17:04:37.0205 4080 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
17:04:37.0205 4080 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
17:04:37.0205 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
17:04:37.0205 4080 [ B2E9DB5E5F4091FCDA0C9249C1E3F974 ] C:\Program Files (x86)\AVG\AVG2012\avgidpmx.dll
17:04:37.0205 4080 C:\Program Files (x86)\AVG\AVG2012\avgidpmx.dll - ok
17:04:37.0205 4080 [ 652B60C9C4D5391FF0970B9086702E8F ] C:\Windows\System32\ieframe.dll
17:04:37.0205 4080 C:\Windows\System32\ieframe.dll - ok
17:04:37.0205 4080 [ D6CD851869A9A3FBEB2254D3766A9ABA ] C:\Program Files (x86)\DAEMON Tools Pro\imgengine.dll
17:04:37.0205 4080 C:\Program Files (x86)\DAEMON Tools Pro\imgengine.dll - ok
17:04:37.0221 4080 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
17:04:37.0221 4080 C:\Windows\System32\SearchProtocolHost.exe - ok
17:04:37.0221 4080 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\85011057.sys
17:04:37.0221 4080 C:\Windows\System32\drivers\85011057.sys - ok
17:04:37.0221 4080 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
17:04:37.0221 4080 C:\Windows\System32\msshooks.dll - ok
17:04:37.0221 4080 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
17:04:37.0221 4080 C:\Windows\System32\SearchFilterHost.exe - ok
17:04:37.0221 4080 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
17:04:37.0221 4080 C:\Windows\System32\mssph.dll - ok
17:04:37.0236 4080 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:04:37.0236 4080 C:\Windows\SysWOW64\riched20.dll - ok
17:04:37.0236 4080 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:04:37.0236 4080 C:\Windows\System32\FXSST.dll - ok
17:04:37.0236 4080 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
17:04:37.0236 4080 C:\Windows\System32\mapi32.dll - ok
17:04:37.0236 4080 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:04:37.0236 4080 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:04:37.0236 4080 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
17:04:37.0236 4080 C:\Windows\System32\FXSAPI.dll - ok
17:04:37.0252 4080 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:04:37.0252 4080 C:\Windows\System32\FXSRESM.dll - ok
17:04:37.0252 4080 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:04:37.0252 4080 C:\Windows\SysWOW64\duser.dll - ok
17:04:37.0252 4080 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:04:37.0252 4080 C:\Windows\SysWOW64\dui70.dll - ok
17:04:37.0252 4080 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
17:04:37.0252 4080 C:\Windows\System32\FXSSVC.exe - ok
17:04:37.0252 4080 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:04:37.0252 4080 C:\Windows\System32\netman.dll - ok
17:04:37.0267 4080 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:04:37.0267 4080 C:\Windows\System32\webcheck.dll - ok
17:04:37.0267 4080 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:04:37.0267 4080 C:\Windows\System32\mlang.dll - ok
17:04:37.0267 4080 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
17:04:37.0267 4080 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
17:04:37.0267 4080 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:04:37.0267 4080 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:04:37.0267 4080 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
17:04:37.0267 4080 C:\Windows\System32\SyncCenter.dll - ok
17:04:37.0283 4080 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
17:04:37.0283 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
17:04:37.0283 4080 [ 7CC7440BAF323AF4826EDD99CC9A3B4A ] C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL
17:04:37.0283 4080 C:\Program Files\Microsoft Office\Office14\MSOHEVI.DLL - ok
17:04:37.0283 4080 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:04:37.0283 4080 C:\Windows\System32\rasdlg.dll - ok
17:04:37.0283 4080 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
17:04:37.0283 4080 C:\Windows\System32\wmploc.DLL - ok
17:04:37.0283 4080 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
17:04:37.0283 4080 C:\Windows\System32\mprapi.dll - ok
17:04:37.0299 4080 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
17:04:37.0299 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
17:04:37.0299 4080 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
17:04:37.0299 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
17:04:37.0299 4080 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
17:04:37.0299 4080 C:\Windows\System32\l3codeca.acm - ok
17:04:37.0299 4080 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
17:04:37.0299 4080 C:\Windows\System32\dot3api.dll - ok
17:04:37.0299 4080 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
17:04:37.0299 4080 C:\Windows\System32\hgcpl.dll - ok
17:04:37.0314 4080 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:04:37.0314 4080 C:\Windows\System32\wlanhlp.dll - ok
17:04:37.0314 4080 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:04:37.0314 4080 C:\Windows\System32\hnetcfg.dll - ok
17:04:37.0314 4080 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:04:37.0314 4080 C:\Windows\System32\provsvc.dll - ok
17:04:37.0314 4080 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
17:04:37.0314 4080 C:\Windows\System32\fdPHost.dll - ok
17:04:37.0314 4080 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
17:04:37.0314 4080 C:\Windows\System32\FDResPub.dll - ok
17:04:37.0330 4080 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
17:04:37.0330 4080 C:\Windows\System32\fdWSD.dll - ok
17:04:37.0330 4080 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
17:04:37.0330 4080 C:\Windows\System32\calc.exe - ok
17:04:37.0330 4080 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
17:04:37.0330 4080 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
17:04:37.0330 4080 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
17:04:37.0330 4080 C:\Windows\System32\fdSSDP.dll - ok
17:04:37.0330 4080 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
17:04:37.0330 4080 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
17:04:37.0345 4080 [ 458F4590F80563EB2A0A72709BFC2BD9 ] C:\Windows\System32\mspaint.exe
17:04:37.0345 4080 C:\Windows\System32\mspaint.exe - ok
17:04:37.0345 4080 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:04:37.0345 4080 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:04:37.0345 4080 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
17:04:37.0345 4080 C:\Windows\System32\wmdrmdev.dll - ok
17:04:37.0345 4080 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
17:04:37.0345 4080 C:\Windows\System32\drmv2clt.dll - ok
17:04:37.0345 4080 [ 60D0E0CE4FB3395543A9C9923AC6B33F ] C:\Windows\Installer\{90140000-001B-0000-1000-0000000FF1CE}\wordicon.exe
17:04:37.0345 4080 C:\Windows\Installer\{90140000-001B-0000-1000-0000000FF1CE}\wordicon.exe - ok
17:04:37.0361 4080 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:04:37.0361 4080 C:\Windows\System32\WWanAPI.dll - ok
17:04:37.0361 4080 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:04:37.0361 4080 C:\Windows\System32\wwapi.dll - ok
17:04:37.0361 4080 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
17:04:37.0361 4080 C:\Windows\System32\QAGENT.DLL - ok
17:04:37.0361 4080 [ 4987F39779F95174F94D95116F2F30A4 ] C:\Windows\Installer\{6CFB1B20-ECAE-488F-9FFB-6AD420882E71}\iTunesIco.exe
17:04:37.0361 4080 C:\Windows\Installer\{6CFB1B20-ECAE-488F-9FFB-6AD420882E71}\iTunesIco.exe - ok
17:04:37.0361 4080 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
17:04:37.0361 4080 C:\Windows\System32\wmp.dll - ok
17:04:37.0361 4080 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
17:04:37.0361 4080 C:\Windows\System32\notepad.exe - ok
17:04:37.0377 4080 [ F2E221E4FC90D2843A770A101AEEB7B1 ] C:\Program Files\Adobe\Adobe After Effects CS5.5\Support Files\AfterFX.exe
17:04:37.0377 4080 C:\Program Files\Adobe\Adobe After Effects CS5.5\Support Files\AfterFX.exe - ok
17:04:37.0377 4080 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
17:04:37.0377 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
17:04:37.0377 4080 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:04:37.0377 4080 C:\Windows\System32\shfolder.dll - ok
17:04:37.0377 4080 [ D28C5A1411BB0B47E05E0D6AAF896690 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
17:04:37.0377 4080 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
17:04:37.0377 4080 [ 6F5386A655598F71BAAB2D6B63A69D6A ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
17:04:37.0377 4080 C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
17:04:37.0392 4080 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
17:04:37.0392 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
17:04:37.0392 4080 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
17:04:37.0392 4080 C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
17:04:37.0392 4080 [ E0FD85DADD7EF3E892ECBB0DC4D68E0A ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
17:04:37.0392 4080 C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
17:04:37.0392 4080 [ 4F94DC9D7156DF622FB1AEFEC85B0F85 ] C:\Program Files (x86)\Mozilla Firefox\nspr4.dll
17:04:37.0392 4080 C:\Program Files (x86)\Mozilla Firefox\nspr4.dll - ok
17:04:37.0408 4080 [ 5957AA52E13272E041E009F9176CF702 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
17:04:37.0408 4080 C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
17:04:37.0408 4080 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
17:04:37.0408 4080 C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
17:04:37.0408 4080 [ EB03052F8D4343CFA74BDAA0FC9781B1 ] C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll
17:04:37.0408 4080 C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll - ok
17:04:37.0408 4080 [ 37CF212AE1AE34852C08950868C99451 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
17:04:37.0408 4080 C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
17:04:37.0408 4080 [ E64EF4732DC96115AFD6902739FEDEA9 ] C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll
17:04:37.0408 4080 C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll - ok
17:04:37.0423 4080 [ AC1782CDBAF09F3AE2845BCAE25863C0 ] C:\Program Files (x86)\Mozilla Firefox\plc4.dll
17:04:37.0423 4080 C:\Program Files (x86)\Mozilla Firefox\plc4.dll - ok
17:04:37.0423 4080 [ 9FAB315A6F54DDAFF67C45C6B0E8180A ] C:\Program Files (x86)\Mozilla Firefox\plds4.dll
17:04:37.0423 4080 C:\Program Files (x86)\Mozilla Firefox\plds4.dll - ok
17:04:37.0423 4080 [ 6B030923B2ED4341FA0FC2439EBA6937 ] C:\Program Files (x86)\Mozilla Firefox\smime3.dll
17:04:37.0423 4080 C:\Program Files (x86)\Mozilla Firefox\smime3.dll - ok
17:04:37.0423 4080 [ 71CD356DD1CB8D414906797912093AB7 ] C:\Program Files (x86)\Mozilla Firefox\ssl3.dll
17:04:37.0423 4080 C:\Program Files (x86)\Mozilla Firefox\ssl3.dll - ok
17:04:37.0423 4080 [ 03C0475B64A49A531A1FCA445EFAF714 ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
17:04:37.0423 4080 C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
17:04:37.0439 4080 [ 30F13CC50B40AC23A25861BDB8FDEDE9 ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
17:04:37.0439 4080 C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
17:04:37.0439 4080 [ ED24A2D1D94A90E188FFCA4A21453E39 ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
17:04:37.0439 4080 C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
17:04:37.0439 4080 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
17:04:37.0439 4080 C:\Windows\SysWOW64\msdmo.dll - ok
17:04:37.0439 4080 [ 0D1A879E307914CA59724450690DABBA ] C:\Program Files (x86)\Mozilla Firefox\xpcom.dll
17:04:37.0439 4080 C:\Program Files (x86)\Mozilla Firefox\xpcom.dll - ok
17:04:37.0439 4080 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
17:04:37.0439 4080 C:\Windows\SysWOW64\DWrite.dll - ok
17:04:37.0455 4080 [ 51FA7CB7C76E56D478768F64A1AEF24B ] C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
17:04:37.0455 4080 C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll - ok
17:04:37.0455 4080 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
17:04:37.0455 4080 C:\Windows\System32\FntCache.dll - ok
17:04:37.0455 4080 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
17:04:37.0455 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
17:04:37.0455 4080 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
17:04:37.0455 4080 C:\Windows\SysWOW64\wshqos.dll - ok
17:04:37.0455 4080 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
17:04:37.0455 4080 C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:04:37.0470 4080 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
17:04:37.0470 4080 C:\Windows\SysWOW64\AudioSes.dll - ok
17:04:37.0470 4080 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
17:04:37.0470 4080 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:04:37.0470 4080 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:04:37.0470 4080 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:04:37.0470 4080 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:04:37.0470 4080 C:\Windows\System32\wbem\NCProv.dll - ok
17:04:37.0470 4080 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
17:04:37.0470 4080 C:\Windows\SysWOW64\dxgi.dll - ok
17:04:37.0486 4080 [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\SysWOW64\feclient.dll
17:04:37.0486 4080 C:\Windows\SysWOW64\feclient.dll - ok
17:04:37.0486 4080 [ ECCE4054FDED3A965C92B015B26A6EEE ] C:\Windows\SysWOW64\aticfx32.dll
17:04:37.0486 4080 C:\Windows\SysWOW64\aticfx32.dll - ok
17:04:37.0486 4080 [ 7DA8A53B56F02E1748D0F2F77AA6B942 ] C:\Windows\SysWOW64\atiuxpag.dll
17:04:37.0486 4080 C:\Windows\SysWOW64\atiuxpag.dll - ok
17:04:37.0486 4080 [ 4C09DF1BE7C9A307875D5F003CA0E325 ] C:\Windows\SysWOW64\atidxx32.dll
17:04:37.0486 4080 C:\Windows\SysWOW64\atidxx32.dll - ok
17:04:37.0486 4080 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
17:04:37.0486 4080 C:\Windows\SysWOW64\d2d1.dll - ok
17:04:37.0501 4080 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
17:04:37.0501 4080 C:\Windows\SysWOW64\d3d10.dll - ok
17:04:37.0501 4080 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
17:04:37.0501 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
17:04:37.0501 4080 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
17:04:37.0501 4080 C:\Windows\SysWOW64\d3d10core.dll - ok
17:04:37.0501 4080 [ C7893D2115C3646FAB7E096F62D120C2 ] C:\Windows\System32\atipdl64.dll
17:04:37.0501 4080 C:\Windows\System32\atipdl64.dll - ok
17:04:37.0501 4080 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
17:04:37.0501 4080 C:\Windows\SysWOW64\NapiNSP.dll - ok
17:04:37.0517 4080 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
17:04:37.0517 4080 C:\Windows\SysWOW64\pnrpnsp.dll - ok
17:04:37.0517 4080 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
17:04:37.0517 4080 C:\Windows\SysWOW64\winrnr.dll - ok
17:04:37.0517 4080 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
17:04:37.0517 4080 C:\Windows\SysWOW64\mscms.dll - ok
17:04:37.0517 4080 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
17:04:37.0517 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
17:04:37.0517 4080 [ 0028FFB55B16A31CA25F87007A87CCEF ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
17:04:37.0517 4080 C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
17:04:37.0533 4080 [ E714F5AB9D7C81E56AE3D99B61267D9A ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
17:04:37.0533 4080 C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
17:04:37.0533 4080 [ 81C39B4B7FC14493958860AC06057AD9 ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
17:04:37.0533 4080 C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
17:04:37.0533 4080 [ DDE3A1D8D9A0AE1999CAD3EC6F0ED1F3 ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
17:04:37.0533 4080 C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
17:04:37.0533 4080 [ 1447E490F8589AC2F8F4BE8EF768A727 ] C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode64.dll
17:04:37.0533 4080 C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode64.dll - ok
17:04:37.0533 4080 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
17:04:37.0533 4080 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
17:04:37.0548 4080 [ 70BB5AE4899EE90C8CC4C48808C9E48E ] C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc64.dll
17:04:37.0548 4080 C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc64.dll - ok
17:04:37.0548 4080 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
17:04:37.0548 4080 C:\Windows\System32\d3d9.dll - ok
17:04:37.0548 4080 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
17:04:37.0548 4080 C:\Windows\System32\d3d8thk.dll - ok
17:04:37.0548 4080 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:04:37.0548 4080 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:04:37.0564 4080 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
17:04:37.0564 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
17:04:37.0564 4080 [ 4E69B7471BDFA10D63BD5012B00A208D ] C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
17:04:37.0564 4080 C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe - ok
17:04:37.0564 4080 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
17:04:37.0564 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
17:04:37.0564 4080 [ EE7A0533E041119DDE137BFE1E415E9F ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
17:04:37.0564 4080 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
17:04:37.0564 4080 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
17:04:37.0564 4080 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
17:04:37.0579 4080 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
17:04:37.0579 4080 C:\Windows\System32\upnp.dll - ok
17:04:37.0579 4080 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:04:37.0579 4080 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:04:37.0579 4080 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:04:37.0579 4080 C:\Windows\System32\ssdpsrv.dll - ok
17:04:37.0579 4080 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
17:04:37.0579 4080 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
17:04:37.0579 4080 [ 927D0557B4C40376C18CA43E750ABF2A ] C:\Windows\System32\atiu9p64.dll
17:04:37.0579 4080 C:\Windows\System32\atiu9p64.dll - ok
17:04:37.0595 4080 [ E57244954669C0AA210D46E235D3796B ] C:\Windows\System32\atiumd64.dll
17:04:37.0595 4080 C:\Windows\System32\atiumd64.dll - ok
17:04:37.0595 4080 [ 712D9EB4CD8D64AC78FBB3C9AE6A6DAC ] C:\Program Files\Internet Explorer\ieproxy.dll
17:04:37.0595 4080 C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:04:37.0595 4080 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
17:04:37.0595 4080 C:\Windows\System32\wmpps.dll - ok
17:04:37.0595 4080 [ D23BE7F1A65054090D95E66A704FFE30 ] C:\Windows\System32\atiumd6a.dll
17:04:37.0595 4080 C:\Windows\System32\atiumd6a.dll - ok
17:04:37.0595 4080 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
17:04:37.0595 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
17:04:37.0611 4080 [ C68A9ED2B7269F91A75BCE10894186EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll
17:04:37.0611 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll - ok
17:04:37.0611 4080 [ 68E1D09FC5F2214F712FBB0340998A34 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll
17:04:37.0611 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll - ok
17:04:37.0611 4080 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
17:04:37.0611 4080 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
17:04:37.0611 4080 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
17:04:37.0611 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
17:04:37.0611 4080 [ CCD0214A064CA26B6663E8AAA14EBF93 ] C:\Windows\System32\PresentationNative_v0300.dll
17:04:37.0611 4080 C:\Windows\System32\PresentationNative_v0300.dll - ok
17:04:37.0626 4080 [ 2EFE164449F1C62CEA167B10850CD9F1 ] C:\Windows\System32\msctfui.dll
17:04:37.0626 4080 C:\Windows\System32\msctfui.dll - ok
17:04:37.0626 4080 [ DDBE67056D715668EBFE1949451BBA4D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\95330dba19ee6b0916e186da885c4667\UIAutomationProvider.ni.dll
17:04:37.0626 4080 C:\Windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\95330dba19ee6b0916e186da885c4667\UIAutomationProvider.ni.dll - ok
17:04:37.0626 4080 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:04:37.0626 4080 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
17:04:37.0626 4080 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
17:04:37.0626 4080 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
17:04:37.0626 4080 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:04:37.0626 4080 C:\Windows\SysWOW64\mscoree.dll - ok
17:04:37.0642 4080 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:04:37.0642 4080 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
17:04:37.0642 4080 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
17:04:37.0642 4080 C:\Windows\System32\msvcr100_clr0400.dll - ok
17:04:37.0642 4080 [ D4F91CF4DE215D6F14A06087D46725E4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:04:37.0642 4080 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
17:04:37.0642 4080 [ 934BB0D23A25C8C136570800A5A149B6 ] C:\Program Files (x86)\Nero\Update\NASvc.exe
17:04:37.0642 4080 C:\Program Files (x86)\Nero\Update\NASvc.exe - ok
17:04:37.0642 4080 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
17:04:37.0642 4080 C:\Windows\SysWOW64\xmllite.dll - ok
17:04:37.0657 4080 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
17:04:37.0657 4080 C:\Windows\SysWOW64\cryptdll.dll - ok
17:04:37.0657 4080 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
17:04:37.0657 4080 C:\Windows\SysWOW64\msiltcfg.dll - ok
17:04:37.0657 4080 [ B29280AA00BC34FEECDC0426B11B9DAC ] C:\Windows\SysWOW64\RstrtMgr.dll
17:04:37.0657 4080 C:\Windows\SysWOW64\RstrtMgr.dll - ok
17:04:37.0657 4080 [ 824BDFBE3D8F41B2F61D0299526C8908 ] C:\Program Files (x86)\Nero\Update\NASvcPS.dll
17:04:37.0657 4080 C:\Program Files (x86)\Nero\Update\NASvcPS.dll - ok
17:04:37.0657 4080 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:04:37.0657 4080 C:\Windows\SysWOW64\linkinfo.dll - ok
17:04:37.0673 4080 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:04:37.0673 4080 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:04:37.0673 4080 [ 52799EAD792B0E9AE7FD4BA5BD18FE5C ] C:\Windows\SysWOW64\wbem\WMIADAP.exe
17:04:37.0673 4080 C:\Windows\SysWOW64\wbem\WMIADAP.exe - ok
17:04:37.0673 4080 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:04:37.0673 4080 C:\Windows\System32\loadperf.dll - ok
17:04:37.0673 4080 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
17:04:37.0673 4080 C:\Windows\System32\wbem\wmiprov.dll - ok
17:04:37.0673 4080 [ BE5C7690D94F9DAB63BEED73D8FFABBE ] C:\Windows\System32\wbem\WmiApRes.dll
17:04:37.0673 4080 C:\Windows\System32\wbem\WmiApRes.dll - ok
17:04:37.0689 4080 ============================================================
17:04:37.0689 4080 Scan finished
17:04:37.0689 4080 ============================================================
17:04:37.0689 2260 Detected object count: 5
17:04:37.0689 2260 Actual detected object count: 5
17:05:28.0342 2260 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:28.0342 2260 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:28.0357 2260 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:28.0357 2260 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:28.0357 2260 PinnacleUpdateSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:28.0357 2260 PinnacleUpdateSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:28.0357 2260 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:28.0357 2260 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:28.0357 2260 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:28.0357 2260 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
OTL Log
OTL logfile created on: 02/05/2013 5:19:06 PM - Run 5
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\GTech\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
8.00 Gb Total Physical Memory | 6.09 Gb Available Physical Memory | 76.13% Memory free
15.99 Gb Paging File | 13.79 Gb Available in Paging File | 86.23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 708.16 Gb Free Space | 76.03% Space Free | Partition Type: NTFS
Computer Name: GTECH-PC | User Name: GTech | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013/04/26 16:31:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\GTech\Downloads\OTL.exe
PRC - [2013/04/15 05:50:34 | 000,337,432 | ---- | M] (Power Software Ltd) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
PRC - [2013/04/10 02:58:15 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013/04/01 21:48:37 | 000,786,432 | ---- | M] (Tweaking.com) -- C:\Users\GTech\Desktop\Tweaking.com - Restore Important Windows Services\repair.exe
PRC - [2013/03/12 20:05:29 | 001,822,424 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
PRC - [2013/02/18 14:11:57 | 000,968,880 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
PRC - [2012/12/18 10:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/11/19 18:25:32 | 002,598,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
PRC - [2012/11/02 04:51:18 | 005,174,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
PRC - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
PRC - [2011/11/25 16:32:36 | 000,687,400 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2011/10/21 23:32:02 | 000,641,400 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
PRC - [2011/08/17 03:28:14 | 003,120,448 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
PRC - [2010/05/20 15:26:30 | 000,762,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\vVX3000.exe
========== Modules (No Company Name) ==========
MOD - [2013/04/10 02:58:18 | 003,133,336 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/03/12 20:05:29 | 014,717,144 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
MOD - [2011/09/27 07:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 07:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
========== Services (SafeList) ==========
SRV:64bit: - [2011/01/12 22:56:56 | 000,203,776 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011/01/12 22:03:12 | 000,354,304 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010/06/17 05:23:36 | 000,194,496 | ---- | M] (Advanced Micro Devices) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe -- (AMD Reservation Manager)
SRV:64bit: - [2010/05/20 15:26:28 | 000,199,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS64.exe -- (MSCamSvc)
SRV - [2013/04/10 02:58:17 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/03/12 20:05:29 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/02/18 14:11:57 | 000,968,880 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe -- (vToolbarUpdater14.2.0)
SRV - [2012/12/18 10:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/11/02 04:51:18 | 005,174,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/07/13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/11/25 16:32:36 | 000,687,400 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011/05/09 13:01:06 | 000,430,080 | ---- | M] (PowerUp Software, LLC) [Auto | Stopped] -- C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe -- (PinnacleUpdateSvc)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010/01/30 01:40:16 | 001,043,584 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2013/04/18 04:51:02 | 000,127,384 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2013/04/11 03:18:40 | 000,384,800 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2013/02/18 14:11:57 | 000,039,768 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/12/10 04:28:34 | 000,127,328 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2012/11/08 04:49:24 | 000,307,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2012/04/19 04:50:26 | 000,028,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/31 04:46:48 | 000,036,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2011/12/23 13:32:14 | 000,047,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2011/12/23 13:32:04 | 000,029,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avgidsfiltera.sys -- (AVGIDSFilter)
DRV:64bit: - [2011/12/06 16:24:27 | 000,271,424 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011/08/02 17:38:56 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/05/13 03:21:04 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011/05/13 03:21:04 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:64bit: - [2011/05/13 03:21:02 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:64bit: - [2011/05/13 03:21:02 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2011/05/13 03:21:02 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/13 07:58:30 | 000,413,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/01/12 23:39:32 | 009,085,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/01/12 22:15:22 | 000,299,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/11/23 06:33:00 | 000,300,648 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/05/20 15:26:30 | 002,060,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VX3000.sys -- (VX3000)
DRV:64bit: - [2010/02/18 09:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009/08/21 02:52:10 | 000,079,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2008/07/24 08:18:00 | 000,539,136 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\arusb_lhx.sys -- (arusb_lhx)
DRV:64bit: - [2008/04/16 15:49:34 | 000,028,416 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-CA
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 78 B6 50 EF C8 1A CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\GTech\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\GTech\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2013/04/16 19:57:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/04/22 14:46:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2013/04/22 14:47:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\GTech\AppData\Roaming\mozilla\Extensions
[2013/04/27 14:58:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\GTech\AppData\Roaming\mozilla\firefox\Profiles\f00msbqa.default-1366935512666\Extensions
[2013/04/27 14:58:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\GTech\AppData\Roaming\mozilla\firefox\Profiles\mp7hovmx.default\extensions
[2013/04/22 14:46:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/04/10 02:58:33 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/04/10 02:57:54 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013/04/10 02:57:54 | 000,002,086 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - Extension: Search Spin = C:\Users\GTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgpimkfhjdaobobdomcikioipaenlhke\10.14.370.24_0\
O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [VX3000] C:\Windows\vVX3000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [LifeCam] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (Power Software Ltd)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" File not found
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe File not found
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKLM..\RunOnce: [GBTUpd] C:\Program Files (x86)\Gigabyte\UpdManager\PreRun.exe (PreRun)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
O9:64bit: - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra Button: Make ringtone with Clip Extractor - {0c00b393-e669-4cb2-8f65-8833356cd962} - C:\Program Files (x86)\Clip Extractor\Ringtone.lnk ()
O9 - Extra Button: Download with Clip Extractor - {aae24073-cf39-4df1-9de1-1a5a1aeea8f9} - C:\Program Files (x86)\Clip Extractor\ClipExtractor.exe ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - mmswsock.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - mmswsock.dll File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - %SystemRoot%\System32\winrnr.dll File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{687A485B-A39E-4A81-A7BC-AF0A393653F3}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{71724c78-202b-11e1-b6df-50e5495a450b}\Shell - "" = AutoRun
O33 - MountPoints2\{71724c78-202b-11e1-b6df-50e5495a450b}\Shell\AutoRun\command - "" = E:\SETUP.EXE
O33 - MountPoints2\{71724c78-202b-11e1-b6df-50e5495a450b}\Shell\configure\command - "" = E:\SETUP.EXE
O33 - MountPoints2\{71724c78-202b-11e1-b6df-50e5495a450b}\Shell\install\command - "" = E:\SETUP.EXE
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\SETUP.EXE
O33 - MountPoints2\F\Shell\configure\command - "" = F:\SETUP.EXE
O33 - MountPoints2\F\Shell\install\command - "" = F:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2013/05/02 17:17:03 | 000,181,064 | ---- | C] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/05/02 17:16:29 | 000,000,000 | ---D | C] -- C:\Tweaking.com_Windows_Repair_Logs
[2013/05/02 17:16:28 | 000,000,000 | ---D | C] -- C:\Users\GTech\Desktop\Tweaking.com - Restore Important Windows Services
[2013/04/27 15:32:50 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/04/27 15:21:19 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2013/04/27 14:27:53 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2013/04/26 17:48:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2013/04/26 17:47:55 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2013/04/26 17:47:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2013/04/26 17:47:24 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2013/04/26 17:47:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2013/04/26 17:45:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2013/04/26 17:44:59 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2013/04/26 17:21:45 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Roaming\PowerISO
[2013/04/26 17:20:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
[2013/04/26 17:20:49 | 000,127,384 | ---- | C] (Power Software Ltd) -- C:\Windows\SysNative\drivers\scdemu.sys
[2013/04/26 17:20:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerISO
[2013/04/26 15:33:43 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Roaming\Download Manager
[2013/04/26 14:53:43 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Local\CrashRpt
[2013/04/26 14:51:02 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allmyapps
[2013/04/25 21:26:43 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Roaming\TuneUp Software
[2013/04/25 13:04:55 | 000,000,000 | ---D | C] -- C:\Users\GTech\Documents\Any Video Converter Professional
[2013/04/25 13:04:25 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Roaming\AnvSoft
[2013/04/25 13:04:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
[2013/04/25 13:04:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnvSoft
[2013/04/25 12:35:34 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Roaming\GoforFiles
[2013/04/25 12:35:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GoforFiles
[2013/04/25 12:22:58 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
[2013/04/25 12:00:21 | 000,000,000 | ---D | C] -- C:\Users\GTech\Documents\Log Files
[2013/04/24 20:12:17 | 000,000,000 | ---D | C] -- C:\Users\GTech\Desktop\Crack for Premiere Pro dll
[2013/04/24 19:57:07 | 000,000,000 | ---D | C] -- C:\Users\GTech\Documents\iOrgSoft
[2013/04/24 19:55:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iOrgSoft
[2013/04/24 19:55:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iOrgSoft
[2013/04/24 18:30:27 | 000,000,000 | ---D | C] -- C:\Users\GTech\Desktop\Footage
[2013/04/22 14:47:50 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Local\Macromedia
[2013/04/22 14:47:18 | 000,000,000 | ---D | C] -- C:\Users\GTech\AppData\Local\Mozilla
[2013/04/22 14:46:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013/04/22 14:46:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013/04/22 14:46:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/04/22 14:38:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/04/22 14:37:44 | 000,263,584 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/04/22 14:37:37 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/04/22 14:37:37 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/04/22 14:37:37 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/04/22 14:37:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/04/20 20:22:01 | 000,000,000 | ---D | C] -- C:\Users\GTech\Desktop\Man Of The House
[2013/04/20 20:22:01 | 000,000,000 | ---D | C] -- C:\Users\GTech\Desktop\__MACOSX
[2013/04/16 19:57:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013/04/11 03:18:40 | 000,384,800 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
[2013/04/10 14:34:50 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/04/10 14:34:50 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/04/10 14:34:50 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/04/10 14:34:49 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/04/10 14:34:49 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/04/10 14:34:49 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/04/10 14:34:49 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/04/10 14:34:49 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/04/10 14:34:49 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/04/10 14:34:49 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/04/10 14:34:49 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/04/10 14:34:49 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/04/10 14:34:48 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/04/10 14:34:48 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/04/10 14:34:48 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/04/10 10:22:01 | 003,717,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2013/04/10 10:22:01 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2013/04/10 10:22:00 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2013/04/10 10:22:00 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2013/04/10 10:22:00 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2013/04/10 10:22:00 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2013/04/10 10:21:50 | 005,550,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/04/10 10:21:50 | 003,968,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/04/10 10:21:50 | 003,913,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/04/10 10:21:49 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013/04/10 10:21:49 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013/04/10 10:21:49 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013/05/02 17:18:26 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/05/02 17:16:06 | 001,010,674 | ---- | M] () -- C:\Users\GTech\Desktop\Tweaking.com-RestoreImportantWindowsServices.exe
[2013/05/02 17:13:38 | 000,628,743 | ---- | M] () -- C:\Users\GTech\Desktop\adwcleaner.exe
[2013/05/02 17:05:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/05/02 17:03:35 | 000,726,270 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/05/02 17:03:35 | 000,628,414 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/05/02 17:03:35 | 000,110,598 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/05/02 16:59:18 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/05/02 16:59:14 | 2145,411,071 | -HS- | M] () -- C:\hiberfil.sys
[2013/05/02 16:58:17 | 000,014,320 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/05/02 16:58:17 | 000,014,320 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/05/02 16:57:18 | 119,025,424 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2013/05/02 14:50:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1673298358-3336942171-3937336255-1000UA.job
[2013/05/02 13:25:55 | 008,442,809 | ---- | M] () -- C:\Users\GTech\Desktop\Slaughter House (Instrumental).mp3
[2013/05/02 12:37:45 | 000,119,296 | ---- | M] () -- C:\Windows\SysWow64\zlib.dll
[2013/04/30 18:50:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1673298358-3336942171-3937336255-1000Core.job
[2013/04/28 13:50:53 | 003,881,637 | ---- | M] () -- C:\Users\GTech\Desktop\JAY - Z - OPEN LETTER INSTRUMENTAL - NEW 2013.mp3
[2013/04/27 14:34:11 | 000,328,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe
[2013/04/26 17:51:39 | 005,003,368 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/04/26 17:48:16 | 000,003,021 | ---- | M] () -- C:\Users\GTech\Desktop\Microsoft Word 2010.lnk
[2013/04/26 17:20:50 | 000,001,011 | ---- | M] () -- C:\Users\Public\Desktop\PowerISO.lnk
[2013/04/26 16:22:50 | 806,676,480 | ---- | M] () -- C:\Users\GTech\Documents\OfficeProfessionalPlus_x64_en-us.img.dlm
[2013/04/25 15:05:55 | 008,261,529 | ---- | M] () -- C:\Users\GTech\Desktop\Sample 2.wmv
[2013/04/25 14:57:49 | 032,717,715 | ---- | M] () -- C:\Users\GTech\Desktop\Sample.wmv
[2013/04/25 13:04:10 | 000,001,321 | ---- | M] () -- C:\Users\GTech\Desktop\Any Video Converter Professional.lnk
[2013/04/24 19:55:42 | 000,001,343 | ---- | M] () -- C:\Users\Public\Desktop\iOrgSoft AVCHD Video Converter.lnk
[2013/04/23 10:50:04 | 000,009,216 | ---- | M] () -- C:\Users\GTech\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/04/22 14:46:42 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/04/22 14:37:24 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/04/22 14:37:23 | 000,866,720 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013/04/22 14:37:23 | 000,788,896 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013/04/22 14:37:23 | 000,263,584 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/04/22 14:37:23 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/04/22 14:37:23 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/04/21 00:14:01 | 012,145,928 | ---- | M] () -- C:\Users\GTech\Desktop\Kendrick Lamar- [bleep] Don't Kill My Vibe (Instrumental W Hook).mp3
[2013/04/20 22:01:24 | 000,002,138 | ---- | M] () -- C:\Users\GTech\Desktop\Flvto Youtube Downloader.lnk
[2013/04/18 04:51:02 | 000,127,384 | ---- | M] (Power Software Ltd) -- C:\Windows\SysNative\drivers\scdemu.sys
[2013/04/17 23:24:47 | 005,777,500 | ---- | M] () -- C:\Users\GTech\Desktop\Meek Mill Type Instrumental (Download Link)-[www_flvto_com].mp3
[2013/04/16 19:57:54 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
[2013/04/14 20:37:06 | 000,450,883 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm
[2013/04/13 09:51:16 | 007,011,351 | ---- | M] () -- C:\Users\GTech\Desktop\Eyon - Mentality (Sample).mp3
[2013/04/11 15:09:55 | 000,296,669 | ---- | M] () -- C:\Users\GTech\Desktop\tumblr_milve6utyC1qzabkfo1_400.png
[2013/04/11 03:18:40 | 000,384,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
[2013/04/10 21:03:00 | 000,000,119 | ---- | M] () -- C:\Users\GTech\webct_upload_applet.properties
[2013/04/10 10:50:39 | 000,002,330 | ---- | M] () -- C:\Users\GTech\Desktop\Google Chrome.lnk
[2013/04/09 14:11:42 | 009,683,094 | ---- | M] () -- C:\Users\GTech\Desktop\Bad Remix.mp3
[2013/04/05 17:46:57 | 006,197,548 | ---- | M] () -- C:\Users\GTech\Desktop\Wale ft. Tiara Thomas - Bad (instrumental Whook).mp3
[2013/04/03 11:53:26 | 010,380,050 | ---- | M] () -- C:\Users\GTech\Desktop\Kendrick Lamar- Poetic Justice (Instrumental w Hook).mp3
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013/05/02 17:16:06 | 001,010,674 | ---- | C] () -- C:\Users\GTech\Desktop\Tweaking.com-RestoreImportantWindowsServices.exe
[2013/05/02 17:13:37 | 000,628,743 | ---- | C] () -- C:\Users\GTech\Desktop\adwcleaner.exe
[2013/05/02 13:25:48 | 008,442,809 | ---- | C] () -- C:\Users\GTech\Desktop\Slaughter House (Instrumental).mp3
[2013/04/28 13:50:48 | 003,881,637 | ---- | C] () -- C:\Users\GTech\Desktop\JAY - Z - OPEN LETTER INSTRUMENTAL - NEW 2013.mp3
[2013/04/26 17:48:16 | 000,003,021 | ---- | C] () -- C:\Users\GTech\Desktop\Microsoft Word 2010.lnk
[2013/04/26 17:20:50 | 000,001,011 | ---- | C] () -- C:\Users\Public\Desktop\PowerISO.lnk
[2013/04/26 15:33:54 | 806,676,480 | ---- | C] () -- C:\Users\GTech\Documents\OfficeProfessionalPlus_x64_en-us.img.dlm
[2013/04/25 15:05:12 | 008,261,529 | ---- | C] () -- C:\Users\GTech\Desktop\Sample 2.wmv
[2013/04/25 14:54:20 | 032,717,715 | ---- | C] () -- C:\Users\GTech\Desktop\Sample.wmv
[2013/04/25 13:04:10 | 000,001,321 | ---- | C] () -- C:\Users\GTech\Desktop\Any Video Converter Professional.lnk
[2013/04/24 19:55:42 | 000,001,343 | ---- | C] () -- C:\Users\Public\Desktop\iOrgSoft AVCHD Video Converter.lnk
[2013/04/22 14:46:42 | 000,001,151 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/04/22 14:46:41 | 000,001,163 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/04/21 00:13:52 | 012,145,928 | ---- | C] () -- C:\Users\GTech\Desktop\Kendrick Lamar- [bleep] Don't Kill My Vibe (Instrumental W Hook).mp3
[2013/04/17 23:23:45 | 005,777,500 | ---- | C] () -- C:\Users\GTech\Desktop\Meek Mill Type Instrumental (Download Link)-[www_flvto_com].mp3
[2013/04/13 12:55:57 | 007,011,351 | ---- | C] () -- C:\Users\GTech\Desktop\Eyon - Mentality (Sample).mp3
[2013/04/11 15:09:55 | 000,296,669 | ---- | C] () -- C:\Users\GTech\Desktop\tumblr_milve6utyC1qzabkfo1_400.png
[2013/04/09 14:18:01 | 009,683,094 | ---- | C] () -- C:\Users\GTech\Desktop\Bad Remix.mp3
[2013/04/05 17:46:49 | 006,197,548 | ---- | C] () -- C:\Users\GTech\Desktop\Wale ft. Tiara Thomas - Bad (instrumental Whook).mp3
[2013/04/03 11:53:18 | 010,380,050 | ---- | C] () -- C:\Users\GTech\Desktop\Kendrick Lamar- Poetic Justice (Instrumental w Hook).mp3
[2013/02/21 03:08:26 | 000,000,119 | ---- | C] () -- C:\Users\GTech\webct_upload_applet.properties
[2013/01/22 14:43:15 | 000,171,881 | ---- | C] () -- C:\Windows\hpoins49.dat.temp
[2013/01/22 14:43:15 | 000,001,241 | ---- | C] () -- C:\Windows\hpomdl49.dat.temp
[2012/12/06 21:46:09 | 000,171,254 | ---- | C] () -- C:\Windows\hpoins49.dat
[2012/12/06 21:46:09 | 000,001,241 | ---- | C] () -- C:\Windows\hpomdl49.dat
[2012/10/29 21:29:39 | 000,000,593 | ---- | C] () -- C:\Users\GTech\AppData\Roaming\ClipExtractor-YouTube-Clip-ExtractorFlvConverterDefaultSettings.xml
[2012/10/25 11:56:28 | 000,009,216 | ---- | C] () -- C:\Users\GTech\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/04 18:41:31 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011/12/07 15:24:50 | 000,119,296 | ---- | C] () -- C:\Windows\SysWow64\zlib.dll
[2011/12/07 15:24:50 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\ADsSecurity.dll
[2011/12/07 15:24:50 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\dxinputdll.dll
[2011/10/11 02:38:17 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/10/11 02:36:43 | 000,003,113 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/10/11 02:27:43 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2006/06/17 10:19:12 | 000,060,634 | -H-- | C] () -- C:\Users\GTech\AppData\Roaming\GTechlog.dat
========== ZeroAccess Check ==========
[2013/04/25 12:37:47 | 000,000,000 | ---D | M] -- C:\Windows\Installer\{d631d24f-4705-e2c6-4961-19c3ff31037e}\L
[2013/04/27 14:34:11 | 000,000,000 | ---D | M] -- C:\Windows\Installer\{d631d24f-4705-e2c6-4961-19c3ff31037e}\U
[2013/04/27 14:22:59 | 000,000,804 | ---- | M] () -- C:\Windows\Installer\{d631d24f-4705-e2c6-4961-19c3ff31037e}\L\00000004.@
[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[2013/04/27 14:22:58 | 000,004,608 | -HS- | M] () -- C:\Windows\assembly\GAC_32\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 01:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 00:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== Custom Scans ==========
========== Base Services ==========
SRV:64bit: - [2009/07/13 21:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2010/11/20 09:25:40 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/13 21:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
No service found with a name of BITS
No service found with a name of BFE
SRV:64bit: - [2011/11/17 02:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/13 21:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/13 21:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/04 18:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2012/06/02 01:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2012/06/02 00:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/20 09:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/20 09:26:04 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/20 08:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 02:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/13 21:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/13 21:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/13 21:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
No service found with a name of SharedAccess
SRV:64bit: - [2010/11/20 09:26:39 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/13 21:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/13 21:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/13 21:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/13 21:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/13 21:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2012/10/03 13:44:21 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/13 21:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/24 07:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2012/02/11 02:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/17 02:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/13 21:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/20 09:27:24 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/20 09:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/20 09:27:25 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/17 02:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
No service found with a name of wscsvc
SRV:64bit: - [2010/11/20 09:27:26 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/20 09:27:25 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/20 08:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/20 09:27:25 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/20 09:27:26 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/20 08:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/13 21:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2012/05/01 01:40:20 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/20 09:25:27 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/20 09:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/20 09:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/20 09:27:25 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
No service found with a name of WinDefend
SRV:64bit: - [2010/11/20 09:27:28 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
No service found with a name of MpsSvc
SRV:64bit: - [2010/11/20 09:27:28 | 000,580,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/20 09:24:58 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/20 08:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/13 21:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
No service found with a name of wuauserv
SRV:64bit: - [2010/11/20 09:26:07 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/13 21:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/20 09:27:28 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)
========== Alternate Data Streams ==========
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:8CE646EE
@Alternate Data Stream - 128 bytes -> C:\Windows\SysWow64\zlib.dll: SummaryInformation
@Alternate Data Stream - 128 bytes -> C:\Windows\SysWow64\zlib.dll: DocumentSummaryInformation
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:661DFA1C
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86
< End of report >
BTW: During step 3 the Repairing Windows Services program only took 0.6 seconds to finish. Not sure if that's normal, here's what the Log says:Log:
Restore Important Windows Services
Start (02/05/2013 5:18:23 PM)
Running Repair Under Current User Account
Running Repair Under System Account
Done (02/05/2013 5:18:29 PM)
Total Repair Time: 00:00:06