Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Various BSODs

Started by Kicktar , Aug 28 2013 04:42 PM

  • Please log in to reply

#1
Kicktar
Posted 28 August 2013 - 04:42 PM

Kicktar

    Member

  • Member
  • PipPip
  • 37 posts
I've been working with rshaffer61 and xBlueRobot over here thinking it was hardware/software related, but it was suggested that it might be an infection. I've done a full scan with Comodo Antivirus and had a bluescreen since, and everything else I have done is in the afore mentioned thread.

OTL Log:
OTL logfile created on: 8/27/2013 5:44:33 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = F:\Users\C. Daniel\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16660)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
2.00 Gb Total Physical Memory | 0.50 Gb Available Physical Memory | 25.08% Memory free
4.00 Gb Paging File | 0.91 Gb Available in Paging File | 22.81% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 59.53 Gb Total Space | 29.91 Gb Free Space | 50.25% Space Free | Partition Type: NTFS
Drive D: | 298.09 Gb Total Space | 4.55 Gb Free Space | 1.53% Space Free | Partition Type: NTFS
Drive E: | 100.00 Mb Total Space | 70.22 Mb Free Space | 70.23% Space Free | Partition Type: NTFS
Drive F: | 465.66 Gb Total Space | 134.76 Gb Free Space | 28.94% Space Free | Partition Type: NTFS
 
Computer Name: CDANIEL-PC | User Name: C. Daniel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013/08/27 17:44:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\Users\C. Daniel\Downloads\OTL.exe
PRC - [2013/08/26 17:25:31 | 003,549,528 | ---- | M] (Electronic Arts) -- C:\Program Files (x86)\Origin\Origin.exe
PRC - [2013/08/26 12:59:58 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013/08/15 23:21:43 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/08/01 07:20:22 | 002,095,808 | ---- | M] () -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
PRC - [2013/07/26 18:46:22 | 001,807,272 | ---- | M] (Valve Corporation) -- D:\Program Files (x86)\Steam\Steam.exe
PRC - [2013/07/24 08:50:04 | 000,224,464 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Comodo\GeekBuddy\unit_manager.exe
PRC - [2013/07/24 08:50:04 | 000,213,712 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Comodo\GeekBuddy\unit.exe
PRC - [2013/07/24 08:50:04 | 000,070,352 | ---- | M] (Comodo Security Solutions Inc.) -- C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
PRC - [2013/07/15 10:07:30 | 007,162,744 | ---- | M] (Innovative Solutions) -- F:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe
PRC - [2013/07/11 21:27:24 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
PRC - [2013/06/28 14:02:06 | 002,255,184 | ---- | M] (LogMeIn Inc.) -- F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2013/05/30 08:47:44 | 001,851,088 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
PRC - [2013/05/24 20:47:30 | 027,776,968 | ---- | M] (Dropbox, Inc.) -- F:\Users\C. Daniel\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2013/05/22 17:34:24 | 000,395,104 | ---- | M] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) -- C:\Program Files (x86)\Evernote\Evernote\EvernoteTray.exe
PRC - [2013/05/22 17:34:22 | 012,113,760 | ---- | M] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) -- C:\Program Files (x86)\Evernote\Evernote\Evernote.exe
PRC - [2013/03/02 11:33:04 | 001,086,816 | ---- | M] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) -- F:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
PRC - [2012/02/21 19:39:30 | 002,043,904 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
PRC - [2010/04/16 16:10:58 | 000,036,864 | ---- | M] (Realtek) -- C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
PRC - [2009/12/28 21:33:02 | 000,096,896 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013/08/26 17:25:32 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Origin\tufao.dll
MOD - [2013/08/15 23:21:41 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppgooglenaclpluginchrome.dll
MOD - [2013/08/15 23:21:40 | 013,594,064 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll
MOD - [2013/08/15 23:21:39 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll
MOD - [2013/08/15 23:20:49 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\libglesv2.dll
MOD - [2013/08/15 23:20:48 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\libegl.dll
MOD - [2013/08/15 23:20:46 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ffmpegsumo.dll
MOD - [2013/07/26 18:46:24 | 001,122,216 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2013/07/15 18:32:40 | 020,625,832 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2013/07/15 10:07:36 | 000,009,088 | ---- | M] () -- F:\Program Files (x86)\Innovative Solutions\DriverMax\sync.dll
MOD - [2013/07/01 12:20:48 | 000,652,800 | ---- | M] () -- D:\Program Files (x86)\Steam\SDL2.dll
MOD - [2013/06/14 19:49:12 | 001,100,800 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avcodec-53.dll
MOD - [2013/06/14 19:49:12 | 000,192,000 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avformat-53.dll
MOD - [2013/06/14 19:49:12 | 000,124,416 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avutil-51.dll
MOD - [2013/03/29 11:00:22 | 021,113,344 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libcef.dll
MOD - [2013/03/29 11:00:04 | 000,133,134 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\avutil-51.dll
MOD - [2013/03/29 11:00:02 | 000,983,054 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\avcodec-54.dll
MOD - [2013/03/29 11:00:02 | 000,189,454 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\avformat-54.dll
MOD - [2013/03/13 16:48:52 | 024,978,944 | ---- | M] () -- F:\Users\C. Daniel\AppData\Roaming\Dropbox\bin\libcef.dll
MOD - [2012/11/13 19:32:50 | 003,558,400 | ---- | M] () -- F:\Users\C. Daniel\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2012/09/08 13:16:30 | 000,433,664 | ---- | M] () -- F:\Program Files (x86)\Evernote\Evernote\libxml2.dll
MOD - [2012/09/08 13:16:30 | 000,433,664 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
MOD - [2012/09/08 13:16:20 | 000,315,392 | ---- | M] () -- F:\Program Files (x86)\Evernote\Evernote\libtidy.dll
MOD - [2012/09/08 13:16:20 | 000,315,392 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2013/07/08 21:59:42 | 006,199,520 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:[b]64bit:[/b] - [2013/06/18 16:15:30 | 000,158,936 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:[b]64bit:[/b] - [2013/06/18 01:22:52 | 000,027,768 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV:[b]64bit:[/b] - [2013/05/27 01:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2013/04/24 16:52:06 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013/08/26 12:59:58 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013/08/01 07:20:22 | 002,095,808 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2013/07/27 23:07:54 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/07/25 08:52:52 | 000,162,672 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/07/24 08:50:04 | 000,070,352 | ---- | M] (Comodo Security Solutions Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe -- (CLPSLauncher)
SRV - [2013/07/15 13:07:27 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/28 14:02:04 | 002,470,736 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2013/05/30 08:47:44 | 001,851,088 | ---- | M] (Comodo Security Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe -- (GeekBuddyRSP)
SRV - [2010/04/16 16:10:58 | 000,036,864 | ---- | M] (Realtek) [Auto | Running] -- C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe -- (Realtek11nSU)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/12/28 21:33:02 | 000,096,896 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2013/08/03 23:08:34 | 000,509,144 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rtenic64.sys -- (RTLE8023x64)
DRV:[b]64bit:[/b] - [2013/08/01 10:29:14 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2013/07/24 12:24:48 | 002,355,416 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTWlanU.sys -- (RtlWlanu)
DRV:[b]64bit:[/b] - [2013/07/05 10:40:38 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2013/06/18 16:16:08 | 000,023,168 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd)
DRV:[b]64bit:[/b] - [2013/06/18 01:22:52 | 002,211,528 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:[b]64bit:[/b] - [2013/05/23 08:12:56 | 000,040,728 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV:[b]64bit:[/b] - [2013/05/23 08:12:52 | 000,059,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:[b]64bit:[/b] - [2013/05/23 08:12:50 | 000,076,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:[b]64bit:[/b] - [2013/04/24 17:19:22 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:[b]64bit:[/b] - [2013/04/24 17:19:22 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2013/04/24 15:48:16 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2013/03/14 22:17:46 | 000,021,600 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdkmafd.sys -- (amdkmafd)
DRV:[b]64bit:[/b] - [2012/10/05 15:26:20 | 000,132,608 | ---- | M] (Unibrain) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ubohci.sys -- (ubohci)
DRV:[b]64bit:[/b] - [2012/10/05 10:57:02 | 000,092,160 | ---- | M] (Unibrain) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\UBUMAPI.sys -- (ubumapi)
DRV:[b]64bit:[/b] - [2012/10/05 10:56:40 | 000,024,064 | ---- | M] (Unibrain) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\UBSBM.sys -- (ubsbm)
DRV:[b]64bit:[/b] - [2012/08/23 10:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012/08/23 10:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2012/08/23 10:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2012/08/02 16:50:48 | 000,031,024 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LPCFilter.sys -- (LPCFilter)
DRV:[b]64bit:[/b] - [2012/05/23 06:57:04 | 000,183,144 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv61xx.sys -- (mv61xx)
DRV:[b]64bit:[/b] - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011/11/22 04:36:50 | 000,848,384 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtl8192cu.sys -- (RTL8192cu)
DRV:[b]64bit:[/b] - [2011/10/20 11:24:06 | 000,157,696 | ---- | M] (Matrox Graphics Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\MxEFUF64.sys -- (MxEFUF)
DRV:[b]64bit:[/b] - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010/11/20 23:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/04/27 16:57:20 | 000,016,200 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV:[b]64bit:[/b] - [2010/04/27 16:57:12 | 000,026,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV:[b]64bit:[/b] - [2010/04/27 14:03:12 | 000,077,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV:[b]64bit:[/b] - [2010/04/27 14:02:42 | 000,043,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV:[b]64bit:[/b] - [2009/08/21 01:52:10 | 000,079,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:[b]64bit:[/b] - [2009/07/16 11:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:[b]64bit:[/b] - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/06/10 16:35:42 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/03/18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2012/08/01 15:44:04 | 000,014,544 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys -- (WinRing0_1_2_0)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.16
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0
 
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: F:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: F:\Users\C. Daniel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: F:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: F:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012/10/06 10:14:38 | 000,000,000 | ---D | M] (No name found) -- F:\Users\C. Daniel\AppData\Roaming\mozilla\Extensions
[2013/07/30 13:28:04 | 000,000,000 | ---D | M] (No name found) -- F:\Users\C. Daniel\AppData\Roaming\mozilla\Firefox\Profiles\7y5aiwik.default\extensions
[2013/06/26 15:39:15 | 000,000,000 | ---D | M] (getsav-in) -- F:\Users\C. Daniel\AppData\Roaming\mozilla\Firefox\Profiles\7y5aiwik.default\extensions\[email protected]
[2013/06/18 13:43:02 | 000,000,000 | ---D | M] (No name found) -- F:\Users\C. Daniel\AppData\Roaming\mozilla\Firefox\Profiles\8nafh8c7.default-1351730278512\extensions
[2013/04/30 15:42:48 | 000,213,470 | ---- | M] () (No name found) -- F:\Users\C. Daniel\AppData\Roaming\mozilla\firefox\profiles\7y5aiwik.default\extensions\[email protected]
[2013/07/30 13:28:04 | 000,714,654 | ---- | M] () (No name found) -- F:\Users\C. Daniel\AppData\Roaming\mozilla\firefox\profiles\7y5aiwik.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: 
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Free Download Manager Click Catcher Plug-In for Netscape, Opera, Mozilla (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\plugins\npfdm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Uplay PC (Enabled) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\C. Daniel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll
CHR - Extension: Google Translate = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.5_0\
CHR - Extension: Adblock Plus = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0\
CHR - Extension: Black = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eoonlphbpioekooiogpokkgbmjciceik\1.1_0\
CHR - Extension: avast! Online Security = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: TweetDeck = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl\3.1.4_0\
CHR - Extension: Wolfram|Alpha (Official) = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icncamkooinmbehmkeilcccmoljfkdhp\1.2.2_0\
CHR - Extension: Google Mail Checker = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\
CHR - Extension: Chrome In-App Payments service = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Blue Space Sunset Chrome Theme  = F:\Users\C. Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nndfdjfoclbidmgpmbelcieibgjjfdog\3.5_0\
 
O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (no name) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - No CLSID value found.
O2 - BHO: (no name) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Evernote extension) - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - F:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe (COMODO)
O4:[b]64bit:[/b] - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4:[b]64bit:[/b] - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [BCSSync] F:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Cpu Level Up help] "F:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe" File not found
O4 - HKLM..\Run: [gbrspcontrol] C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe (Comodo Security Solutions, Inc.)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKCU..\Run: [DriverMax] F:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
O4 - HKCU..\Run: [DriverMax_RESTART] F:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Steam] D:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - Startup: F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = F:\Users\C. Daniel\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Evernote.lnk = C:\Program Files (x86)\Evernote\Evernote\Evernote.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O4 - Startup: F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk = F:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:[b]64bit:[/b] - Extra context menu item: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8:[b]64bit:[/b] - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8:[b]64bit:[/b] - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8:[b]64bit:[/b] - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8:[b]64bit:[/b] - Extra context menu item: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8 - Extra context menu item: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8 - Extra context menu item: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24619C2D-521C-4E94-9299-65B5E4B7F0D8}: DhcpNameServer = 208.67.222.222 208.67.220.220
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/08/27 10:36:27 | 000,001,853 | ---- | M] () - C:\autoupdate.log -- [ NTFS ]
O33 - MountPoints2\{8e13e889-e99b-11e2-bcec-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{8e13e889-e99b-11e2-bcec-806e6f6e6963}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL http://www.ultimatebootcd.com/
O33 - MountPoints2\{d13b38f1-fab5-11e2-819b-bcaec5b3213a}\Shell - "" = AutoRun
O33 - MountPoints2\{d13b38f1-fab5-11e2-819b-bcaec5b3213a}\Shell\AutoRun\command - "" = H:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013/08/26 13:00:18 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2013/08/24 16:13:21 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BeamNG-Techdemo-0.3
[2013/08/20 22:15:46 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\Documents\Razer
[2013/08/20 22:12:15 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Razer
[2013/08/20 22:12:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
[2013/08/20 22:12:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Razer
[2013/08/20 22:12:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Razer
[2013/08/20 11:36:46 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\Documents\Gaslamp Games
[2013/08/16 19:49:25 | 000,000,000 | ---D | C] -- C:\ProgramData\WarThunder
[2013/08/16 14:17:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2013/08/16 10:08:13 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core
[2013/08/16 10:08:11 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Logs
[2013/08/15 13:06:49 | 000,447,752 | ---- | C] (On2.com) -- C:\Windows\SysWow64\vp6vfw.dll
[2013/08/15 03:04:06 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/08/15 03:04:06 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/08/15 03:04:06 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/08/15 03:04:05 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/08/15 03:04:05 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/08/15 03:04:05 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/08/15 03:04:05 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/08/15 03:04:05 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/08/15 03:04:05 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/08/15 03:04:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/08/15 03:04:05 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/08/15 03:04:04 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/08/15 03:04:04 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/08/15 03:04:04 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/08/15 03:04:04 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/08/14 19:19:30 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Criterion Games
[2013/08/14 18:58:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Belkin
[2013/08/14 16:49:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\DSS
[2013/08/14 16:49:56 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\Documents\EA Games
[2013/08/14 15:46:52 | 000,183,144 | ---- | C] (Marvell Semiconductor, Inc.) -- C:\Windows\SysNative\drivers\mv61xx.sys
[2013/08/14 15:46:52 | 000,041,984 | ---- | C] (<Marvell>) -- C:\Windows\SysNative\mvcoinst.dll
[2013/08/14 15:46:52 | 000,014,696 | ---- | C] (Marvell Semiconductor Inc.) -- C:\Windows\SysNative\drivers\mv61xxmm.sys
[2013/08/14 15:46:20 | 000,059,160 | ---- | C] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LMouFilt.Sys
[2013/08/14 15:46:20 | 000,053,016 | ---- | C] (Logitech, Inc.) -- C:\Windows\SysNative\LMouFiltCoInst.dll
[2013/08/14 15:44:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2013/08/14 15:44:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REALTEK 11n USB Wireless LAN Utility
[2013/08/14 15:44:02 | 000,694,376 | ---- | C] (Realtek Semiconductor Corporation                           ) -- C:\Windows\SysNative\drivers\rtl8192su.sys
[2013/08/14 15:44:02 | 000,584,704 | ---- | C] (Realtek Semiconductor Corp. ) -- C:\Windows\SysNative\Rtlihvs.dll
[2013/08/14 15:44:00 | 000,614,400 | ---- | C] (Realtek Semiconductor Corp. ) -- C:\Windows\SysWow64\Rtlihvs.dll
[2013/08/14 15:44:00 | 000,380,928 | ---- | C] (Realtek) -- C:\Windows\RtlUI2.exe
[2013/08/14 15:44:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\REALTEK
[2013/08/14 14:58:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
[2013/08/14 14:57:08 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Origin
[2013/08/14 14:56:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2013/08/14 14:56:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2013/08/14 14:56:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2013/08/14 14:56:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2013/08/14 10:22:16 | 001,472,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/08/14 10:22:16 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2013/08/14 10:22:16 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2013/08/14 10:22:04 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/08/14 10:22:04 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/08/14 10:22:04 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2013/08/14 10:22:03 | 003,913,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/08/14 10:22:02 | 005,550,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/08/14 10:22:02 | 003,968,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/08/14 10:22:02 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/08/14 10:22:02 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/08/14 10:22:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/08/14 10:22:01 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/08/14 10:22:01 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/08/14 10:22:01 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/08/14 10:22:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/08/13 16:57:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
[2013/08/13 16:57:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Western Digital Corporation
[2013/08/13 16:51:06 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Seagate
[2013/08/13 16:51:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seagate
[2013/08/13 15:12:18 | 000,076,568 | ---- | C] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LHidFilt.Sys
[2013/08/13 15:11:09 | 002,099,480 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
[2013/08/13 15:11:09 | 000,070,776 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\VtSrdAPO.dll
[2013/08/13 15:11:08 | 003,283,632 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\VIAPropPageExt.dll
[2013/08/13 15:11:08 | 001,093,632 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\VMAPO264.DLL
[2013/08/13 15:11:08 | 000,909,824 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\VMAPO232.DLL
[2013/08/13 15:11:08 | 000,690,352 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\VIASysFx.dll
[2013/08/13 15:11:07 | 002,211,528 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\drivers\viahduaa.sys
[2013/08/13 15:11:07 | 001,845,424 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\ViaMicArrayAPO.dll
[2013/08/13 15:11:07 | 001,161,336 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\ViaKaraokeApo.dll
[2013/08/13 15:11:07 | 000,123,512 | ---- | C] (VIA Technologies,Inc.) -- C:\Windows\SysNative\ViaKaraokePropPageExt.dll
[2013/08/13 15:11:07 | 000,095,352 | ---- | C] (VIA Technologies,Inc.) -- C:\Windows\SysNative\ViaMicArrayPropPageExt.dll
[2013/08/13 15:11:07 | 000,027,768 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\ViakaraokeSrv.exe
[2013/08/13 15:11:05 | 009,208,088 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVIA64.dll
[2013/08/13 15:11:05 | 000,055,416 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\PropPageExt.dll
[2013/08/13 15:11:04 | 000,908,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2013/08/13 15:11:04 | 000,248,952 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\Dts2APO.dll
[2013/08/13 15:11:04 | 000,092,280 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\SysNative\Dts2PropPageExt.dll
[2013/08/12 19:06:33 | 000,000,000 | ---D | C] -- C:\ProgramData\RELOADED
[2013/08/12 19:05:44 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Galaxy on Fire 2 Full HD
[2013/08/12 18:23:01 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portable Programs
[2013/08/12 18:23:01 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1-click run
[2013/08/10 19:01:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ManiaPlanet
[2013/08/10 11:12:18 | 000,509,144 | ---- | C] (Realtek Semiconductor Corporation                           ) -- C:\Windows\SysNative\drivers\Rtenic64.sys
[2013/08/10 11:12:18 | 000,108,760 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2013/08/10 11:12:18 | 000,074,456 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RtNicProp64.dll
[2013/08/10 11:11:03 | 000,157,696 | ---- | C] (Matrox Graphics Inc.) -- C:\Windows\SysNative\drivers\MxEFUF64.sys
[2013/08/08 22:51:13 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\OpenOffice
[2013/08/08 22:50:41 | 000,000,000 | --SD | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.0
[2013/08/08 22:50:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice 4
[2013/08/08 22:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2013/08/08 22:40:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2013/08/08 22:40:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2013/08/08 22:40:08 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Microsoft Help
[2013/08/08 22:40:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2013/08/08 18:50:28 | 000,031,024 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\LPCFilter.sys
[2013/08/08 18:49:36 | 000,021,600 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\amdkmafd.sys
[2013/08/07 17:49:59 | 000,018,960 | ---- | C] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LNonPnP.sys
[2013/08/07 17:49:57 | 001,843,992 | ---- | C] (Logitech, Inc.) -- C:\Windows\SysNative\LkmdfCoInst.dll
[2013/08/07 17:49:57 | 000,040,728 | ---- | C] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LUsbFilt.sys
[2013/08/07 17:49:29 | 000,110,080 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\DelayAPO.dll
[2013/08/07 17:49:29 | 000,096,256 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\AtihdW76.sys
[2013/08/07 12:36:03 | 000,000,000 | ---D | C] -- C:\ProgramData\WildTangent
[2013/08/07 01:51:07 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\stetic
[2013/08/07 01:51:03 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\MonoDevelop-Unity-2.8
[2013/08/07 01:50:44 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\MonoDevelop-Unity-2.8
[2013/08/07 00:35:39 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\Documents\New Unity Project
[2013/08/07 00:30:34 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Apple Computer
[2013/08/07 00:30:34 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Apple Computer
[2013/08/07 00:30:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Unity
[2013/08/07 00:29:54 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Unity Projects
[2013/08/07 00:29:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity
[2013/08/06 19:39:06 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\Documents\Tilted Mill
[2013/08/06 17:41:44 | 002,355,416 | ---- | C] (Realtek Semiconductor Corporation                           ) -- C:\Windows\SysNative\drivers\RTWlanU.sys
[2013/08/06 14:36:33 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mass Effect 2
[2013/08/06 14:36:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mass Effect 2
[2013/08/05 20:00:42 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Sword of the Stars - The Pit
[2013/08/05 14:03:48 | 000,187,392 | ---- | C] (Unibrain) -- C:\Windows\SysNative\drivers\UB1394.sys
[2013/08/05 14:03:48 | 000,132,608 | ---- | C] (Unibrain) -- C:\Windows\SysNative\drivers\ubohci.sys
[2013/08/05 14:03:48 | 000,092,160 | ---- | C] (Unibrain) -- C:\Windows\SysNative\drivers\UBUMAPI.sys
[2013/08/05 14:03:48 | 000,024,064 | ---- | C] (Unibrain) -- C:\Windows\SysNative\drivers\UBSBM.sys
[2013/08/05 12:54:20 | 004,782,960 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2013/08/05 12:54:20 | 000,069,632 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_8.97.100.dll
[2013/08/05 12:54:20 | 000,061,464 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll
[2013/08/05 12:54:20 | 000,048,544 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2013/08/05 12:54:19 | 001,978,240 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdmv.dll
[2013/08/05 12:54:18 | 006,288,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2013/08/05 12:54:18 | 004,292,192 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2013/08/05 12:54:18 | 001,065,720 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6v.dll
[2013/08/05 12:54:16 | 019,584,512 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2013/08/05 12:54:16 | 007,528,440 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2013/08/05 12:54:16 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2013/08/05 12:54:16 | 000,051,152 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2013/08/05 12:54:16 | 000,038,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2013/08/05 12:54:14 | 026,017,280 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2013/08/05 12:54:14 | 000,332,800 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIODE.exe
[2013/08/05 12:54:14 | 000,051,200 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIODCLI.exe
[2013/08/05 12:54:13 | 000,021,504 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2013/08/05 12:54:12 | 011,922,944 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2013/08/05 12:54:12 | 000,359,936 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2013/08/05 12:54:12 | 000,062,976 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2013/08/05 12:54:12 | 000,062,976 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[2013/08/05 12:54:12 | 000,062,464 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2013/08/05 12:54:12 | 000,062,464 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2013/08/05 12:54:11 | 007,560,424 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atidxx64.dll
[2013/08/05 12:54:11 | 000,514,048 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2013/08/05 12:54:11 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2013/08/05 12:54:11 | 000,041,984 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2013/08/05 12:54:11 | 000,033,280 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2013/08/05 12:54:11 | 000,017,920 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2013/08/05 12:54:11 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2013/08/05 12:54:11 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2013/08/05 12:54:10 | 006,857,392 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2013/08/05 12:54:10 | 001,094,024 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2013/08/05 12:54:10 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2013/08/05 12:54:09 | 015,827,456 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2013/08/05 12:54:09 | 000,929,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2013/08/05 12:54:09 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2013/08/05 12:54:09 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2013/08/05 12:54:08 | 013,402,112 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2013/08/05 12:54:07 | 000,364,544 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2013/08/05 12:54:07 | 000,159,744 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2013/08/05 12:54:07 | 000,118,784 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atibtmon.exe
[2013/08/05 12:54:07 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2013/08/05 12:54:07 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2013/08/05 12:54:06 | 000,535,552 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2013/08/05 12:54:06 | 000,053,248 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2013/08/05 12:54:06 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2013/08/05 12:10:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
[2013/08/02 20:43:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2013/08/02 20:41:06 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2013/08/02 20:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/08/02 20:41:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/08/02 20:41:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/08/02 15:30:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\COMODO
[2013/08/02 15:18:32 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2013/08/02 14:54:36 | 000,000,000 | --SD | C] -- C:\ProgramData\Shared Space
[2013/08/02 14:54:29 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2013/08/02 14:54:25 | 000,000,000 | ---D | C] -- C:\ProgramData\COMODO
[2013/08/02 14:54:21 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll
[2013/08/02 14:54:21 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2013/08/02 14:53:46 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Comodo
[2013/08/02 14:53:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
[2013/08/02 14:53:44 | 000,057,096 | ---- | C] (COMODO CA Limited) -- C:\Windows\SysNative\certsentry.dll
[2013/08/02 14:53:44 | 000,048,392 | ---- | C] (COMODO CA Limited) -- C:\Windows\SysWow64\certsentry.dll
[2013/08/02 14:53:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Comodo
[2013/08/02 14:53:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2013/08/01 15:57:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BOSS
[2013/08/01 12:44:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIA
[2013/08/01 12:44:19 | 000,000,000 | ---D | C] -- C:\Program Files\VIA
[2013/08/01 12:44:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2013/08/01 12:44:05 | 000,879,616 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\VMAPO64.DLL
[2013/08/01 12:44:05 | 000,739,328 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\VMAPO32.DLL
[2013/08/01 12:44:05 | 000,083,968 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\SysNative\nQAPO.dll
[2013/08/01 12:44:04 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEP64H.dll
[2013/08/01 12:44:04 | 000,619,520 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\VMTHX64.DLL
[2013/08/01 12:44:04 | 000,554,496 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\VMTHX32.DLL
[2013/08/01 12:44:04 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EED64H.dll
[2013/08/01 12:44:04 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EED64A.dll
[2013/08/01 12:44:04 | 000,394,104 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2013/08/01 12:44:04 | 000,137,056 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEL64H.dll
[2013/08/01 12:44:04 | 000,137,056 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEL64A.dll
[2013/08/01 12:44:04 | 000,120,160 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEA64H.dll
[2013/08/01 12:44:04 | 000,120,160 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEA64A.dll
[2013/08/01 12:44:04 | 000,086,016 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\SysNative\nQPropPageExt.dll
[2013/08/01 12:44:04 | 000,075,104 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEG64H.dll
[2013/08/01 12:44:04 | 000,075,104 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\EEG64A.dll
[2013/08/01 12:44:04 | 000,074,240 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\VMWRP64.DLL
[2013/08/01 12:44:04 | 000,057,856 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\VMPPLD64.DLL
[2013/08/01 12:44:04 | 000,053,760 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\VMPPCN64.DLL
[2013/08/01 12:44:04 | 000,025,600 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\VMfilt64.sys
[2013/08/01 11:51:53 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\Documents\Battlefield 3
[2013/08/01 11:50:31 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Battlefield 3
[2013/08/01 10:29:13 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013/07/30 23:24:42 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\THQ
[2013/07/30 23:24:37 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2013/07/30 23:24:37 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013/07/30 23:24:37 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2013/07/30 23:24:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013/07/30 23:24:36 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2013/07/30 23:24:36 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013/07/30 22:08:28 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Ascaron Entertainment
[2013/07/30 17:15:55 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Local\Risen2
[2013/07/30 13:41:35 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\.technic
[2013/07/30 13:32:57 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\ftblauncher
[2013/07/30 12:45:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013/07/30 12:45:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/07/30 12:45:42 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/07/30 12:45:42 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013/07/30 12:45:42 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/07/30 12:45:40 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/07/30 12:45:40 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/07/30 12:45:40 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/07/30 12:45:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/07/30 12:45:17 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013/07/29 17:46:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD
[2013/07/29 16:37:46 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\.scorched3d
[2013/07/29 16:37:17 | 000,000,000 | ---D | C] -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Scorched3D
[2013/07/29 12:53:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stunt Playground
[2013/07/29 12:51:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
[2013/07/29 12:50:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013/08/27 17:45:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/27 17:42:30 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/27 17:42:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/27 17:42:18 | 001,474,832 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2013/08/27 10:42:58 | 000,021,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/27 10:42:58 | 000,021,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/27 10:41:29 | 000,779,266 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/27 10:41:29 | 000,660,280 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/27 10:41:29 | 000,121,208 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/27 10:36:22 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/27 10:35:47 | 346,043,988 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/08/27 10:35:47 | 1609,961,472 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/26 13:00:24 | 000,000,813 | ---- | M] () -- C:\Users\Public\Desktop\Crysis.lnk
[2013/08/26 13:00:05 | 000,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013/08/26 12:59:58 | 000,669,184 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe
[2013/08/26 12:59:58 | 000,066,872 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2013/08/24 16:26:13 | 000,001,360 | ---- | M] () -- F:\Users\C. Daniel\Desktop\SUM Launcher.lnk
[2013/08/24 16:13:26 | 000,000,635 | ---- | M] () -- F:\Users\C. Daniel\Desktop\BeamNG Techdemo.lnk
[2013/08/23 11:44:38 | 000,000,776 | ---- | M] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2013/08/20 22:12:06 | 000,001,198 | ---- | M] () -- C:\Users\Public\Desktop\Razer Game Booster.lnk
[2013/08/15 15:46:48 | 000,001,027 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3 Late Night.lnk
[2013/08/15 15:20:25 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3 High-End Loft Stuff.lnk
[2013/08/15 13:06:41 | 000,001,009 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk
[2013/08/15 13:05:39 | 000,447,752 | ---- | M] (On2.com) -- C:\Windows\SysWow64\vp6vfw.dll
[2013/08/14 16:01:32 | 000,000,000 | ---- | M] () -- C:\Cookies
[2013/08/14 15:46:25 | 000,018,960 | ---- | M] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LNonPnP.sys
[2013/08/14 14:56:17 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2013/08/09 11:53:18 | 000,327,328 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/08/08 23:38:23 | 000,011,649 | ---- | M] () -- F:\Users\C. Daniel\Documents\Thingy.odt
[2013/08/08 22:50:41 | 000,001,060 | ---- | M] () -- F:\Users\C. Daniel\Desktop\OpenOffice 4.0.0.lnk
[2013/08/07 17:28:44 | 000,001,081 | ---- | M] () -- F:\Users\C. Daniel\Desktop\DriverMax.lnk
[2013/08/07 00:29:54 | 000,000,863 | ---- | M] () -- C:\Users\Public\Desktop\Unity.lnk
[2013/08/03 23:08:34 | 000,509,144 | ---- | M] (Realtek Semiconductor Corporation                           ) -- C:\Windows\SysNative\drivers\Rtenic64.sys
[2013/08/03 23:08:34 | 000,108,760 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2013/08/03 23:08:34 | 000,074,456 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RtNicProp64.dll
[2013/08/02 20:41:06 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/08/02 15:33:33 | 000,001,387 | ---- | M] () -- F:\Users\C. Daniel\Desktop\Characters.lnk
[2013/08/02 15:33:33 | 000,001,192 | ---- | M] () -- F:\Users\C. Daniel\Desktop\Dropbox.lnk
[2013/08/02 15:30:59 | 000,002,043 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
[2013/08/02 15:00:39 | 000,057,096 | ---- | M] (COMODO CA Limited) -- C:\Windows\SysNative\certsentry.dll
[2013/08/02 15:00:39 | 000,048,392 | ---- | M] (COMODO CA Limited) -- C:\Windows\SysWow64\certsentry.dll
[2013/08/02 15:00:38 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/08/02 14:54:37 | 000,001,202 | ---- | M] () -- F:\Users\C. Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013/08/02 14:54:21 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll
[2013/08/02 14:54:21 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2013/08/02 14:53:46 | 000,001,116 | ---- | M] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2013/08/02 11:27:00 | 000,000,836 | ---- | M] () -- F:\Users\C. Daniel\Desktop\WhoCrashed.lnk
[2013/08/02 00:03:43 | 069,799,423 | ---- | M] () -- F:\Users\C. Daniel\Documents\MEMORY.zip
[2013/08/01 23:40:01 | 290,407,428 | ---- | M] () -- F:\Users\C. Daniel\Documents\MEMORY.DMP
[2013/08/01 12:44:26 | 000,001,202 | ---- | M] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2013/08/01 12:28:55 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2013/08/01 10:29:14 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013/07/30 13:41:33 | 003,020,770 | ---- | M] () -- F:\Users\C. Daniel\Desktop\TechnicLauncher.exe
[2013/07/30 13:12:46 | 000,512,825 | ---- | M] () -- F:\Users\C. Daniel\Desktop\FTB_Launcher.exe
[2013/07/30 12:45:36 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/07/30 12:45:34 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/07/30 12:45:34 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/07/30 12:45:34 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/07/30 12:45:33 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/07/30 12:45:33 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013/07/29 14:54:53 | 000,000,221 | ---- | M] () -- F:\Users\C. Daniel\Desktop\Batman Arkham City.url
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013/08/26 13:00:24 | 000,000,813 | ---- | C] () -- C:\Users\Public\Desktop\Crysis.lnk
[2013/08/26 12:59:58 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2013/08/26 12:59:58 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013/08/26 12:59:58 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2013/08/24 16:26:13 | 000,001,360 | ---- | C] () -- F:\Users\C. Daniel\Desktop\SUM Launcher.lnk
[2013/08/24 16:13:26 | 000,000,635 | ---- | C] () -- F:\Users\C. Daniel\Desktop\BeamNG Techdemo.lnk
[2013/08/23 11:44:38 | 000,000,776 | ---- | C] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2013/08/20 22:12:06 | 000,001,198 | ---- | C] () -- C:\Users\Public\Desktop\Razer Game Booster.lnk
[2013/08/15 15:46:48 | 000,001,027 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3 Late Night.lnk
[2013/08/15 15:20:25 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3 High-End Loft Stuff.lnk
[2013/08/15 13:06:41 | 000,001,009 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk
[2013/08/14 16:01:32 | 000,000,000 | ---- | C] () -- C:\Cookies
[2013/08/14 14:56:17 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
[2013/08/08 23:27:34 | 000,011,649 | ---- | C] () -- F:\Users\C. Daniel\Documents\Thingy.odt
[2013/08/08 22:50:41 | 000,001,060 | ---- | C] () -- F:\Users\C. Daniel\Desktop\OpenOffice 4.0.0.lnk
[2013/08/07 00:29:54 | 000,000,863 | ---- | C] () -- C:\Users\Public\Desktop\Unity.lnk
[2013/08/05 12:54:20 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013/08/05 12:54:20 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2013/08/05 12:54:20 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013/08/05 12:54:20 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2013/08/05 12:54:19 | 002,852,480 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2013/08/05 12:54:17 | 002,818,784 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2013/08/05 12:54:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2013/08/05 12:54:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat
[2013/08/05 12:54:14 | 000,038,177 | ---- | C] () -- C:\Windows\atiogl.xml
[2013/08/05 12:54:11 | 000,618,823 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat
[2013/08/05 12:54:07 | 000,245,936 | ---- | C] () -- C:\Windows\SysWow64\atiapfxx.blb
[2013/08/05 12:54:07 | 000,245,936 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2013/08/05 12:10:50 | 000,001,081 | ---- | C] () -- F:\Users\C. Daniel\Desktop\DriverMax.lnk
[2013/08/02 20:41:06 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/08/02 14:54:40 | 001,474,832 | ---- | C] () -- C:\Windows\SysNative\drivers\sfi.dat
[2013/08/02 14:54:23 | 000,002,043 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
[2013/08/02 14:53:46 | 000,001,116 | ---- | C] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2013/08/02 11:27:00 | 000,000,836 | ---- | C] () -- F:\Users\C. Daniel\Desktop\WhoCrashed.lnk
[2013/08/02 00:03:08 | 069,799,423 | ---- | C] () -- F:\Users\C. Daniel\Documents\MEMORY.zip
[2013/08/02 00:02:03 | 290,407,428 | ---- | C] () -- F:\Users\C. Daniel\Documents\MEMORY.DMP
[2013/08/01 12:44:26 | 000,001,202 | ---- | C] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2013/07/30 13:41:31 | 003,020,770 | ---- | C] () -- F:\Users\C. Daniel\Desktop\TechnicLauncher.exe
[2013/07/29 14:54:53 | 000,000,221 | ---- | C] () -- F:\Users\C. Daniel\Desktop\Batman Arkham City.url
[2013/07/29 12:50:48 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2013/07/29 12:50:48 | 000,013,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2013/07/29 12:50:47 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2013/07/29 12:50:47 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2013/07/29 12:48:12 | 000,015,416 | ---- | C] () -- C:\Windows\SysNative\drivers\ASACPI.sys
[2013/07/25 10:40:50 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2013/07/12 11:35:09 | 000,000,032 | ---- | C] () -- C:\Windows\CD_Start.INI
[2013/07/12 11:21:57 | 000,000,032 | ---- | C] () -- C:\Windows\Autorun.INI
[2013/07/12 10:39:25 | 000,772,990 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/07/11 22:06:10 | 000,003,072 | ---- | C] () -- F:\Users\C. Daniel\AppData\Local\file__0.localstorage
[2013/07/10 18:15:08 | 000,451,072 | ---- | C] () -- C:\Windows\SysWow64\ISSRemoveSP.exe
[2013/07/10 16:51:15 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2013/07/10 16:02:50 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013/04/24 17:46:09 | 000,000,867 | ---- | C] () -- F:\Users\C. Daniel\AppData\Local\recently-used.xbel
[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/09/19 03:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2011/09/19 03:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >
Spoiler tags would be so useful here.
  • 0

Advertisements

#2
Kicktar
Posted 05 September 2013 - 10:08 AM

Kicktar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 37 posts
Any additional information y'all need?
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Forum
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP