08:10 | 001,149,096 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\btkrnl.sys -- (BTKRNL)
DRV:64bit: - [2008/05/14 08:08:10 | 000,174,120 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\btaudio.sys -- (btaudio)
DRV:64bit: - [2008/05/14 08:08:10 | 000,156,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\btwdndis.sys -- (BTWDNDIS)
DRV:64bit: - [2008/05/14 08:08:10 | 000,054,320 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\btport.sys -- (BTDriver)
DRV:64bit: - [2008/03/28 10:14:18 | 000,037,888 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\sfaudio.sys -- (SFAUDIO)
DRV:64bit: - [2007/11/22 22:51:28 | 000,156,672 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\ipsec.sys -- (IPSec)
DRV:64bit: - [2007/09/01 22:22:06 | 000,240,128 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\ftdisk.sys -- (Ftdisk)
DRV:64bit: - [2007/05/30 06:01:14 | 000,152,576 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\update.sys -- (Update)
DRV:64bit: - [2007/02/18 14:00:00 | 000,415,232 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\WINDOWS\SysNative\drivers\dmboot.sys -- (dmboot)
DRV:64bit: - [2007/02/18 14:00:00 | 000,106,496 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\psched.sys -- (PSched)
DRV:64bit: - [2007/02/18 14:00:00 | 000,106,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\atmarpc.sys -- (Atmarpc)
DRV:64bit: - [2007/02/18 14:00:00 | 000,071,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\msgpc.sys -- (Gpc)
DRV:64bit: - [2007/02/18 14:00:00 | 000,057,856 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\Ip6Fw.sys -- (Ip6Fw)
DRV:64bit: - [2007/02/18 14:00:00 | 000,031,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\raspti.sys -- (Raspti)
DRV:64bit: - [2007/02/18 14:00:00 | 000,031,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\ptilink.sys -- (Ptilink)
DRV:64bit: - [2007/02/18 14:00:00 | 000,018,432 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\ACPIEC.sys -- (ACPIEC)
DRV:64bit: - [2007/02/18 14:00:00 | 000,013,312 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\CdaD10BA.sys -- (CdaD10BA)
DRV:64bit: - [2007/02/18 14:00:00 | 000,013,312 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\CdaC15BA.sys -- (CdaC15BA)
DRV:64bit: - [2007/02/18 14:00:00 | 000,011,776 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\Drivers\RootMdm.sys -- (ROOTMODEM)
DRV:64bit: - [2007/02/18 14:00:00 | 000,009,216 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\dmload.sys -- (dmload)
DRV:64bit: - [2007/02/17 02:05:00 | 000,024,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\WSTCODEC.SYS -- (WSTCODEC)
DRV:64bit: - [2007/02/17 01:39:54 | 000,103,680 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\NABTSFEC.sys -- (NABTSFEC)
DRV:64bit: - [2007/02/17 01:05:38 | 000,024,576 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\CCDECODE.sys -- (CCDECODE)
DRV:64bit: - [2007/02/17 01:03:24 | 000,111,104 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\arp1394.sys -- (Arp1394)
DRV:64bit: - [2007/02/17 00:02:16 | 000,187,904 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\wdmaud.sys -- (wdmaud)
DRV:64bit: - [2007/02/16 23:59:12 | 000,147,456 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\sysaudio.sys -- (sysaudio)
DRV:64bit: - [2007/02/16 23:55:52 | 000,010,240 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\splitter.sys -- (splitter)
DRV:64bit: - [2007/01/17 10:38:29 | 000,050,688 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\HPZius12.sys -- (HPZius12)
DRV:64bit: - [2007/01/17 10:38:27 | 000,187,392 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\HPZid412.sys -- (HPZid412)
DRV:64bit: - [2007/01/17 10:38:27 | 000,048,640 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\HPZipr12.sys -- (HPZipr12)
DRV:64bit: - [2005/03/24 18:24:04 | 000,064,000 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\redbook.sys -- (redbook)
DRV:64bit: - [2005/03/24 18:21:30 | 000,092,160 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\nic1394.sys -- (NIC1394)
DRV:64bit: - [2005/03/24 18:21:28 | 000,017,408 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\NdisIP.sys -- (NdisIP)
DRV:64bit: - [2005/03/24 18:12:02 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\audstub.sys -- (audstub)
DRV:64bit: - [2005/03/24 17:43:50 | 000,024,576 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\StreamIP.sys -- (streamip)
DRV:64bit: - [2005/03/24 17:43:50 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\SLIP.sys -- (SLIP)
DRV:64bit: - [2005/03/24 16:25:38 | 000,086,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\swmidi.sys -- (swmidi)
DRV:64bit: - [2005/03/24 16:20:08 | 000,204,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\kmixer.sys -- (kmixer)
DRV:64bit: - [2005/03/24 16:11:56 | 000,188,928 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\aec.sys -- (aec)
DRV - [2010/08/13 01:00:23 | 000,004,096 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files (x86)\Common Files\Avnex\vcs64.sys -- (vcs)
DRV - [2010/01/27 12:22:02 | 000,015,928 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\rainfo.sys -- (LMIInfo)
DRV - [2009/12/17 12:31:42 | 000,021,504 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | System | Stopped] -- C:\WINDOWS\SysWOW64\Drivers\Ndisprot.sys -- (Ndisprot)
DRV - [2007/02/18 14:00:00 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\SysWow64\mnmdd.dll -- (mnmdd)
DRV - [2005/06/18 02:48:46 | 000,019,968 | ---- | M] (WikiTek Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\Drivers\ss.sys -- (StreamSurge)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie_rsearch.html

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie_rsearch.html
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.google.be/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}:9.4.0.5
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.2
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.0.0.652
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906
FF - prefs.js..keyword.URL: "http://www.google.co...lient&hl=en&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.4: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5: C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Administrator\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files (x86)\AVG\AVG9\Firefox [2010/11/24 20:48:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2011/02/03 00:39:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2011/02/03 00:39:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/08/06 17:38:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/05/07 10:19:11 | 000,000,000 | ---D | M]

[2010/07/31 21:02:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2011/08/06 17:42:01 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\x4jsqe69.default\extensions
[2011/08/06 17:42:01 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\x4jsqe69.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/01/11 14:53:38 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\x4jsqe69.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2011/07/21 12:39:36 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\x4jsqe69.default\extensions\[email protected]
[2011/03/27 16:28:09 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\x4jsqe69.default\extensions\[email protected]
[2011/06/10 20:24:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/06/10 20:24:30 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010/07/31 21:03:57 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\X4JSQE69.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\X4JSQE69.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\X4JSQE69.DEFAULT\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
[2010/07/31 20:58:14 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES (X86)\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/03/18 19:53:24 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2010/08/13 02:11:39 | 000,000,879 | R--- | M]) - C:\WINDOWS\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [HP Input Device Main Program] File not found
O4:64bit: - HKLM..\Run: [LogMeIn GUI] C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe (LogMeIn, Inc.)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files (x86)\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DirectFolders] C:\Program Files (x86)\Direct Folders\df.exe (Code Sector Inc.)
O4 - HKLM..\Run: [DivX Download Manager] C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [F5D9050] File not found
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TortoiseHgOverlayIconServer] C:\Program Files (x86)\TortoiseHg\TortoiseHgOverlayServer.exe ()
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [MsnMsgr] File not found
O4 - HKCU..\Run: [RGSC] File not found
O4 - HKCU..\Run: [rundll32] File not found
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [Winsplit] C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk = File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\FileBox eXtender.lnk = File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Sizer.lnk = C:\Program Files (x86)\Sizer\sizer.exe (Brian Apps Products)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Start_ShowMyComputer = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Start_ShowMyDocs = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Start_ShowNetConn = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuFavorites = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Start_ShowMyMusic = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Start_ShowRun = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Start_ShowSearch = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStrCmpLogical = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: verbosestatus = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 223
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Intellimenus = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoColorChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSizeChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O8:64bit: - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8:64bit: - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\SysNative\wiascr.dll ()
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Skype\Toolbars\Shared\Skype4ComAPI.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UIHost - (%SystemRoot%\system32\logonui.exe) - C:\WINDOWS\SysNative\logonui.exe ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: System - (lsass.exe) - File not found
O20:64bit: - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Key error. - C:\WINDOWS\SysNative\ati2evxx.dll ()
O20:64bit: - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Key error. - C:\WINDOWS\SysNative\avgrssta.dll ()
O20:64bit: - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\SysNative\crypt32.dll ()
O20:64bit: - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\SysNative\cryptnet.dll ()
O20:64bit: - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\SysNative\cscdll.dll ()
O20:64bit: - Winlogon\Notify\dimsntfy: DllName - dimsntfy.dll - C:\WINDOWS\SysNative\dimsntfy.dll ()
O20:64bit: - Winlogon\Notify\LMIinit: DllName - Reg Error: Key error. - C:\WINDOWS\SysNative\LMIinit.dll ()
O20:64bit: - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\SysNative\wlnotify.dll ()
O20:64bit: - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\SysNative\wlnotify.dll ()
O20:64bit: - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\SysNative\sclgntfy.dll ()
O20:64bit: - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\SysNative\wlnotify.dll ()
O20:64bit: - Winlogon\Notify\termsrv: DllName - Reg Error: Key error. - C:\WINDOWS\SysNative\wlnotify.dll ()
O20:64bit: - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\SysNative\wlnotify.dll ()
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - File not found
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - File not found
O21:64bit: - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\SysNative\stobject.dll ()
O21:64bit: - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\SysNative\WPDShServiceObj.dll ()
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/01/16 23:39:42 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2010/07/31 20:53:46 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/05 13:36:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Application Data\Brother
[2011/08/05 13:13:08 | 000,176,128 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\SysWow64\BROSNMP.DLL
[2011/08/05 13:13:08 | 000,094,208 | ---- | C] (Brother Industries Ltd) -- C:\WINDOWS\SysWow64\BRRBTOOL.EXE
[2011/08/05 13:13:08 | 000,077,824 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\SysWow64\BRLMW03A.DLL
[2011/08/05 13:13:08 | 000,024,223 | ---- | C] (brother Industries Ltd) -- C:\WINDOWS\SysWow64\BRLM03A.DLL
[2011/08/05 13:13:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\printer
[2011/08/04 21:41:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Cop Chaser
[2011/08/01 15:56:30 | 000,447,752 | R--- | C] (On2.com) -- C:\WINDOWS\SysWow64\vp6vfw.dll
[2011/08/01 15:56:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft WSE
[2011/08/01 15:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Electronic Arts
[2011/08/01 15:03:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\45 Most Beautiful Architecture HD Wallpapers
[2011/08/01 11:30:24 | 001,746,864 | ---- | C] (Codejock Software) -- C:\WINDOWS\SysWow64\Codejock.CommandBars.Unicode.v11.2.0.ocx
[2011/08/01 11:30:24 | 000,518,064 | ---- | C] (Codejock Software) -- C:\WINDOWS\SysWow64\Codejock.SkinFramework.Unicode.v11.2.0.ocx
[2011/08/01 11:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Seamless Texture Creator
[2011/08/01 11:30:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seamless Texture Creator
[2011/08/01 11:25:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Seamless Texture Creator v2.0byASH
[2011/07/28 23:07:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Total Training - Adobe Flash CS4 Professional Essentials
[2011/07/28 22:26:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Oef klas
[2011/07/28 22:24:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Eindopdracht
[2011/07/26 01:05:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\.jagex_cache_32
[2011/07/25 17:14:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2011/07/25 17:14:06 | 000,235,008 | ---- | C] (Hewlett Packard Corporation) -- C:\WINDOWS\SysWow64\hpzc35mu.dll
[2011/07/25 17:13:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\HP
[2011/07/25 17:12:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HP
[2011/07/25 17:12:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard
[2011/07/25 17:11:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\yellowtail
[2011/07/25 17:11:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2011/07/25 17:10:49 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2011/07/25 13:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Textures
[2011/07/24 10:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\news_files
[2011/07/23 19:12:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\temp
[2011/07/22 11:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\fotos
[2011/07/21 18:52:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\marghoobsuleman-ms-Dropdown-0e1ecf1
[2011/07/21 15:30:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2011/07/20 10:12:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\tmonstes
[2011/07/20 10:07:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\MapleStory Monster Sprites
[2011/07/19 01:10:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\screenshots
[2011/07/17 09:53:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Minecraft
[2011/07/17 09:27:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\No-IP
[2011/07/17 09:24:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\CraftBukkit
[2011/07/17 09:24:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\.CraftBukkit
[2011/07/17 08:28:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\mpr
[2011/07/16 18:41:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\ts3overlay
[2011/07/16 18:36:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TS3Client
[2011/07/12 21:53:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\foto saeyoung
[2011/07/12 09:57:42 | 000,000,000 | ---D | C] -- C:\.Trash-1000
[2011/07/11 21:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\East Asian Language Files
[2010/12/05 18:23:26 | 000,186,928 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\rsnp2uvc.dll
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/08/07 11:00:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/08/07 10:01:36 | 083,306,736 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\Avg\incavi.avm
[2011/08/07 09:54:35 | 002,847,728 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2011/08/07 09:54:20 | 000,002,206 | ---- | M] () -- C:\WINDOWS\SysNative\wpa.dbl
[2011/08/06 23:25:00 | 000,000,191 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\autobackup_mysql.sh
[2011/08/06 18:15:48 | 000,000,293 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\mybackupdemo.zip
[2011/08/06 17:38:42 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/08/06 17:38:42 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/08/06 09:22:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\EAREMOVE.INI
[2011/08/05 18:00:45 | 001,193,443 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\fromto.psd
[2011/08/05 17:55:08 | 000,000,426 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI
[2011/08/05 13:16:32 | 000,000,034 | ---- | M] () -- C:\WINDOWS\SysWow64\BD7045N.DAT
[2011/08/05 10:00:21 | 000,000,622 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Force Shutdown.lnk
[2011/08/05 09:55:39 | 007,056,054 | -H-- | M] () -- C:\WINDOWS\SysWow64\toyhide.bmp
[2011/08/04 11:11:51 | 000,611,081 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\1.PNG
[2011/08/02 14:51:27 | 000,001,920 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\The Sims™ 3.lnk
[2011/08/01 12:09:45 | 000,000,033 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Force Shutdown.bat
[2011/08/01 09:18:40 | 000,000,174 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\php5.php5
[2011/08/01 08:15:20 | 000,000,894 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc50126402603b.job
[2011/07/30 16:14:43 | 000,015,585 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\myscript.bat
[2011/07/29 23:50:47 | 000,001,116 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1965574357-2527877021-2650743349-500Core1cc4e3992ee1cf1.job
[2011/07/27 11:06:01 | 000,000,000 | RHS- | M] () -- C:\Documents and Settings\All Users\Documents\khy
[2011/07/26 22:53:08 | 000,000,083 | ---- | M] () -- C:\WINDOWS\wwp.INI
[2011/07/26 01:08:14 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\Administrator\jagex_runescape_preferences2.dat
[2011/07/26 01:06:22 | 000,000,035 | ---- | M] () -- C:\Documents and Settings\Administrator\jagex_runescape_preferences.dat
[2011/07/25 17:15:51 | 000,176,523 | ---- | M] () -- C:\WINDOWS\hpwins19.dat
[2011/07/25 10:53:48 | 000,008,499 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\vs.gif
[2011/07/25 10:07:47 | 000,000,882 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\test.Html
[2011/07/24 22:48:09 | 000,004,096 | ---- | M] () -- C:\WINDOWS\SysNative\crash
[2011/07/24 10:36:25 | 000,303,775 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\news.htm
[2011/07/23 16:49:15 | 000,010,709 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\banner-468x60.jpg
[2011/07/23 16:45:05 | 000,025,066 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\BDvote.jpg
[2011/07/23 16:38:54 | 000,014,318 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\banner2.gif
[2011/07/22 16:59:09 | 000,000,534 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Final Fantasy 8.lnk
[2011/07/22 14:18:12 | 000,369,717 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\98fb554827c615d1f30d701cfb358877.jpg
[2011/07/21 15:17:51 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\d3d9caps.dat
[2011/07/20 22:02:59 | 000,024,809 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\logo.png
[2011/07/20 21:44:18 | 000,117,829 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\14788.jpg
[2011/07/20 21:43:39 | 000,032,182 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\9e96acc8cceac567321d39a885153c09.png
[2011/07/20 11:46:45 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Unity.lnk
[2011/07/17 10:03:17 | 000,001,796 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\NetBeans IDE 7.0.lnk
[2011/07/17 09:47:33 | 000,525,544 | ---- | M] () -- C:\WINDOWS\SysNative\deployJava1.dll
[2011/07/17 09:47:33 | 000,190,752 | ---- | M] () -- C:\WINDOWS\SysNative\javaws.exe
[2011/07/17 09:47:33 | 000,171,808 | ---- | M] () -- C:\WINDOWS\SysNative\javaw.exe
[2011/07/17 09:47:33 | 000,171,808 | ---- | M] () -- C:\WINDOWS\SysNative\java.exe
[2011/07/17 09:24:08 | 000,002,035 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Launch CraftBukkit.lnk
[2011/07/15 00:15:49 | 000,001,063 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Loader.exe.lnk
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/08/06 18:16:23 | 000,000,191 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\autobackup_mysql.sh
[2011/08/06 18:16:21 | 000,000,293 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\mybackupdemo.zip
[2011/08/06 17:38:42 | 000,000,772 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/08/06 17:38:42 | 000,000,766 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/08/06 09:22:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EAREMOVE.INI
[2011/08/05 13:34:08 | 001,193,443 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\fromto.psd
[2011/08/05 13:16:32 | 000,000,426 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2011/08/05 13:16:32 | 000,000,034 | ---- | C] () -- C:\WINDOWS\SysWow64\BD7045N.DAT
[2011/08/05 13:13:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\SysWow64\BRTCPCON.DLL
[2011/08/05 13:13:08 | 000,000,114 | ---- | C] () -- C:\WINDOWS\SysWow64\BRLMW03A.INI
[2011/08/05 10:22:41 | 000,000,087 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\backup.bat
[2011/08/05 10:00:21 | 000,000,622 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Force Shutdown.lnk
[2011/08/04 11:04:27 | 000,611,081 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\1.PNG
[2011/08/03 18:43:40 | 011,938,701 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\DAE_collectie1.abr
[2011/08/03 18:43:40 | 000,002,704 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Generals.reg
[2011/08/02 15:10:55 | 007,056,054 | -H-- | C] () -- C:\WINDOWS\SysWow64\toyhide.bmp
[2011/08/02 12:05:33 | 000,112,609 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\nickmania.sql
[2011/08/01 15:54:29 | 000,001,920 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\The Sims™ 3.lnk
[2011/08/01 12:09:31 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Force Shutdown.bat
[2011/08/01 09:18:39 | 000,000,174 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\php5.php5
[2011/08/01 08:15:20 | 000,000,894 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc50126402603b.job
[2011/07/30 16:14:43 | 000,015,585 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\myscript.bat
[2011/07/29 23:50:47 | 000,001,116 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1965574357-2527877021-2650743349-500Core1cc4e3992ee1cf1.job
[2011/07/27 11:06:01 | 000,000,000 | RHS- | C] () -- C:\Documents and Settings\All Users\Documents\khy
[2011/07/26 01:06:08 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Administrator\jagex_runescape_preferences2.dat
[2011/07/26 01:05:23 | 000,000,035 | ---- | C] () -- C:\Documents and Settings\Administrator\jagex_runescape_preferences.dat
[2011/07/25 17:14:06 | 000,130,560 | ---- | C] () -- C:\WINDOWS\SysNative\hpz3l5mu.dll
[2011/07/25 17:14:05 | 000,671,816 | ---- | C] () -- C:\WINDOWS\SysNative\hpcdmc32.dll
[2011/07/25 17:11:14 | 000,187,392 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\HPZid412.sys
[2011/07/25 17:11:14 | 000,050,688 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\HPZius12.sys
[2011/07/25 17:11:13 | 000,359,256 | ---- | C] () -- C:\WINDOWS\SysNative\hpzids40.dll
[2011/07/25 17:11:13 | 000,048,640 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\HPZipr12.sys
[2011/07/25 17:11:09 | 000,944,128 | ---- | C] () -- C:\WINDOWS\SysNative\hpwwiax4.dll
[2011/07/25 17:11:09 | 000,740,864 | ---- | C] () -- C:\WINDOWS\SysNative\hpwtscl3.dll
[2011/07/25 17:11:09 | 000,540,672 | ---- | C] () -- C:\WINDOWS\SysNative\hppldcoi.dll
[2011/07/25 17:11:09 | 000,508,928 | ---- | C] () -- C:\WINDOWS\SysNative\difxapi.dll
[2011/07/25 17:11:09 | 000,488,960 | ---- | C] () -- C:\WINDOWS\SysNative\hpovst11.dll
[2011/07/25 17:11:09 | 000,010,709 | ---- | C] () -- C:\WINDOWS\hpwscr19.dat
[2011/07/25 17:04:54 | 000,176,523 | ---- | C] () -- C:\WINDOWS\hpwins19.dat
[2011/07/25 17:04:53 | 000,000,997 | ---- | C] () -- C:\WINDOWS\hpwmdl19.dat
[2011/07/25 10:53:48 | 000,008,499 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\vs.gif
[2011/07/25 10:03:59 | 000,000,882 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\test.Html
[2011/07/24 10:36:25 | 000,303,775 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\news.htm
[2011/07/23 16:49:15 | 000,010,709 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\banner-468x60.jpg
[2011/07/23 16:45:05 | 000,025,066 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\BDvote.jpg
[2011/07/23 16:38:53 | 000,014,318 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\banner2.gif
[2011/07/22 16:59:09 | 000,000,534 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Final Fantasy 8.lnk
[2011/07/22 14:18:12 | 000,369,717 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\98fb554827c615d1f30d701cfb358877.jpg
[2011/07/20 22:02:59 | 000,024,809 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\logo.png
[2011/07/20 21:44:18 | 000,117,829 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\14788.jpg
[2011/07/20 21:43:39 | 000,032,182 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\9e96acc8cceac567321d39a885153c09.png
[2011/07/20 11:46:45 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Unity.lnk
[2011/07/17 09:50:19 | 000,001,796 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\NetBeans IDE 7.0.lnk
[2011/07/17 09:47:45 | 000,525,544 | ---- | C] () -- C:\WINDOWS\SysNative\deployJava1.dll
[2011/07/17 09:47:45 | 000,190,752 | ---- | C] () -- C:\WINDOWS\SysNative\javaws.exe
[2011/07/17 09:47:45 | 000,171,808 | ---- | C] () -- C:\WINDOWS\SysNative\javaw.exe
[2011/07/17 09:47:45 | 000,171,808 | ---- | C] () -- C:\WINDOWS\SysNative\java.exe
[2011/07/17 09:24:08 | 000,002,035 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Launch CraftBukkit.lnk
[2011/07/15 00:15:49 | 000,001,063 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Loader.exe.lnk
[2011/07/11 21:22:11 | 000,827,438 | ---- | C] () -- C:\WINDOWS\SysNative\imjp81k.dll
[2011/07/11 21:22:11 | 000,340,013 | ---- | C] () -- C:\WINDOWS\SysNative\imjp81.ime
[2011/07/11 21:22:11 | 000,089,088 | ---- | C] () -- C:\WINDOWS\SysNative\imekr61.ime
[2011/07/11 21:01:27 | 000,012,288 | ---- | C] () -- C:\WINDOWS\SysNative\kbdjpn.dll
[2011/07/11 21:01:27 | 000,011,776 | ---- | C] () -- C:\WINDOWS\SysNative\kbdkor.dll
[2011/07/11 21:01:27 | 000,008,192 | ---- | C] () -- C:\WINDOWS\SysNative\kbd106.dll
[2011/07/11 21:01:27 | 000,007,680 | ---- | C] () -- C:\WINDOWS\SysNative\kbd101c.dll
[2011/07/11 21:01:27 | 000,007,168 | ---- | C] () -- C:\WINDOWS\SysNative\kbd103.dll
[2011/07/11 21:01:27 | 000,007,168 | ---- | C] () -- C:\WINDOWS\SysNative\kbd101b.dll
[2011/06/21 15:46:46 | 000,040,960 | ---- | C] () -- C:\WINDOWS\SysWow64\F5D9050.dll
[2011/05/24 21:00:31 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2011/04/19 22:10:32 | 000,059,904 | ---- | C] () -- C:\WINDOWS\SysWow64\OVDecode.dll
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\WINDOWS\SysWow64\xlive.dll.cat
[2011/02/27 17:55:23 | 000,063,540 | -H-- | C] () -- C:\WINDOWS\SysWow64\mlfcache.dat
[2011/01/27 19:55:41 | 000,000,055 | ---- | C] () -- C:\WINDOWS\SpeederXP.INI
[2011/01/27 19:06:46 | 000,000,056 | ---- | C] () -- C:\WINDOWS\SpeedGear.INI
[2011/01/15 21:09:13 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2010/12/10 17:16:51 | 000,022,016 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/06 14:57:15 | 000,151,552 | ---- | C] () -- C:\WINDOWS\SysWow64\nvRegDev.dll
[2010/12/05 18:23:33 | 000,027,184 | ---- | C] () -- C:\WINDOWS\snuvcdsm.exe
[2010/12/05 18:23:33 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini
[2010/11/25 17:57:17 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI
[2010/11/23 12:35:24 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\d3d9caps.dat
[2010/11/09 16:05:28 | 000,032,768 | ---- | C] () -- C:\WINDOWS\SysWow64\mf.dll
[2010/11/08 19:34:50 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\steam_md4.dat
[2010/10/30 12:19:55 | 000,000,557 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\AutoGK.ini
[2010/10/09 22:35:47 | 003,420,158 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1965574357-2527877021-2650743349-500-0.dat
[2010/10/09 22:35:47 | 000,374,426 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2010/09/28 14:27:33 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2010/09/27 20:23:55 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\steam_md2.dat
[2010/09/22 18:18:32 | 000,000,985 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2010/09/03 20:12:11 | 000,001,806 | ---- | C] () -- C:\WINDOWS\TSearch.INI
[2010/08/21 15:58:12 | 000,000,061 | -HS- | C] () -- C:\WINDOWS\cnerolf.bin
[2010/08/19 14:09:50 | 000,202,000 | ---- | C] () -- C:\WINDOWS\SysWow64\PnkBstrB.exe
[2010/08/19 14:09:23 | 000,066,872 | ---- | C] () -- C:\WINDOWS\SysWow64\PnkBstrA.exe
[2010/08/03 11:17:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/08/03 11:14:03 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\SysWow64\ezsidmv.dat
[2010/08/01 17:59:30 | 005,650,120 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/07/31 22:44:35 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/07/31 21:09:09 | 000,605,566 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2010/07/31 21:07:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010/07/31 20:54:16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/07/09 21:00:32 | 000,041,872 | ---- | C] () -- C:\WINDOWS\SysWow64\xfcodec.dll
[2009/06/10 14:17:55 | 000,355,112 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2009/03/18 22:56:22 | 000,000,039 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008/12/21 11:40:54 | 001,274,880 | ---- | C] () -- C:\WINDOWS\SysWow64\quartz.dll
[2007/02/18 14:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\SysWow64\qedwipes.dll
[2007/02/18 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2007/02/18 14:00:00 | 000,512,512 | ---- | C] () -- C:\WINDOWS\SysWow64\qedit.dll
[2007/02/18 14:00:00 | 000,396,288 | ---- | C] () -- C:\WINDOWS\SysWow64\encdec.dll
[2007/02/18 14:00:00 | 000,385,536 | ---- | C] () -- C:\WINDOWS\SysWow64\qdvd.dll
[2007/02/18 14:00:00 | 000,279,040 | ---- | C] () -- C:\WINDOWS\SysWow64\qdv.dll
[2007/02/18 14:00:00 | 000,276,992 | ---- | C] () -- C:\WINDOWS\SysWow64\sbe.dll
[2007/02/18 14:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\SysWow64\ir32_32.dll
[2007/02/18 14:00:00 | 000,192,512 | ---- | C] () -- C:\WINDOWS\SysWow64\qcap.dll
[2007/02/18 14:00:00 | 000,114,688 | ---- | C] () -- C:\WINDOWS\SysWow64\msencode.dll
[2007/02/18 14:00:00 | 000,072,704 | ---- | C] () -- C:\WINDOWS\SysWow64\amstream.dll
[2007/02/18 14:00:00 | 000,062,464 | ---- | C] () -- C:\WINDOWS\SysWow64\mciqtz32.dll
[2007/02/18 14:00:00 | 000,061,440 | ---- | C] () -- C:\WINDOWS\SysWow64\devenum.dll
[2007/02/18 14:00:00 | 000,055,808 | ---- | C] () -- C:\WINDOWS\SysWow64\dvdplay.exe
[2007/02/18 14:00:00 | 000,046,907 | ---- | C] () -- C:\WINDOWS\mib.bin
[2007/02/18 14:00:00 | 000,016,896 | ---- | C] () -- C:\WINDOWS\SysWow64\tsd32.dll
[2007/02/18 14:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\SysWow64\msdmo.dll
[2007/02/18 14:00:00 | 000,012,498 | ---- | C] () -- C:\WINDOWS\SysWow64\append.exe
[2007/02/18 14:00:00 | 000,004,126 | ---- | C] () -- C:\WINDOWS\SysWow64\msdxmlc.dll
[2007/02/18 14:00:00 | 000,001,129 | ---- | C] () -- C:\WINDOWS\SysWow64\vwipxspx.exe
[2006/11/02 18:10:16 | 000,080,912 | ---- | C] () -- C:\WINDOWS\SysWow64\sherlock2.exe
[2006/08/22 10:05:26 | 000,498,742 | ---- | C] () -- C:\WINDOWS\SysWow64\dxmasf.dll
[2005/12/15 10:38:48 | 000,315,392 | ---- | C] () -- C:\WINDOWS\SysWow64\AegisI5.exe
[2002/09/18 01:45:00 | 000,119,808 | ---- | C] () -- C:\WINDOWS\lsb_un20.exe

========== LOP Check ==========

[2011/07/17 10:33:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\.CraftBukkit
[2011/04/24 10:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\.minecraft
[2011/07/30 16:30:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\.purple
[2010/11/10 01:00:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\AGameAWeek
[2011/01/16 23:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Autodesk
[2010/08/13 01:12:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Avnex
[2011/06/26 17:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Blackberry Desktop
[2010/08/03 12:36:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Canneverbe_Limited
[2010/08/06 22:00:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools
[2010/08/01 18:04:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Lite
[2010/08/02 09:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools Pro
[2010/11/23 11:44:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Direct Folders
[2011/01/11 14:53:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers
[2011/08/04 10:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FileZilla
[2010/09/28 12:25:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\fltk.org
[2011/01/10 00:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
[2010/09/27 09:35:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Hyperionics
[2010/09/29 19:55:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\IceCream
[2010/10/19 16:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ICSharpCode
[2010/10/04 11:37:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\KeePass
[2011/02/03 00:39:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Local
[2011/02/07 12:44:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MonoDevelop
[2010/08/01 14:33:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Notepad++
[2011/01/29 17:05:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PACE Anti-Piracy
[2010/12/01 23:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\RenPy
[2011/06/26 14:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Research In Motion
[2011/03/09 19:18:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\runic games
[2010/12/26 20:52:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SQLyog
[2011/02/07 12:43:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\stetic
[2010/08/03 14:59:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Subversion
[2011/01/10 00:19:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TheLastRipper
[2011/07/16 18:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TS3Client
[2011/07/16 18:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ts3overlay
[2011/01/15 21:36:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\uk.co.planetside
[2011/01/29 17:06:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Unity
[2011/04/22 17:55:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ViGlance
[2010/08/02 13:59:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2011/04/29 22:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Winsplit Revolution
[2011/07/05 00:10:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\yang
[2011/01/16 23:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2011/06/29 12:25:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2011/03/15 09:24:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010/12/06 14:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CrazyBump
[2010/08/01 17:58:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/08/02 08:57:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2011/01/28 23:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Core
[2011/01/28 23:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2010/09/28 19:35:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Last.fm
[2010/12/06 18:57:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\licensecb
[2011/02/01 10:50:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
[2010/09/03 16:58:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogMeIn
[2010/10/11 12:30:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MySQL
[2011/01/29 17:05:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PACE Anti-Piracy
[2010/09/28 14:25:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2010/08/06 21:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Redirected
[2011/06/26 14:06:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Research In Motion
[2011/01/31 00:20:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Solidshield
[2011/08/06 09:42:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpeedBit
[2011/08/06 09:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith
[2011/08/06 09:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/02/19 19:12:13 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{67B91A58-307C-4CF3-8B61-DEC5E3E35640}
[2011/01/12 20:21:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2011/01/30 12:33:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\~0
[2010/11/23 12:37:35 | 000,000,122 | ---- | M] () -- C:\WINDOWS\Tasks\Low Battery Alarm Program.job
[2010/11/08 19:54:17 | 000,004,862 | ---- | M] () -- C:\WINDOWS\Tasks\SchedLgU.Txt

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 167 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F8D65F32
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AB42FD1E
@Alternate Data Stream - 1157 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:o9IN4ZbPTA46Dsi4lb5vogBbQXW
@Alternate Data Stream - 1129 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:wL5QNK3N4VI3EHKzn
@Alternate Data Stream - 1126 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:ck99BSJyR7VHBgnoDVQ
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:010ADD2C

< End of report >



Thank you in advance!
Nick

Edited by beather64, 07 August 2011 - 03:38 AM.

  • 0

Advertisements

#2
Alzeimer
Posted 07 August 2011 - 10:40 AM

Alzeimer

    Member 1K

  • Member
  • PipPipPipPip
  • 1,331 posts
Drive C: | 223,25 Gb Total Space | 9,07 Gb Free Space | 4,06% Space Free | Partition Type:

You probem lies in the fact that your HDD is to full, Windows needs a minimum of 15% free space to work properly, try to delete and uninstall any unecessary files and programs from your computer, do a back up of any photo, video and music files to an external HDD if you can and once you know they are safely backed up delete then.

Also clean your computer of temps files using a program like ATF-Cleaner to empty your temp folder Internet cacher recycle bin ect. Once all that is done do a defragmentation anf hopefully you will have no more BSOD appering.


Hope that helps
  • 0
Back to Windows XP, 2000, 2003, NT · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows XP, 2000, 2003, NT

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP