Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

PC running slower

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: PC running slower

Unread postby branko » October 27th, 2013, 6:11 pm

15:03:17.0000 3076 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:03:36.0703 3076 ============================================================
15:03:36.0703 3076 Current date / time: 2013/10/27 15:03:36.0703
15:03:36.0703 3076 SystemInfo:
15:03:36.0703 3076
15:03:36.0703 3076 OS Version: 5.1.2600 ServicePack: 3.0
15:03:36.0703 3076 Product type: Workstation
15:03:36.0703 3076 ComputerName: XPS630I
15:03:36.0703 3076 UserName: Branko
15:03:36.0703 3076 Windows directory: C:\WINDOWS
15:03:36.0703 3076 System windows directory: C:\WINDOWS
15:03:36.0703 3076 Processor architecture: Intel x86
15:03:36.0703 3076 Number of processors: 2
15:03:36.0703 3076 Page size: 0x1000
15:03:36.0703 3076 Boot type: Normal boot
15:03:36.0703 3076 ============================================================
15:03:38.0937 3076 Drive \Device\Harddisk0\DR0 - Size: 0x3A70C70000 (233.76 Gb), SectorSize: 0x200, Cylinders: 0x7733, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:03:38.0953 3076 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:03:38.0968 3076 Drive \Device\Harddisk2\DR2 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
15:03:38.0968 3076 Drive \Device\Harddisk3\DR3 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
15:03:38.0968 3076 ============================================================
15:03:38.0968 3076 \Device\Harddisk0\DR0:
15:03:38.0968 3076 MBR partitions:
15:03:38.0968 3076 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D383734
15:03:38.0968 3076 \Device\Harddisk1\DR1:
15:03:38.0984 3076 MBR partitions:
15:03:38.0984 3076 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
15:03:38.0984 3076 \Device\Harddisk2\DR2:
15:03:38.0984 3076 MBR partitions:
15:03:38.0984 3076 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x56E9338C
15:03:38.0984 3076 \Device\Harddisk3\DR3:
15:03:38.0984 3076 MBR partitions:
15:03:38.0984 3076 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAEA86702
15:03:38.0984 3076 ============================================================
15:03:39.0031 3076 C: <-> \Device\Harddisk2\DR2\Partition1
15:03:39.0078 3076 E: <-> \Device\Harddisk1\DR1\Partition1
15:03:39.0140 3076 F: <-> \Device\Harddisk0\DR0\Partition1
15:03:39.0171 3076 G: <-> \Device\Harddisk3\DR3\Partition1
15:03:39.0171 3076 ============================================================
15:03:39.0171 3076 Initialize success
15:03:39.0171 3076 ============================================================
15:03:49.0390 2272 ============================================================
15:03:49.0390 2272 Scan started
15:03:49.0390 2272 Mode: Manual;
15:03:49.0390 2272 ============================================================
15:03:50.0328 2272 ================ Scan system memory ========================
15:03:50.0328 2272 System memory - ok
15:03:50.0328 2272 ================ Scan services =============================
15:03:50.0437 2272 Abiosdsk - ok
15:03:50.0468 2272 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
15:03:50.0468 2272 abp480n5 - ok
15:03:50.0609 2272 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
15:03:50.0609 2272 ACDaemon - ok
15:03:50.0656 2272 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:03:50.0671 2272 ACPI - ok
15:03:50.0703 2272 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:03:50.0703 2272 ACPIEC - ok
15:03:50.0703 2272 adfs - ok
15:03:50.0734 2272 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
15:03:50.0734 2272 adpu160m - ok
15:03:50.0750 2272 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:03:50.0750 2272 aec - ok
15:03:50.0781 2272 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:03:50.0781 2272 AFD - ok
15:03:50.0796 2272 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
15:03:50.0796 2272 agp440 - ok
15:03:50.0812 2272 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
15:03:50.0812 2272 agpCPQ - ok
15:03:50.0828 2272 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
15:03:50.0828 2272 Aha154x - ok
15:03:50.0843 2272 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
15:03:50.0843 2272 aic78u2 - ok
15:03:50.0843 2272 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
15:03:50.0843 2272 aic78xx - ok
15:03:50.0937 2272 [ FB054E270D825A0EF262041577D6AFD2 ] aksfridge C:\WINDOWS\system32\DRIVERS\aksfridge.sys
15:03:50.0937 2272 aksfridge - ok
15:03:50.0968 2272 [ 64FC197D24A2B240598F29CE0A6660C0 ] akshasp C:\WINDOWS\system32\DRIVERS\akshasp.sys
15:03:50.0984 2272 akshasp - ok
15:03:51.0000 2272 [ 147B61B81BE1FFC38939EA47E5CFB51F ] akshhl C:\WINDOWS\system32\DRIVERS\akshhl.sys
15:03:51.0000 2272 akshhl - ok
15:03:51.0015 2272 [ CCE6C56F18D214DE8D66F3F2A774CD5B ] aksusb C:\WINDOWS\system32\DRIVERS\aksusb.sys
15:03:51.0015 2272 aksusb - ok
15:03:51.0031 2272 [ 964E8E8FF278B05C72A58E9E6EE8274E ] al60 C:\WINDOWS\system32\al60.sys
15:03:51.0031 2272 al60 - ok
15:03:51.0046 2272 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:03:51.0046 2272 Alerter - ok
15:03:51.0062 2272 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
15:03:51.0062 2272 ALG - ok
15:03:51.0093 2272 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
15:03:51.0093 2272 AliIde - ok
15:03:51.0109 2272 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
15:03:51.0109 2272 alim1541 - ok
15:03:51.0125 2272 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
15:03:51.0125 2272 amdagp - ok
15:03:51.0125 2272 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
15:03:51.0125 2272 amsint - ok
15:03:51.0203 2272 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:03:51.0203 2272 Apple Mobile Device - ok
15:03:51.0234 2272 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
15:03:51.0234 2272 AppMgmt - ok
15:03:51.0265 2272 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:03:51.0265 2272 Arp1394 - ok
15:03:51.0281 2272 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
15:03:51.0281 2272 asc - ok
15:03:51.0281 2272 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
15:03:51.0296 2272 asc3350p - ok
15:03:51.0296 2272 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
15:03:51.0296 2272 asc3550 - ok
15:03:51.0421 2272 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:03:51.0421 2272 aspnet_state - ok
15:03:51.0437 2272 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:03:51.0437 2272 AsyncMac - ok
15:03:51.0468 2272 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:03:51.0468 2272 atapi - ok
15:03:51.0468 2272 Atdisk - ok
15:03:51.0500 2272 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:03:51.0500 2272 Atmarpc - ok
15:03:51.0515 2272 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:03:51.0515 2272 AudioSrv - ok
15:03:51.0531 2272 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:03:51.0531 2272 audstub - ok
15:03:51.0546 2272 [ 588D19F3522FEA9C76AB991FE457D929 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
15:03:51.0546 2272 BCM43XX - ok
15:03:51.0578 2272 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:03:51.0578 2272 Beep - ok
15:03:52.0000 2272 [ 22C49DE7297AE80F27F2E4A00F3D7C94 ] BHDrvx86 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20131022.001\BHDrvx86.sys
15:03:52.0000 2272 BHDrvx86 - ok
15:03:52.0078 2272 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
15:03:52.0078 2272 BITS - ok
15:03:52.0125 2272 [ 5FF9A3F3476D726AE62DA82D5DA94C36 ] BlueletAudio C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
15:03:52.0125 2272 BlueletAudio - ok
15:03:52.0140 2272 [ BD91AFC523FD59F881E1763C38FB772F ] BlueletSCOAudio C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys
15:03:52.0140 2272 BlueletSCOAudio - ok
15:03:52.0203 2272 [ 2072720F0848312C40E01C2AEC8ED439 ] BlueSoleil Hid Service C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
15:03:52.0203 2272 BlueSoleil Hid Service - ok
15:03:52.0312 2272 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:03:52.0312 2272 Bonjour Service - ok
15:03:52.0375 2272 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
15:03:52.0375 2272 Browser - ok
15:03:52.0390 2272 [ C5CCE2B26F73F8CF7F3C82159E79AA08 ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
15:03:52.0390 2272 BT - ok
15:03:52.0390 2272 BTCOMM - ok
15:03:52.0421 2272 [ FB2ABC6D08D9F8D5ED8E02CBD18B39BB ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
15:03:52.0421 2272 Btcsrusb - ok
15:03:52.0421 2272 [ CE643D0918123D76A5CAAB008FCA9663 ] BTHidEnum C:\WINDOWS\system32\Drivers\vbtenum.sys
15:03:52.0421 2272 BTHidEnum - ok
15:03:52.0421 2272 [ DFCA4FE4C8AEC786B4D0F432EB730F48 ] BTHidMgr C:\WINDOWS\system32\Drivers\BTHidMgr.sys
15:03:52.0421 2272 BTHidMgr - ok
15:03:52.0421 2272 BTKRNBDG - ok
15:03:52.0437 2272 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
15:03:52.0437 2272 cbidf - ok
15:03:52.0437 2272 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:03:52.0437 2272 cbidf2k - ok
15:03:52.0531 2272 [ 359E5A91D26D0439933BEF1C29CEDEF7 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
15:03:52.0531 2272 CCALib8 - ok
15:03:52.0562 2272 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:03:52.0562 2272 CCDECODE - ok
15:03:52.0578 2272 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
15:03:52.0578 2272 cd20xrnt - ok
15:03:52.0578 2272 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:03:52.0578 2272 Cdaudio - ok
15:03:52.0609 2272 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:03:52.0609 2272 Cdfs - ok
15:03:52.0640 2272 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:03:52.0640 2272 Cdrom - ok
15:03:52.0640 2272 Changer - ok
15:03:52.0656 2272 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:03:52.0656 2272 CiSvc - ok
15:03:52.0671 2272 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:03:52.0671 2272 ClipSrv - ok
15:03:52.0750 2272 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:03:52.0750 2272 clr_optimization_v2.0.50727_32 - ok
15:03:52.0781 2272 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:03:52.0796 2272 clr_optimization_v4.0.30319_32 - ok
15:03:52.0796 2272 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
15:03:52.0796 2272 CmdIde - ok
15:03:52.0796 2272 COMSysApp - ok
15:03:52.0859 2272 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
15:03:52.0859 2272 Cpqarray - ok
15:03:52.0875 2272 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:03:52.0875 2272 CryptSvc - ok
15:03:52.0875 2272 [ C6644D1A70C050FDD7ECBE8C3AC05313 ] cvspydr2 C:\WINDOWS\system32\DRIVERS\cvspydr2.sys
15:03:52.0890 2272 cvspydr2 - ok
15:03:52.0906 2272 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
15:03:52.0906 2272 dac2w2k - ok
15:03:52.0906 2272 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
15:03:52.0906 2272 dac960nt - ok
15:03:52.0953 2272 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:03:52.0953 2272 DcomLaunch - ok
15:03:52.0984 2272 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:03:52.0984 2272 Dhcp - ok
15:03:52.0984 2272 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:03:52.0984 2272 Disk - ok
15:03:53.0000 2272 dmadmin - ok
15:03:53.0046 2272 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:03:53.0062 2272 dmboot - ok
15:03:53.0093 2272 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:03:53.0093 2272 dmio - ok
15:03:53.0125 2272 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:03:53.0125 2272 dmload - ok
15:03:53.0125 2272 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:03:53.0125 2272 dmserver - ok
15:03:53.0140 2272 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:03:53.0140 2272 DMusic - ok
15:03:53.0203 2272 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:03:53.0203 2272 Dnscache - ok
15:03:53.0218 2272 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:03:53.0234 2272 Dot3svc - ok
15:03:53.0234 2272 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
15:03:53.0250 2272 dpti2o - ok
15:03:53.0265 2272 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:03:53.0265 2272 drmkaud - ok
15:03:53.0281 2272 [ 4823163C246868863D41A2F5EE06A21E ] dsNcAdpt C:\WINDOWS\system32\DRIVERS\dsNcAdpt.sys
15:03:53.0281 2272 dsNcAdpt - ok
15:03:53.0328 2272 [ 0928B44C2704256BD4C58CA1CF331CE4 ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
15:03:53.0328 2272 dsNcService - ok
15:03:53.0359 2272 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
15:03:53.0359 2272 E100B - ok
15:03:53.0359 2272 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:03:53.0359 2272 EapHost - ok
15:03:53.0421 2272 [ E1E3804F7C59EA3E14637C2A763F65E2 ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
15:03:53.0421 2272 eeCtrl - ok
15:03:53.0500 2272 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
15:03:53.0500 2272 EpsonBidirectionalService - ok
15:03:53.0515 2272 [ C0312F716AC9963FFAFAF99A269DE8B0 ] EPSONStatusAgent2 C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
15:03:53.0515 2272 EPSONStatusAgent2 - ok
15:03:53.0609 2272 [ EC6A73CD8413F68655E5E0B99C415A21 ] EPSON_EB_RPCV4_01 C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE
15:03:53.0625 2272 EPSON_EB_RPCV4_01 - ok
15:03:53.0625 2272 [ 8FE6AB59CAB8F2C038FEA9522A5EEBA7 ] EPSON_PM_RPCV4_01 C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
15:03:53.0625 2272 EPSON_PM_RPCV4_01 - ok
15:03:53.0656 2272 [ 6D84DFC3B5C5052881BF50470D0C03D1 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:03:53.0656 2272 EraserUtilRebootDrv - ok
15:03:53.0671 2272 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:03:53.0671 2272 ERSvc - ok
15:03:53.0718 2272 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
15:03:53.0718 2272 Eventlog - ok
15:03:53.0781 2272 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
15:03:53.0781 2272 EventSystem - ok
15:03:53.0796 2272 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:03:53.0796 2272 Fastfat - ok
15:03:53.0859 2272 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:03:53.0859 2272 FastUserSwitchingCompatibility - ok
15:03:53.0906 2272 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
15:03:53.0906 2272 Fax - ok
15:03:53.0937 2272 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
15:03:53.0937 2272 Fdc - ok
15:03:53.0953 2272 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:03:53.0953 2272 Fips - ok
15:03:53.0968 2272 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:03:53.0968 2272 Flpydisk - ok
15:03:54.0000 2272 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:03:54.0015 2272 FltMgr - ok
15:03:54.0046 2272 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:03:54.0046 2272 FontCache3.0.0.0 - ok
15:03:54.0062 2272 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:03:54.0062 2272 Fs_Rec - ok
15:03:54.0078 2272 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:03:54.0078 2272 Ftdisk - ok
15:03:54.0171 2272 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
15:03:54.0171 2272 GEARAspiWDM - ok
15:03:54.0234 2272 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
15:03:54.0234 2272 GoToAssist - ok
15:03:54.0250 2272 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:03:54.0250 2272 Gpc - ok
15:03:54.0421 2272 [ 9ACD543E671112C199CF19733F7AC4F0 ] GsServer C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe
15:03:54.0468 2272 GsServer - ok
15:03:54.0625 2272 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:03:54.0625 2272 gupdate - ok
15:03:54.0625 2272 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:03:54.0625 2272 gupdatem - ok
15:03:54.0671 2272 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:03:54.0671 2272 gusvc - ok
15:03:54.0718 2272 [ 995178A443B07FA9EEAEA041D7B4B5CA ] hardlock C:\WINDOWS\system32\drivers\hardlock.sys
15:03:54.0718 2272 hardlock - ok
15:03:54.0718 2272 hasplms - ok
15:03:54.0734 2272 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:03:54.0750 2272 HDAudBus - ok
15:03:54.0812 2272 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:03:54.0812 2272 helpsvc - ok
15:03:54.0859 2272 [ A178FEC28D5C7DD62B1A746BF71BC159 ] hidkmdf C:\WINDOWS\system32\DRIVERS\hidkmdf.sys
15:03:54.0859 2272 hidkmdf - ok
15:03:54.0875 2272 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:03:54.0875 2272 HidServ - ok
15:03:54.0890 2272 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:03:54.0890 2272 HidUsb - ok
15:03:54.0906 2272 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:03:54.0906 2272 hkmsvc - ok
15:03:54.0921 2272 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
15:03:54.0921 2272 hpn - ok
15:03:54.0937 2272 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:03:54.0953 2272 HTTP - ok
15:03:54.0984 2272 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:03:55.0000 2272 HTTPFilter - ok
15:03:55.0031 2272 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
15:03:55.0031 2272 i2omgmt - ok
15:03:55.0031 2272 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
15:03:55.0031 2272 i2omp - ok
15:03:55.0046 2272 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:03:55.0046 2272 i8042prt - ok
15:03:55.0093 2272 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:03:55.0093 2272 idsvc - ok
15:03:55.0234 2272 [ FDC95E930F9CB58775AF569C228F67BC ] IDSxpx86 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20131025.001\IDSxpx86.sys
15:03:55.0234 2272 IDSxpx86 - ok
15:03:55.0296 2272 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:03:55.0296 2272 Imapi - ok
15:03:55.0343 2272 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:03:55.0343 2272 ImapiService - ok
15:03:55.0343 2272 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
15:03:55.0343 2272 ini910u - ok
15:03:55.0500 2272 [ EB5608FD4F2961517AC9F5CAC88B023B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
15:03:55.0531 2272 IntcAzAudAddService - ok
15:03:55.0562 2272 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
15:03:55.0562 2272 IntelIde - ok
15:03:55.0578 2272 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:03:55.0578 2272 intelppm - ok
15:03:55.0718 2272 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
15:03:55.0718 2272 IntuitUpdateService - ok
15:03:55.0765 2272 [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
15:03:55.0765 2272 IntuitUpdateServiceV4 - ok
15:03:55.0781 2272 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:03:55.0796 2272 Ip6Fw - ok
15:03:55.0921 2272 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:03:55.0921 2272 IpFilterDriver - ok
15:03:55.0921 2272 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:03:55.0921 2272 IpInIp - ok
15:03:55.0953 2272 [ 59D4458000A2AB1BFF2048DA3A99BDF3 ] IPN2120 C:\WINDOWS\system32\DRIVERS\LSIPNDS.sys
15:03:55.0953 2272 IPN2120 - ok
15:03:55.0968 2272 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:03:55.0968 2272 IpNat - ok
15:03:56.0031 2272 [ C00149A7027081539A66DC5A46695EAD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:03:56.0031 2272 iPod Service - ok
15:03:56.0062 2272 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:03:56.0062 2272 IPSec - ok
15:03:56.0078 2272 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:03:56.0078 2272 IRENUM - ok
15:03:56.0109 2272 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:03:56.0109 2272 isapnp - ok
15:03:56.0140 2272 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:03:56.0140 2272 Kbdclass - ok
15:03:56.0140 2272 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:03:56.0140 2272 kbdhid - ok
15:03:56.0171 2272 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:03:56.0171 2272 kmixer - ok
15:03:56.0203 2272 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:03:56.0203 2272 KSecDD - ok
15:03:56.0234 2272 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:03:56.0234 2272 lanmanserver - ok
15:03:56.0265 2272 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:03:56.0265 2272 lanmanworkstation - ok
15:03:56.0265 2272 lbrtfdc - ok
15:03:56.0281 2272 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:03:56.0281 2272 LmHosts - ok
15:03:56.0343 2272 [ 8113133EC42DD6C566908008CE913EDD ] LVcKap C:\WINDOWS\system32\DRIVERS\LVcKap.sys
15:03:56.0375 2272 LVcKap - ok
15:03:56.0421 2272 [ 9E41266C68C11D7101A2D18CD1F7553E ] LVCOMSer C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
15:03:56.0421 2272 LVCOMSer - ok
15:03:56.0484 2272 [ 0DD5B8AF4917A2821047450195C511B3 ] LVMVDrv C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
15:03:56.0500 2272 LVMVDrv - ok
15:03:56.0515 2272 [ 406B1D186F75B4B4832D6237859E1B00 ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
15:03:56.0515 2272 LVPr2Mon - ok
15:03:56.0546 2272 [ 85C2E84BC1224C75A20B5560D5A15DB9 ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
15:03:56.0546 2272 LVPrcSrv - ok
15:03:56.0562 2272 [ 656180E9C0C5199520972426C44BC2F0 ] LVSrvLauncher C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
15:03:56.0562 2272 LVSrvLauncher - ok
15:03:56.0562 2272 McComponentHostService - ok
15:03:56.0593 2272 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:03:56.0593 2272 Messenger - ok
15:03:56.0609 2272 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:03:56.0609 2272 mnmdd - ok
15:03:56.0625 2272 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:03:56.0625 2272 mnmsrvc - ok
15:03:56.0640 2272 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:03:56.0640 2272 Modem - ok
15:03:56.0671 2272 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:03:56.0671 2272 Mouclass - ok
15:03:56.0687 2272 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:03:56.0687 2272 mouhid - ok
15:03:56.0718 2272 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:03:56.0718 2272 MountMgr - ok
15:03:56.0765 2272 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:03:56.0765 2272 MozillaMaintenance - ok
15:03:56.0781 2272 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
15:03:56.0781 2272 mraid35x - ok
15:03:56.0812 2272 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:03:56.0812 2272 MRxDAV - ok
15:03:56.0875 2272 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:03:56.0890 2272 MRxSmb - ok
15:03:56.0890 2272 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:03:56.0890 2272 MSDTC - ok
15:03:56.0890 2272 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:03:56.0890 2272 Msfs - ok
15:03:56.0906 2272 MSIServer - ok
15:03:56.0921 2272 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:03:56.0937 2272 MSKSSRV - ok
15:03:56.0937 2272 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:03:56.0937 2272 MSPCLOCK - ok
15:03:56.0937 2272 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:03:56.0937 2272 MSPQM - ok
15:03:56.0953 2272 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:03:56.0953 2272 mssmbios - ok
15:03:56.0968 2272 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
15:03:56.0968 2272 MSTEE - ok
15:03:56.0984 2272 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:03:56.0984 2272 Mup - ok
15:03:57.0093 2272 [ E78A365CC3E0FBFC018A33DCE01909F8 ] N360 C:\Program Files\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
15:03:57.0093 2272 N360 - ok
15:03:57.0140 2272 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:03:57.0140 2272 NABTSFEC - ok
15:03:57.0156 2272 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:03:57.0171 2272 napagent - ok
15:03:57.0281 2272 [ 81E928EE3751FAF725C87CC17726C05D ] NAVENG C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20131026.007\NAVENG.SYS
15:03:57.0281 2272 NAVENG - ok
15:03:57.0328 2272 [ E0C39FA6C76AE8ED53ABF043F35ECDFF ] NAVEX15 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20131026.007\NAVEX15.SYS
15:03:57.0343 2272 NAVEX15 - ok
15:03:57.0343 2272 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:03:57.0343 2272 NDIS - ok
15:03:57.0359 2272 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:03:57.0359 2272 NdisIP - ok
15:03:57.0406 2272 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:03:57.0406 2272 NdisTapi - ok
15:03:57.0406 2272 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:03:57.0406 2272 Ndisuio - ok
15:03:57.0421 2272 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:03:57.0421 2272 NdisWan - ok
15:03:57.0453 2272 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:03:57.0453 2272 NDProxy - ok
15:03:57.0453 2272 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:03:57.0453 2272 NetBIOS - ok
15:03:57.0468 2272 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:03:57.0468 2272 NetBT - ok
15:03:57.0500 2272 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
15:03:57.0500 2272 NetDDE - ok
15:03:57.0500 2272 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:03:57.0500 2272 NetDDEdsdm - ok
15:03:57.0546 2272 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:03:57.0546 2272 Netlogon - ok
15:03:57.0578 2272 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
15:03:57.0578 2272 Netman - ok
15:03:57.0656 2272 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:03:57.0671 2272 NetTcpPortSharing - ok
15:03:57.0703 2272 [ 95694FC00BA1A488F2987C3DB926E19F ] netwg311 C:\WINDOWS\system32\DRIVERS\netwg311.sys
15:03:57.0718 2272 netwg311 - ok
15:03:57.0734 2272 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:03:57.0734 2272 NIC1394 - ok
15:03:57.0765 2272 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
15:03:57.0781 2272 Nla - ok
15:03:57.0796 2272 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\WINDOWS\system32\nlssrv32.exe
15:03:57.0796 2272 nlsX86cc - ok
15:03:57.0828 2272 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:03:57.0828 2272 Npfs - ok
15:03:57.0843 2272 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:03:57.0843 2272 Ntfs - ok
15:03:57.0843 2272 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:03:57.0843 2272 NtLmSsp - ok
15:03:57.0875 2272 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:03:57.0890 2272 NtmsSvc - ok
15:03:57.0937 2272 nTuneService - ok
15:03:57.0968 2272 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
15:03:57.0968 2272 Null - ok
15:03:58.0125 2272 [ 95FDD27485F05B978D1AF7BFE1F5785F ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:03:58.0218 2272 nv - ok
15:03:58.0234 2272 [ D314FE034D68C09D412727886E24F5FB ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
15:03:58.0250 2272 NVENETFD - ok
15:03:58.0265 2272 [ 17F915C35450783A446E70693AFA749B ] nvgts C:\WINDOWS\system32\drivers\nvgts.sys
15:03:58.0265 2272 nvgts - ok
15:03:58.0296 2272 [ F99FBB623ED78367574EE461B5B32C2C ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
15:03:58.0296 2272 nvnetbus - ok
15:03:58.0328 2272 [ 812F257ED1CD53FCB1F9F9CC910F4809 ] NVR0Dev C:\WINDOWS\nvoclock.sys
15:03:58.0328 2272 NVR0Dev - ok
15:03:58.0343 2272 [ C0B63B73BC79C48EAF53900E494F6DE9 ] nvrd32 C:\WINDOWS\system32\drivers\nvrd32.sys
15:03:58.0343 2272 nvrd32 - ok
15:03:58.0406 2272 [ A9D5D8DF38B73548E43FD7C8A1B9B96C ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
15:03:58.0406 2272 NVSvc - ok
15:03:58.0437 2272 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:03:58.0437 2272 NwlnkFlt - ok
15:03:58.0453 2272 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:03:58.0453 2272 NwlnkFwd - ok
15:03:58.0468 2272 [ 5DCC587DEBA479B1F8E33AA8FB079B8A ] odysseyIM3 C:\WINDOWS\system32\DRIVERS\odysseyIM3.sys
15:03:58.0468 2272 odysseyIM3 - ok
15:03:58.0484 2272 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:03:58.0484 2272 ohci1394 - ok
15:03:58.0546 2272 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:03:58.0546 2272 ose - ok
15:03:58.0578 2272 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:03:58.0578 2272 Parport - ok
15:03:58.0609 2272 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:03:58.0609 2272 PartMgr - ok
15:03:58.0625 2272 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:03:58.0625 2272 ParVdm - ok
15:03:58.0625 2272 PCANDIS5 - ok
15:03:58.0656 2272 [ CC91E0E369DF4A052EBDD1EA86AF999B ] PcaSp50 C:\WINDOWS\system32\DRIVERS\PcaSp50.sys
15:03:58.0656 2272 PcaSp50 - ok
15:03:58.0656 2272 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:03:58.0656 2272 PCI - ok
15:03:58.0656 2272 PCIDump - ok
15:03:58.0656 2272 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
15:03:58.0656 2272 PCIIde - ok
15:03:58.0687 2272 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
15:03:58.0687 2272 Pcmcia - ok
15:03:58.0687 2272 PDCOMP - ok
15:03:58.0687 2272 PDFRAME - ok
15:03:58.0687 2272 PDRELI - ok
15:03:58.0687 2272 PDRFRAME - ok
15:03:58.0703 2272 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
15:03:58.0703 2272 perc2 - ok
15:03:58.0718 2272 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
15:03:58.0718 2272 perc2hib - ok
15:03:58.0765 2272 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
15:03:58.0765 2272 PlugPlay - ok
15:03:58.0765 2272 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:03:58.0781 2272 PolicyAgent - ok
15:03:58.0812 2272 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:03:58.0812 2272 PptpMiniport - ok
15:03:58.0812 2272 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:03:58.0812 2272 ProtectedStorage - ok
15:03:58.0828 2272 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:03:58.0828 2272 PSched - ok
15:03:58.0828 2272 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:03:58.0828 2272 Ptilink - ok
15:03:58.0859 2272 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:03:58.0859 2272 PxHelp20 - ok
15:03:58.0875 2272 [ FDDD1AEB9F81EF1E6E48AE1EDC2A97D6 ] QCDonner C:\WINDOWS\system32\DRIVERS\OVCD.sys
15:03:58.0875 2272 QCDonner - ok
15:03:58.0890 2272 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
15:03:58.0890 2272 ql1080 - ok
15:03:58.0890 2272 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
15:03:58.0890 2272 Ql10wnt - ok
15:03:58.0906 2272 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
15:03:58.0906 2272 ql12160 - ok
15:03:58.0921 2272 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
15:03:58.0921 2272 ql1240 - ok
15:03:58.0921 2272 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
15:03:58.0921 2272 ql1280 - ok
15:03:58.0937 2272 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:03:58.0937 2272 RasAcd - ok
15:03:58.0953 2272 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:03:58.0953 2272 RasAuto - ok
15:03:58.0968 2272 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:03:58.0968 2272 Rasl2tp - ok
15:03:59.0000 2272 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:03:59.0015 2272 RasMan - ok
15:03:59.0046 2272 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:03:59.0046 2272 RasPppoe - ok
15:03:59.0046 2272 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:03:59.0046 2272 Raspti - ok
15:03:59.0078 2272 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:03:59.0078 2272 Rdbss - ok
15:03:59.0109 2272 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:03:59.0109 2272 RDPCDD - ok
15:03:59.0125 2272 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:03:59.0140 2272 rdpdr - ok
15:03:59.0171 2272 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:03:59.0171 2272 RDPWD - ok
15:03:59.0187 2272 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:03:59.0187 2272 RDSessMgr - ok
15:03:59.0218 2272 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:03:59.0218 2272 redbook - ok
15:03:59.0218 2272 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:03:59.0234 2272 RemoteAccess - ok
15:03:59.0281 2272 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:03:59.0281 2272 RemoteRegistry - ok
15:03:59.0296 2272 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
15:03:59.0296 2272 ROOTMODEM - ok
15:03:59.0296 2272 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
15:03:59.0296 2272 RpcLocator - ok
15:03:59.0343 2272 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:03:59.0359 2272 RpcSs - ok
15:03:59.0390 2272 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:03:59.0390 2272 RSVP - ok
15:03:59.0390 2272 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
15:03:59.0390 2272 SamSs - ok
15:03:59.0421 2272 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:03:59.0421 2272 SCardSvr - ok
15:03:59.0453 2272 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:03:59.0453 2272 Schedule - ok
15:03:59.0484 2272 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:03:59.0484 2272 Secdrv - ok
15:03:59.0500 2272 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:03:59.0500 2272 seclogon - ok
15:03:59.0531 2272 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
15:03:59.0531 2272 SENS - ok
15:03:59.0562 2272 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:03:59.0562 2272 serenum - ok
15:03:59.0578 2272 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:03:59.0578 2272 Serial - ok
15:03:59.0609 2272 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:03:59.0609 2272 Sfloppy - ok
15:03:59.0625 2272 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:03:59.0640 2272 SharedAccess - ok
15:03:59.0671 2272 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:03:59.0671 2272 ShellHWDetection - ok
15:03:59.0671 2272 Simbad - ok
15:03:59.0687 2272 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
15:03:59.0687 2272 sisagp - ok
15:03:59.0703 2272 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:03:59.0703 2272 SkypeUpdate - ok
15:03:59.0734 2272 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:03:59.0734 2272 SLIP - ok
15:03:59.0750 2272 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
15:03:59.0750 2272 Sparrow - ok
15:03:59.0765 2272 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:03:59.0765 2272 splitter - ok
15:03:59.0796 2272 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:03:59.0812 2272 Spooler - ok
15:03:59.0875 2272 sprtsvc_dellsupportcenter - ok
15:03:59.0875 2272 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:03:59.0875 2272 sr - ok
15:03:59.0906 2272 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
15:03:59.0906 2272 srservice - ok
15:03:59.0921 2272 srservice32 - ok
15:04:00.0015 2272 [ 83726CF02ECED69138948083E06B6EAC ] SRTSP C:\WINDOWS\System32\Drivers\N360\0502020.003\SRTSP.SYS
15:04:00.0015 2272 SRTSP - ok
15:04:00.0046 2272 [ 4E7EAB2E5615D39CF1F1DF9C71E5E225 ] SRTSPX C:\WINDOWS\system32\drivers\N360\0502020.003\SRTSPX.SYS
15:04:00.0046 2272 SRTSPX - ok
15:04:00.0093 2272 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:04:00.0093 2272 Srv - ok
15:04:00.0125 2272 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:04:00.0125 2272 SSDPSRV - ok
15:04:00.0203 2272 [ 329EBFCE6BA46C29EA1B8624E7823CAD ] Start BT in service C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
15:04:00.0203 2272 Start BT in service - ok
15:04:00.0265 2272 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:04:00.0281 2272 stisvc - ok
15:04:00.0296 2272 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:04:00.0312 2272 streamip - ok
15:04:00.0312 2272 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:04:00.0312 2272 swenum - ok
15:04:00.0468 2272 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:04:00.0468 2272 SwitchBoard - ok
15:04:00.0500 2272 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:04:00.0500 2272 swmidi - ok
15:04:00.0500 2272 SwPrv - ok
15:04:00.0515 2272 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
15:04:00.0515 2272 symc810 - ok
15:04:00.0531 2272 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
15:04:00.0531 2272 symc8xx - ok
15:04:00.0562 2272 [ 9BBEB8C6258E72D62E7560E6667AAD39 ] SymDS C:\WINDOWS\system32\drivers\N360\0502020.003\SYMDS.SYS
15:04:00.0562 2272 SymDS - ok
15:04:00.0625 2272 [ D5C02629C02A820A7E71BCA3D44294A3 ] SymEFA C:\WINDOWS\system32\drivers\N360\0502020.003\SYMEFA.SYS
15:04:00.0625 2272 SymEFA - ok
15:04:00.0656 2272 [ AB33C3B196197CA467CBDDA717860DBA ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
15:04:00.0671 2272 SymEvent - ok
15:04:00.0687 2272 [ 94A2459242A6DD0DAF3BAA99E96784FF ] SymIM C:\WINDOWS\system32\DRIVERS\SymIM.sys
15:04:00.0687 2272 SymIM - ok
15:04:00.0687 2272 [ 94A2459242A6DD0DAF3BAA99E96784FF ] SymIMMP C:\WINDOWS\system32\DRIVERS\SymIM.sys
15:04:00.0687 2272 SymIMMP - ok
15:04:00.0718 2272 [ A73399804D5D4A8B20BA60FCF70C9F1F ] SymIRON C:\WINDOWS\system32\drivers\N360\0502020.003\Ironx86.SYS
15:04:00.0718 2272 SymIRON - ok
15:04:00.0765 2272 [ 336CACE58F0359D5CBB1AE6B8A2FB205 ] SYMTDI C:\WINDOWS\System32\Drivers\N360\0502020.003\SYMTDI.SYS
15:04:00.0765 2272 SYMTDI - ok
15:04:00.0765 2272 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
15:04:00.0765 2272 sym_hi - ok
15:04:00.0765 2272 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
15:04:00.0765 2272 sym_u3 - ok
15:04:00.0781 2272 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:04:00.0796 2272 sysaudio - ok
15:04:00.0812 2272 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:04:00.0812 2272 SysmonLog - ok
15:04:01.0234 2272 [ A22AAF077B941896FFE34BEA7BF4CE6B ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
15:04:01.0343 2272 TabletServiceWacom - ok
15:04:01.0390 2272 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:04:01.0390 2272 TapiSrv - ok
15:04:01.0437 2272 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:04:01.0437 2272 Tcpip - ok
15:04:01.0453 2272 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:04:01.0453 2272 TDPIPE - ok
15:04:01.0468 2272 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:04:01.0468 2272 TDTCP - ok
15:04:01.0484 2272 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:04:01.0484 2272 TermDD - ok
15:04:01.0515 2272 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
15:04:01.0531 2272 TermService - ok
15:04:01.0578 2272 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
15:04:01.0578 2272 Themes - ok
15:04:01.0593 2272 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
15:04:01.0593 2272 TlntSvr - ok
15:04:01.0609 2272 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
15:04:01.0609 2272 TosIde - ok
15:04:01.0656 2272 [ E78E73F70FAD698E11FC31C2C83629C2 ] TouchServiceWacom C:\Program Files\Tablet\Wacom\Wacom_TouchService.exe
15:04:01.0656 2272 TouchServiceWacom - ok
15:04:01.0671 2272 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:04:01.0671 2272 TrkWks - ok
15:04:01.0687 2272 TSP - ok
15:04:01.0703 2272 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:04:01.0703 2272 Udfs - ok
15:04:01.0718 2272 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
15:04:01.0718 2272 ultra - ok
15:04:01.0750 2272 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:04:01.0750 2272 Update - ok
15:04:01.0765 2272 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:04:01.0781 2272 upnphost - ok
15:04:01.0796 2272 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
15:04:01.0796 2272 UPS - ok
15:04:01.0812 2272 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
15:04:01.0812 2272 USBAAPL - ok
15:04:01.0843 2272 [ 65898A183FBF1D1F7759D5CCB364DCD4 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
15:04:01.0859 2272 usbaudio - ok
15:04:01.0875 2272 [ 1B611611C28D2DF25BC057D79C6F13FC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:04:01.0875 2272 usbccgp - ok
15:04:01.0890 2272 [ 4BAC8DF07F1D8434FC640E677A62204E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:04:01.0890 2272 usbehci - ok
15:04:01.0921 2272 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:04:01.0921 2272 usbhub - ok
15:04:01.0937 2272 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
15:04:01.0937 2272 usbohci - ok
15:04:01.0953 2272 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:04:01.0953 2272 usbprint - ok
15:04:01.0984 2272 [ F8EDE2B6928970DCE3D5614C27D9E7F6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:04:01.0984 2272 usbscan - ok
15:04:02.0000 2272 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:04:02.0000 2272 USBSTOR - ok
15:04:02.0015 2272 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:04:02.0015 2272 usbuhci - ok
15:04:02.0015 2272 [ 813236B1183CFCF289E367BD5DE6E29E ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
15:04:02.0031 2272 usbvideo - ok
15:04:02.0062 2272 [ 51750B0539986186C6931FC40D171521 ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
15:04:02.0062 2272 VComm - ok
15:04:02.0062 2272 [ 6D9C891C0A761AFED1F3609C2E56F2B9 ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
15:04:02.0062 2272 VcommMgr - ok
15:04:02.0078 2272 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:04:02.0078 2272 VgaSave - ok
15:04:02.0093 2272 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
15:04:02.0093 2272 viaagp - ok
15:04:02.0109 2272 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
15:04:02.0109 2272 ViaIde - ok
15:04:02.0140 2272 [ F4C81E351117C60B1E1BAD1F845F7F4B ] VMUVC C:\WINDOWS\system32\Drivers\VMUVC.sys
15:04:02.0140 2272 VMUVC - ok
15:04:02.0187 2272 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:04:02.0187 2272 VolSnap - ok
15:04:02.0234 2272 [ 4F4125C8E7FB75FED141316E0DFEBE4F ] vpnagent C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
15:04:02.0250 2272 vpnagent - ok
15:04:02.0281 2272 [ FC94804932CFC35F01B3AE510E3B4D5C ] vpnva C:\WINDOWS\system32\DRIVERS\vpnva.sys
15:04:02.0281 2272 vpnva - ok
15:04:02.0312 2272 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
15:04:02.0328 2272 VSS - ok
15:04:02.0359 2272 [ 77D037C0DF3C5F0FE33E3D8DB32ACC1E ] vvftUVC C:\WINDOWS\system32\drivers\vvftUVC.sys
15:04:02.0359 2272 vvftUVC - ok
15:04:02.0390 2272 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
15:04:02.0390 2272 w32time - ok
15:04:02.0421 2272 [ E626769654AC10C779793E753C57CC65 ] WacHidRouter C:\WINDOWS\system32\DRIVERS\wachidrouter.sys
15:04:02.0437 2272 WacHidRouter - ok
15:04:02.0468 2272 [ 6EE3FDB63ECD0C8B12BE09BFC8413E0F ] wacomrouterfilter C:\WINDOWS\system32\DRIVERS\wacomrouterfilter.sys
15:04:02.0468 2272 wacomrouterfilter - ok
15:04:02.0484 2272 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:04:02.0484 2272 Wanarp - ok
15:04:02.0515 2272 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
15:04:02.0515 2272 Wdf01000 - ok
15:04:02.0531 2272 WDICA - ok
15:04:02.0546 2272 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:04:02.0546 2272 wdmaud - ok
15:04:02.0578 2272 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
15:04:02.0578 2272 WebClient - ok
15:04:02.0640 2272 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:04:02.0640 2272 winmgmt - ok
15:04:02.0656 2272 [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:04:02.0656 2272 WmdmPmSN - ok
15:04:02.0718 2272 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
15:04:02.0718 2272 Wmi - ok
15:04:02.0750 2272 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:04:02.0750 2272 WmiApSrv - ok
15:04:02.0765 2272 WMP11V27 - ok
15:04:02.0828 2272 [ 6BAB4DC65515A098505F8B3D01FB6FE5 ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:04:02.0828 2272 WMPNetworkSvc - ok
15:04:02.0906 2272 [ 15673BD0B86150CB8E27766059C72A9B ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:04:02.0906 2272 WPFFontCache_v0400 - ok
15:04:02.0937 2272 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:04:02.0937 2272 WS2IFSL - ok
15:04:02.0968 2272 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:04:02.0968 2272 wscsvc - ok
15:04:03.0000 2272 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:04:03.0015 2272 WSTCODEC - ok
15:04:03.0046 2272 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:04:03.0046 2272 wuauserv - ok
15:04:03.0093 2272 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:04:03.0093 2272 WudfPf - ok
15:04:03.0093 2272 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:04:03.0093 2272 WudfRd - ok
15:04:03.0125 2272 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:04:03.0125 2272 WudfSvc - ok
15:04:03.0171 2272 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:04:03.0171 2272 WZCSVC - ok
15:04:03.0203 2272 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:04:03.0218 2272 xmlprov - ok
15:04:03.0218 2272 ================ Scan global ===============================
15:04:03.0234 2272 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
15:04:03.0281 2272 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
15:04:03.0296 2272 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
15:04:03.0312 2272 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
15:04:03.0312 2272 [Global] - ok
15:04:03.0312 2272 ================ Scan MBR ==================================
15:04:03.0312 2272 [ 35C6B2FCDE68FACBEFE0A4A7200BAE58 ] \Device\Harddisk0\DR0
15:04:05.0015 2272 \Device\Harddisk0\DR0 - ok
15:04:05.0031 2272 [ 35C6B2FCDE68FACBEFE0A4A7200BAE58 ] \Device\Harddisk1\DR1
15:04:06.0687 2272 \Device\Harddisk1\DR1 - ok
15:04:06.0703 2272 [ 91722E6BC3A2B40FF00222DCA4A3DB3E ] \Device\Harddisk2\DR2
15:04:06.0906 2272 \Device\Harddisk2\DR2 - ok
15:04:06.0906 2272 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
15:04:06.0906 2272 \Device\Harddisk3\DR3 - ok
15:04:06.0906 2272 ================ Scan VBR ==================================
15:04:06.0906 2272 [ FB18757713984249CE1C471FD49586BA ] \Device\Harddisk0\DR0\Partition1
15:04:06.0906 2272 \Device\Harddisk0\DR0\Partition1 - ok
15:04:06.0906 2272 [ 13D950C8E02A40590F8E715CA6FFC25E ] \Device\Harddisk1\DR1\Partition1
15:04:06.0906 2272 \Device\Harddisk1\DR1\Partition1 - ok
15:04:06.0906 2272 [ 585068C447CB8312FD24902652680B6A ] \Device\Harddisk2\DR2\Partition1
15:04:06.0906 2272 \Device\Harddisk2\DR2\Partition1 - ok
15:04:06.0906 2272 [ 1604CC73872CCBD52B49B87B868152B2 ] \Device\Harddisk3\DR3\Partition1
15:04:06.0921 2272 \Device\Harddisk3\DR3\Partition1 - ok
15:04:06.0921 2272 ============================================================
15:04:06.0921 2272 Scan finished
15:04:06.0921 2272 ============================================================
15:04:06.0921 2896 Detected object count: 0
15:04:06.0921 2896 Actual detected object count: 0
15:04:18.0250 2432 Deinitialize success
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm
Advertisement
Register to Remove

Re: PC running slower

Unread postby pgmigg » October 28th, 2013, 6:17 pm

Hello branko,

I ran OTL.exe 3 times: first time my son started running web browser; second time it ran to the end, rebooted PC and then I had a message (maybe from Scotty watchdog) if I was allowing start page to change . When I pressed help to figure out if I should accept or reject , OTL.txt was not created. So, I ran it third time, it did not request reboot and it did create .txt file.
It is hard to reconstruct the sequence of actions made by OTL after all three runs and get proper information of logs your posted. So let forget about that nightmare ;) and let run some other set of steps. Please be careful and run every step one time only. If something will go wrong, please STOP and let me know...

Step 1.
OTL - Run Fix Script
You should still have OTL.exe on your desktop.
Important! Close all applications and windows so that you have nothing open and are at your Desktop.
  1. Double click on OTL.exe to run it.
  2. Underneath Output at the top, make sure Standard Output is selected.
  3. Copy and Paste the following code into the Image text box.
    (Do not include the words Code: Select all - instead of it please click the Select all button next to Code: to select the entire script.)
    Code: Select all
    :Commands
    [CREATERESTOREPOINT]
    
    :OTL
    IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
    IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=del ... bd=1080501
    IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://owa.xsigo.com/owa/auth/logon.as ... m%2fowa%2f
    IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
    IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
    O2 - BHO: (no name) - {1DA7512B-CFEA-4BCD-BE6F-56D386A5D428} - No CLSID value found.
    O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
    O2 - BHO: (no name) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - No CLSID value found.
    O8 - Extra context menu item: Add to Banner Ad Blocker - Reg Error: Value error. File not found
    O20 - Winlogon\Notify\!SASWinLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
    O20 - Winlogon\Notify\klogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
    O20 - Winlogon\Notify\rqRHyYqo: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
    
    :Files
    C:\WINDOWS\system32\colbact32.exe
    C:\Documents and Settings\Stanka\My Documents\Downloads\iLividSetupV1.exe
    C:\WINDOWS\System32\*.tmp
    C:\Program Files\*.tmp
    @C:\Documents and Settings\All Users\Application Data\TEMP:054B9966
    
    :Reg
    [-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\searchable-sex.com]
    [-HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\searchable-sex.com]
    [-HKEY_CURRENT_USER\Software\Trolltech]
    [-HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Trolltech]
    
    :Commands
    [emptytemp]
    [emptyjava]
    [emptyflash]
    
  4. Click under the Custom Scan/Fixes box and paste the copied text.
  5. Click the Run Fix button. If prompted... click OK. It may take a while - please be patient...
  6. OTL may ask to reboot the machine. Please do so if asked.
  7. When the scan completes, Notepad will open with the scan results (OTL.txt). The report is saved in the same location as OTL.
  8. Please post the contents of report in your next reply.

Step 2.
AdwCleaner - Fix
You should still have adwcleaner.exe on your desktop.
  1. Close all open programs and internet browsers.
  2. Double-click on adwcleaner.exe to run it.
  3. Click on Scan.
  4. When the scan has finished click on Clean.
  5. Your computer will be rebooted automatically. A text file will open after the restart.
  6. Please post the content of that logfile with your next reply.
  7. You can find the logfile at C:\AdwCleaner[S1].txt as well.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the C:\_OTL\MovedFiles\MMDDYYYY_HHMMSS.log log file after OTL FixScript run
  3. Contents of the AdwCleaner[S1].txt log file

Please do not hesitate to divide the post into multiple if it is too long...

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: PC running slower

Unread postby branko » October 29th, 2013, 12:45 am

No problems.
Posting otl.txt, adwcleaner.txt and otl log file. A note: C:\_OTL\MovedFiles\MMDDYYYY_HHMMSS.log file has a date from yesterday ,. before this last run.

OTL logfile created on: 10/28/2013 9:19:55 PM - Run 10
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Branko\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 2.48 Gb Available Physical Memory | 76.48% Memory free
5.09 Gb Paging File | 4.12 Gb Available in Paging File | 80.91% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 695.29 Gb Total Space | 221.39 Gb Free Space | 31.84% Space Free | Partition Type: NTFS
Drive E: | 465.76 Gb Total Space | 439.88 Gb Free Space | 94.44% Space Free | Partition Type: NTFS
Drive F: | 233.76 Gb Total Space | 41.65 Gb Free Space | 17.82% Space Free | Partition Type: NTFS
Drive G: | 1397.26 Gb Total Space | 780.82 Gb Free Space | 55.88% Space Free | Partition Type: NTFS

Computer Name: XPS630I | User Name: Branko | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/10/23 22:33:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Branko\Desktop\OTL.exe
PRC - [2013/10/18 20:25:57 | 000,456,768 | ---- | M] (BillP Studios) -- C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2013/07/11 10:09:24 | 003,738,768 | ---- | M] () -- C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe
PRC - [2013/06/05 01:01:52 | 004,489,472 | ---- | M] (Akamai Technologies, Inc.) -- C:\Documents and Settings\Branko\Local Settings\Application Data\Akamai\netsession_win.exe
PRC - [2013/04/21 21:43:52 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
PRC - [2012/08/23 13:37:16 | 000,013,672 | ---- | M] (Intuit Inc.) -- C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
PRC - [2012/06/06 14:40:26 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) -- C:\WINDOWS\system32\nlssrv32.exe
PRC - [2012/02/23 12:30:40 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
PRC - [2012/02/02 09:22:06 | 002,132,992 | ---- | M] () -- C:\Program Files\Printer Pro Desktop\PrinterProDesktop.exe
PRC - [2011/04/16 17:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Security Suite\Engine\5.2.2.3\ccsvchst.exe
PRC - [2010/08/23 20:21:40 | 000,013,672 | ---- | M] (Intuit Inc.) -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2009/09/08 17:25:52 | 000,096,334 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
PRC - [2009/06/30 17:40:20 | 000,163,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
PRC - [2008/08/14 00:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/07 20:53:10 | 000,419,184 | ---- | M] (Juniper Networks) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2008/01/15 11:31:58 | 000,155,648 | ---- | M] (NVIDIA) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
PRC - [2007/12/27 16:39:30 | 000,166,520 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
PRC - [2007/12/27 16:39:20 | 000,051,816 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
PRC - [2007/09/17 09:56:08 | 000,124,200 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2006/12/19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
PRC - [2004/10/14 13:32:18 | 000,450,560 | ---- | M] () -- C:\Program Files\NETGEAR WG311v2 Adapter\wlancfg5.exe
PRC - [2003/11/12 02:05:00 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
PRC - [1998/05/26 17:27:08 | 001,011,200 | ---- | M] (ALTEC LANSING) -- C:\Program Files\ALTEC LANSING\AMS\guialtn.exe
PRC - [1998/05/26 15:27:28 | 000,087,040 | ---- | M] (Altec Lansing) -- C:\Program Files\ALTEC LANSING\AMS\ALServ.exe


========== Modules (No Company Name) ==========

MOD - [2013/10/14 19:56:31 | 003,194,880 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2013/10/14 19:56:29 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2013/10/14 19:56:29 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2013/10/14 19:56:24 | 000,630,784 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2013/10/14 19:56:24 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2013/10/14 19:56:23 | 000,258,048 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
MOD - [2013/10/14 19:56:22 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2013/10/14 19:56:20 | 002,052,096 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2013/10/14 19:56:19 | 000,114,688 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
MOD - [2013/10/14 19:56:14 | 005,025,792 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2013/10/14 19:45:16 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\46863d4abf7db3e009962abc8710c945\System.Runtime.Remoting.ni.dll
MOD - [2013/10/14 19:39:13 | 006,813,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\7294cfff4c5922b56ee89a6879ae8eef\System.Data.ni.dll
MOD - [2013/10/14 19:39:07 | 013,199,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\e40d894a772b2cff5ffd5a84ef20d2d4\System.Windows.Forms.ni.dll
MOD - [2013/10/14 19:39:01 | 007,053,824 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\75d88257b5bc5a5d15dd4c37d8bb18bd\System.Core.ni.dll
MOD - [2013/10/14 19:38:56 | 001,014,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\71d887ce964fb69b7f03c4fe7a3f28ff\System.Configuration.ni.dll
MOD - [2013/08/29 23:50:01 | 000,221,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\7bf3e4deef4483205017aa7b13194845\System.ServiceProcess.ni.dll
MOD - [2013/08/29 23:49:35 | 000,787,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\bfa9e814cb8b662508aa93ae387b434f\System.EnterpriseServices.ni.dll
MOD - [2013/08/29 23:49:34 | 000,649,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\102014a4f570b1dc944ff7eb8e1c6e2b\System.Transactions.ni.dll
MOD - [2013/08/29 23:45:22 | 001,667,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\3a3fc0216674bdea0be809b305517c98\System.Drawing.ni.dll
MOD - [2013/08/29 23:45:08 | 005,628,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\884bcbd22130ebeb1211bc7bcc3910c9\System.Xml.ni.dll
MOD - [2013/08/29 23:44:54 | 009,099,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\de853615c8224ba5d9aa9b76276c6d98\System.ni.dll
MOD - [2013/08/29 23:42:19 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\15fd2d2f4e709154b44187a6915db244\System.ServiceProcess.ni.dll
MOD - [2013/08/29 23:37:18 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\10df39542df7d48462451fc39bce8418\System.ni.dll
MOD - [2013/07/15 10:29:04 | 000,620,718 | ---- | M] () -- C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
MOD - [2013/07/11 10:09:24 | 003,738,768 | ---- | M] () -- C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe
MOD - [2013/07/10 22:23:57 | 014,416,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\cf58670896c5313b9b52f026f4455a5d\mscorlib.ni.dll
MOD - [2013/07/10 22:18:37 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\b14359470744c840c59fbe4e58034fd6\mscorlib.ni.dll
MOD - [2012/02/06 22:38:35 | 000,086,016 | ---- | M] () -- C:\Program Files\NETGEAR WG311v2 Adapter\ExtWLANconfig.dll
MOD - [2012/02/02 09:22:06 | 002,132,992 | ---- | M] () -- C:\Program Files\Printer Pro Desktop\PrinterProDesktop.exe
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/04/02 15:14:24 | 000,854,016 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.dll
MOD - [2011/04/02 15:14:24 | 000,409,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Map.WindowsFirewallUtilities\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.WindowsFirewallUtilities.dll
MOD - [2011/04/02 15:14:23 | 000,476,520 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll
MOD - [2011/04/02 15:14:23 | 000,421,224 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Api.Net.dll
MOD - [2011/04/02 15:14:23 | 000,269,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\3.1.26.0__540d4816ead86321\Intuit.Spc.Esd.Core.dll
MOD - [2011/04/02 15:14:23 | 000,046,952 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll
MOD - [2011/04/02 15:14:23 | 000,023,912 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll
MOD - [2011/04/02 15:14:23 | 000,018,792 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll
MOD - [2011/04/02 15:14:23 | 000,012,136 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll
MOD - [2011/04/02 15:14:22 | 000,121,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.BusinessLogic.dll
MOD - [2011/04/02 15:14:22 | 000,120,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.DataAccess.dll
MOD - [2011/04/02 15:14:22 | 000,070,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.Common.dll
MOD - [2009/03/16 20:37:22 | 001,058,304 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Map.WindowsFirewallUtilities\4.0.114.0__7ce6deabcb36a8ea\Intuit.Spc.Map.WindowsFirewallUtilities.dll
MOD - [2009/03/16 20:37:21 | 000,471,040 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\4.0.114.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll
MOD - [2009/03/16 20:37:21 | 000,047,392 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\2.1.72.22__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll
MOD - [2009/03/16 20:37:21 | 000,018,720 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\2.1.72.22__540d4816ead86321\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll
MOD - [2009/03/16 20:37:20 | 000,402,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\2.1.72.22__540d4816ead86321\Intuit.Spc.Esd.WinClient.Api.Net.dll
MOD - [2009/03/16 20:37:20 | 000,238,368 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\2.0.145.4__540d4816ead86321\Intuit.Spc.Esd.Core.dll
MOD - [2009/03/16 20:37:20 | 000,130,848 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\2.1.72.22__540d4816ead86321\Intuit.Spc.Esd.Client.BusinessLogic.dll
MOD - [2009/03/16 20:37:20 | 000,120,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\2.1.72.22__540d4816ead86321\Intuit.Spc.Esd.Client.DataAccess.dll
MOD - [2009/03/16 20:37:20 | 000,072,992 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\2.1.72.22__540d4816ead86321\Intuit.Spc.Esd.Client.Common.dll
MOD - [2009/03/16 20:32:54 | 000,755,712 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data.SQLite\1.0.56.0__28c9bcd4dddc48a1\System.Data.SQLite.dll
MOD - [2009/03/16 20:32:53 | 000,270,336 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\log4net\1.2.10.0__1b44e1d426115821\log4net.dll
MOD - [2009/03/16 20:32:52 | 000,458,752 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Foundations.Portability\3.1.2.2__540d4816ead86321\Intuit.Spc.Foundations.Portability.dll
MOD - [2009/03/16 20:32:52 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Foundations.Primary.Config\3.1.2.2__540d4816ead86321\Intuit.Spc.Foundations.Primary.Config.dll
MOD - [2009/03/16 20:32:52 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Foundations.Primary.ExceptionHandling\3.1.2.2__540d4816ead86321\Intuit.Spc.Foundations.Primary.ExceptionHandling.dll
MOD - [2009/03/16 20:32:52 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Intuit.Spc.Foundations.Primary.Logging\3.1.2.2__540d4816ead86321\Intuit.Spc.Foundations.Primary.Logging.dll
MOD - [2007/12/27 16:39:30 | 000,166,520 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
MOD - [2007/12/27 16:39:20 | 000,051,816 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
MOD - [2004/10/14 13:32:18 | 000,450,560 | ---- | M] () -- C:\Program Files\NETGEAR WG311v2 Adapter\wlancfg5.exe
MOD - [2004/10/14 13:26:02 | 000,081,920 | ---- | M] () -- C:\Program Files\NETGEAR WG311v2 Adapter\WlanDll.dll
MOD - [2004/06/18 00:45:32 | 000,053,248 | ---- | M] () -- C:\Program Files\NETGEAR WG311v2 Adapter\tiwlnapi.dll
MOD - [1998/04/06 16:32:02 | 000,017,408 | ---- | M] () -- C:\Program Files\ALTEC LANSING\AMS\ALservps.dll


========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\system32\colbact32.exe -- (srservice32)
SRV - File not found [Disabled | Stopped] -- C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe -- (McComponentHostService)
SRV - [2013/09/30 21:00:03 | 000,118,680 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/07/11 10:09:24 | 003,738,768 | ---- | M] () [Auto | Running] -- C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe -- (GsServer)
SRV - [2012/08/23 13:37:16 | 000,013,672 | ---- | M] (Intuit Inc.) [Auto | Running] -- C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe -- (IntuitUpdateServiceV4)
SRV - [2012/07/13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/06/19 12:12:28 | 000,645,088 | ---- | M] (Cisco Systems, Inc.) [Disabled | Stopped] -- C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe -- (vpnagent)
SRV - [2012/06/06 14:40:26 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\WINDOWS\system32\nlssrv32.exe -- (nlsX86cc)
SRV - [2012/02/28 14:41:28 | 007,054,200 | ---- | M] (Wacom Technology, Corp.) [Disabled | Stopped] -- C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe -- (TabletServiceWacom)
SRV - [2012/02/28 14:41:28 | 000,479,096 | ---- | M] (Wacom Technology, Corp.) [Disabled | Stopped] -- C:\Program Files\Tablet\Wacom\Wacom_TouchService.exe -- (TouchServiceWacom)
SRV - [2011/04/16 17:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe -- (N360)
SRV - [2010/08/23 20:21:40 | 000,013,672 | ---- | M] (Intuit Inc.) [Auto | Running] -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe -- (IntuitUpdateService)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/12/16 17:44:36 | 003,750,400 | ---- | M] (SafeNet Inc.) [Disabled | Stopped] -- C:\WINDOWS\system32\hasplms.exe -- (hasplms)
SRV - [2009/09/08 17:25:52 | 000,096,334 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2008/08/14 00:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter)
SRV - [2008/07/29 23:54:46 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2008/04/07 20:53:10 | 000,419,184 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2008/01/15 11:31:58 | 000,155,648 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2007/12/27 16:39:30 | 000,166,520 | ---- | M] () [Auto | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe -- (BlueSoleil Hid Service)
SRV - [2007/12/27 16:39:20 | 000,051,816 | ---- | M] () [Auto | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe -- (Start BT in service)
SRV - [2007/12/17 04:00:00 | 000,143,872 | ---- | M] (SEIKO EPSON CORPORATION) [Disabled | Stopped] -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE -- (EPSON_EB_RPCV4_01)
SRV - [2007/10/19 13:21:16 | 000,141,848 | ---- | M] (Logitech Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007/10/19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/10/19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2007/01/11 04:02:00 | 000,113,664 | ---- | M] (SEIKO EPSON CORPORATION) [Disabled | Stopped] -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE -- (EPSON_PM_RPCV4_01)
SRV - [2006/12/19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)
SRV - [2003/11/12 02:05:00 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe -- (EPSONStatusAgent2)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\WMP11V27.sys -- (WMP11V27)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\klif.sys -- (TSP)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\AutoRun\PCANDIS5.SYS -- (PCANDIS5)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btkrnbdg.sys -- (BTKRNBDG)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\Btcomm.sys -- (BTCOMM)
DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs)
DRV - [2013/10/25 13:17:21 | 000,380,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20131025.002\IDSXpx86.sys -- (IDSxpx86)
DRV - [2013/10/22 16:11:14 | 001,096,280 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20131022.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2013/08/28 16:33:04 | 001,612,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20131028.003\NAVEX15.SYS -- (NAVEX15)
DRV - [2013/08/28 16:33:04 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20131028.003\NAVENG.SYS -- (NAVENG)
DRV - [2013/08/26 18:19:51 | 000,376,920 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2013/08/26 18:19:51 | 000,108,120 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012/06/19 11:59:13 | 000,019,192 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vpnva.sys -- (vpnva)
DRV - [2012/02/17 09:33:46 | 000,041,336 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wachidrouter.sys -- (WacHidRouter)
DRV - [2012/02/17 09:33:46 | 000,011,640 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidkmdf.sys -- (hidkmdf)
DRV - [2012/02/17 09:33:38 | 000,011,640 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wacomrouterfilter.sys -- (wacomrouterfilter)
DRV - [2011/07/09 21:45:51 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/04/20 18:37:49 | 000,369,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0502020.003\symtdi.sys -- (SYMTDI)
DRV - [2011/03/30 20:04:12 | 000,044,024 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP)
DRV - [2011/03/30 20:04:12 | 000,044,024 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM)
DRV - [2011/03/30 20:00:09 | 000,516,216 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\N360\0502020.003\srtsp.sys -- (SRTSP)
DRV - [2011/03/30 20:00:09 | 000,050,168 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0502020.003\srtspx.sys -- (SRTSPX)
DRV - [2011/03/14 19:31:23 | 000,744,568 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\N360\0502020.003\symefa.sys -- (SymEFA)
DRV - [2011/01/26 23:47:10 | 000,340,088 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\N360\0502020.003\symds.sys -- (SymDS)
DRV - [2010/11/15 18:45:33 | 000,136,312 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\N360\0502020.003\ironx86.sys -- (SymIRON)
DRV - [2010/09/06 23:26:52 | 000,028,160 | R--- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PcaSp50.sys -- (PcaSp50)
DRV - [2010/04/13 12:54:34 | 000,358,400 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2009/12/09 22:27:18 | 000,588,800 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (hardlock)
DRV - [2009/06/30 17:31:18 | 000,164,896 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2009/06/30 17:31:18 | 000,139,296 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvrd32.sys -- (nvrd32)
DRV - [2009/06/22 10:06:32 | 000,016,384 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aksusb.sys -- (aksusb)
DRV - [2009/03/13 11:55:26 | 000,238,208 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshasp.sys -- (akshasp)
DRV - [2008/06/25 19:12:14 | 000,062,865 | ---- | M] (Funk Software, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\odysseyIM3.sys -- (odysseyIM3)
DRV - [2008/06/16 01:58:00 | 000,476,160 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vvftUVC.sys -- (vvftUVC)
DRV - [2008/06/16 01:58:00 | 000,250,240 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VMUVC.sys -- (VMUVC)
DRV - [2008/04/07 20:37:20 | 000,023,552 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2008/01/15 11:34:04 | 000,029,696 | ---- | M] (NVidia Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\nvoclock.sys -- (NVR0Dev)
DRV - [2008/01/14 18:20:12 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/01/14 18:20:10 | 000,054,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/01/14 18:10:30 | 004,620,288 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007/10/19 13:16:30 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007/10/11 18:59:24 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2007/10/11 18:59:02 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2007/07/23 15:12:44 | 000,046,336 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\akshhl.sys -- (akshhl)
DRV - [2007/06/24 22:56:54 | 000,038,920 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007/06/24 22:56:40 | 000,027,656 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007/06/24 22:56:34 | 000,034,312 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007/03/05 21:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2007/03/05 21:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007/03/05 21:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007/03/05 21:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2007/03/05 21:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2004/06/17 23:41:16 | 000,386,688 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\netwg311.sys -- (netwg311)
DRV - [2003/06/24 20:17:46 | 000,095,232 | R--- | M] (Inprocomm, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LSIPNDS.sys -- (IPN2120)
DRV - [2003/02/11 23:29:00 | 000,166,272 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bcmwl5.sys -- (BCM43XX)
DRV - [2002/04/02 15:30:16 | 000,033,024 | ---- | M] (Colorvision Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cvspydr2.sys -- (cvspydr2)
DRV - [1998/05/10 10:16:42 | 000,016,384 | ---- | M] (Altec Lansing Multimedia) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\al60.sys -- (al60)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=del ... bd=1080501
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=del ... bd=1080501
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DKUS_en
IE - HKCU\..\SearchScopes\{929763BD-4652-46C9-AD03-BBD5490964C9}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DKUS_en
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.startup.homepage: "http://my.yahoo.com/"
FF - prefs.js..extensions.enabledAddons: %7BCE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B%7D:3.9
FF - prefs.js..extensions.enabledAddons: %7B0545b830-f0aa-4d7e-8820-50a4629a56fe%7D:21.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: checkplaces@andyhalford.com:2.4.4
FF - prefs.js..extensions.enabledItems: dblclicker@byo.co.il:1.5.2
FF - prefs.js..extensions.enabledItems: tabberwocky@studio17.wordpress.com:1.1
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5
FF - prefs.js..extensions.enabledItems: {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}:3.2
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Documents and Settings\Branko\Application Data\Move Networks\plugins\npqmp071706000001.dll (Move Networks)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.666: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.666: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.666: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.666: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.666: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.10: C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.4: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Documents and Settings\Branko\Application Data\Move Networks\plugins\npqmp071706000001.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Documents and Settings\Branko\Application Data\Octoshape\Octoshape Streaming Services\sua-1103234-0-npoctoshape.dll (Octoshape ApS)
FF - HKCU\Software\MozillaPlugins\tdameritrade.com/thinkorswim: C:\Program Files\thinkTDA\npthinkorswim.dll (TD Ameritrade)
FF - HKCU\Software\MozillaPlugins\tdameritrade.com/tossc: C:\Program Files\thinkTDA\nptossc.dll (TD Ameritrade)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFF [2013/10/09 08:33:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\coFFPlgn_2011_7_13_2 [2013/10/27 14:15:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/09/24 17:00:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/09/30 20:59:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/09/30 20:59:49 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Documents and Settings\Branko\Application Data\Move Networks [2010/01/03 02:39:20 | 000,000,000 | ---D | M]

[2008/06/19 23:27:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Extensions
[2013/10/24 20:11:01 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions
[2013/10/24 20:11:01 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010/04/24 15:28:31 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}(2)
[2010/06/25 22:00:36 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/06/02 17:45:58 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2010/04/24 15:15:08 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}(2)
[2010/04/24 15:37:53 | 000,000,000 | ---D | M] ("CoolPreviews") -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}(2)
[2010/05/01 23:35:04 | 000,000,000 | ---D | M] (Tabberwocky) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\tabberwocky@studio17.wordpress.com
[2013/02/09 17:24:33 | 000,328,332 | ---- | M] () (No name found) -- C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}.xpi
[2013/09/30 20:59:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/09/30 20:59:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/09/30 21:00:04 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/08/03 15:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://my.yahoo.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.101\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll
CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Documents and Settings\Branko\Application Data\Mozilla\plugins\npoctoshape.dll
CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Documents and Settings\Branko\Application Data\Octoshape\Octoshape Streaming Services\sua-1103234-0-npoctoshape.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 7.0.0.147 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: Office Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Documents and Settings\Branko\Application Data\Move Networks\plugins\npqmp071706000001.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
CHR - plugin: AdobeAAMDetect (Enabled) = C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: WacomTabletPlugin (Enabled) = C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
CHR - plugin: Wacom Dynamic Link Library (Enabled) = C:\Program Files\TabletPlugins\npwacom.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - Extension: YouTube = C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Gmail = C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2008/09/21 04:19:55 | 000,260,126 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 127.0.0.1 www.163ns.com
O1 - Hosts: 127.0.0.1 163ns.com
O1 - Hosts: 127.0.0.1 171203.com
O1 - Hosts: 127.0.0.1 17-plus.com
O1 - Hosts: 127.0.0.1 www.1800searchonline.com
O1 - Hosts: 9019 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security Suite\Engine\5.2.2.3\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Security Suite\Engine\5.2.2.3\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\5.2.2.3\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\5.2.2.3\coieplg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ALServ] C:\Program Files\Altec Lansing\AMS\ALServ.exe (Altec Lansing)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Documents and Settings\Branko\Local Settings\Application Data\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [EPSON WorkForce 40 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIELA.EXE (SEIKO EPSON CORPORATION)
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
O4 - HKCU..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKCU..\Run: [PrinterProDesktop] C:\Program Files\Printer Pro Desktop\PrinterProDesktop.exe ()
O4 - HKCU..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NETGEAR WG311v2 Smart Configuration.lnk = C:\Program Files\NETGEAR WG311v2 Adapter\wlancfg5.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\PhotoCAL Startup.lnk = C:\Program Files\PANTONE COLORVISION\PhotoCAL\PhotoCAL.exe (ColorVision Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Toolbars present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O8 - Extra context menu item: Download All by ASUS Download - C:\Program Files\ASUS\RT-N56U Wireless Router Utilities\ASDownloadAll.htm ()
O8 - Extra context menu item: Download using ASUS Download - C:\Program Files\ASUS\RT-N56U Wireless Router Utilities\ASDownload.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: turbotax.com ([]https in Trusted sites)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://go.microsoft.com/fwlink/?linkid=58813 (Office Genuine Advantage Validation Tool)
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 2594377500 (MUWebControl Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDow ... rtScan.cab (NVIDIA Smart Scan)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF731C51-FA3D-485B-AA20-73AB5196F39D}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL????S/) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll) - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O24 - Desktop Components:0 () - file:///C:/DOCUME~1/Branko/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg
O24 - Desktop Components:1 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Branko\Application Data\IrfanView\IrfanView_Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Branko\Application Data\IrfanView\IrfanView_Wallpaper.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/09/06 23:18:53 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2004/08/11 15:15:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[CREATERESTOREPOINT]
System Restore Service not available.

========== Files/Folders - Created Within 30 Days ==========

[2013/10/27 15:56:55 | 000,915,368 | ---- | C] (Oracle Corporation) -- C:\Documents and Settings\Branko\Desktop\jxpiinstall.exe
[2013/10/27 15:00:09 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Branko\Desktop\tdsskiller.exe
[2013/10/27 14:56:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/10/26 17:41:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Branko\Desktop\malware staff oct 2010
[2013/10/24 20:36:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2013/10/24 20:32:05 | 001,033,335 | ---- | C] (Thisisu) -- C:\Documents and Settings\Branko\Desktop\JRT.exe
[2013/10/23 22:33:30 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Branko\Desktop\OTL.exe
[2013/10/22 20:59:41 | 000,688,992 | R--- | C] (Swearware) -- C:\Documents and Settings\Branko\Desktop\dds.scr
[2013/10/21 19:53:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2013/10/21 19:42:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Branko\Application Data\Audacity
[2013/10/12 23:19:30 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidparse.sys
[2013/10/12 23:19:30 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2013/10/12 23:18:35 | 000,123,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2013/10/12 23:18:35 | 000,046,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irbus.sys
[2013/10/12 23:17:28 | 000,144,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbport.sys
[2013/10/12 23:17:28 | 000,032,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/10/12 23:17:28 | 000,030,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbehci.sys
[2013/10/12 23:17:28 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbd.sys
[2013/10/06 15:23:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Branko\Desktop\bake-oct7
[2013/09/30 20:59:41 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/09/28 22:35:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2013/09/28 22:34:55 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/09/28 22:34:51 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/09/28 22:34:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1

========== Files - Modified Within 30 Days ==========

[2013/10/28 21:00:47 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/28 18:42:13 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\Microsoft Office Outlook 2003 (2).lnk
[2013/10/28 18:41:02 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/10/28 18:41:02 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/28 18:41:01 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-647942345-1826879831-843577932-1005.job
[2013/10/28 18:41:00 | 000,000,280 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-647942345-1826879831-843577932-1006.job
[2013/10/28 18:06:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Clean System Memory.job
[2013/10/28 12:08:00 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2013/10/28 06:00:05 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - st-posta.job
[2013/10/28 05:02:35 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - br-posta.job
[2013/10/28 03:00:44 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - muzika.job
[2013/10/28 02:15:22 | 000,000,322 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - camera-download.job
[2013/10/28 02:00:52 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - Z-BKP.job
[2013/10/28 02:00:01 | 000,000,344 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-XPS630I-Branko.job
[2013/10/28 02:00:00 | 000,000,344 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-XPS630I-Stanka.job
[2013/10/28 01:30:07 | 000,000,318 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - stanka-mydocs.job
[2013/10/28 01:00:52 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - downloads.job
[2013/10/28 00:27:26 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - foto.job
[2013/10/28 00:00:28 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\GoodSync - organizuj.job
[2013/10/27 22:15:00 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-647942345-1826879831-843577932-1005.job
[2013/10/27 15:56:53 | 000,915,368 | ---- | M] (Oracle Corporation) -- C:\Documents and Settings\Branko\Desktop\jxpiinstall.exe
[2013/10/27 15:00:28 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Branko\Desktop\tdsskiller.exe
[2013/10/27 14:56:05 | 001,060,070 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\adwcleaner.exe
[2013/10/27 14:14:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/10/27 14:14:34 | 3487,006,720 | -HS- | M] () -- C:\hiberfil.sys
[2013/10/27 13:21:19 | 000,047,396 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\instructions.rtf
[2013/10/27 11:59:46 | 000,002,497 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\Microsoft Office Word 2003 (2).lnk
[2013/10/27 11:32:42 | 000,065,536 | ---- | M] () -- C:\Documents and Settings\Branko\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/10/25 14:58:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2013/10/24 22:04:44 | 000,136,023 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\mishar1.jpg
[2013/10/24 21:20:04 | 000,508,947 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\system look termination.rtf
[2013/10/24 20:45:37 | 000,139,264 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\SystemLook.exe
[2013/10/24 20:32:16 | 001,033,335 | ---- | M] (Thisisu) -- C:\Documents and Settings\Branko\Desktop\JRT.exe
[2013/10/23 22:33:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Branko\Desktop\OTL.exe
[2013/10/23 22:29:12 | 000,468,480 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\CKScanner.exe
[2013/10/23 17:41:01 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-647942345-1826879831-843577932-1006.job
[2013/10/22 20:59:43 | 000,688,992 | R--- | M] (Swearware) -- C:\Documents and Settings\Branko\Desktop\dds.scr
[2013/10/22 18:00:00 | 000,000,408 | ---- | M] () -- C:\WINDOWS\tasks\Pareto UNS.job
[2013/10/21 20:10:16 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/10/21 20:03:53 | 000,000,185 | ---- | M] () -- C:\WINDOWS\System32\CleanMem.ini
[2013/10/21 19:47:18 | 000,001,588 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\CleanMem Mini Monitor (2).lnk
[2013/10/20 22:16:09 | 000,175,095 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\Your E-Tickets.pdf
[2013/10/18 22:33:16 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/10/18 22:33:16 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/10/17 10:03:30 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/10/15 22:30:32 | 011,697,329 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\photoshop_reference.pdf
[2013/10/15 11:03:26 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Branko\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2013/10/14 20:03:56 | 003,777,064 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/14 19:56:38 | 000,537,456 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/10/14 19:56:38 | 000,102,252 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/10/14 19:54:21 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/10/13 22:01:29 | 000,353,580 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\a4.jpg
[2013/10/13 21:57:50 | 000,290,443 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\a3.jpg
[2013/10/13 21:56:11 | 000,329,615 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\a2.jpg
[2013/10/13 21:55:12 | 000,376,844 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\a1.jpg
[2013/10/12 23:13:06 | 002,643,906 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\CameraRaw6UsersGuide.pdf
[2013/10/12 13:21:58 | 158,109,525 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\IMG_2658.MOV
[2013/10/09 22:22:04 | 000,265,634 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\Radonjic_Branko.pdf
[2013/10/08 17:24:33 | 000,036,146 | ---- | M] () -- C:\WINDOWS\CSTBox.INI
[2013/09/29 11:57:05 | 000,106,583 | ---- | M] () -- C:\Documents and Settings\Branko\Desktop\Titanium-Trombone_Quartet.pdf
[2013/09/28 22:35:49 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk

========== Files Created - No Company Name ==========

[2013/10/27 14:55:55 | 001,060,070 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\adwcleaner.exe
[2013/10/24 21:58:35 | 000,136,023 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\mishar1.jpg
[2013/10/24 21:20:04 | 000,508,947 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\system look termination.rtf
[2013/10/24 20:45:37 | 000,139,264 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\SystemLook.exe
[2013/10/23 22:33:13 | 000,047,396 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\instructions.rtf
[2013/10/23 22:29:12 | 000,468,480 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\CKScanner.exe
[2013/10/21 20:10:16 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/10/21 19:47:18 | 000,001,588 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\CleanMem Mini Monitor (2).lnk
[2013/10/20 22:16:12 | 000,175,095 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\Your E-Tickets.pdf
[2013/10/15 22:30:40 | 011,697,329 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\photoshop_reference.pdf
[2013/10/13 22:01:29 | 000,353,580 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\a4.jpg
[2013/10/13 21:57:50 | 000,290,443 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\a3.jpg
[2013/10/13 21:56:11 | 000,329,615 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\a2.jpg
[2013/10/13 21:55:11 | 000,376,844 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\a1.jpg
[2013/10/12 23:13:09 | 002,643,906 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\CameraRaw6UsersGuide.pdf
[2013/10/12 13:21:58 | 158,109,525 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\IMG_2658.MOV
[2013/10/09 22:22:04 | 000,265,634 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\Radonjic_Branko.pdf
[2013/09/29 11:57:04 | 000,106,583 | ---- | C] () -- C:\Documents and Settings\Branko\Desktop\Titanium-Trombone_Quartet.pdf
[2013/09/28 22:35:49 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2013/08/13 19:26:05 | 000,000,020 | ---- | C] () -- C:\WINDOWS\cmm.dat
[2013/08/10 20:43:36 | 000,000,867 | ---- | C] () -- C:\Documents and Settings\Branko\Local Settings\Application Data\recently-used.xbel
[2013/05/03 17:10:56 | 000,373,298 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-647942345-1826879831-843577932-1006-0.dat
[2012/09/22 00:00:28 | 000,000,068 | ---- | C] () -- C:\WINDOWS\EPSP3880.ini
[2012/08/04 20:27:59 | 000,013,944 | ---- | C] () -- C:\WINDOWS\desctemp.dat
[2012/05/31 08:37:51 | 000,000,063 | ---- | C] () -- C:\Documents and Settings\Branko\jagex_cl_runescape_LIVE1.dat
[2012/05/15 21:55:28 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Branko\Local Settings\Application Data\fusioncache.dat
[2012/04/10 20:35:50 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\Branko\jagex_cl_runescape_LIVE.dat
[2012/03/01 17:27:31 | 005,882,812 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-647942345-1826879831-843577932-1005-0.dat
[2012/03/01 17:27:30 | 000,373,298 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2012/02/27 22:16:21 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc
[2012/02/27 22:02:21 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/05/12 11:33:22 | 000,001,940 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2008/09/22 19:08:35 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Branko\jagex_runescape_preferences.dat
[2008/07/29 23:54:34 | 000,061,224 | ---- | C] () -- C:\Documents and Settings\Branko\GoToAssistDownloadHelper.exe
[2008/06/20 23:46:52 | 000,065,536 | ---- | C] () -- C:\Documents and Settings\Branko\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/06/09 05:28:20 | 000,000,768 | ---- | C] () -- C:\Program Files\NT Compatibility.ini

========== ZeroAccess Check ==========

[2004/08/11 15:21:56 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/13 17:12:05 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 05:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/13 17:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Custom Scans ==========

< :Commands >

< >

< :OTL >

< IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} >

< IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=del ... bd=1080501 >
Invalid Switch: dell?hl=en&client=del ... bd=1080501

< IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://owa.xsigo.com/owa/auth/logon.as ... m%2fowa%2f >
Invalid Switch: logon.as ... m%2fowa%2f

< IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found >

< IE - HKU\S-1-5-21-647942345-1826879831-843577932-1005\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} >

< O2 - BHO: (no name) - {1DA7512B-CFEA-4BCD-BE6F-56D386A5D428} - No CLSID value found. >

< O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found. >

< O2 - BHO: (no name) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - No CLSID value found. >

< O8 - Extra context menu item: Add to Banner Ad Blocker - Reg Error: Value error. File not found >

< O20 - Winlogon\Notify\!SASWinLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found >

< O20 - Winlogon\Notify\klogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found >

< O20 - Winlogon\Notify\rqRHyYqo: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found >

< >

< :Files >

< C:\WINDOWS\system32\colbact32.exe >

< C:\Documents and Settings\Stanka\My Documents\Downloads\iLividSetupV1.exe >

< C:\WINDOWS\System32\*.tmp >

< C:\Program Files\*.tmp >

< @C:\Documents and Settings\All Users\Application Data\TEMP:054B9966 >

< >

< :Reg >

< [-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\searchable-sex.com] >

< [-HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\searchable-sex.com] >

< [-HKEY_CURRENT_USER\Software\Trolltech] >

< [-HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Trolltech] >

< >

< :Commands >

< [emptytemp] >

< [emptyjava] >

< [emptyflash] >

========== Alternate Data Streams ==========

@Alternate Data Stream - 8 bytes -> C:\WINDOWS:

< End of report >
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby branko » October 29th, 2013, 12:45 am

# AdwCleaner v3.010 - Report created 28/10/2013 at 21:31:40
# Updated 20/10/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Branko - XPS630I
# Running from : C:\Documents and Settings\Branko\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\ParetoLogic
Folder Deleted : C:\Documents and Settings\All Users\Start Menu\Programs\ParetoLogic
Folder Deleted : C:\Program Files\ParetoLogic
Folder Deleted : C:\Program Files\Common Files\ParetoLogic
File Deleted : C:\Documents and Settings\Stanka\Application Data\Mozilla\Firefox\Profiles\34hiuiqg.default\searchplugins\safesearch.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\safesearch.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6E4C89CF-3061-4EE4-B22A-B7A8AAEA5CB3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Installer
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\TENCENT

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\ny8uegas.default\prefs.js ]


[ File : C:\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\prefs.js ]


[ File : C:\Documents and Settings\Stanka\Application Data\Mozilla\Firefox\Profiles\34hiuiqg.default\prefs.js ]


[ File : C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\uttt1zkd.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ File : C:\Documents and Settings\Branko\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Stanka\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2687 octets] - [27/10/2013 14:57:35]
AdwCleaner[R1].txt - [2747 octets] - [28/10/2013 21:30:10]
AdwCleaner[S0].txt - [2624 octets] - [28/10/2013 21:31:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2684 octets] ##########
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby branko » October 29th, 2013, 12:46 am

All processes killed
========== COMMANDS ==========
System Restore Service not available.
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKU\S-1-5-21-647942345-1826879831-843577932-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-647942345-1826879831-843577932-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ not found.
HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DA7512B-CFEA-4BCD-BE6F-56D386A5D428}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1DA7512B-CFEA-4BCD-BE6F-56D386A5D428}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Add to Banner Ad Blocker\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\rqRHyYqo\ deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\system32\colbact32.exe not found.
C:\Documents and Settings\Stanka\My Documents\Downloads\iLividSetupV1.exe moved successfully.
C:\WINDOWS\System32\SET1D0.tmp moved successfully.
C:\WINDOWS\System32\SET1D2.tmp moved successfully.
C:\WINDOWS\System32\SET1E0.tmp moved successfully.
C:\Program Files\GUM5DD5.tmp folder moved successfully.
Unable to delete ADS C:\WINDOWS: .
ADS C:\Documents and Settings\All Users\Application Data\TEMP:054B9966 deleted successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Documents and Settings\Branko\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Branko\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\searchable-sex.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\searchable-sex.com\ not found.
Registry key HKEY_CURRENT_USER\Software\Trolltech\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-647942345-1826879831-843577932-1005\Software\Trolltech\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: admin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 469 bytes
->FireFox cache emptied: 59566975 bytes
->Flash cache emptied: 492 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
->Apple Safari cache emptied: 16384 bytes
->Flash cache emptied: 291 bytes

User: All Users

User: Branko
->Temp folder emptied: 2467331 bytes
->Temporary Internet Files folder emptied: 2136041 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 207511477 bytes
->Google Chrome cache emptied: 96045648 bytes
->Apple Safari cache emptied: 103323648 bytes
->Flash cache emptied: 134173 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56504 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
->FireFox cache emptied: 5866762 bytes
->Apple Safari cache emptied: 16384 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Stanka
->Temp folder emptied: 33800203 bytes
->Temporary Internet Files folder emptied: 2595512 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 93805795 bytes
->Google Chrome cache emptied: 350954592 bytes
->Apple Safari cache emptied: 5036032 bytes
->Flash cache emptied: 135244 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8422385 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 250654310 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 10823424868 bytes

Total Files Cleaned = 11,488.00 mb


[EMPTYJAVA]

User: admin

User: Administrator

User: All Users

User: Branko
->Java cache emptied: 0 bytes

User: Default User

User: Guest

User: LocalService

User: NetworkService

User: Stanka
->Java cache emptied: 0 bytes

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: admin
->Flash cache emptied: 0 bytes

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Branko
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

User: LocalService
->Flash cache emptied: 0 bytes

User: NetworkService

User: Stanka
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 10272013_140217

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\hlktmp scheduled to be moved on reboot.
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_4f4.dat not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby branko » October 29th, 2013, 12:46 am

Thanks.
Branko
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby pgmigg » October 29th, 2013, 12:09 pm

Hello branko,

OTL logfile created on: 10/28/2013 9:19:55 PM - Run 10
It looks like that you mistakenly pressed Run Scan button instead of Run Fix one. Anyway the last log from real OTL fix dated 10/27/13 showed results I expected to see and we can continue with another issue.

Hard Drives are rumbling when I don't think I run anything special or any backups. There is no need to de-fragment drives, they look OK. Task manager shows spikes of CPU and/or mem usage, when I would not expect that to be the case.
Your computer has a venerable age and it's not entirely unexpected that a machine of that age should start to experience problems with stability and performance - let's check the status of the hard disks.

Step 1.
Hard Disk Sentinel
  1. Please download HDSentinel and save hdsentinel_trial_setup.zip to your Desktop.
  2. Right click on hdsentinel_trial_setup.zip and select Extract Here - the hdsentinel_pro_setup.exe will be saved on your Desktop.
  3. Double-click on hdsentinel_pro_setup.exe to run it.
  4. The installation process should be started. Clcik OK, then Next, then select "I Accept the agreement", then Next, then Next, then Next, then uncheck "Create a Quick Lunch run", then Next, then Install, and then Finish.
  5. The Hard Disk Sentinal 4.40 Pro trial edition will be launched and opened. Press Close on pop-up Hard Disk Sentinal Evaluation Version.
  6. Please find and click on Report tab on main menu, select Save TXT Report, and then select your Desktop as destination for report.
  7. A log file Disk report YYYY MM DD.txt will be open in a while in Notepad.
  8. Close the application.
  9. Copy and paste the contents of that file in your next reply.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the Disk report YYYY MM DD.txt log
  3. Do you see any changes in computer behavior?.

Please do not hesitate to divide the post into multiple if it is too long...

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: PC running slower

Unread postby branko » October 29th, 2013, 10:57 pm

no problems to run this.


-- General Information --

Application Information
-------------------------
Installed Version . . . . . . . . . . . . . . . : Hard Disk Sentinel 4.40 PRO
Registered To . . . . . . . . . . . . . . . . . : Unregistered version, please register.
Current Date And Time . . . . . . . . . . . . . : 10/29/2013 7:55:34 PM
Health Calculation Method . . . . . . . . . . . : Analyse data field (default)

Computer Information
----------------------
Computer Name . . . . . . . . . . . . . . . . . : XPS630I
User Name . . . . . . . . . . . . . . . . . . . : Branko
Computer Type . . . . . . . . . . . . . . . . . : Desktop
IP Address . . . . . . . . . . . . . . . . . . . : 192.168.1.126
MAC Address . . . . . . . . . . . . . . . . . . : 00-0F-B5-47-D0-11
System Uptime . . . . . . . . . . . . . . . . . : 0 days, 22 hours, 21 minutes, 42 seconds
System Up Since . . . . . . . . . . . . . . . . : 10/28/2013 9:33:55 PM
CPU Usage . . . . . . . . . . . . . . . . . . . : CPU #1: 54 %, CPU #2: 23 %
Virtual Memory . . . . . . . . . . . . . . . . . : 5207 MB, Used: 1599 MB (31 %)

System Information
--------------------
Windows Version . . . . . . . . . . . . . . . . : Microsoft Windows XP Professional Service Pack 3
CPU Type & Speed #1 . . . . . . . . . . . . . . : Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz, 2999 MHz
CPU Type & Speed #2 . . . . . . . . . . . . . . : Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz, 3000 MHz
BIOS Manufacturer . . . . . . . . . . . . . . . : Award - Phoenix
Physical Memory Size . . . . . . . . . . . . . . : 3327 MB, Used: 1442 MB (43 %)
Display Adapter . . . . . . . . . . . . . . . . : NVIDIA GeForce 8800 GT, Temperature: 62 °C
Display Resolution . . . . . . . . . . . . . . . : 1920 x 1200 (32 bit)
Printer #1 . . . . . . . . . . . . . . . . . . . : EFI_eXpress
Printer #2 . . . . . . . . . . . . . . . . . . . : EPSON Stylus Photo 2200
Printer #3 . . . . . . . . . . . . . . . . . . . : Epson Stylus Pro 3880
Printer #4 . . . . . . . . . . . . . . . . . . . : EPSON WorkForce 40 Series
Printer #5 . . . . . . . . . . . . . . . . . . . : EPSON WorkForce 40(Network)
Printer #6 . . . . . . . . . . . . . . . . . . . : Fax
Printer #7 . . . . . . . . . . . . . . . . . . . : Microsoft Office Document Image Writer
Printer #8 . . . . . . . . . . . . . . . . . . . : Microsoft XPS Document Writer
Network Controller #1 . . . . . . . . . . . . . : NETGEAR WG311v2 802.11g Wireless PCI Adapter
Network Controller #2 . . . . . . . . . . . . . : 1394 Net Adapter
Network Controller #3 . . . . . . . . . . . . . : NVIDIA nForce Networking Controller
Optical Drive #1 . . . . . . . . . . . . . . . . : D: HL-DT-ST DVDRAM GH24NS90 / IN01 (DVD-RAM, DVD-RW, CD-RW)
Optical Drive #2 . . . . . . . . . . . . . . . . : H: HL-DT-ST DVD+-RW GSA-H73N / C109 (DVD-RAM, DVD-RW, CD-RW)

PCI Device Information
------------------------
PCI Bus 0; Device 0; Function 0 . . . . . . . . : PCI standard host CPU bridge
PCI Bus 0; Device 0; Function 1 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 0; Function 2 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 0; Function 3 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 0; Function 4 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 0; Function 5 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 0; Function 6 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 0; Function 7 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 0 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 1 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 2 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 3 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 4 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 5 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 1; Function 6 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 2; Function 0 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 2; Function 1 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 2; Function 2 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 3; Function 0 . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 0; Device 9; Function 0 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 10; Function 0 . . . . . . . . : PCI standard ISA bridge
PCI Bus 0; Device 10; Function 1 . . . . . . . . : NVIDIA nForce PCI System Management
PCI Bus 0; Device 10; Function 2 . . . . . . . . : PCI standard RAM Controller
PCI Bus 0; Device 11; Function 0 . . . . . . . . : Standard OpenHCD USB Host Controller
PCI Bus 0; Device 11; Function 1 . . . . . . . . : Standard Enhanced PCI to USB Host Controller
PCI Bus 0; Device 13; Function 0 . . . . . . . . : Standard Dual Channel PCI IDE Controller
PCI Bus 0; Device 14; Function 0 . . . . . . . . : NVIDIA nForce Serial ATA Controller
PCI Bus 0; Device 15; Function 0 . . . . . . . . : NVIDIA nForce Serial ATA Controller
PCI Bus 0; Device 16; Function 0 . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 0; Device 16; Function 1 . . . . . . . . : Microsoft UAA Bus Driver for High Definition Audio
PCI Bus 0; Device 20; Function 0 . . . . . . . . : NVIDIA Network Bus Enumerator
PCI Bus 1; Device 0; Function 0 . . . . . . . . : NVIDIA GeForce 8800 GT
PCI Bus 2; Device 5; Function 0 . . . . . . . . : OHCI Compliant IEEE 1394 Host Controller
PCI Bus 2; Device 7; Function 0 . . . . . . . . : NETGEAR WG311v2 802.11g Wireless PCI Adapter
PCI Bus 2; Device 8; Function 0 . . . . . . . . : VIA Rev 5 or later USB Universal Host Companion Controller
PCI Bus 2; Device 8; Function 1 . . . . . . . . : VIA Rev 5 or later USB Universal Host Companion Controller
PCI Bus 2; Device 8; Function 2 . . . . . . . . : VIA USB Enhanced Host Controller



-- Physical Disk Information - Disk: #0: Maxtor 6Y250P0 --

Hard Disk Summary
-------------------
Hard Disk Number . . . . . . . . . . . . . . . . : 0
Interface . . . . . . . . . . . . . . . . . . . : IDE/ATA
Hard Disk Model ID . . . . . . . . . . . . . . . : Maxtor 6Y250P0
Firmware Revision . . . . . . . . . . . . . . . : YAR41BW0
Hard Disk Serial Number . . . . . . . . . . . . : Y61K2E2E
Total Size . . . . . . . . . . . . . . . . . . . : 239366 MB
Power State . . . . . . . . . . . . . . . . . . : Active
Logical Drive(s) . . . . . . . . . . . . . . . . : F: [250G]
Current Temperature . . . . . . . . . . . . . . : 42 °C
Power On Time . . . . . . . . . . . . . . . . . : 936 days, 13 hours, 59 minutes
Estimated Remaining Lifetime . . . . . . . . . . : 232 days
Health . . . . . . . . . . . . . . . . . . . . . : ############-------- 61 % (Fair)
Performance . . . . . . . . . . . . . . . . . . : #############------- 67 % (Good)

There are 28 bad sectors on the disk surface. The contents of these sectors were moved to the spare area.
The drive found 15 bad sectors during its self test.
Based on the number of remapping operations, the bad sectors may form continuous areas.
At this point, warranty replacement of the disk is not yet possible, only if the health drops further.
The hard disk is operating in UDMA mode 2 (33 Mbytes/sec) which reduces performance. It is recommended to use a 80 conductor IDE cable if the controller supports higher data transfer rate(s).
It is recommended to examine the log of the disk regularly. All new problems found will be logged there.
It is recommended to continuously monitor the hard disk status.

ATA Information
-----------------
Hard Disk Cylinders . . . . . . . . . . . . . . : 486344
Hard Disk Heads . . . . . . . . . . . . . . . . : 16
Hard Disk Sectors . . . . . . . . . . . . . . . : 63
ATA Revision . . . . . . . . . . . . . . . . . . : ATA/ATAPI-7 T13 1532D version 0
Total Sectors . . . . . . . . . . . . . . . . . : 490234752
Bytes Per Sector . . . . . . . . . . . . . . . . : 512
Buffer Size . . . . . . . . . . . . . . . . . . : 7936 KB
Multiple Sectors . . . . . . . . . . . . . . . . : 16
Error Correction Bytes . . . . . . . . . . . . . : 57
Unformatted Capacity . . . . . . . . . . . . . . : 239372 MB
Maximum PIO Mode . . . . . . . . . . . . . . . . : 4
Maximum Multiword DMA Mode . . . . . . . . . . . : 2
Maximum UDMA Mode . . . . . . . . . . . . . . . : 133 MB/s (6)
Active UDMA Mode . . . . . . . . . . . . . . . . : 33 MB/s (2)
Minimum Multiword DMA Transfer Time . . . . . . : 120 ns
Recommended Multiword DMA Transfer Time . . . . : 120 ns
Minimum PIO Transfer Time Without IORDY . . . . : 120 ns
Minimum PIO Transfer Time With IORDY . . . . . . : 120 ns
ATA Control Byte . . . . . . . . . . . . . . . . : Valid
ATA Checksum Value . . . . . . . . . . . . . . . : Valid

Acoustic Management Configuration
-----------------------------------
Acoustic Management . . . . . . . . . . . . . . : Supported
Acoustic Management . . . . . . . . . . . . . . : Enabled
Current Acoustic Level . . . . . . . . . . . . . : Max performance and volume (FEh)
Recommended Acoustic Level . . . . . . . . . . . : Balanced performance and volume (C0h)

ATA Features
--------------
Read Ahead Buffer . . . . . . . . . . . . . . . : Supported, Enabled
DMA . . . . . . . . . . . . . . . . . . . . . . : Supported
Ultra DMA . . . . . . . . . . . . . . . . . . . : Supported
S.M.A.R.T. . . . . . . . . . . . . . . . . . . . : Supported
Power Management . . . . . . . . . . . . . . . . : Supported
Write Cache . . . . . . . . . . . . . . . . . . : Supported
Host Protected Area . . . . . . . . . . . . . . : Supported
Advanced Power Management . . . . . . . . . . . : Supported, Disabled
Extended Power Management . . . . . . . . . . . : Not supported
Power Up In Standby . . . . . . . . . . . . . . : Not supported
48-Bit LBA Addressing . . . . . . . . . . . . . : Supported
Device Configuration Overlay . . . . . . . . . . : Supported
IORDY Support . . . . . . . . . . . . . . . . . : Supported
Read/Write DMA Queue . . . . . . . . . . . . . . : Not supported
NOP Command . . . . . . . . . . . . . . . . . . : Supported
Trusted Computing . . . . . . . . . . . . . . . : Not supported
64-Bit World Wide ID . . . . . . . . . . . . . . : Not supported
Streaming . . . . . . . . . . . . . . . . . . . : Not supported
Media Card Pass Through . . . . . . . . . . . . : Not supported
General Purpose Logging . . . . . . . . . . . . : Not supported
Error Logging . . . . . . . . . . . . . . . . . : Supported
CFA Feature Set . . . . . . . . . . . . . . . . : Not supported
CFast Device . . . . . . . . . . . . . . . . . . : Not supported
Long Physical Sectors (1) . . . . . . . . . . . : Not supported
Long Logical Sectors . . . . . . . . . . . . . . : Not supported
Write-Read-Verify . . . . . . . . . . . . . . . : Not supported
NV Cache Feature . . . . . . . . . . . . . . . . : Not supported
NV Cache Power Mode . . . . . . . . . . . . . . : Not supported
NV Cache Size . . . . . . . . . . . . . . . . . : Not supported
Free-fall Control . . . . . . . . . . . . . . . : Not supported
Free-fall Control Sensitivity . . . . . . . . . : Not supported

SSD Features
--------------
Data Set Management . . . . . . . . . . . . . . : Not supported
TRIM Command . . . . . . . . . . . . . . . . . . : Not supported
Deterministic Read After TRIM . . . . . . . . . : Not supported

S.M.A.R.T. Details
--------------------
Off-line Data Collection Status . . . . . . . . : Successfully Completed
Self Test Execution Status . . . . . . . . . . . : Successfully Completed
Total Time To Complete Off-line Data Collection : 363 seconds
Execute Off-line Immediate . . . . . . . . . . . : Supported
Abort/restart Off-line By Host . . . . . . . . . : Not supported
Off-line Read Scanning . . . . . . . . . . . . . : Supported
Short Self-test . . . . . . . . . . . . . . . . : Supported
Extended Self-test . . . . . . . . . . . . . . . : Supported
Conveyance Self-test . . . . . . . . . . . . . . : Not supported
Selective Self-Test . . . . . . . . . . . . . . : Supported
Save Data Before/After Power Saving Mode . . . . : Supported
Enable/Disable Attribute Autosave . . . . . . . : Supported
Error Logging Capability . . . . . . . . . . . . : Supported
Short Self-test Estimated Time . . . . . . . . . : 2 minutes
Extended Self-test Estimated Time . . . . . . . : 107 minutes
Last Short Self-test Result . . . . . . . . . . : Never Started
Last Short Self-test Date . . . . . . . . . . . : Never Started
Last Extended Self-test Result . . . . . . . . . : Never Started
Last Extended Self-test Date . . . . . . . . . . : Never Started

Security Mode
---------------
Security Mode . . . . . . . . . . . . . . . . . : Supported
Security Erase . . . . . . . . . . . . . . . . . : Not supported
Security Erase Time . . . . . . . . . . . . . . : Not supported
Security Enhanced Erase Feature . . . . . . . . : Not supported
Security Enhanced Erase Time . . . . . . . . . . : Not supported
Security Enabled . . . . . . . . . . . . . . . . : No
Security Locked . . . . . . . . . . . . . . . . : No
Security Frozen . . . . . . . . . . . . . . . . : Yes
Security Counter Expired . . . . . . . . . . . . : No
Security Level . . . . . . . . . . . . . . . . . : High

Serial ATA Features
---------------------
S-ATA Compliance . . . . . . . . . . . . . . . . : No
S-ATA I Signaling Speed (1.5 Gps) . . . . . . . : Not supported
S-ATA II Signaling Speed (3 Gps) . . . . . . . . : Not supported
S-ATA Gen3 Signaling Speed (6 Gps) . . . . . . . : Not supported
Receipt Of Power Management Requests From Host . : Not supported
PHY Event Counters . . . . . . . . . . . . . . . : Not supported
Non-Zero Buffer Offsets In DMA Setup FIS . . . . : Not supported
DMA Setup Auto-Activate Optimization . . . . . . : Not supported
Device Initiating Interface Power Management . . : Not supported
In-Order Data Delivery . . . . . . . . . . . . . : Not supported
Asynchronous Notification . . . . . . . . . . . : Not supported
Software Settings Preservation . . . . . . . . . : Not supported
Native Command Queuing (NCQ) . . . . . . . . . . : Not supported
Queue Length . . . . . . . . . . . . . . . . . . : Not supported

Disk Information
------------------
Disk Family . . . . . . . . . . . . . . . . . . : DiamondMax Plus 9
Form Factor . . . . . . . . . . . . . . . . . . : 3.5"
Capacity . . . . . . . . . . . . . . . . . . . . : 250 GB (250 x 1,000,000,000 bytes)
Number Of Disks . . . . . . . . . . . . . . . . : 3
Number Of Heads . . . . . . . . . . . . . . . . : 6
Rotational Speed . . . . . . . . . . . . . . . . : 7200 RPM
Rotation Time . . . . . . . . . . . . . . . . . : 8.33 ms
Average Rotational Latency . . . . . . . . . . . : 4.17 ms
Disk Interface . . . . . . . . . . . . . . . . . : Ultra-ATA/133
Buffer-Host Max. Rate . . . . . . . . . . . . . : 133 MB/seconds
Buffer Size . . . . . . . . . . . . . . . . . . : 8192 KB
Drive Ready Time (Typical) . . . . . . . . . . . : ? seconds
Average Seek Time . . . . . . . . . . . . . . . : ? ms
Track To Track Seek Time . . . . . . . . . . . . : ? ms
Full Stroke Seek Time . . . . . . . . . . . . . : ? ms
Width . . . . . . . . . . . . . . . . . . . . . : 101.6 mm (4.0 inch)
Depth . . . . . . . . . . . . . . . . . . . . . : 146.1 mm (5.8 inch)
Height . . . . . . . . . . . . . . . . . . . . . : 26.1 mm (1.0 inch)
Weight . . . . . . . . . . . . . . . . . . . . . : 630 grams (1.4 pounds)
Acoustic (Idle) . . . . . . . . . . . . . . . . : 3.5 Bel
Acoustic (Min Performance And Volume) . . . . . : 2.7 Bel
Acoustic (Max Performance And Volume) . . . . . : 2.7 Bel
Required Power For Spinup . . . . . . . . . . . : 1,520 mA
Power Required (Seek) . . . . . . . . . . . . . : 12.2 W
Power Required (Idle) . . . . . . . . . . . . . : 7.3 W
Power Required (Standby) . . . . . . . . . . . . : 0.9 W
Manufacturer . . . . . . . . . . . . . . . . . . : Seagate Corporation
Manufacturer Website . . . . . . . . . . . . . . : http://www.seagate.com/maxtor/

S.M.A.R.T.
------------
No. Attribute Thre.. Value Worst Data Status Flags
3 Spin Up Time 63 184 173 000000006C78 OK Self Preserving, Performance, Statistical, Critical
4 Start/Stop Count 0 252 252 000000000CB0 OK (Always passing) Self Preserving, Event Count, Statistical
5 Reallocated Sectors Co.. 63 251 251 00000000001C OK Self Preserving, Event Count, Statistical, Critical
6 Read Channel Margin 100 253 253 000000000000 OK Critical
7 Seek Error Rate 0 253 252 000000000000 OK (Always passing) Error-Rate, Statistical
8 Seek Time Performance 187 253 240 00000000BA55 OK Self Preserving, Performance, Statistical, Critical
9 Power On Time Count 0 40 40 000000009447 OK (Always passing) Self Preserving, Event Count, Statistical
10 Spin Retry Count 157 253 250 000000000000 OK Self Preserving, Error-Rate, Statistical, Critical
11 Drive Calibration Retr.. 223 253 252 000000000000 OK Self Preserving, Error-Rate, Statistical, Critical
12 Drive Power Cycle Count 0 252 252 00000000021F OK (Always passing) Self Preserving, Event Count, Statistical
192 Power off Retract Cycl.. 0 253 253 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
193 Load/Unload Cycle Count 0 253 253 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
194 Disk Temperature 0 253 253 00000000002A OK (Always passing) Self Preserving, Event Count, Statistical
195 Hardware ECC Recovered 0 253 252 00000000077F OK (Always passing) Error-Rate, Statistical
196 Reallocation Event Count 0 252 252 000000000001 OK (Always passing) Error-Rate
197 Current Pending Sector.. 0 253 253 000000000000 OK (Always passing) Error-Rate
198 Off-Line Uncorrectable.. 0 238 238 00000000000F OK (Always passing) Error-Rate
199 Ultra ATA CRC Error Co.. 0 196 188 00000000000B OK (Always passing) Error-Rate
200 Write Error Rate 0 253 252 000000000000 OK (Always passing) Error-Rate, Statistical
201 Soft Read Error Rate 0 253 222 000000000010 OK (Always passing) Error-Rate, Statistical
202 Data Address Mark Errors 0 253 252 000000000000 OK (Always passing) Error-Rate, Statistical
203 Run Out Cancel 180 253 252 000000000001 OK Error-Rate, Statistical, Critical
204 Soft ECC Correction 0 253 252 000000000000 OK (Always passing) Error-Rate, Statistical
205 Thermal Asperity Rate 0 253 252 000000000000 OK (Always passing) Error-Rate, Statistical
207 Spin High Current 0 253 250 000000000000 OK (Always passing) Self Preserving, Error-Rate, Statistical
208 Spin Buzz 0 253 252 000000000000 OK (Always passing) Self Preserving, Error-Rate, Statistical
209 Offline Seek Performance 0 195 192 000000000000 OK (Always passing) Self Preserving, Performance
99 Vendor-specific 0 253 253 000000000000 OK (Always passing) Performance
100 Vendor-specific 0 253 253 000000000000 OK (Always passing) Performance
101 Vendor-specific 0 253 253 000000000000 OK (Always passing) Performance

Transfer Rate Information
---------------------------
Total Data Read . . . . . . . . . . . . . . . . : 0 MB, 0 MB since installation (10/29/2013)
Total Data Write . . . . . . . . . . . . . . . . : 0 MB, 0 MB since installation
Average Reads Per Day . . . . . . . . . . . . . : 0.00 MB
Average Writes Per Day . . . . . . . . . . . . . : 0.00 MB
Current Transfer Rate . . . . . . . . . . . . . : 0 KB/s
Maximum Transfer Rate . . . . . . . . . . . . . : 0 KB/s
Current Read Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Write Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Disk Activity . . . . . . . . . . . . . : 0 %



-- Physical Disk Information - Disk: #1: MAXTOR STM3500630A --

Hard Disk Summary
-------------------
Hard Disk Number . . . . . . . . . . . . . . . . : 1
Interface . . . . . . . . . . . . . . . . . . . : IDE/ATA
Hard Disk Model ID . . . . . . . . . . . . . . . : MAXTOR STM3500630A
Firmware Revision . . . . . . . . . . . . . . . : 3.AAE
Hard Disk Serial Number . . . . . . . . . . . . : 9QG19FQN
Total Size . . . . . . . . . . . . . . . . . . . : 476937 MB
Power State . . . . . . . . . . . . . . . . . . : Active
Logical Drive(s) . . . . . . . . . . . . . . . . : E: [BIG_Z]
Current Temperature . . . . . . . . . . . . . . : 34 °C
Power On Time . . . . . . . . . . . . . . . . . : 1805 days, 23 hours
Estimated Remaining Lifetime . . . . . . . . . . : 27 days
Health . . . . . . . . . . . . . . . . . . . . . : #####--------------- 27 % (Acceptable)
Performance . . . . . . . . . . . . . . . . . . : ##############------ 70 % (Good)

There are 110 bad sectors on the disk surface. The contents of these sectors were moved to the spare area.
At this point, warranty replacement of the disk is not yet possible, only if the health drops further.
Problems occurred between the communication of the disk and the host 583 times. In case of a sudden crash or reboot it is recommended to try a different, short data cable (avoid round cables, use 80 wire standard cables instead).
The hard disk is operating in UDMA mode 2 (33 Mbytes/sec) which reduces performance. It is recommended to use a 80 conductor IDE cable if the controller supports higher data transfer rate(s).
It is recommended to examine the log of the disk regularly. All new problems found will be logged there.
It is recommended to backup often to prevent data loss.

ATA Information
-----------------
Hard Disk Cylinders . . . . . . . . . . . . . . : 969021
Hard Disk Heads . . . . . . . . . . . . . . . . : 16
Hard Disk Sectors . . . . . . . . . . . . . . . : 63
ATA Revision . . . . . . . . . . . . . . . . . . : ATA/ATAPI-7
Total Sectors . . . . . . . . . . . . . . . . . : 976773168
Bytes Per Sector . . . . . . . . . . . . . . . . : 512
Buffer Size . . . . . . . . . . . . . . . . . . : 16384 KB
Multiple Sectors . . . . . . . . . . . . . . . . : 16
Error Correction Bytes . . . . . . . . . . . . . : 4
Unformatted Capacity . . . . . . . . . . . . . . : 476940 MB
Maximum PIO Mode . . . . . . . . . . . . . . . . : 4
Maximum Multiword DMA Mode . . . . . . . . . . . : 2
Maximum UDMA Mode . . . . . . . . . . . . . . . : 100 MB/s (5)
Active UDMA Mode . . . . . . . . . . . . . . . . : 33 MB/s (2)
Minimum Multiword DMA Transfer Time . . . . . . : 120 ns
Recommended Multiword DMA Transfer Time . . . . : 120 ns
Minimum PIO Transfer Time Without IORDY . . . . : 240 ns
Minimum PIO Transfer Time With IORDY . . . . . . : 120 ns
ATA Control Byte . . . . . . . . . . . . . . . . : Valid
ATA Checksum Value . . . . . . . . . . . . . . . : Valid

Acoustic Management Configuration
-----------------------------------
Acoustic Management . . . . . . . . . . . . . . : Not supported
Acoustic Management . . . . . . . . . . . . . . : Disabled
Current Acoustic Level . . . . . . . . . . . . . : Default (00h)
Recommended Acoustic Level . . . . . . . . . . . : Balanced performance and volume (D0h)

ATA Features
--------------
Read Ahead Buffer . . . . . . . . . . . . . . . : Supported, Enabled
DMA . . . . . . . . . . . . . . . . . . . . . . : Supported
Ultra DMA . . . . . . . . . . . . . . . . . . . : Supported
S.M.A.R.T. . . . . . . . . . . . . . . . . . . . : Supported
Power Management . . . . . . . . . . . . . . . . : Supported
Write Cache . . . . . . . . . . . . . . . . . . : Supported
Host Protected Area . . . . . . . . . . . . . . : Supported
Advanced Power Management . . . . . . . . . . . : Not supported
Extended Power Management . . . . . . . . . . . : Not supported
Power Up In Standby . . . . . . . . . . . . . . : Not supported
48-Bit LBA Addressing . . . . . . . . . . . . . : Supported
Device Configuration Overlay . . . . . . . . . . : Supported
IORDY Support . . . . . . . . . . . . . . . . . : Supported
Read/Write DMA Queue . . . . . . . . . . . . . . : Not supported
NOP Command . . . . . . . . . . . . . . . . . . : Not supported
Trusted Computing . . . . . . . . . . . . . . . : Not supported
64-Bit World Wide ID . . . . . . . . . . . . . . : Not supported
Streaming . . . . . . . . . . . . . . . . . . . : Not supported
Media Card Pass Through . . . . . . . . . . . . : Not supported
General Purpose Logging . . . . . . . . . . . . : Supported
Error Logging . . . . . . . . . . . . . . . . . : Supported
CFA Feature Set . . . . . . . . . . . . . . . . : Not supported
CFast Device . . . . . . . . . . . . . . . . . . : Not supported
Long Physical Sectors (1) . . . . . . . . . . . : Not supported
Long Logical Sectors . . . . . . . . . . . . . . : Not supported
Write-Read-Verify . . . . . . . . . . . . . . . : Supported, Disabled
NV Cache Feature . . . . . . . . . . . . . . . . : Not supported
NV Cache Power Mode . . . . . . . . . . . . . . : Not supported
NV Cache Size . . . . . . . . . . . . . . . . . : Not supported
Free-fall Control . . . . . . . . . . . . . . . : Not supported
Free-fall Control Sensitivity . . . . . . . . . : Not supported

SSD Features
--------------
Data Set Management . . . . . . . . . . . . . . : Not supported
TRIM Command . . . . . . . . . . . . . . . . . . : Not supported
Deterministic Read After TRIM . . . . . . . . . : Not supported

S.M.A.R.T. Details
--------------------
Off-line Data Collection Status . . . . . . . . : Successfully Completed
Self Test Execution Status . . . . . . . . . . . : Interrupted By Host With Hardware/Software Reset
Total Time To Complete Off-line Data Collection : 430 seconds
Execute Off-line Immediate . . . . . . . . . . . : Supported
Abort/restart Off-line By Host . . . . . . . . . : Not supported
Off-line Read Scanning . . . . . . . . . . . . . : Supported
Short Self-test . . . . . . . . . . . . . . . . : Supported
Extended Self-test . . . . . . . . . . . . . . . : Supported
Conveyance Self-test . . . . . . . . . . . . . . : Not supported
Selective Self-Test . . . . . . . . . . . . . . : Supported
Save Data Before/After Power Saving Mode . . . . : Supported
Enable/Disable Attribute Autosave . . . . . . . : Supported
Error Logging Capability . . . . . . . . . . . . : Supported
Short Self-test Estimated Time . . . . . . . . . : 1 minutes
Extended Self-test Estimated Time . . . . . . . : 163 minutes
Last Short Self-test Result . . . . . . . . . . : Never Started
Last Short Self-test Date . . . . . . . . . . . : Never Started
Last Extended Self-test Result . . . . . . . . . : Never Started
Last Extended Self-test Date . . . . . . . . . . : Never Started

Security Mode
---------------
Security Mode . . . . . . . . . . . . . . . . . : Supported
Security Erase . . . . . . . . . . . . . . . . . : Not supported
Security Erase Time . . . . . . . . . . . . . . : Not supported
Security Enhanced Erase Feature . . . . . . . . : Not supported
Security Enhanced Erase Time . . . . . . . . . . : Not supported
Security Enabled . . . . . . . . . . . . . . . . : No
Security Locked . . . . . . . . . . . . . . . . : No
Security Frozen . . . . . . . . . . . . . . . . : Yes
Security Counter Expired . . . . . . . . . . . . : No
Security Level . . . . . . . . . . . . . . . . . : High

Serial ATA Features
---------------------
S-ATA Compliance . . . . . . . . . . . . . . . . : No
S-ATA I Signaling Speed (1.5 Gps) . . . . . . . : Not supported
S-ATA II Signaling Speed (3 Gps) . . . . . . . . : Not supported
S-ATA Gen3 Signaling Speed (6 Gps) . . . . . . . : Not supported
Receipt Of Power Management Requests From Host . : Not supported
PHY Event Counters . . . . . . . . . . . . . . . : Not supported
Non-Zero Buffer Offsets In DMA Setup FIS . . . . : Not supported
DMA Setup Auto-Activate Optimization . . . . . . : Not supported
Device Initiating Interface Power Management . . : Not supported
In-Order Data Delivery . . . . . . . . . . . . . : Not supported
Asynchronous Notification . . . . . . . . . . . : Not supported
Software Settings Preservation . . . . . . . . . : Not supported
Native Command Queuing (NCQ) . . . . . . . . . . : Not supported
Queue Length . . . . . . . . . . . . . . . . . . : Not supported

Disk Information
------------------
Disk Family . . . . . . . . . . . . . . . . . . : DiamondMax 21 500630
Form Factor . . . . . . . . . . . . . . . . . . : 3.5"
Capacity . . . . . . . . . . . . . . . . . . . . : 500 GB (500 x 1,000,000,000 bytes)
Number Of Disks . . . . . . . . . . . . . . . . : 3
Number Of Heads . . . . . . . . . . . . . . . . : 6
Rotational Speed . . . . . . . . . . . . . . . . : 7200 RPM
Rotation Time . . . . . . . . . . . . . . . . . : 8.33 ms
Average Rotational Latency . . . . . . . . . . . : 4.17 ms
Disk Interface . . . . . . . . . . . . . . . . . : Ultra-ATA/100
Buffer-Host Max. Rate . . . . . . . . . . . . . : 100 MB/seconds
Buffer Size . . . . . . . . . . . . . . . . . . : 16384 KB
Drive Ready Time (Typical) . . . . . . . . . . . : 15 seconds
Average Seek Time . . . . . . . . . . . . . . . : 8.5 ms
Track To Track Seek Time . . . . . . . . . . . . : 0.8 ms
Full Stroke Seek Time . . . . . . . . . . . . . : ? ms
Width . . . . . . . . . . . . . . . . . . . . . : 101.6 mm (4.0 inch)
Depth . . . . . . . . . . . . . . . . . . . . . : 147.0 mm (5.8 inch)
Height . . . . . . . . . . . . . . . . . . . . . : 26.1 mm (1.0 inch)
Weight . . . . . . . . . . . . . . . . . . . . . : 635 grams (1.4 pounds)
Acoustic (Idle) . . . . . . . . . . . . . . . . : 2.5 Bel
Acoustic (Min Performance And Volume) . . . . . : 3.2 Bel
Acoustic (Max Performance And Volume) . . . . . : 3.2 Bel
Required Power For Spinup . . . . . . . . . . . : 2,800 mA
Power Required (Seek) . . . . . . . . . . . . . : 12.4 W
Power Required (Idle) . . . . . . . . . . . . . : 8.9 W
Power Required (Standby) . . . . . . . . . . . . : 0.8 W
Manufacturer . . . . . . . . . . . . . . . . . . : Seagate Corporation
Manufacturer Website . . . . . . . . . . . . . . : http://www.seagate.com/maxtor/

S.M.A.R.T.
------------
No. Attribute Thre.. Value Worst Data Status Flags
1 Raw Read Error Rate 6 120 75 00000E1A5600 OK Error-Rate, Performance, Statistical, Critical
3 Spin Up Time 0 96 93 000000000000 OK (Always passing) Statistical, Critical
4 Start/Stop Count 20 97 97 000000000CED OK Self Preserving, Event Count, Statistical
5 Reallocated Sectors Co.. 36 98 98 00000000006E OK Self Preserving, Event Count, Statistical, Critical
7 Seek Error Rate 30 85 60 0000166E08F2 OK Error-Rate, Performance, Statistical, Critical
9 Power On Time Count 0 51 51 00000000A94F OK (Always passing) Self Preserving, Event Count, Statistical
10 Spin Retry Count 97 100 100 000000000000 OK Event Count, Statistical, Critical
12 Drive Power Cycle Count 20 100 100 000000000229 OK Self Preserving, Event Count, Statistical
187 Reported Uncorrectable.. 0 100 100 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
189 High Fly Writes 0 100 100 000000000000 OK (Always passing) Self Preserving, Event Count, Error-Rate, Statistical
190 Airflow Temperature 45 66 47 000024210022 OK Self Preserving, Statistical
194 Disk Temperature 0 34 53 001300000022 OK (Always passing) Self Preserving, Statistical
195 Hardware ECC Recovered 0 78 46 000001CA9FFD OK (Always passing) Event Count, Error-Rate, Statistical
197 Current Pending Sector.. 0 100 100 000000000000 OK (Always passing) Event Count, Statistical
198 Off-Line Uncorrectable.. 0 100 100 000000000000 OK (Always passing) Event Count
199 Ultra ATA CRC Error Co.. 0 200 200 000000000247 OK (Always passing) Self Preserving, Event Count, Error-Rate, Performanc..
200 Write Error Rate 0 100 253 000000000000 OK (Always passing)
202 Data Address Mark Errors 0 100 253 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical

Transfer Rate Information
---------------------------
Total Data Read . . . . . . . . . . . . . . . . : 0 MB, 0 MB since installation (10/29/2013)
Total Data Write . . . . . . . . . . . . . . . . : 0 MB, 0 MB since installation
Average Reads Per Day . . . . . . . . . . . . . : 0.00 MB
Average Writes Per Day . . . . . . . . . . . . . : 0.00 MB
Current Transfer Rate . . . . . . . . . . . . . : 0 KB/s
Maximum Transfer Rate . . . . . . . . . . . . . : 0 KB/s
Current Read Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Write Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Disk Activity . . . . . . . . . . . . . : 0 %



-- Physical Disk Information - Disk: #2: Hitachi HDS721075KLA330 --

Hard Disk Summary
-------------------
Hard Disk Number . . . . . . . . . . . . . . . . : 2
Interface . . . . . . . . . . . . . . . . . . . : S-ATA II
Hard Disk Model ID . . . . . . . . . . . . . . . : Hitachi HDS721075KLA330
Firmware Revision . . . . . . . . . . . . . . . : GK8OA70M
Hard Disk Serial Number . . . . . . . . . . . . : GTF200P8GK3NMF
Total Size . . . . . . . . . . . . . . . . . . . : 715402 MB
Power State . . . . . . . . . . . . . . . . . . : Active
Logical Drive(s) . . . . . . . . . . . . . . . . : C: []
Current Temperature . . . . . . . . . . . . . . : 37 °C
Power On Time . . . . . . . . . . . . . . . . . : 1856 days, 0 hours
Estimated Remaining Lifetime . . . . . . . . . . : more than 100 days
Health . . . . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)
Performance . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)

The hard disk status is PERFECT. Problematic or weak sectors were not found and there are no spin up or data transfer errors.
No actions needed.

ATA Information
-----------------
Hard Disk Cylinders . . . . . . . . . . . . . . : 1453521
Hard Disk Heads . . . . . . . . . . . . . . . . : 16
Hard Disk Sectors . . . . . . . . . . . . . . . : 63
ATA Revision . . . . . . . . . . . . . . . . . . : ATA/ATAPI-7 T13 1532D version 1
Total Sectors . . . . . . . . . . . . . . . . . : 1465149168
Bytes Per Sector . . . . . . . . . . . . . . . . : 512
Buffer Size . . . . . . . . . . . . . . . . . . : 31157 KB
Multiple Sectors . . . . . . . . . . . . . . . . : 16
Error Correction Bytes . . . . . . . . . . . . . : 52
Unformatted Capacity . . . . . . . . . . . . . . : 715405 MB
Maximum PIO Mode . . . . . . . . . . . . . . . . : 4
Maximum Multiword DMA Mode . . . . . . . . . . . : 2
Maximum UDMA Mode . . . . . . . . . . . . . . . : 300 MB/s (6)
Active UDMA Mode . . . . . . . . . . . . . . . . : 300 MB/s (6)
Minimum Multiword DMA Transfer Time . . . . . . : 120 ns
Recommended Multiword DMA Transfer Time . . . . : 120 ns
Minimum PIO Transfer Time Without IORDY . . . . : 120 ns
Minimum PIO Transfer Time With IORDY . . . . . . : 120 ns
ATA Control Byte . . . . . . . . . . . . . . . . : Valid
ATA Checksum Value . . . . . . . . . . . . . . . : Valid

Acoustic Management Configuration
-----------------------------------
Acoustic Management . . . . . . . . . . . . . . : Supported
Acoustic Management . . . . . . . . . . . . . . : Enabled
Current Acoustic Level . . . . . . . . . . . . . : Min performance and volume (80h)
Recommended Acoustic Level . . . . . . . . . . . : Min performance and volume (80h)

ATA Features
--------------
Read Ahead Buffer . . . . . . . . . . . . . . . : Supported, Enabled
DMA . . . . . . . . . . . . . . . . . . . . . . : Supported
Ultra DMA . . . . . . . . . . . . . . . . . . . : Supported
S.M.A.R.T. . . . . . . . . . . . . . . . . . . . : Supported
Power Management . . . . . . . . . . . . . . . . : Supported
Write Cache . . . . . . . . . . . . . . . . . . : Supported
Host Protected Area . . . . . . . . . . . . . . : Supported
Advanced Power Management . . . . . . . . . . . : Supported, Disabled
Extended Power Management . . . . . . . . . . . : Not supported
Power Up In Standby . . . . . . . . . . . . . . : Supported
48-Bit LBA Addressing . . . . . . . . . . . . . : Supported
Device Configuration Overlay . . . . . . . . . . : Supported
IORDY Support . . . . . . . . . . . . . . . . . : Supported
Read/Write DMA Queue . . . . . . . . . . . . . . : Not supported
NOP Command . . . . . . . . . . . . . . . . . . : Not supported
Trusted Computing . . . . . . . . . . . . . . . : Not supported
64-Bit World Wide ID . . . . . . . . . . . . . . : 0050A2CCC71511C8
Streaming . . . . . . . . . . . . . . . . . . . : Supported
Media Card Pass Through . . . . . . . . . . . . : Not supported
General Purpose Logging . . . . . . . . . . . . : Supported
Error Logging . . . . . . . . . . . . . . . . . : Supported
CFA Feature Set . . . . . . . . . . . . . . . . : Not supported
CFast Device . . . . . . . . . . . . . . . . . . : Not supported
Long Physical Sectors (1) . . . . . . . . . . . : Not supported
Long Logical Sectors . . . . . . . . . . . . . . : Not supported
Write-Read-Verify . . . . . . . . . . . . . . . : Not supported
NV Cache Feature . . . . . . . . . . . . . . . . : Not supported
NV Cache Power Mode . . . . . . . . . . . . . . : Not supported
NV Cache Size . . . . . . . . . . . . . . . . . : Not supported
Free-fall Control . . . . . . . . . . . . . . . : Not supported
Free-fall Control Sensitivity . . . . . . . . . : Not supported

SSD Features
--------------
Data Set Management . . . . . . . . . . . . . . : Not supported
TRIM Command . . . . . . . . . . . . . . . . . . : Not supported
Deterministic Read After TRIM . . . . . . . . . : Not supported

S.M.A.R.T. Details
--------------------
Off-line Data Collection Status . . . . . . . . : Suspended By Interrupting Command From Host
Self Test Execution Status . . . . . . . . . . . : Successfully Completed
Total Time To Complete Off-line Data Collection : 11471 seconds
Execute Off-line Immediate . . . . . . . . . . . : Supported
Abort/restart Off-line By Host . . . . . . . . . : Not supported
Off-line Read Scanning . . . . . . . . . . . . . : Supported
Short Self-test . . . . . . . . . . . . . . . . : Supported
Extended Self-test . . . . . . . . . . . . . . . : Supported
Conveyance Self-test . . . . . . . . . . . . . . : Not supported
Selective Self-Test . . . . . . . . . . . . . . : Supported
Save Data Before/After Power Saving Mode . . . . : Supported
Enable/Disable Attribute Autosave . . . . . . . : Supported
Error Logging Capability . . . . . . . . . . . . : Supported
Short Self-test Estimated Time . . . . . . . . . : 1 minutes
Extended Self-test Estimated Time . . . . . . . : 191 minutes
Last Short Self-test Result . . . . . . . . . . : Never Started
Last Short Self-test Date . . . . . . . . . . . : Never Started
Last Extended Self-test Result . . . . . . . . . : Never Started
Last Extended Self-test Date . . . . . . . . . . : Never Started

Security Mode
---------------
Security Mode . . . . . . . . . . . . . . . . . : Supported
Security Erase . . . . . . . . . . . . . . . . . : Supported
Security Erase Time . . . . . . . . . . . . . . : 256 minutes
Security Enhanced Erase Feature . . . . . . . . : Not supported
Security Enhanced Erase Time . . . . . . . . . . : Not supported
Security Enabled . . . . . . . . . . . . . . . . : No
Security Locked . . . . . . . . . . . . . . . . : No
Security Frozen . . . . . . . . . . . . . . . . : Yes
Security Counter Expired . . . . . . . . . . . . : No
Security Level . . . . . . . . . . . . . . . . . : High

Serial ATA Features
---------------------
S-ATA Compliance . . . . . . . . . . . . . . . . : Yes
S-ATA I Signaling Speed (1.5 Gps) . . . . . . . : Supported
S-ATA II Signaling Speed (3 Gps) . . . . . . . . : Supported
S-ATA Gen3 Signaling Speed (6 Gps) . . . . . . . : Not supported
Receipt Of Power Management Requests From Host . : Supported
PHY Event Counters . . . . . . . . . . . . . . . : Supported
Non-Zero Buffer Offsets In DMA Setup FIS . . . . : Supported, Disabled
DMA Setup Auto-Activate Optimization . . . . . . : Supported, Disabled
Device Initiating Interface Power Management . . : Supported, Disabled
In-Order Data Delivery . . . . . . . . . . . . . : Supported, Disabled
Asynchronous Notification . . . . . . . . . . . : Not supported
Software Settings Preservation . . . . . . . . . : Supported, Enabled
Native Command Queuing (NCQ) . . . . . . . . . . : Supported
Queue Length . . . . . . . . . . . . . . . . . . : 32

Disk Information
------------------
Disk Family . . . . . . . . . . . . . . . . . . : Deskstar 7K1000
Form Factor . . . . . . . . . . . . . . . . . . : 3.5"
Capacity . . . . . . . . . . . . . . . . . . . . : 750 GB (750 x 1,000,000,000 bytes)
Number Of Disks . . . . . . . . . . . . . . . . : 4
Number Of Heads . . . . . . . . . . . . . . . . : 8
Rotational Speed . . . . . . . . . . . . . . . . : 7200 RPM
Rotation Time . . . . . . . . . . . . . . . . . : 8.33 ms
Average Rotational Latency . . . . . . . . . . . : 4.17 ms
Disk Interface . . . . . . . . . . . . . . . . . : Serial-ATA/300
Buffer-Host Max. Rate . . . . . . . . . . . . . : 300 MB/seconds
Buffer Size . . . . . . . . . . . . . . . . . . : 32768 KB
Drive Ready Time (Typical) . . . . . . . . . . . : ? seconds
Average Seek Time . . . . . . . . . . . . . . . : 8.5 ms
Track To Track Seek Time . . . . . . . . . . . . : ? ms
Full Stroke Seek Time . . . . . . . . . . . . . : ? ms
Width . . . . . . . . . . . . . . . . . . . . . : 101.6 mm (4.0 inch)
Depth . . . . . . . . . . . . . . . . . . . . . : 147.0 mm (5.8 inch)
Height . . . . . . . . . . . . . . . . . . . . . : 26.1 mm (1.0 inch)
Weight . . . . . . . . . . . . . . . . . . . . . : 700 grams (1.5 pounds)
Required Power For Spinup . . . . . . . . . . . : 3,300 mA
Power Required (Seek) . . . . . . . . . . . . . : 7.0 W
Power Required (Idle) . . . . . . . . . . . . . : 5.0 W
Power Required (Standby) . . . . . . . . . . . . : 2.0 W
Manufacturer . . . . . . . . . . . . . . . . . . : Hitachi Global Storage Technologies
Manufacturer Website . . . . . . . . . . . . . . : http://www.hgst.com

S.M.A.R.T.
------------
No. Attribute Thre.. Value Worst Data Status Flags
1 Raw Read Error Rate 16 100 100 000000000000 OK Error-Rate, Statistical, Critical
2 Throughput Performance 54 130 130 000000000098 OK Performance
3 Spin Up Time 24 172 172 000401730144 OK Performance, Statistical, Critical
4 Start/Stop Count 0 100 100 000000000237 OK (Always passing) Event Count, Statistical
5 Reallocated Sectors Co.. 5 100 100 000000000000 OK Self Preserving, Event Count, Statistical, Critical
7 Seek Error Rate 67 100 100 000000000000 OK Error-Rate, Statistical
8 Seek Time Performance 20 134 134 000000000020 OK Performance
9 Power On Time Count 0 94 94 00000000AE00 OK (Always passing) Event Count, Statistical
10 Spin Retry Count 60 100 100 000000000000 OK Event Count, Statistical
12 Drive Power Cycle Count 0 100 100 000000000237 OK (Always passing) Self Preserving, Event Count, Statistical
192 Power off Retract Cycl.. 0 100 100 000000000275 OK (Always passing) Self Preserving, Event Count, Statistical
193 Load/Unload Cycle Count 0 100 100 000000000275 OK (Always passing) Event Count, Statistical
194 Disk Temperature 0 162 162 0043000D0025 OK (Always passing) Statistical
196 Reallocation Event Count 0 100 100 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
197 Current Pending Sector.. 0 100 100 000000000000 OK (Always passing) Self Preserving, Statistical
198 Off-Line Uncorrectable.. 0 100 100 000000000000 OK (Always passing) Error-Rate
199 Ultra ATA CRC Error Co.. 0 200 200 000000000000 OK (Always passing) Error-Rate, Statistical

Transfer Rate Information
---------------------------
Total Data Read . . . . . . . . . . . . . . . . : 10 MB, 10 MB since installation (10/29/2013)
Total Data Write . . . . . . . . . . . . . . . . : 20 MB, 20 MB since installation
Average Reads Per Day . . . . . . . . . . . . . : 10.00 MB
Average Writes Per Day . . . . . . . . . . . . . : 20.00 MB
Current Transfer Rate . . . . . . . . . . . . . : 7 KB/s
Maximum Transfer Rate . . . . . . . . . . . . . : 3727 KB/s
Current Read Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Write Rate . . . . . . . . . . . . . . . : 7 KB/s
Current Disk Activity . . . . . . . . . . . . . : 0 %



-- Physical Disk Information - Disk: #3: WDC WD15EARS-00Z5B1 --

Hard Disk Summary
-------------------
Hard Disk Number . . . . . . . . . . . . . . . . : 3
Interface . . . . . . . . . . . . . . . . . . . : S-ATA II
Hard Disk Model ID . . . . . . . . . . . . . . . : WDC WD15EARS-00Z5B1
Firmware Revision . . . . . . . . . . . . . . . : 80.00A80
Hard Disk Serial Number . . . . . . . . . . . . : WD-WMAVU1276705
Total Size . . . . . . . . . . . . . . . . . . . : 1430796 MB
Power State . . . . . . . . . . . . . . . . . . : Active
Logical Drive(s) . . . . . . . . . . . . . . . . : G: [WD1T5]
Current Temperature . . . . . . . . . . . . . . : 30 °C
Power On Time . . . . . . . . . . . . . . . . . : 958 days, 0 hours
Estimated Remaining Lifetime . . . . . . . . . . : more than 815 days
Health . . . . . . . . . . . . . . . . . . . . . : ###################- 97 % (Excellent)
Performance . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)

The drive found 2 bad sectors during its self test.
There are 2 weak sectors found on the disk surface. They may be remapped any time in the later use of the disk.
At this point, warranty replacement of the disk is not yet possible, only if the health drops further.
It is recommended to examine the log of the disk regularly. All new problems found will be logged there.
No actions needed.

ATA Information
-----------------
Hard Disk Cylinders . . . . . . . . . . . . . . : 2907021
Hard Disk Heads . . . . . . . . . . . . . . . . : 16
Hard Disk Sectors . . . . . . . . . . . . . . . : 63
ATA Revision . . . . . . . . . . . . . . . . . . : ATA8-ACS
Transport Version . . . . . . . . . . . . . . . : SATA Rev 2.6
Total Sectors . . . . . . . . . . . . . . . . . : 366284646
Bytes Per Sector . . . . . . . . . . . . . . . . : 4096 [Advanced Format]
Multiple Sectors . . . . . . . . . . . . . . . . : 16
Error Correction Bytes . . . . . . . . . . . . . : 50
Unformatted Capacity . . . . . . . . . . . . . . : 1430799 MB
Maximum PIO Mode . . . . . . . . . . . . . . . . : 4
Maximum Multiword DMA Mode . . . . . . . . . . . : 2
Maximum UDMA Mode . . . . . . . . . . . . . . . : 300 MB/s (6)
Active UDMA Mode . . . . . . . . . . . . . . . . : 300 MB/s (6)
Minimum Multiword DMA Transfer Time . . . . . . : 120 ns
Recommended Multiword DMA Transfer Time . . . . : 120 ns
Minimum PIO Transfer Time Without IORDY . . . . : 120 ns
Minimum PIO Transfer Time With IORDY . . . . . . : 120 ns
ATA Control Byte . . . . . . . . . . . . . . . . : Valid
ATA Checksum Value . . . . . . . . . . . . . . . : Valid

Acoustic Management Configuration
-----------------------------------
Acoustic Management . . . . . . . . . . . . . . : Supported
Acoustic Management . . . . . . . . . . . . . . : Disabled
Current Acoustic Level . . . . . . . . . . . . . : Max performance and volume (FEh)
Recommended Acoustic Level . . . . . . . . . . . : Min performance and volume (80h)

ATA Features
--------------
Read Ahead Buffer . . . . . . . . . . . . . . . : Supported, Enabled
DMA . . . . . . . . . . . . . . . . . . . . . . : Supported
Ultra DMA . . . . . . . . . . . . . . . . . . . : Supported
S.M.A.R.T. . . . . . . . . . . . . . . . . . . . : Supported
Power Management . . . . . . . . . . . . . . . . : Supported
Write Cache . . . . . . . . . . . . . . . . . . : Supported
Host Protected Area . . . . . . . . . . . . . . : Supported
Advanced Power Management . . . . . . . . . . . : Not supported
Extended Power Management . . . . . . . . . . . : Not supported
Power Up In Standby . . . . . . . . . . . . . . : Supported
48-Bit LBA Addressing . . . . . . . . . . . . . : Supported
Device Configuration Overlay . . . . . . . . . . : Supported
IORDY Support . . . . . . . . . . . . . . . . . : Supported
Read/Write DMA Queue . . . . . . . . . . . . . . : Not supported
NOP Command . . . . . . . . . . . . . . . . . . : Supported
Trusted Computing . . . . . . . . . . . . . . . : Not supported
64-Bit World Wide ID . . . . . . . . . . . . . . : 0150E04E3757B56E
Streaming . . . . . . . . . . . . . . . . . . . : Not supported
Media Card Pass Through . . . . . . . . . . . . : Not supported
General Purpose Logging . . . . . . . . . . . . : Supported
Error Logging . . . . . . . . . . . . . . . . . : Supported
CFA Feature Set . . . . . . . . . . . . . . . . : Not supported
CFast Device . . . . . . . . . . . . . . . . . . : Not supported
Long Physical Sectors (1) . . . . . . . . . . . : Not supported
Long Logical Sectors . . . . . . . . . . . . . . : Not supported
Write-Read-Verify . . . . . . . . . . . . . . . : Not supported
NV Cache Feature . . . . . . . . . . . . . . . . : Not supported
NV Cache Power Mode . . . . . . . . . . . . . . : Not supported
NV Cache Size . . . . . . . . . . . . . . . . . : Not supported
Free-fall Control . . . . . . . . . . . . . . . : Not supported
Free-fall Control Sensitivity . . . . . . . . . : Not supported

SSD Features
--------------
Data Set Management . . . . . . . . . . . . . . : Not supported
TRIM Command . . . . . . . . . . . . . . . . . . : Not supported
Deterministic Read After TRIM . . . . . . . . . : Not supported

S.M.A.R.T. Details
--------------------
Off-line Data Collection Status . . . . . . . . : Suspended By Interrupting Command From Host
Self Test Execution Status . . . . . . . . . . . : Successfully Completed
Total Time To Complete Off-line Data Collection : 33600 seconds
Execute Off-line Immediate . . . . . . . . . . . : Supported
Abort/restart Off-line By Host . . . . . . . . . : Not supported
Off-line Read Scanning . . . . . . . . . . . . . : Supported
Short Self-test . . . . . . . . . . . . . . . . : Supported
Extended Self-test . . . . . . . . . . . . . . . : Supported
Conveyance Self-test . . . . . . . . . . . . . . : Supported
Selective Self-Test . . . . . . . . . . . . . . : Supported
Save Data Before/After Power Saving Mode . . . . : Supported
Enable/Disable Attribute Autosave . . . . . . . : Supported
Error Logging Capability . . . . . . . . . . . . : Supported
Short Self-test Estimated Time . . . . . . . . . : 2 minutes
Extended Self-test Estimated Time . . . . . . . : 383 minutes
Conveyance Self-test Estimated Time . . . . . . : 5 minutes
Last Short Self-test Result . . . . . . . . . . : Never Started
Last Short Self-test Date . . . . . . . . . . . : Never Started
Last Extended Self-test Result . . . . . . . . . : Never Started
Last Extended Self-test Date . . . . . . . . . . : Never Started
Last Conveyance Self-test Result . . . . . . . . : Never Started
Last Conveyance Self-test Date . . . . . . . . . : Never Started

Security Mode
---------------
Security Mode . . . . . . . . . . . . . . . . . : Supported
Security Erase . . . . . . . . . . . . . . . . . : Supported
Security Erase Time . . . . . . . . . . . . . . : 342 minutes
Security Enhanced Erase Feature . . . . . . . . : Supported
Security Enhanced Erase Time . . . . . . . . . . : 342 minutes
Security Enabled . . . . . . . . . . . . . . . . : No
Security Locked . . . . . . . . . . . . . . . . : No
Security Frozen . . . . . . . . . . . . . . . . : Yes
Security Counter Expired . . . . . . . . . . . . : No
Security Level . . . . . . . . . . . . . . . . . : High

Serial ATA Features
---------------------
S-ATA Compliance . . . . . . . . . . . . . . . . : Yes
S-ATA I Signaling Speed (1.5 Gps) . . . . . . . : Supported
S-ATA II Signaling Speed (3 Gps) . . . . . . . . : Supported
S-ATA Gen3 Signaling Speed (6 Gps) . . . . . . . : Not supported
Receipt Of Power Management Requests From Host . : Supported
PHY Event Counters . . . . . . . . . . . . . . . : Supported
Non-Zero Buffer Offsets In DMA Setup FIS . . . . : Not supported
DMA Setup Auto-Activate Optimization . . . . . . : Supported, Disabled
Device Initiating Interface Power Management . . : Not supported
In-Order Data Delivery . . . . . . . . . . . . . : Not supported
Asynchronous Notification . . . . . . . . . . . : Not supported
Software Settings Preservation . . . . . . . . . : Supported, Enabled
Native Command Queuing (NCQ) . . . . . . . . . . : Supported
Queue Length . . . . . . . . . . . . . . . . . . : 32

Disk Information
------------------
Disk Family . . . . . . . . . . . . . . . . . . : Caviar Green
Form Factor . . . . . . . . . . . . . . . . . . : 3.5"
Capacity . . . . . . . . . . . . . . . . . . . . : 1500 GB (1500 x 1,000,000,000 bytes)
Number Of Disks . . . . . . . . . . . . . . . . : 3
Number Of Heads . . . . . . . . . . . . . . . . : 6
Disk Interface . . . . . . . . . . . . . . . . . : Serial-ATA/300
Buffer-Host Max. Rate . . . . . . . . . . . . . : 300 MB/seconds
Buffer Size . . . . . . . . . . . . . . . . . . : 65536 KB
Drive Ready Time (Typical) . . . . . . . . . . . : ? seconds
Average Seek Time . . . . . . . . . . . . . . . : ? ms
Track To Track Seek Time . . . . . . . . . . . . : ? ms
Full Stroke Seek Time . . . . . . . . . . . . . : ? ms
Width . . . . . . . . . . . . . . . . . . . . . : 101.6 mm (4.0 inch)
Depth . . . . . . . . . . . . . . . . . . . . . : 147.0 mm (5.8 inch)
Height . . . . . . . . . . . . . . . . . . . . . : 25.4 mm (1.0 inch)
Weight . . . . . . . . . . . . . . . . . . . . . : 640 grams (1.4 pounds)
Acoustic (Idle) . . . . . . . . . . . . . . . . : 2.4 Bel
Acoustic (Min Performance And Volume) . . . . . : 2.5 Bel
Acoustic (Max Performance And Volume) . . . . . : 2.9 Bel
Required Power For Spinup . . . . . . . . . . . : 1,759 mA
Power Required (Seek) . . . . . . . . . . . . . : 6.0 W
Power Required (Idle) . . . . . . . . . . . . . : 3.7 W
Power Required (Standby) . . . . . . . . . . . . : 0.8 W
Manufacturer . . . . . . . . . . . . . . . . . . : Western Digital Corporation
Manufacturer Website . . . . . . . . . . . . . . : http://www.westerndigital.com/en/products

S.M.A.R.T.
------------
No. Attribute Thre.. Value Worst Data Status Flags
1 Raw Read Error Rate 51 100 253 000000000000 OK Self Preserving, Error-Rate, Performance, Statistica..
3 Spin Up Time 21 229 185 000000000DDE OK Self Preserving, Performance, Statistical, Critical
4 Start/Stop Count 0 100 100 0000000000AD OK (Always passing) Self Preserving, Event Count, Statistical
5 Reallocated Sectors Co.. 140 200 200 000000000000 OK Self Preserving, Event Count, Statistical, Critical
7 Seek Error Rate 0 200 200 000000000000 OK (Always passing) Self Preserving, Error-Rate, Performance, Statistical
9 Power On Time Count 0 69 69 0000000059D0 OK (Always passing) Self Preserving, Event Count, Statistical
10 Spin Retry Count 0 100 100 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
11 Drive Calibration Retr.. 0 100 100 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
12 Drive Power Cycle Count 0 100 100 0000000000A5 OK (Always passing) Self Preserving, Event Count, Statistical
192 Power off Retract Cycl.. 0 200 200 0000000000A3 OK (Always passing) Self Preserving, Event Count, Statistical
193 Load/Unload Cycle Count 0 185 185 00000000B540 OK (Always passing) Self Preserving, Event Count, Statistical
194 Disk Temperature 0 120 101 00000000001E OK (Always passing) Self Preserving, Statistical
196 Reallocation Event Count 0 200 200 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
197 Current Pending Sector.. 0 200 200 000000000002 OK (Always passing) Self Preserving, Event Count, Statistical
198 Off-Line Uncorrectable.. 0 200 200 000000000002 OK (Always passing) Self Preserving, Event Count
199 Ultra ATA CRC Error Co.. 0 200 200 000000000000 OK (Always passing) Self Preserving, Event Count, Statistical
200 Write Error Rate 0 200 200 000000000002 OK (Always passing) Error-Rate

Transfer Rate Information
---------------------------
Total Data Read . . . . . . . . . . . . . . . . : 0 MB, 0 MB since installation (10/29/2013)
Total Data Write . . . . . . . . . . . . . . . . : 0 MB, 0 MB since installation
Average Reads Per Day . . . . . . . . . . . . . : 0.00 MB
Average Writes Per Day . . . . . . . . . . . . . : 0.00 MB
Current Transfer Rate . . . . . . . . . . . . . : 0 KB/s
Maximum Transfer Rate . . . . . . . . . . . . . : 0 KB/s
Current Read Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Write Rate . . . . . . . . . . . . . . . : 0 KB/s
Current Disk Activity . . . . . . . . . . . . . : 0 %



-- Partition Information --

Logical Drive Total Space Free Space Free Space Used Space
C: (Disk: #2) 695.3 GB 221.0 GB 32 % #############-------
E: BIG_Z (Disk: #1) 465.8 GB 439.9 GB 94 % #-------------------
F: 250G (Disk: #0) 233.8 GB 41.6 GB 18 % ################----
G: WD1T5 (Disk: #3) 1397.3 GB 780.8 GB 56 % ########------------
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby branko » October 29th, 2013, 11:15 pm

I've got 4 drives in my PC : 700G C drive, 1.5T G drive, both SATA, 500G E drive and 250G F drive, both IDE, one on IDE bus, one running with a small converter to connect to SATA cable.
IDE drives are from my old PCs, so they are rather old. My main backup drive is 1.5T G drive, to where I copy files from C, E and F drive every night, using GoodSync which seems to serve me well... I have few "main folders" where I keep new and files that I want to keep on C, E and F drives and then do incremental backup nightly to 1.5T G drive.
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby pgmigg » October 30th, 2013, 5:27 pm

Hello branko,

I've got 4 drives in my PC : 700G C drive, 1.5T G drive, both SATA, 500G E drive and 250G F drive, both IDE, one on IDE bus, one running with a small converter to connect to SATA cable. IDE drives are from my old PCs, so they are rather old. My main backup drive is 1.5T G drive, to where I copy files from C, E and F drive every night, using GoodSync which seems to serve me well...

As I mentioned above your computer has a venerable age and running at full capacity. As can be seen from the HD Sentinel report two small disks of your old computer are in poor condition, which will continue to deteriorate. From the other side, Microsoft will stop to support Windows XP in a half year. The rate of exchange of data in the computer between two devices operating on different protocols (SATA and IDE) is determined by the slowest device, that is, IDE.

For 250GB F drive:
Health . . . . . . . . . . . . . . . . . . . . . : ############-------- 61 % (Fair)
Performance . . . . . . . . . . . . . . . . . . : #############------- 67 % (Good)
There are 28 bad sectors on the disk surface. The contents of these sectors were moved to the spare area. The drive found 15 bad sectors during its self test.
Based on the number of remapping operations, the bad sectors may form continuous areas.
The hard disk is operating in UDMA mode 2 (33 Mbytes/sec) which reduces performance. It is recommended to use a 80 conductor IDE cable if the controller supports higher data transfer rate(s).


For 500G E drive:
Health . . . . . . . . . . . . . . . . . . . . . : #####--------------- 27 % (Acceptable)
Performance . . . . . . . . . . . . . . . . . . : ##############------ 70 % (Good)

There are 110 bad sectors on the disk surface. The contents of these sectors were moved to the spare area.
Problems occurred between the communication of the disk and the host 583 times. In case of a sudden crash or reboot it is recommended to try a different, short data cable (avoid round cables, use 80 wire standard cables instead).
The hard disk is operating in UDMA mode 2 (33 Mbytes/sec) which reduces performance. It is recommended to use a 80 conductor IDE cable if the controller supports higher data transfer rate(s).
[/quote][/quote]

All together puts you face the fact that may be it's time to think about a new computer where, in turn, can be transferred two new modern SATA disks (700G C drive, 1.5T G drive) from the current one.

Actually your computer is clean and to be prove it, please make one more scan:

ESET NOD32 Online Scan
  1. Firstly please Disable any Antivirus you have active, as shown in This topic. If active, it could impact the online scan.
  2. Do NOT use the computer while the scan is running! Make sure all other programs and windows are closed! <--- It is very IMPORTANT!
  3. Go to ESET Online Scanner - © ESET All Rights Reserved, to run an online scan.
  4. Click the dark blue Run ESET Online Scanner button:
    • If you using Mozilla Firefox you will need to download "esetsmartinstaller_enu.exe" when prompted. Then double click on it to install.
    • If you using Internet Explorer please read the End User License Agreement and check the box: Yes, I accept the terms of use. Then click the green Start button.
  5. Accept any security warnings from your browser and allow the download/installation of any required files.
    If your browser blocks or halts a download, please allow it to download any required files.
  6. Under scan settings:
    • Check "Scan archives"
    • UNCHECK "Remove found threats"
  7. Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  8. Click the Start button.
    ESET will install itself, download virus signature database updates and begin scanning your computer.
    The scan will take a while so please be patient. Do NOT use the computer while the scan is running!
  9. When the scan completes, please press the text: Image
  10. Press the text: Image, then save the file to your desktop as ESETScan.txt.
  11. Press the Back button, then press the Finish button.
  12. Copy and paste the contents of ESETScan.txt in your next reply.
    Note: If no threats are found, there is no option to create a log. Just report back to me there was nothing found.

Remember to enable your Anti-virus protection before continuing!

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the ESETScan.txt log file
  3. Do you see any changes in computer behavior?

Please do not hesitate to divide the post into multiple if it is too long...

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: PC running slower

Unread postby branko » October 31st, 2013, 12:17 pm

no problems running this, here is the file:
C:\Documents and Settings\Branko\Desktop\organizuj\Malware Removal Apps\GooredFix Backups\C\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{26e8812c-5d63-48d7-a7d0-9a3e9c5dfc54}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan
C:\Documents and Settings\Branko\Desktop\organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe Win32/DownloadAdmin.G application
C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\ny8uegas.default\extensions\{26e8812c-5d63-48d7-a7d0-9a3e9c5dfc54}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan
C:\RECYCLER\S-1-5-21-647942345-1826879831-843577932-1006\Dc153\C\Documents and Settings\Stanka\Application Data\Mozilla\Firefox\Profiles\34hiuiqg.default\extensions\{26e8812c-5d63-48d7-a7d0-9a3e9c5dfc54}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan
E:\Main-Downloads\downloads\cnet_audacity-win-1_2_6_exe.exe a variant of Win32/InstallCore.D application
E:\proveri\misc\freeripmp3.exe a variant of Win32/AdInstaller application
E:\proveri\misc\RosoftCDExtractorFree.exe multiple threats
E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en(2).exe a variant of Win32/AdInstaller application
E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe a variant of Win32/AdInstaller application
G:\G-downloads\cnet_audacity-win-1_2_6_exe.exe a variant of Win32/InstallCore.D application
G:\G-organizuj\Malware Removal Apps\GooredFix Backups\C\Documents and Settings\Branko\Application Data\Mozilla\Firefox\Profiles\tlph9iaz.default\extensions\{26e8812c-5d63-48d7-a7d0-9a3e9c5dfc54}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan
G:\G-organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe Win32/DownloadAdmin.G application
G:\G-stanka-mydocs\_gsdata_\_saved_\Downloads\The_Decline_of_Western_Civilization_Part_III.exe Win32/Adware.1ClickDownload.AM application
G:\G-Z-bkp\misc\freeripmp3.exe a variant of Win32/AdInstaller application
G:\G-Z-bkp\misc\RosoftCDExtractorFree.exe multiple threats
G:\G-Z-bkp\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en(2).exe a variant of Win32/AdInstaller application
G:\G-Z-bkp\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe a variant of Win32/AdInstaller application
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm

Re: PC running slower

Unread postby pgmigg » October 31st, 2013, 12:40 pm

Hello branko,

Good job! :D Let continue...

Step 1.
Show Hidden and System files
  1. Right click on Start, select Open.
  2. Select the Tools menu and click Folder Options.
  3. Select the View Tab. Under the "Hidden files and folders" section
    • SELECT "Show hidden files and folders"
    • Remove check mark from check box "Hide extensions for known file types"
    • Remove check mark from check box "Hide protected operating system files"
  4. Click Apply to set. Click OK to exit.

Step 2.
Upload File/Files for testing
  1. Please go to jotti.org or Virustotal
  2. Copy/Paste the following files to upload them one by one for scanning:

    C:\Documents and Settings\Branko\Desktop\organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe
    C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\ny8uegas.default\extensions\{26e8812c-5d63-48d7-a7d0-9a3e9c5dfc54}\chrome.manifest
    E:\Main-Downloads\downloads\cnet_audacity-win-1_2_6_exe.exe
    E:\proveri\misc\freeripmp3.exe
    E:\proveri\misc\RosoftCDExtractorFree.exe
    E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe
    G:\G-organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe
    G:\G-stanka-mydocs\_gsdata_\_saved_\Downloads\The_Decline_of_Western_Civilization_Part_III.exe
  3. Press Submit - this will submit the file for testing.
    Note: If you will see a message "File already analysed", please click on "Reanalyse" button.
  4. Please wait for all the scanners to finish.
  5. Then copy and paste every permalink (web address) in your next response.
    Example of web address:
    Image

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. The resulting web links after online file scan by Virus Total.
  3. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00


Re: PC running slower

Unread postby pgmigg » November 2nd, 2013, 1:20 am

Hello branko,

Overall, machine runs faster and better than before.
Nice to hear it! :D But we are not finished yet...

Step 1.
OTL - Run Fix Script
You should still have OTL.exe on your desktop.
Important! Close all applications and windows so that you have nothing open and are at your Desktop.
  1. Double click on OTL.exe to run it.
  2. Underneath Output at the top, make sure Standard Output is selected.
  3. Copy and Paste the following code into the Image text box.
    (Do not include the words Code: Select all - instead of it please click the Select all button next to Code: to select the entire script.)
    Code: Select all
    :Commands
    [CREATERESTOREPOINT]
    
    :Files
    C:\Documents and Settings\Branko\Desktop\organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe
    E:\Main-Downloads\downloads\cnet_audacity-win-1_2_6_exe.exe
    E:\proveri\misc\freeripmp3.exe
    E:\proveri\misc\RosoftCDExtractorFree.exe
    E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe
    E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en(2).exe
    G:\G-organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe
    G:\G-stanka-mydocs\_gsdata_\_saved_\Downloads\The_Decline_of_Western_Civilization_Part_III.exe
    G:\G-downloads\cnet_audacity-win-1_2_6_exe.exe
    G:\G-Z-bkp\misc\freeripmp3.exe
    G:\G-Z-bkp\misc\RosoftCDExtractorFree.exe
    G:\G-Z-bkp\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en(2).exe
    G:\G-Z-bkp\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe
    
  4. Click under the Custom Scan/Fixes box and paste the copied text.
  5. Click the Run Fix button. If prompted... click OK. It may take a while - please be patient...
  6. OTL may ask to reboot the machine. Please do so if asked.
  7. When the scan completes, Notepad will open with the scan results (OTL.txt). The report is saved in the same location as OTL.
  8. Please post the contents of report in your next reply.

Step 2.
Hide Hidden and System files
  1. Right click on Start, select Open.
  2. Select the Tools menu and click Folder Options.
  3. Select the View Tab. Under the "Hidden files and folders" section
    • UNSELECT "Show hidden files and folders"
    • Place check mark in check box "Hide extensions for known file types"
    • Place check mark in check box "Hide protected operating system files"
  4. Click Apply to set. Click OK to exit.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the most recent C:\_OTL\MovedFiles\MMDDYYYY_HHMMSS.log log file after OTL FixScript run

Please do not hesitate to divide the post into multiple if it is too long...

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: PC running slower

Unread postby branko » November 2nd, 2013, 7:24 pm

no problems to run. log file posted. Thanks. Branko


========== COMMANDS ==========
System Restore Service not available.
========== FILES ==========
C:\Documents and Settings\Branko\Desktop\organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe moved successfully.
E:\Main-Downloads\downloads\cnet_audacity-win-1_2_6_exe.exe moved successfully.
E:\proveri\misc\freeripmp3.exe moved successfully.
E:\proveri\misc\RosoftCDExtractorFree.exe moved successfully.
E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe moved successfully.
E:\proveri\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en(2).exe moved successfully.
G:\G-organizuj\misc e-books\windows-passwd-recov\windowspasswordrecovery-setup.exe moved successfully.
G:\G-stanka-mydocs\_gsdata_\_saved_\Downloads\The_Decline_of_Western_Civilization_Part_III.exe moved successfully.
G:\G-downloads\cnet_audacity-win-1_2_6_exe.exe moved successfully.
G:\G-Z-bkp\misc\freeripmp3.exe moved successfully.
G:\G-Z-bkp\misc\RosoftCDExtractorFree.exe moved successfully.
G:\G-Z-bkp\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en(2).exe moved successfully.
G:\G-Z-bkp\sa-desktopa-8100-may10-2008\zlsSetup_70_462_000_en.exe moved successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 11022013_162126
branko
Regular Member
 
Posts: 44
Joined: September 6th, 2008, 9:01 pm
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 331 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware