Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

vprot.exe - Bad Image (AVG DLL error)

Started by Krishnaa , Feb 22 2013 03:02 AM

  • Please log in to reply

#31
Jintan
Posted 15 March 2013 - 04:29 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
There are links that suggests Acronis software can cause this problem. No Acronis on your system, but you do have VirtualCloneDrive installed. I wonder if that causes the usb issue. How tough would it be to uninstall it (and reboot) to check?
  • 0

Advertisements

#32
Krishnaa
Posted 15 March 2013 - 08:58 PM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
I uninstalled VirtualCloneDrive and rebooted, the hotplug error still shows up!
  • 0

#33
Jintan
Posted 16 March 2013 - 04:27 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Right click Computer, left click Manage. Right click to expand Universal Serial Bus controllers.

Under that heading right click each item listed, and select Uninstall. Decline a reboot until you have fished uninstalling all items listed.

Note - if you are using a USB mouse and keyboard, what you uninstall will disable them. You may have to guess which one is which, to save it for last. Reboot after, and check for change.
  • 0

#34
Krishnaa
Posted 16 March 2013 - 09:08 PM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
Nope, hotplug error is still there. One of the bluetooth drivers didn't get installed after I rebooted. This probably has nothing to do with it, but I'm attaching the screenshot anyway.


Edit:

I forgot to mention that when I click Eject and the error pops up, after I click OK, the drive goes off from the Computer window. It's as if the ejection did work, but after the error message is shown.

Attached Thumbnails

  • USB install.png

Edited by Krishnaa, 17 March 2013 - 02:03 AM.

  • 0

#35
Jintan
Posted 18 March 2013 - 04:32 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Run and post a new OTL scan log please.

And right click Computer, left click Manage, then click Device Manager. Post back on anything that shows there with a yellow or red warning if you would.
  • 0

#36
Krishnaa
Posted 18 March 2013 - 10:53 PM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
Under Other Devices, the Bluetooth Peripheral Device has a yellow warning icon.

Here's the OTL report:

OTL logfile created on: 19/3/2013 9:53:57 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Krishnaa\Downloads\Programs
Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: d/M/yyyy

3.18 Gb Total Physical Memory | 1.30 Gb Available Physical Memory | 40.96% Memory free
6.35 Gb Paging File | 3.99 Gb Available in Paging File | 62.76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 199.90 Gb Total Space | 139.48 Gb Free Space | 69.77% Space Free | Partition Type: NTFS
Drive E: | 244.14 Gb Total Space | 39.90 Gb Free Space | 16.34% Space Free | Partition Type: NTFS
Drive F: | 244.14 Gb Total Space | 176.85 Gb Free Space | 72.44% Space Free | Partition Type: NTFS
Drive G: | 243.23 Gb Total Space | 160.96 Gb Free Space | 66.17% Space Free | Partition Type: NTFS

Computer Name: KRISHNAA-PC | User Name: Krishnaa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/03/19 09:53:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Krishnaa\Downloads\Programs\OTL.exe
PRC - [2013/03/11 05:52:07 | 001,274,320 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013/03/02 22:31:35 | 001,051,984 | ---- | M] (BitTorrent Inc.) -- C:\Users\Krishnaa\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2013/02/09 08:03:16 | 003,565,432 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2013/01/07 12:03:32 | 000,446,648 | ---- | M] (Sony) -- C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
PRC - [2012/12/20 18:44:28 | 000,310,280 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2012/12/20 18:44:26 | 001,476,104 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\Kies.exe
PRC - [2012/12/19 20:44:28 | 000,393,216 | ---- | M] (Box, Inc.) -- C:\Program Files\Box Sync\BoxSyncHelper.exe
PRC - [2012/12/19 20:44:26 | 008,706,560 | ---- | M] (Box, Inc.) -- C:\Program Files\Box Sync\BoxSync.exe
PRC - [2012/12/19 00:38:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/12/12 19:14:48 | 000,268,248 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2012/11/27 21:12:44 | 000,479,840 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
PRC - [2012/11/27 21:08:28 | 000,739,936 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
PRC - [2012/04/30 10:57:42 | 000,067,072 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
PRC - [2011/01/05 13:28:42 | 009,212,720 | ---- | M] () -- C:\Program Files\TK8 StickyNotes\TK8StickyNotes.exe
PRC - [2010/12/24 02:26:10 | 002,678,784 | ---- | M] (PACE Anti-Piracy, Inc.) -- C:\Program Files\Common Files\PACE\Services\LicenseServices\LDSvc.exe
PRC - [2009/07/14 06:44:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/14 06:44:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/05/07 14:03:54 | 000,524,288 | ---- | M] () -- C:\Windows\Samsung\PanelMgr\SSMMgr.exe


========== Modules (No Company Name) ==========

MOD - [2013/03/11 05:52:06 | 000,459,728 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.172\ppgooglenaclpluginchrome.dll
MOD - [2013/03/11 05:52:05 | 012,662,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.172\PepperFlash\pepflashplayer.dll
MOD - [2013/03/11 05:52:04 | 004,050,896 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.172\pdf.dll
MOD - [2013/03/11 05:51:18 | 000,596,944 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.172\libglesv2.dll
MOD - [2013/03/11 05:51:18 | 000,124,368 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.172\libegl.dll
MOD - [2013/03/11 05:51:16 | 001,552,848 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.172\ffmpegsumo.dll
MOD - [2013/01/05 19:58:39 | 013,033,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\cee852f723ad3f93fd585e2fea85d796\Kies.Theme.ni.dll
MOD - [2013/01/05 19:58:38 | 000,601,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePodcast\492cae9b165bfc6c0247dd66578f3b51\DevicePodcast.ni.dll
MOD - [2013/01/05 19:58:38 | 000,306,176 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DummyStorePlugin\6e81941463123613c57b16e60d0164b5\DummyStorePlugin.ni.dll
MOD - [2013/01/05 19:58:37 | 000,282,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceVideo\dba09b37e6ca5ba428250f4ec37ff886\DeviceVideo.ni.dll
MOD - [2013/01/05 19:58:36 | 000,332,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePhoto\dc3814e9818f4558adc5567349452d09\DevicePhoto.ni.dll
MOD - [2013/01/05 19:58:36 | 000,295,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceMusic\8118335dc3b0b8b325aba6ed23441db1\DeviceMusic.ni.dll
MOD - [2013/01/05 19:58:35 | 000,737,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PhotoManager\bd2bebfddbd510d96f6239fb7ec3e0f8\PhotoManager.ni.dll
MOD - [2013/01/05 19:58:35 | 000,448,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\VideoManager\146a7708f6dc490a194212c2c7582ccd\VideoManager.ni.dll
MOD - [2013/01/05 19:58:34 | 001,068,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Podcaster\c2f71cff6fe6a3b6bbafdb0febb7a676\Podcaster.ni.dll
MOD - [2013/01/05 19:58:20 | 000,038,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\a6836b2f35e71204d5c5cb306fa9a9c8\Kies.Common.DeviceServiceLib.FirmwareUpdate.FirmwareUpdateAgentHelper.ni.dll
MOD - [2013/01/05 19:58:19 | 006,205,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceHost\615d02d2496a33e13dc43e5bbe6fdcf2\DeviceHost.ni.dll
MOD - [2013/01/05 19:58:12 | 001,878,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Phonebook\263b0682e6ab292fc30909a828cdcda5\Phonebook.ni.dll
MOD - [2013/01/05 19:58:09 | 000,705,536 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Plugin.Content#\b0e9aaa96259c3e1e3b1b671145e2ed6\Kies.Plugin.ContentsManagerLib.ni.dll
MOD - [2013/01/05 19:58:08 | 000,906,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\MusicManager\d36f3a86951d608d4dcc1a056044693a\MusicManager.ni.dll
MOD - [2013/01/05 19:58:07 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\BATPlugin\0c5cbbf8778e210154a1c920aa8e6cf3\BATPlugin.ni.dll
MOD - [2013/01/05 19:58:04 | 000,512,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MediaDB\04f1381796568a552c473703bda8ab72\Kies.Common.MediaDB.ni.dll
MOD - [2013/01/05 19:58:04 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.StoreMa#\7eb4f7076060d8c712c38fa83cf25bc9\Kies.Common.StoreManager.ni.dll
MOD - [2013/01/05 19:58:02 | 000,281,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\0f90a2200019fd7f77821f7c177c2c8e\Kies.Common.DeviceServiceLib.FirmwareUpdate.Common.ni.dll
MOD - [2013/01/05 19:58:02 | 000,231,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\ab6025c00c09ef604cfe7f62ba6361bc\ASF_cSharpAPI.ni.dll
MOD - [2013/01/05 19:58:02 | 000,062,976 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\4700fb367bdb391d134e5bb2887b150e\Kies.Common.AllShare.ni.dll
MOD - [2013/01/05 19:58:01 | 000,189,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\ce78691189b1c5f7407d75a90c3ee0ba\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
MOD - [2013/01/05 19:58:00 | 000,175,616 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DevFileServ#\6b4e334fd4aad4f3a8087edd266bfd3c\Interop.DevFileServiceLib.ni.dll
MOD - [2013/01/05 19:57:59 | 000,563,712 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\8dd5624a6d84ad60a6e86a5345db02ab\Kies.Common.DeviceServiceLib.FileService.ni.dll
MOD - [2013/01/05 19:57:58 | 000,620,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3985678c4574c310c89104edbb569758\Kies.Common.DeviceServiceLib.DeviceDataService.ni.dll
MOD - [2013/01/05 19:57:55 | 000,183,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\7716aa3513e5c96e4524dc6f10a60dba\Kies.Common.DeviceServiceLib.Interface.ni.dll
MOD - [2013/01/05 19:57:53 | 000,904,704 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\a673311450d47e343111cbde22fe0120\Kies.Common.DeviceServiceLib.DeviceManagement.ni.dll
MOD - [2013/01/05 19:57:46 | 001,054,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\9298ed421172497625c298ba6ba4697b\Kies.Common.DeviceService.ni.dll
MOD - [2013/01/05 19:57:44 | 000,032,256 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.OGGFileInfo#\ce391dd8713fdaea3253ed5a348d1ba8\Interop.OGGFileInfoCOMLib.ni.dll
MOD - [2013/01/05 19:57:43 | 000,052,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.MP3FileInfo#\136a36200200a0b7863ef0065f18c752\Interop.MP3FileInfoCOMLib.ni.dll
MOD - [2013/01/05 19:57:43 | 000,030,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.PRPLAYERCOR#\59331ef312494080283ab800f5a83877\Interop.PRPLAYERCORELib.ni.dll
MOD - [2013/01/05 19:57:42 | 000,171,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.P3MPINTERFA#\6ca4f8ca79452da6fd0bc565837686c6\Interop.P3MPINTERFACECTRLLib.ni.dll
MOD - [2013/01/05 19:57:35 | 002,180,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Multime#\957f613ff0124bbf6d058bd4ea39ff7a\Kies.Common.Multimedia.ni.dll
MOD - [2013/01/05 19:57:31 | 000,197,632 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MainUI\9263dfa3cd73464b8f547685368cf611\Kies.Common.MainUI.ni.dll
MOD - [2013/01/05 19:57:27 | 000,066,048 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DBManag#\87598a4518f4f35a3962c303285d5be8\Kies.Common.DBManager.ni.dll
MOD - [2013/01/05 19:57:26 | 000,743,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ICSharpCode.SharpZi#\eb4f1b9af134329be9174e340d5effeb\ICSharpCode.SharpZipLib.ni.dll
MOD - [2013/01/05 19:57:26 | 000,108,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.CRMMana#\440c941bb0f89f808f30e9fb1cce0a38\Kies.Common.CRMManager.ni.dll
MOD - [2013/01/05 19:57:25 | 000,394,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CabLib\d5d257bc1793ee49fa1b670f46bf2c03\CabLib.ni.dll
MOD - [2013/01/05 19:57:25 | 000,276,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\e2eeb483c67bc76c8a5713873a85d8ad\Kies.Common.Util.ni.dll
MOD - [2013/01/05 19:57:23 | 000,052,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DeviceSearc#\f5a9500560608c5ff6c4c7dfd2b909c9\Interop.DeviceSearchLib.ni.dll
MOD - [2013/01/05 19:57:22 | 001,558,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\02b937555f422da7adaa8ad7c8955c3a\Kies.Locale.ni.dll
MOD - [2013/01/05 19:57:21 | 000,078,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\8b5fa5998b260881f0d929da18856878\Kies.MVVM.ni.dll
MOD - [2013/01/05 19:57:20 | 001,801,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\22fc6f496a9c3e11f225efb3c7018a8b\Kies.UI.ni.dll
MOD - [2013/01/05 19:57:17 | 000,154,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\GongSolutions.Wpf.D#\af714555a74b3d1eb69126719989a98e\GongSolutions.Wpf.DragDrop.ni.dll
MOD - [2013/01/05 19:57:14 | 001,215,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\4646babf0cd4772cce1911200be03a91\Kies.Interface.ni.dll
MOD - [2013/01/05 19:56:59 | 002,003,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\d8db32440624c688773163d91aecc455\Kies.ni.exe
MOD - [2013/01/05 19:44:27 | 017,632,256 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\3989b4ca6cf904061992daec9e7d5644\PresentationFramework.ni.dll
MOD - [2012/12/21 10:59:49 | 000,445,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\BoxSyncHelper\d8d5ea4022e5f0945ea15bb2773ee41f\BoxSyncHelper.ni.exe
MOD - [2012/12/21 10:59:48 | 001,762,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\753e0ccf945f0a77237145de21c75c23\Newtonsoft.Json.Net20.ni.dll
MOD - [2012/12/21 10:59:47 | 000,387,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Python.Runtime\62b2bbc2e61d04937ced0ad85c4d5e4c\Python.Runtime.ni.dll
MOD - [2012/12/21 10:59:46 | 000,248,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\BoxUtils\00eaecc0684f1942162cb9994671512d\BoxUtils.ni.dll
MOD - [2012/12/21 10:59:46 | 000,055,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\ZetaLongPaths\d81cf83ed04f887f8b18cfb68388224b\ZetaLongPaths.ni.dll
MOD - [2012/12/21 10:59:45 | 008,813,056 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\BoxSync\483300ed3e1bb6e6ddce8e96b530c67b\BoxSync.ni.exe
MOD - [2012/12/03 11:02:57 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\6e7f1bdc845816dfc797f8002b76b5e8\System.ServiceProcess.ni.dll
MOD - [2012/12/03 11:02:49 | 000,767,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll
MOD - [2012/12/03 11:02:31 | 001,776,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll
MOD - [2012/12/03 10:52:05 | 011,057,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll
MOD - [2012/12/03 10:51:58 | 003,779,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll
MOD - [2012/12/03 10:51:53 | 005,571,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll
MOD - [2012/12/03 10:51:51 | 000,973,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ac18c2dcd06bd2a0589bac94ccae5716\System.Configuration.ni.dll
MOD - [2012/12/03 10:51:49 | 007,025,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
MOD - [2012/12/03 10:51:44 | 009,000,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
MOD - [2012/12/03 10:51:40 | 014,415,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
MOD - [2012/11/27 15:13:40 | 000,585,728 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\PhoneUpdate.dll
MOD - [2012/11/07 16:25:36 | 000,204,288 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\MExplorer.dll
MOD - [2012/07/26 11:51:52 | 000,208,896 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\VistaCalendar.dll
MOD - [2012/07/16 16:40:32 | 000,721,920 | ---- | M] () -- C:\Program Files\Box Sync\_ssl.pyd
MOD - [2012/07/16 16:40:32 | 000,688,128 | ---- | M] () -- C:\Program Files\Box Sync\unicodedata.pyd
MOD - [2012/07/16 16:40:32 | 000,635,392 | ---- | M] () -- C:\Program Files\Box Sync\sqlite3.dll
MOD - [2012/07/16 16:40:32 | 000,285,184 | ---- | M] () -- C:\Program Files\Box Sync\_hashlib.pyd
MOD - [2012/07/16 16:40:32 | 000,152,576 | ---- | M] () -- C:\Program Files\Box Sync\pyexpat.pyd
MOD - [2012/07/16 16:40:32 | 000,111,616 | ---- | M] () -- C:\Program Files\Box Sync\win32file.pyd
MOD - [2012/07/16 16:40:32 | 000,110,080 | ---- | M] () -- C:\Program Files\Box Sync\pywintypes27.dll
MOD - [2012/07/16 16:40:32 | 000,108,544 | ---- | M] () -- C:\Program Files\Box Sync\win32security.pyd
MOD - [2012/07/16 16:40:32 | 000,098,816 | ---- | M] () -- C:\Program Files\Box Sync\win32api.pyd
MOD - [2012/07/16 16:40:32 | 000,093,696 | ---- | M] () -- C:\Program Files\Box Sync\_elementtree.pyd
MOD - [2012/07/16 16:40:32 | 000,073,216 | ---- | M] () -- C:\Program Files\Box Sync\_ctypes.pyd
MOD - [2012/07/16 16:40:32 | 000,057,344 | ---- | M] () -- C:\Program Files\Box Sync\_sqlite3.pyd
MOD - [2012/07/16 16:40:32 | 000,040,960 | ---- | M] () -- C:\Program Files\Box Sync\_socket.pyd
MOD - [2012/07/16 16:40:32 | 000,032,256 | ---- | M] () -- C:\Program Files\Box Sync\_testcapi.pyd
MOD - [2012/07/16 16:40:32 | 000,008,192 | ---- | M] () -- C:\Program Files\Box Sync\_win32sysloader.pyd
MOD - [2012/04/30 10:57:42 | 000,067,072 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
MOD - [2012/04/30 10:57:42 | 000,039,936 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\TMonitorAPI.dll
MOD - [2012/04/04 14:33:24 | 000,139,776 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\CAgdLNotes.dll
MOD - [2012/03/16 12:51:02 | 000,188,416 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\CAgdOutlook.dll
MOD - [2012/02/13 09:53:50 | 000,086,016 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\CalEngine.dll
MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/07/07 14:54:36 | 000,233,984 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\Report.dll
MOD - [2011/01/05 13:28:42 | 009,212,720 | ---- | M] () -- C:\Program Files\TK8 StickyNotes\TK8StickyNotes.exe
MOD - [2010/01/11 15:44:54 | 000,053,248 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\VObject.dll
MOD - [2009/07/14 10:15:49 | 000,997,888 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\6e033d390dc7e9567b6960b0f530cf30\System.Management.ni.dll
MOD - [2009/07/14 10:13:36 | 011,804,160 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\3871fc2b96345aa6f3be81d9e3c97160\System.Web.ni.dll
MOD - [2009/07/14 10:13:30 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\4bdeb88758dccd625f4703ed77aaf348\System.Runtime.Remoting.ni.dll
MOD - [2009/07/14 10:13:29 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\97adf9fccd70327b839a92c3d038b101\System.Transactions.ni.dll
MOD - [2009/07/14 10:13:28 | 006,618,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\7f457271e765b5d72f081942b829469c\System.Data.ni.dll
MOD - [2009/07/14 10:13:06 | 000,141,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\0a5b398e99c5cf468bda55d72b30f127\System.Configuration.Install.ni.dll
MOD - [2009/07/14 10:13:04 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fedf1ba58dced4f0b3f8c457648ceed9\System.Windows.Forms.ni.dll
MOD - [2009/07/14 10:12:57 | 001,586,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll
MOD - [2009/07/14 10:12:55 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\003d2d74243cab7e412d36416bbf0a3d\Accessibility.ni.dll
MOD - [2009/07/14 10:12:43 | 000,676,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Security\5588d54cbc98d72ed01194c6d4146073\System.Security.ni.dll
MOD - [2009/07/14 10:12:42 | 002,508,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\356f5e4920c4d818cacf0c5e834cc01e\System.Data.SqlXml.ni.dll
MOD - [2009/07/14 10:12:40 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll
MOD - [2009/07/14 10:12:37 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll
MOD - [2009/07/14 10:12:36 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll
MOD - [2009/07/14 10:12:30 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll
MOD - [2009/06/11 02:53:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2009/06/11 02:53:17 | 002,933,248 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2008/05/07 14:03:54 | 000,524,288 | ---- | M] () -- C:\Windows\Samsung\PanelMgr\SSMMgr.exe


========== Services (SafeList) ==========

SRV - [2013/03/15 12:15:20 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/19 00:38:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/11/27 21:12:44 | 000,479,840 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2012/10/11 06:35:59 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/01/18 13:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/01/04 13:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/12/24 02:26:10 | 002,678,784 | ---- | M] (PACE Anti-Piracy, Inc.) [Auto | Running] -- C:\Program Files\Common Files\PACE\Services\LicenseServices\LDSvc.exe -- (PaceLicenseDServices)
SRV - [2009/07/14 06:46:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 06:46:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 06:46:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 06:45:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [File_System | On_Demand | Stopped] -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Windows\system32\Drivers\SSPORT.sys -- (SSPORT)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Krishnaa\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2012/11/22 06:13:14 | 000,100,216 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2012/10/24 19:51:38 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2012/10/24 19:51:38 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2012/09/27 14:03:24 | 000,097,440 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SMR311.SYS -- (SMR311)
DRV - [2012/09/20 10:05:36 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012/09/20 10:05:36 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2012/01/09 17:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012/01/09 17:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012/01/09 17:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012/01/09 17:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011/12/09 15:35:58 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)
DRV - [2011/12/09 15:35:58 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)
DRV - [2011/12/09 15:35:58 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)
DRV - [2011/12/09 15:35:58 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)
DRV - [2010/12/30 15:19:40 | 000,016,640 | -H-- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys -- (Apowersoft_AudioDevice)
DRV - [2010/11/03 18:39:26 | 000,093,304 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TPkd.sys -- (TPkd)
DRV - [2010/04/05 22:06:20 | 000,224,424 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1k6232.sys -- (e1kexpress)
DRV - [2010/02/03 19:06:36 | 000,232,960 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcDAud.sys -- (IntcDAud)
DRV - [2009/09/17 19:54:14 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI)
DRV - [2009/07/14 06:49:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009/07/14 06:49:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 06:49:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009/07/14 05:21:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 04:58:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 04:58:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2008/08/26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/08/13 08:18:57 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2005/07/22 10:20:04 | 001,275,776 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\P16X.sys -- (P16X)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylo...0003860777ba906
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 96 30 6C FC 1B 31 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0003860777ba906
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/10/16 19:54:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/02/22 13:29:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Krishnaa\AppData\Roaming\IDM\idmmzcc5 [2013/02/09 08:08:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\Krishnaa\AppData\Roaming\IDM\idmmzcc5 [2013/02/09 08:08:09 | 000,000,000 | ---D | M]

[2012/10/16 19:54:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/10/11 06:36:18 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/11/03 12:29:20 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2013/01/13 12:59:03 | 000,006,520 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/10/11 06:35:38 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/10/11 06:35:38 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage:
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.172\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.172\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: BitCometAgent (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Web Player\npdivx32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - Extension: YouTube = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Slinky Elegant = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0\
CHR - Extension: Google Search = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: AdBlock = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\
CHR - Extension: IDM Integration = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.15.5_0\
CHR - Extension: Google Maps = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0\
CHR - Extension: Gmail = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
CHR - Extension: YouTube = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Slinky Elegant = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0\
CHR - Extension: Google Search = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: AdBlock = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\
CHR - Extension: IDM Integration = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.15.5_0\
CHR - Extension: Google Maps = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0\
CHR - Extension: Gmail = \Users\Krishnaa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/03/12 06:06:11 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BoxSyncHelper] C:\Program Files\Box Sync\BoxSyncHelper.exe (Box, Inc.)
O4 - HKLM..\Run: [Everything] C:\Program Files\Everything\Everything.exe ()
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [NSU_agent] C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe ()
O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
O4 - HKLM..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_4146831668FEA1F68C3484BF16391934] C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O4 - HKCU..\Run: [TK8 StickyNotes] C:\Program Files\TK8 StickyNotes\TK8StickyNotes.exe ()
O4 - HKCU..\Run: [uTorrent] C:\Users\Krishnaa\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Free YouTube Download - C:\Users\Krishnaa\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Krishnaa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9EC3EDC5-516E-4FDE-A250-651712AC3971}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 03:12:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/03/17 17:39:08 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Software
[2013/03/17 17:39:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
[2013/03/17 17:39:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphics Related Programs
[2013/03/17 17:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software
[2013/03/12 06:07:27 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/03/12 06:07:27 | 000,000,000 | -HSD | C] -- \$RECYCLE.BIN
[2013/03/12 05:55:53 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/03/12 05:55:53 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/03/12 05:55:53 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/03/12 05:55:51 | 000,000,000 | ---D | C] -- C:\ComboFix
[2013/03/12 05:55:51 | 000,000,000 | ---D | C] -- \ComboFix
[2013/03/12 05:55:49 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/03/12 05:55:49 | 000,000,000 | ---D | C] -- \Qoobox
[2013/03/12 05:55:26 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/03/01 19:15:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
[2013/02/28 19:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/02/28 18:52:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/02/28 18:52:15 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013/02/28 18:52:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/02/28 18:52:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/02/26 18:48:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlyteDownloadManager
[2013/02/26 18:48:02 | 000,000,000 | ---D | C] -- C:\Program Files\FlyteDownloadManager
[2013/02/24 13:57:47 | 000,000,000 | ---D | C] -- C:\tmp
[2013/02/24 13:57:47 | 000,000,000 | ---D | C] -- \tmp
[2013/02/24 13:56:44 | 000,000,000 | ---D | C] -- C:\PDF2JPG
[2013/02/24 13:56:44 | 000,000,000 | ---D | C] -- \PDF2JPG
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/03/19 09:41:00 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/03/19 09:40:18 | 000,020,688 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/03/19 09:40:18 | 000,020,688 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/03/19 09:37:28 | 005,564,454 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/03/19 09:37:28 | 001,778,000 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/03/19 09:33:14 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/03/19 09:33:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/03/19 09:33:03 | 2558,513,152 | -HS- | M] () -- C:\hiberfil.sys
[2013/03/18 22:05:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/03/12 06:06:11 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013/03/02 22:34:35 | 000,000,830 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013/02/28 18:47:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2013/02/28 18:47:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/03/17 17:39:03 | 000,001,134 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion Image Converter.lnk
[2013/03/12 05:55:53 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/03/12 05:55:53 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/03/12 05:55:53 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/03/12 05:55:53 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/03/12 05:55:53 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/03/01 19:15:34 | 000,002,174 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 2.0.lnk
[2013/03/01 19:10:32 | 000,000,830 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
[2013/02/28 18:47:52 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2013/02/28 18:47:52 | 000,000,000 | RHS- | C] () -- \MSDOS.SYS
[2013/02/28 18:47:52 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2013/02/28 18:47:52 | 000,000,000 | RHS- | C] () -- \IO.SYS
[2013/01/20 13:45:48 | 000,000,116 | ---- | C] () -- C:\Users\Krishnaa\Untitled.m
[2012/12/18 10:06:10 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012/12/18 10:06:06 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012/12/18 10:06:06 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012/12/18 10:06:06 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012/12/18 10:06:06 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012/11/07 15:37:07 | 000,000,386 | ---- | C] () -- C:\Windows\{DB261EC9-3989-4982-ADCD-387DF3DF1E7D}_WiseFW.ini
[2012/07/07 12:58:28 | 000,000,249 | ---- | C] () -- \user.js
[2012/04/17 11:50:38 | 000,001,095 | ---- | C] () -- C:\Users\Krishnaa\Documents - Shortcut.lnk
[2012/02/28 23:01:28 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2012/02/07 19:16:01 | 000,172,032 | ---- | C] () -- C:\Windows\System32\SecSNMP.dll
[2012/02/06 01:26:03 | 2558,513,152 | -HS- | C] () -- \hiberfil.sys
[2012/02/05 18:42:40 | 000,479,232 | ---- | C] () -- C:\Windows\ssndii.exe
[2012/02/05 18:42:29 | 000,022,723 | ---- | C] () -- C:\Windows\System32\cl31cl3.dll
[2012/02/05 12:27:28 | 000,000,155 | ---- | C] () -- C:\Windows\winamp.ini
[2012/02/05 12:08:18 | 000,870,560 | ---- | C] () -- C:\Windows\System32\igkrng575.bin
[2012/02/05 12:08:18 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll
[2012/02/05 12:08:18 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll
[2012/02/05 12:08:18 | 000,127,868 | ---- | C] () -- C:\Windows\System32\igcompkrng575.bin
[2012/02/05 12:08:18 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igfcg575m.bin
[2012/02/05 12:08:18 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[2012/02/05 12:08:18 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009/07/14 07:34:04 | 000,000,024 | ---- | C] () -- \autoexec.bat
[2009/07/14 07:34:04 | 000,000,010 | ---- | C] () -- \config.sys

========== ZeroAccess Check ==========

[2009/07/14 10:12:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 06:46:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 06:45:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 06:46:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========


========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 168 bytes -> C:\ProgramData\TEMP:F7DE749F

< End of report >
  • 0

#37
Jintan
Posted 19 March 2013 - 04:44 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Right click on that Bluetooth Peripheral Device, and select Uninstall. Decline to delete files if asked.

If the device exists on the system, Windows will ID it on reboot and install the drivers for it. Checking to see if it was just a temp device left unused, and causing problems.
  • 0

#38
Krishnaa
Posted 19 March 2013 - 10:09 PM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
Did that and restarted, and it again showed device not found. I'm attaching the screenshot.

And, the hotplug.dll error is still there when ejecting drives.

Attached Thumbnails

  • Bluetooth device.png

  • 0

#39
Jintan
Posted 20 March 2013 - 04:43 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Right click on that Bluetooth Peripheral Device, select Properties, Details tab. Change the dropdown to read "Hardware Ids", then write down and post back here what shows as the PCI\VEN info please.
  • 0

#40
Krishnaa
Posted 20 March 2013 - 10:51 PM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
I can't find "PCI\VEN" written anywhere, but here's what it says after selecting Hardware Ids. There are two values.

BTHENUM\{00000002-0000-1000-8000-0002ee000002}_VID&00010001_PID&00df
BTHENUM\{00000002-0000-1000-8000-0002ee000002}_LOCALMFG&000a
  • 0

Advertisements

#41
Krishnaa
Posted 03 April 2013 - 07:08 AM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
The error still keeps coming up! Any idea?
  • 0

#42
Jintan
Posted 03 April 2013 - 04:46 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
I'm sorry. I missed that you had posted an update, so thanks for the nudge post.

Can you check something please? Right click Computer, left click Properties. Do you have Service Pack 1 installed (it will show under Windows 7)?
  • 0

#43
Krishnaa
Posted 03 April 2013 - 09:35 PM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
That's alright.

It just says "Windows 7 Professional" under Windows edition.
  • 0

#44
Jintan
Posted 04 April 2013 - 04:57 PM

Jintan

    Trusted Helper

  • Malware Removal
  • 904 posts
Go here and download windows6.1-KB976932-X86.exe. Then close all open programs, temp disable any security software and click to install Service Pack 1. Reboot after, establish an Internet connection, go to Control Panel - Windows Update, and run an update. Reboot after and post back on the status of things then please.
  • 0

#45
Krishnaa
Posted 08 April 2013 - 12:22 AM

Krishnaa

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
I installed SP1 and when it was rebooting, I got the blue screen error. I had to use Startup Repair and restore the system using System Restore. I'm attaching a photo of the BSOD.

On a side note, (it might be unrelated for all I know) I had to remove the CMOS battery and insert it again earlier because when I switched on the CPU it was running but the monitor didn't turn on at all.

Attached Thumbnails

  • BSOD.jpg

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP