PDA

View Full Version : Unknown MBR code Physical



DonKannalie
2013-03-03, 15:58
Hello,
I ran Spybot immunization and a scan and selected fix everything.
Then I started the Spybot RootaAlyzer and it found an Unknown MBR Physical0 and Physical1
Avira didn't find anything.
SSD has Win7 64x as OS
HDD is storage

(I newly set up my system because I installed an SSD. Maybe related?
Avira runs in "early activation mode" Maybe related?)

Would be nice if someone could take look at my log files from dds and aswMBR.

Much appreciated,
Jonas



DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16464 BrowserJavaVersion: 10.15.2
Run by Sir Justice at 13:52:54 on 2013-03-03
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.8077.5885 [GMT 1:00]
.
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Avira FireWall *Enabled* {CE40CCC0-8ADB-6D67-25A0-C5B6438E4B57}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\taskhost.exe
C:\Windows\explorer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Sir Justice\Desktop\b6hqe44k.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: ASUS Browser Extension x86: {78234974-0C4B-4111-BDEB-D9A104418771} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x86\BrowserExtension.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [Google Update] "C:\Users\Sir Justice\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [ASUS InstantKey] C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\SIRJUS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ALLSNA~1.LNK - C:\Program Files\allsnap150beta\allsnap.exe
StartupFolder: C:\Users\SIRJUS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ALLSNA~2.LNK - C:\Program Files\allsnap150beta\allsnap64.exe
StartupFolder: C:\Users\SIRJUS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Sir Justice\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\SIRJUS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\KDEMOV~1.LNK - C:\Program Files (x86)\KDE Mover-Sizer for Windows\KDE Mover-Sizer.exe
StartupFolder: C:\Users\SIRJUS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MIRAND~1.LNK - C:\Program Files (x86)\Miranda IM\miranda32.exe
StartupFolder: C:\Users\SIRJUS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SAMSUN~1.LNK - C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
uPolicies-Explorer: NoDriveAutoRun = dword:67108739
uPolicies-Explorer: TaskbarNoNotification = dword:1
uPolicies-Explorer: NoCDBurning = dword:1
uPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: NoCustomizeThisFolder = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoVirtMemPage = dword:0
mPolicies-System: SynchronousMachineGroupPolicy = dword:0
mPolicies-System: SynchronousUserGroupPolicy = dword:0
mPolicies-Windows\System: UseOEMBackground = dword:1
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: Nach Microsoft E&xcel exportieren - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
LSP: C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 192.168.178.1
TCP: Interfaces\{2EACC83B-4A75-4ABA-8BD6-34FD4911221E} : DHCPNameServer = 192.168.178.1
TCP: Interfaces\{2EACC83B-4A75-4ABA-8BD6-34FD4911221E}\75C414E444353484146445 : DHCPNameServer = 192.168.178.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Notify: SDWinLogon - SDWinLogon.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
IFEO: skype.exe - "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
IFEO: usbchargerplus.exe - "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
x64-BHO: ASUS Browser Extension x64: {78234974-0C4B-4111-BDEB-D9A104418772} - C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x64\BrowserExtension64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [ASUSQuickGesture(x86)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
x64-Run: [ASUSTPLoader(x64)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
x64-Run: [ASUSQuickGesture(x64)] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-STS: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
x64-IFEO: skype.exe - "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
x64-IFEO: usbchargerplus.exe - "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\
FF - prefs.js: browser.search.selectedEngine - qrobe.it
FF - prefs.js: browser.startup.homepage - chrome://fvd.speeddial/content/fvd_about_blank.html
FF - prefs.js: network.proxy.ftp - 176.34.218.96
FF - prefs.js: network.proxy.ftp_port - 3128
FF - prefs.js: network.proxy.http - 176.34.218.96
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.socks - 176.34.218.96
FF - prefs.js: network.proxy.socks_port - 3128
FF - prefs.js: network.proxy.ssl - 176.34.218.96
FF - prefs.js: network.proxy.ssl_port - 3128
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Picasa3\npPicasa3.dll
FF - plugin: C:\Users\Sir Justice\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-02-22 00:30; cmis@choobin; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\cmis@choobin.xpi
FF - ExtSQL: 2013-02-22 00:30; elemhidehelper@adblockplus.org; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\elemhidehelper@adblockplus.org.xpi
FF - ExtSQL: 2013-02-22 00:30; fastprevnext@tn123.ath.cx; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\fastprevnext@tn123.ath.cx.xpi
FF - ExtSQL: 2013-02-22 00:30; jid0-bbA9VAawX3LMWDu668aUDrpQVXU@jetpack; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\jid0-bbA9VAawX3LMWDu668aUDrpQVXU@jetpack.xpi
FF - ExtSQL: 2013-02-22 00:30; jid0-c1av474BVPIHcGJfBp3GkhlhAa4@jetpack; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\jid0-c1av474BVPIHcGJfBp3GkhlhAa4@jetpack.xpi
FF - ExtSQL: 2013-02-22 00:30; sitefavinurlbar@sonco.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\sitefavinurlbar@sonco.com
FF - ExtSQL: 2013-02-22 00:30; slimaddonmanager@opendfki.de; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\slimaddonmanager@opendfki.de.xpi
FF - ExtSQL: 2013-02-22 00:30; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-02-22 00:46; {dc572301-7619-498c-a57d-39143191b318}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
FF - ExtSQL: 2013-02-22 00:46; {d49a148e-817e-4025-bee3-5d541376de3b}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF - ExtSQL: 2013-02-22 00:46; {bee6eb20-01e0-ebd1-da83-080329fb9a3a}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF - ExtSQL: 2013-02-22 00:46; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-02-22 00:46; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2013-02-22 00:46; {EDA7B1D7-F793-4e03-B074-E6F303317FB0}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{EDA7B1D7-F793-4e03-B074-E6F303317FB0}.xpi
FF - ExtSQL: 2013-02-22 00:46; {E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
FF - ExtSQL: 2013-02-22 00:46; {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
FF - ExtSQL: 2013-02-22 00:46; {902D2C4A-457A-4EF9-AD43-7014562929FF}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{902D2C4A-457A-4EF9-AD43-7014562929FF}.xpi
FF - ExtSQL: 2013-02-22 00:46; {73a6fe31-595d-460b-a920-fcc0f8843232}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - ExtSQL: 2013-02-22 00:46; {5F590AA2-1221-4113-A6F4-A4BB62414FAC}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi
FF - ExtSQL: 2013-02-22 00:46; {54BB9F3F-07E5-486c-9B39-C7398B99391C}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{54BB9F3F-07E5-486c-9B39-C7398B99391C}.xpi
FF - ExtSQL: 2013-02-22 00:46; {53A03D43-5363-4669-8190-99061B2DEBA5}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{53A03D43-5363-4669-8190-99061B2DEBA5}.xpi
FF - ExtSQL: 2013-02-22 00:46; {477c4c36-24eb-11da-94d4-00e08161165f}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}.xpi
FF - ExtSQL: 2013-02-22 00:46; zoompage@DW-dev; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\zoompage@DW-dev.xpi
FF - ExtSQL: 2013-02-22 00:46; thumbnailZoom@dadler.github.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\thumbnailZoom@dadler.github.com.xpi
FF - ExtSQL: 2013-02-22 00:46; swiffout@grownsoftware.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\swiffout@grownsoftware.com
FF - ExtSQL: 2013-02-22 00:46; stealthyextension@gmail.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\stealthyextension@gmail.com.xpi
FF - ExtSQL: 2013-02-22 00:46; secureLogin@blueimp.net; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\secureLogin@blueimp.net.xpi
FF - ExtSQL: 2013-02-22 00:46; scriptish@erikvold.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\scriptish@erikvold.com.xpi
FF - ExtSQL: 2013-02-22 00:46; mytube@ashishmishra.in; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\mytube@ashishmishra.in
FF - ExtSQL: 2013-02-22 00:46; muter@yxl.name; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\muter@yxl.name
FF - ExtSQL: 2013-02-22 00:46; movableAppButton@Merci.chao; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\movableAppButton@Merci.chao.xpi
FF - ExtSQL: 2013-02-22 00:46; isreaditlater@ideashower.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\isreaditlater@ideashower.com.xpi
FF - ExtSQL: 2013-02-22 00:46; firefox@ghostery.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\firefox@ghostery.com
FF - ExtSQL: 2013-02-22 00:46; findbutton@fbdev.x10.bz; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\findbutton@fbdev.x10.bz.xpi
FF - ExtSQL: 2013-02-22 00:46; autopager@mozilla.org; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\autopager@mozilla.org.xpi
FF - ExtSQL: 2013-02-22 00:46; addressBarFontSizeBigger@papafresh.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\addressBarFontSizeBigger@papafresh.com.xpi
FF - ExtSQL: 2013-02-22 00:46; adblockpopups@jessehakanen.net; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2013-02-22 00:46; VacuumPlacesImproved@lultimouomo-gmail.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\VacuumPlacesImproved@lultimouomo-gmail.com.xpi
FF - ExtSQL: 2013-02-22 00:46; LDSI_plashcor@gmail.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\LDSI_plashcor@gmail.com.xpi
FF - ExtSQL: 2013-02-22 00:46; ImagePicker@topolog.org; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\ImagePicker@topolog.org
FF - ExtSQL: 2013-02-22 21:36; pavel.sherbakov@gmail.com; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\pavel.sherbakov@gmail.com
FF - ExtSQL: 2013-02-22 21:36; findtocenter@alice0775; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\findtocenter@alice0775.xpi
FF - ExtSQL: 2013-02-22 21:41; {071D2984-3A31-40b1-856E-75BEC2872923}; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\{071D2984-3A31-40b1-856E-75BEC2872923}.xpi
FF - ExtSQL: 2013-02-23 01:34; SkipScreen@SkipScreen; C:\Users\Sir Justice\AppData\Roaming\Mozilla\Firefox\Profiles\53ef20gs.default\extensions\SkipScreen@SkipScreen.xpi
FF - ExtSQL: 2013-03-02 23:08; {23fcfd51-4958-4f00-80a3-ae97e717ed8b}; C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: browser.blink_allowed - true
FF - user.js: network.http.max-connections-per-server - 8
.
============= SERVICES / DRIVERS ===============
.
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-2-22 19224]
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-10-8 30056]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 avfwot;avfwot;C:\Windows\System32\drivers\avfwot.sys [2013-2-21 141376]
R1 avkmgr;avkmgr;C:\Windows\System32\drivers\avkmgr.sys [2013-2-21 27800]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.sys [2012-10-8 284008]
R2 AntiVirFirewallService;Avira FireWall;C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [2013-2-21 657120]
R2 AntiVirMailService;Avira Mail Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe [2013-2-21 400608]
R2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-2-21 86752]
R2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-2-21 110816]
R2 AntiVirWebService;Avira Web Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe [2013-2-21 565472]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2013-2-21 99912]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-3-3 1103392]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-3-3 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-3-3 168384]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\drivers\AiCharger.sys [2013-2-21 17152]
R3 ATP;ASUS PS/2 Port Input Device;C:\Windows\System32\drivers\AsusTP.sys [2012-9-11 56704]
R3 avfwim;AvFw Packet Filter Miniport;C:\Windows\System32\drivers\avfwim.sys [2013-2-21 114608]
R3 BazisVirtualCDBus;WinCDEmu Virtual Bus Driver;C:\Windows\System32\drivers\BazisVirtualCDBus.sys [2011-6-4 196704]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-2-22 356632]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-2-22 789272]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2013-2-21 103536]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-11-16 11880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2013-1-31 2402080]
S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2013-2-22 17480]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2013-2-22 9800]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-2-22 169752]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2013-2-24 16152]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-7 161384]
.
=============== File Associations ===============
.
FileExt: .txt: Notepad++_file="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
FileExt: .ini: Notepad++_file="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.
=============== Created Last 30 ================
.
2013-03-03 10:19:28 89088 ----a-w- C:\Windows\mbr.exe
2013-03-03 09:56:27 89088 ----a-w- C:\Windows\System32\Unconfirmed 856902.crdownload
2013-03-03 08:11:26 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2013-03-03 08:11:22 17272 ----a-w- C:\Windows\System32\sdnclean64.exe
2013-03-03 08:11:20 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-03-02 22:33:32 -------- d-----w- C:\Users\Sir Justice\AppData\Local\DDMSettings
2013-03-02 22:08:16 -------- d-----w- C:\Program Files\DivX
2013-03-02 22:08:10 -------- d-----w- C:\Program Files (x86)\Common Files\DivX Shared
2013-03-02 22:07:27 -------- d-----w- C:\Program Files (x86)\DivX
2013-03-02 22:05:52 -------- d-----w- C:\ProgramData\DivX
2013-03-01 02:54:28 -------- d-----w- C:\Windows\Downloaded Installations
2013-03-01 02:09:13 -------- d-----w- C:\Windows\System32\Plug-In Settings
2013-02-26 07:25:26 -------- d-----w- C:\Users\Sir Justice\AppData\Local\CutePDF Writer
2013-02-26 07:24:49 -------- d-----w- C:\Program Files (x86)\GPLGS
2013-02-25 15:03:49 10935740 ----a-w- C:\Windows\System32\Atomic City.scr
2013-02-25 15:03:28 -------- d-----w- C:\Program Files (x86)\Microsoft
2013-02-25 15:03:23 4002464 ----a-w- C:\Windows\System32\Dust particles screensaver.scr
2013-02-25 15:03:06 14242109 ----a-w- C:\Windows\System32\Dying Planet.scr
2013-02-25 15:02:52 25550694 ----a-w- C:\Windows\System32\Green Fire.scr
2013-02-25 15:02:38 37603972 ----a-w- C:\Windows\System32\Hyper Speed.scr
2013-02-25 15:02:15 202752 ----a-w- C:\Windows\SysWow64\MinimalClock.scr
2013-02-25 15:02:02 32396816 ----a-w- C:\Windows\System32\Prowler.scr
2013-02-25 15:01:42 34095191 ----a-w- C:\Windows\System32\Roller Coaster.scr
2013-02-25 15:01:29 23114087 ----a-w- C:\Windows\System32\Sunny Falls.scr
2013-02-25 13:50:04 -------- d-----w- C:\Program Files (x86)\Devil Design
2013-02-25 13:50:03 18752185 ----a-w- C:\Windows\System32\Dawn.scr
2013-02-25 13:49:50 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Axialis
2013-02-25 12:40:27 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
2013-02-25 12:39:27 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\Intel Corporation
2013-02-25 12:24:23 -------- d-----w- C:\Program Files (x86)\Windows Kits
2013-02-25 11:35:51 -------- d-----w- C:\Program Files (x86)\TCPView
2013-02-25 11:26:49 -------- d-----w- C:\Program Files (x86)\Window Class Reader
2013-02-25 10:04:29 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\Rainmeter
2013-02-25 10:03:46 -------- d-----w- C:\Program Files\Rainmeter
2013-02-25 10:03:36 -------- d-----w- C:\ProgramData\Package Cache
2013-02-24 10:40:38 -------- d-----w- C:\Program Files (x86)\T3Desk
2013-02-24 10:30:27 -------- d-----w- C:\Users\Sir Justice\AppData\Local\http___www.julien-manici
2013-02-24 10:25:53 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\NetSpeedMonitor
2013-02-24 10:25:18 -------- d-----w- C:\Program Files\NetSpeedMonitor
2013-02-24 10:24:54 -------- d-----w- C:\Program Files (x86)\Windows 7 Logon Background Changer
2013-02-24 09:48:48 16152 ----a-w- C:\Windows\System32\drivers\SWDUMon.sys
2013-02-24 09:48:48 -------- d-----w- C:\Users\Sir Justice\AppData\Local\SlimWare Utilities Inc
2013-02-24 09:48:46 -------- d-----w- C:\Program Files (x86)\SlimDrivers
2013-02-24 03:08:53 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Surazal
2013-02-23 20:22:32 -------- d-----w- C:\Users\Sir Justice\AppData\Local\FOMM
2013-02-23 20:04:53 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Nexus
2013-02-23 19:50:25 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\ScripterRon
2013-02-23 18:34:57 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\NVIDIA
2013-02-23 18:34:51 -------- d-----w- C:\Program Files (x86)\MSI Kombustor 2.5
2013-02-23 18:33:25 -------- d-----w- C:\Windows\SysWow64\directx
2013-02-23 18:33:19 -------- d-----w- C:\Program Files (x86)\MSI Afterburner
2013-02-23 18:12:30 -------- d-----w- C:\Users\Sir Justice\AppData\Local\FalloutNV
2013-02-22 21:30:01 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Microsoft Games
2013-02-22 20:23:13 -------- d-----w- C:\Program Files\CCleaner
2013-02-22 19:27:42 996352 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-22 19:27:42 768000 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-22 18:17:37 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-02-22 18:12:08 9800 ----a-w- C:\Windows\System32\EuGdiDrv.sys
2013-02-22 18:12:08 9160 ----a-w- C:\Windows\SysWow64\EuGdiDrv.sys
2013-02-22 18:12:08 87112 ----a-w- C:\Windows\SysWow64\setupempdrv03.exe
2013-02-22 18:12:08 3376640 ----a-w- C:\Windows\System32\BootMan.exe
2013-02-22 18:12:08 3316736 ----a-w- C:\Windows\System32\¸´¼þ BootMan.exe
2013-02-22 18:12:08 2468520 ----a-w- C:\Windows\SysWow64\BootMan.exe
2013-02-22 18:12:08 19840 ----a-w- C:\Windows\SysWow64\EuEpmGdi.dll
2013-02-22 18:12:08 17480 ----a-w- C:\Windows\System32\epmntdrv.sys
2013-02-22 18:12:08 16256 ----a-w- C:\Windows\System32\EuEpmGdi.dll
2013-02-22 18:12:08 14920 ----a-w- C:\Windows\SysWow64\epmntdrv.sys
2013-02-22 18:12:08 100936 ----a-w- C:\Windows\System32\setupempdrvx64.exe
2013-02-22 18:12:04 -------- d-----w- C:\Program Files (x86)\EaseUS
2013-02-22 16:24:41 -------- d-----w- C:\Windows\PCHEALTH
2013-02-22 16:21:51 -------- d-----w- C:\Program Files\Microsoft Analysis Services
2013-02-22 16:21:51 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-02-22 16:21:42 -------- d-----w- C:\Windows\SHELLNEW
2013-02-22 16:21:29 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Microsoft Help
2013-02-22 15:32:40 41984 ----a-w- C:\Windows\System32\drivers\USB3Ver.dll
2013-02-22 15:32:36 -------- d-----w- C:\Intel
2013-02-22 15:32:17 789272 ----a-w- C:\Windows\System32\drivers\iusb3xhc.sys
2013-02-22 15:32:17 356632 ----a-w- C:\Windows\System32\drivers\iusb3hub.sys
2013-02-22 15:32:17 19224 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys
2013-02-22 15:32:17 1721576 ----a-w- C:\Windows\System32\WdfCoInstaller01009.dll
2013-02-22 15:18:05 -------- d-----w- C:\Users\Sir Justice\AppData\Local\ElevatedDiagnostics
2013-02-22 15:00:47 275360 ----a-w- C:\Windows\System32\DreamScene.dll
2013-02-22 15:00:47 16180 ----a-w- C:\Windows\Dscene.reg
2013-02-22 14:23:30 -------- d-----w- C:\ProgramData\SuRe Softwares
2013-02-22 14:23:30 -------- d-----w- C:\Program Files (x86)\Windows Tweaker
2013-02-22 14:23:08 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Downloaded Installations
2013-02-22 13:48:24 -------- d-----w- C:\Program Files\Core Temp
2013-02-22 13:45:12 -------- d-----w- C:\ProgramData\APN
2013-02-22 13:43:28 -------- d-----w- C:\Program Files (x86)\LinuxLive USB Creator
2013-02-22 13:41:07 -------- d-----w- C:\Program Files\Tracker Software
2013-02-22 13:39:07 87152 ----a-w- C:\Windows\System32\cpwmon64.dll
2013-02-22 13:39:07 -------- d-----w- C:\Program Files (x86)\Acro Software
2013-02-22 13:24:19 -------- d-----w- C:\Program Files (x86)\NirSoft
2013-02-22 13:01:39 1178624 ----a-w- C:\Users\Sir Justice\AppData\Roaming\siw_sdk.dll
2013-02-22 13:01:20 -------- d-----w- C:\Program Files (x86)\SIW
2013-02-22 12:50:29 -------- d-----w- C:\Windows\System32\W7NBC
2013-02-22 12:48:35 -------- d-----w- C:\Program Files (x86)\SpeedFan
2013-02-22 12:48:25 -------- d-----w- C:\Program Files (x86)\ASIO4ALL v2
2013-02-22 12:08:57 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
2013-02-22 12:08:57 1706640 ----a-w- C:\Windows\RtlExUpd.dll
2013-02-22 09:57:19 2755072 ----a-w- C:\Windows\SysWow64\themeui.dll.backup
2013-02-22 09:57:19 245760 ----a-w- C:\Windows\SysWow64\uxtheme.dll.backup
2013-02-22 09:57:18 898560 ----a-w- C:\Windows\System32\OobeFldr_backup_wti.dll
2013-02-22 09:57:18 2871808 ----a-w- C:\Windows\explorer_backup_wti.exe
2013-02-22 09:57:18 1866240 ----a-w- C:\Windows\System32\ExplorerFrame_backup_wti.dll
2013-02-22 09:57:18 14172672 ----a-w- C:\Windows\System32\shell32_backup_wti.dll
2013-02-22 09:57:17 50536 ----a-w- C:\Windows\UTP.exe
2013-02-22 09:39:36 -------- d-----w- C:\Program Files\Unlocker
2013-02-22 05:35:49 -------- d-----w- C:\Windows\Panther
2013-02-22 02:20:54 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Skyrim
2013-02-22 01:58:36 -------- d-----w- C:\STEAM
2013-02-22 01:58:36 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2013-02-22 01:45:41 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\Dexpot
2013-02-22 01:45:38 -------- d-----w- C:\Program Files (x86)\Dexpot
2013-02-22 01:41:38 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Google
2013-02-22 01:41:35 -------- d-----w- C:\Program Files (x86)\Picasa3
2013-02-22 01:40:48 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\foobar2000
2013-02-22 01:40:45 -------- d-----w- C:\Program Files (x86)\foobar2000
2013-02-22 01:36:36 -------- d-----w- C:\Program Files\allsnap150beta
2013-02-22 01:34:45 -------- d-----w- C:\Program Files (x86)\KDE Mover-Sizer for Windows
2013-02-22 00:49:30 -------- d-----w- C:\Program Files (x86)\WinCDEmu
2013-02-22 00:22:02 925184 ----a-w- C:\Windows\expstart.exe
2013-02-22 00:21:22 2871808 ----a-w- C:\Windows\explorer.backup.exe
2013-02-22 00:14:51 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Macromedia
2013-02-22 00:01:02 71024 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-22 00:01:02 691568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-02-22 00:00:57 37664 ----a-w- C:\Windows\System32\uxtuneup.dll
2013-02-22 00:00:57 29984 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
2013-02-21 23:24:00 -------- d-----w- C:\Program Files (x86)\Realtek
2013-02-21 23:23:59 -------- d--h--w- C:\Program Files (x86)\Temp
2013-02-21 23:23:57 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2013-02-21 23:23:57 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2013-02-21 23:23:57 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2013-02-21 23:23:57 204800 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2013-02-21 23:23:56 757760 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2013-02-21 23:23:56 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2013-02-21 23:23:56 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2013-02-21 23:23:56 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2013-02-21 23:15:42 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab
2013-02-21 23:04:52 -------- d-----w- C:\ProgramData\Samsung
2013-02-21 23:04:52 -------- d-----w- C:\Program Files (x86)\Samsung Magician
2013-02-21 23:02:56 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Programs
2013-02-21 22:37:38 35104 ----a-w- C:\Windows\System32\TURegOpt.exe
2013-02-21 22:37:38 26400 ----a-w- C:\Windows\System32\authuitu.dll
2013-02-21 22:37:38 21792 ----a-w- C:\Windows\SysWow64\authuitu.dll
2013-02-21 22:37:34 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\TuneUp Software
2013-02-21 22:37:31 -------- d-----w- C:\Program Files (x86)\TuneUp Utilities 2013
2013-02-21 22:37:26 -------- d-----w- C:\ProgramData\TuneUp Software
2013-02-21 22:37:21 -------- d-sh--w- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-02-21 22:37:21 -------- d--h--w- C:\ProgramData\Common Files
2013-02-21 22:29:09 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2013-02-21 22:29:08 902656 ----a-w- C:\Windows\System32\d2d1.dll
2013-02-21 22:29:08 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2013-02-21 22:27:52 -------- d-----r- C:\Program Files (x86)\Skype
2013-02-21 22:25:52 -------- d-----w- C:\ProgramData\USBChargerPlus
2013-02-21 22:25:50 -------- d-----w- C:\Windows\SysWow64\NV
2013-02-21 22:25:50 -------- d-----w- C:\Windows\System32\NV
2013-02-21 22:14:24 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\Miranda
2013-02-21 22:12:11 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-02-21 22:12:10 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2013-02-21 22:12:10 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-02-21 22:12:10 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2013-02-21 22:07:18 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2013-02-21 22:02:22 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2013-02-21 22:01:15 891240 ----a-w- C:\Windows\System32\nvvsvc.exe
2013-02-21 22:01:15 866664 ----a-w- C:\Windows\System32\nv3dappshext.dll
2013-02-21 22:01:15 63336 ----a-w- C:\Windows\System32\nvshext.dll
2013-02-21 22:01:15 6200680 ----a-w- C:\Windows\System32\nvcpl.dll
2013-02-21 22:01:15 55144 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2013-02-21 22:01:15 3536817 ----a-w- C:\Windows\System32\nvcoproc.bin
2013-02-21 22:01:15 3293544 ----a-w- C:\Windows\System32\nvsvc64.dll
2013-02-21 22:01:15 2557800 ----a-w- C:\Windows\System32\nvsvcr.dll
2013-02-21 22:01:15 118120 ----a-w- C:\Windows\System32\nvmctray.dll
2013-02-21 22:00:53 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2013-02-21 22:00:51 -------- d-----w- C:\Program Files\NVIDIA Corporation
2013-02-21 22:00:16 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-02-21 22:00:16 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2013-02-21 22:00:16 5120 ----a-w- C:\Windows\System32\wmi.dll
2013-02-21 22:00:16 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2013-02-21 22:00:16 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-02-21 21:57:06 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-02-21 21:57:06 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2013-02-21 21:57:06 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2013-02-21 21:57:06 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2013-02-21 21:55:13 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\Dropbox
2013-02-21 21:54:07 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-02-21 21:54:07 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-02-21 21:54:05 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-21 21:52:14 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2013-02-21 21:52:14 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2013-02-21 21:51:06 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2013-02-21 21:49:46 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2013-02-21 21:49:46 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2013-02-21 21:49:46 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2013-02-21 21:49:46 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2013-02-21 21:49:46 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2013-02-21 21:49:46 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2013-02-21 21:49:46 216576 ----a-w- C:\Windows\System32\ncsi.dll
2013-02-21 21:49:46 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2013-02-21 21:49:46 18944 ----a-w- C:\Windows\System32\netevent.dll
2013-02-21 21:49:46 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2013-02-21 21:49:46 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2013-02-21 21:48:15 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-02-21 21:48:15 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-02-21 21:47:42 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-02-21 21:47:42 1367552 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-02-21 21:47:31 314880 ----a-w- C:\Windows\SysWow64\webio.dll
2013-02-21 21:47:30 395776 ----a-w- C:\Windows\System32\webio.dll
2013-02-21 21:47:22 3216384 ----a-w- C:\Windows\System32\msi.dll
2013-02-21 21:47:22 2342400 ----a-w- C:\Windows\SysWow64\msi.dll
2013-02-21 21:46:58 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2013-02-21 21:46:58 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2013-02-21 21:46:58 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2013-02-21 21:46:58 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2013-02-21 21:46:58 1389568 ----a-w- C:\Windows\SysWow64\msxml6.dll
2013-02-21 21:46:58 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2013-02-21 21:46:10 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2013-02-21 21:46:10 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2013-02-21 21:46:10 331776 ----a-w- C:\Windows\System32\oleacc.dll
2013-02-21 21:46:10 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2013-02-21 21:44:45 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-02-21 21:43:49 67072 ----a-w- C:\Windows\splwow64.exe
2013-02-21 21:43:49 559104 ----a-w- C:\Windows\System32\spoolsv.exe
2013-02-21 21:43:16 59392 ----a-w- C:\Windows\System32\browcli.dll
2013-02-21 21:43:16 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2013-02-21 21:43:16 136704 ----a-w- C:\Windows\System32\browser.dll
2013-02-21 21:43:15 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2013-02-21 21:43:14 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2013-02-21 21:43:14 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2013-02-21 21:43:14 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2013-02-21 21:41:16 642944 ----a-w- C:\Windows\System32\winload.efi
2013-02-21 21:41:16 605552 ----a-w- C:\Windows\System32\winload.exe
2013-02-21 21:41:16 566208 ----a-w- C:\Windows\System32\winresume.efi
2013-02-21 21:41:16 518672 ----a-w- C:\Windows\System32\winresume.exe
2013-02-21 21:41:16 20352 ----a-w- C:\Windows\System32\kdusb.dll
2013-02-21 21:41:16 19328 ----a-w- C:\Windows\System32\kd1394.dll
2013-02-21 21:41:16 17792 ----a-w- C:\Windows\System32\kdcom.dll
2013-02-21 21:41:16 1731920 ----a-w- C:\Windows\System32\ntdll.dll
2013-02-21 21:41:16 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-02-21 21:41:07 332288 ----a-w- C:\Windows\System32\uxtheme.dll.backup
2013-02-21 21:41:05 2851840 ----a-w- C:\Windows\System32\themeui.dll.backup
2013-02-21 21:41:03 44544 ----a-w- C:\Windows\System32\themeservice.dll.backup
2013-02-21 21:40:19 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2013-02-21 21:40:19 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2013-02-21 21:40:19 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2013-02-21 21:39:07 2871808 ----a-w- C:\Windows\explorer.exe
2013-02-21 21:39:07 2616320 ----a-w- C:\Windows\SysWow64\explorer.exe
2013-02-21 21:36:27 3153408 ----a-w- C:\Windows\System32\win32k.sys
2013-02-21 21:36:10 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2013-02-21 21:35:47 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2013-02-21 21:35:46 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2013-02-21 21:34:58 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-02-21 21:34:57 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2013-02-21 21:34:03 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2013-02-21 21:34:03 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2013-02-21 21:32:55 715776 ----a-w- C:\Windows\System32\kerberos.dll
2013-02-21 21:28:42 -------- d-----w- C:\Program Files (x86)\ASUS
2013-02-21 21:20:23 -------- d-----w- C:\Program Files (x86)\Process Explorer
2013-02-21 21:14:19 -------- d-----w- C:\Users\Sir Justice\AppData\Local\Mozilla
2013-02-21 21:04:46 -------- d-----w- C:\Users\Sir Justice\AppData\Roaming\Avira
2013-02-21 21:04:02 99912 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2013-02-21 21:04:02 27800 ----a-w- C:\Windows\System32\drivers\avkmgr.sys
2013-02-21 21:04:02 141376 ----a-w- C:\Windows\System32\drivers\avfwot.sys
2013-02-21 21:04:02 114608 ----a-w- C:\Windows\System32\drivers\avfwim.sys
2013-02-21 21:04:02 -------- d-----w- C:\ProgramData\Avira
2013-02-21 21:04:02 -------- d-----w- C:\Program Files (x86)\Avira
2013-02-21 21:01:24 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2013-02-21 21:01:24 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2013-02-21 21:01:24 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2013-02-21 21:01:10 -------- d-----w- C:\Program Files (x86)\Miranda IM
2013-02-21 21:00:15 -------- d-----w- C:\Program Files\VideoLAN
2013-02-21 20:58:48 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2013-02-21 20:58:47 99840 ----a-w- C:\Windows\System32\wudriver.dll
2013-02-21 20:58:46 36864 ----a-w- C:\Windows\System32\wuapp.exe
2013-02-21 20:58:46 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2013-02-21 20:50:54 -------- d-----w- C:\Program Files\Microsoft Games
2013-02-21 20:50:34 -------- d-----w- C:\ProgramData\AmUStor
2013-02-21 20:50:33 -------- d-----w- C:\Program Files (x86)\AmIcoSingLun
2013-02-21 20:49:43 103536 ----a-w- C:\Windows\System32\drivers\L1C62x64.sys
2013-02-21 20:49:29 -------- d-----w- C:\Windows\SysWow64\Atheros_L1e
2013-02-21 20:48:54 2808832 ----a-w- C:\Windows\System32\drivers\athrx.sys
2013-02-21 20:48:54 2808832 ----a-w- C:\Windows\System32\athrx.sys
2013-02-21 20:48:53 -------- d-----w- C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation
2013-02-21 20:47:58 -------- d-sh--w- C:\Windows\Installer
2013-02-21 20:47:39 -------- d-----w- C:\ProgramData\Qualcomm Atheros
2013-02-21 20:41:51 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
.
==================== Find3M ====================
.
2013-02-22 09:57:19 2755072 ----a-w- C:\Windows\SysWow64\themeui.dll
2013-02-22 09:57:19 245760 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2013-02-21 21:41:07 332288 ----a-w- C:\Windows\System32\uxtheme.dll
2013-02-21 21:41:05 2851840 ----a-w- C:\Windows\System32\themeui.dll
2013-02-21 21:41:03 44544 ----a-w- C:\Windows\System32\themeservice.dll
2013-01-09 01:19:09 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-01-09 01:12:03 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-01-09 01:11:06 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-01-09 01:07:51 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-01-09 01:07:47 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-01-09 01:04:42 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-01-08 22:11:21 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-01-08 22:03:20 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-01-08 22:03:12 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-01-08 21:59:02 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-01-08 21:58:29 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-01-08 21:56:23 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-01-08 16:23:50 277488 ----a-w- C:\Windows\SysWow64\IntelCpHeciSvc.exe
2013-01-08 16:23:48 511984 ----a-w- C:\Windows\System32\igfxsrvc.exe
2013-01-08 16:23:48 172016 ----a-w- C:\Windows\System32\igfxtray.exe
2013-01-08 16:23:46 5905904 ----a-w- C:\Windows\System32\GfxUI.exe
2013-01-08 16:23:46 441840 ----a-w- C:\Windows\System32\igfxpers.exe
2013-01-08 16:23:46 399856 ----a-w- C:\Windows\System32\hkcmd.exe
2013-01-08 16:23:46 254960 ----a-w- C:\Windows\System32\igfxext.exe
2013-01-08 16:23:44 185840 ----a-w- C:\Windows\System32\difx64.exe
2013-01-05 05:53:43 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-01-05 05:00:15 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-01-04 07:47:47 90112 ----a-w- C:\Windows\System32\igfxCoIn_v2618.dll
2013-01-04 07:47:46 734772 ----a-w- C:\Windows\SysWow64\igkrng700.bin
2013-01-04 07:47:46 734772 ----a-w- C:\Windows\System32\igkrng700.bin
2013-01-04 07:47:46 524800 ----a-w- C:\Windows\System32\iglhsip64.dll
2013-01-04 07:47:46 519680 ----a-w- C:\Windows\SysWow64\iglhsip32.dll
2013-01-04 07:47:42 557476 ----a-w- C:\Windows\SysWow64\igfcg700m.bin
2013-01-04 07:47:42 557476 ----a-w- C:\Windows\System32\igfcg700m.bin
2013-01-04 07:47:36 94208 ----a-w- C:\Windows\System32\IccLibDll_x64.dll
2013-01-04 05:46:09 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-01-04 04:51:16 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-01-04 04:43:21 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-01-04 02:47:35 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-01-04 02:47:34 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-01-04 02:47:33 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-01-03 06:00:54 1913192 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-01-03 06:00:42 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2012-12-16 17:11:22 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-16 14:45:03 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-16 14:13:28 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-16 14:13:20 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-13 15:23:46 116224 ----a-w- C:\Windows\System32\igfxCoIn_v2932.dll
2012-12-12 21:37:56 4472832 ----a-w- C:\Windows\SysWow64\GPhotos.scr
2012-12-12 15:45:56 3581440 ----a-w- C:\Windows\System32\igdbcl64.dll
2012-12-12 15:45:54 27664896 ----a-w- C:\Windows\System32\igdrcl64.dll
2012-12-12 15:45:44 241664 ----a-w- C:\Windows\System32\IntelOpenCL64.dll
2012-12-12 15:45:20 2898944 ----a-w- C:\Windows\SysWow64\igdbcl32.dll
2012-12-12 15:45:18 27643904 ----a-w- C:\Windows\SysWow64\igdrcl32.dll
2012-12-12 15:45:12 196096 ----a-w- C:\Windows\SysWow64\IntelOpenCL32.dll
2012-12-12 15:45:06 12858368 ----a-w- C:\Windows\System32\igd10umd64.dll
2012-12-12 15:44:44 27457536 ----a-w- C:\Windows\System32\igdfcl64.dll
2012-12-12 15:44:04 11174912 ----a-w- C:\Windows\SysWow64\igd10umd32.dll
2012-12-12 15:42:46 384512 ----a-w- C:\Windows\System32\igfxpph.dll
2012-12-12 15:42:44 410112 ----a-w- C:\Windows\System32\igfxTMM.dll
2012-12-12 15:42:44 28672 ----a-w- C:\Windows\System32\igfxexps.dll
2012-12-12 15:42:42 21850112 ----a-w- C:\Windows\SysWow64\igdfcl32.dll
2012-12-12 15:42:36 126976 ----a-w- C:\Windows\System32\igfxcpl.cpl
2012-12-12 15:42:36 12615680 ----a-w- C:\Windows\System32\igdumd64.dll
2012-12-12 15:42:34 142336 ----a-w- C:\Windows\System32\igfxdo.dll
2012-12-12 15:42:28 64000 ----a-w- C:\Windows\System32\igfxsrvc.dll
2012-12-12 15:42:28 5353888 ----a-w- C:\Windows\System32\drivers\igdkmd64.sys
2012-12-12 15:42:24 80384 ----a-w- C:\Windows\System32\igdde64.dll
2012-12-12 15:42:06 110592 ----a-w- C:\Windows\System32\hccutils.dll
2012-12-12 15:41:56 9728 ----a-w- C:\Windows\System32\IGFXDEVLib.dll
2012-12-12 15:41:56 175104 ----a-w- C:\Windows\System32\gfxSrvc.dll
2012-12-12 15:41:54 442880 ----a-w- C:\Windows\System32\igfxdev.dll
2012-12-12 15:41:38 11049472 ----a-w- C:\Windows\SysWow64\igdumd32.dll
2012-12-12 15:41:26 286208 ----a-w- C:\Windows\System32\igfxrenu.lrc
2012-12-12 15:41:24 64512 ----a-w- C:\Windows\SysWow64\igdde32.dll
2012-12-12 15:41:22 9007616 ----a-w- C:\Windows\System32\igfxress.dll
2012-12-12 15:40:42 25088 ----a-w- C:\Windows\SysWow64\igfxexps32.dll
2012-12-12 15:40:14 8621056 ----a-w- C:\Windows\SysWow64\ig7icd32.dll
2012-12-12 15:40:08 330752 ----a-w- C:\Windows\SysWow64\igfxdv32.dll
2012-12-12 15:39:30 11633152 ----a-w- C:\Windows\System32\ig7icd64.dll
2012-12-07 13:20:16 441856 ----a-w- C:\Windows\System32\Wpc.dll
2012-12-07 13:15:31 2746368 ----a-w- C:\Windows\System32\gameux.dll
2012-12-07 12:26:17 308736 ----a-w- C:\Windows\SysWow64\Wpc.dll
2012-12-07 12:20:43 2576384 ----a-w- C:\Windows\SysWow64\gameux.dll
2012-12-07 11:20:04 30720 ----a-w- C:\Windows\System32\usk.rs
2012-12-07 11:20:03 43520 ----a-w- C:\Windows\System32\csrr.rs
2012-12-07 11:20:03 23552 ----a-w- C:\Windows\System32\oflc.rs
2012-12-07 11:20:01 45568 ----a-w- C:\Windows\System32\oflc-nz.rs
2012-12-07 11:20:01 44544 ----a-w- C:\Windows\System32\pegibbfc.rs
2012-12-07 11:20:01 20480 ----a-w- C:\Windows\System32\pegi-fi.rs
2012-12-07 11:20:00 20480 ----a-w- C:\Windows\System32\pegi-pt.rs
2012-12-07 11:19:59 20480 ----a-w- C:\Windows\System32\pegi.rs
2012-12-07 11:19:58 46592 ----a-w- C:\Windows\System32\fpb.rs
2012-12-07 11:19:57 40960 ----a-w- C:\Windows\System32\cob-au.rs
2012-12-07 11:19:57 21504 ----a-w- C:\Windows\System32\grb.rs
2012-12-07 11:19:57 15360 ----a-w- C:\Windows\System32\djctq.rs
2012-12-07 11:19:56 55296 ----a-w- C:\Windows\System32\cero.rs
2012-12-07 11:19:55 51712 ----a-w- C:\Windows\System32\esrb.rs
.
============= FINISH: 13:53:15.93 ===============




aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-03 13:58:03
-----------------------------
13:58:03.253 OS Version: Windows x64 6.1.7601 Service Pack 1
13:58:03.253 Number of processors: 8 586 0x3A09
13:58:03.253 ComputerName: SIRJUSTICE-PC UserName: Sir Justice
13:58:03.253 Initialze error 1 Incorrect function.
13:59:32.374 AVAST engine defs: 13030300
14:00:17.584 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1
14:00:17.584 Disk 0 Vendor: Hitachi_HTS727575A9E364 JF4OA200 Size: 715404MB BusType: 11
14:00:17.584 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T0L0-0
14:00:17.584 Disk 1 Vendor: Samsung_SSD_840_PRO_Series DXM04B0Q Size: 244198MB BusType: 11
14:00:17.584 Disk 1 MBR read successfully
14:00:17.594 Disk 1 MBR scan
14:00:17.594 Disk 1 unknown MBR code
14:00:17.594 Disk 1 Partition 1 00 EE GPT 244198 MB offset 1
14:00:17.594 Disk 1 scanning C:\Windows\system32\drivers
14:00:17.594 Service scanning
14:00:18.384 Modules scanning
14:00:18.384 Disk 1 trace - called modules:
14:00:18.384 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
14:00:18.384 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa8007abb790]
14:00:18.394 3 CLASSPNP.SYS[fffff8800195643f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8007570060]
14:00:18.394 AVAST engine scan C:\Windows
14:00:18.394 AVAST engine scan C:\Windows\system32
14:00:18.394 AVAST engine scan C:\Windows\system32\drivers
14:00:18.404 AVAST engine scan C:\Users\Sir Justice
14:00:18.404 AVAST engine scan C:\ProgramData
14:00:18.404 Scan finished successfully
14:00:33.174 Disk 1 MBR has been saved successfully to "C:\Users\Sir Justice\Desktop\MBR.dat"
14:00:33.174 The log file has been saved successfully to "C:\Users\Sir Justice\Desktop\aswMBR.txt"

ken545
2013-03-11, 23:11
Still need help ?

DonKannalie
2013-03-12, 01:33
No, thank you. Resetup my system.
The unknown mbr message from spybot was a false positive, because I used Efi with a gpt partition. With a totally untouched Win7 I got the same 'unknown mbr code' warning...mbr partition resulted in no warning.

greetings,
Jonas

ken545
2013-03-12, 01:37
Hello Jonas,

Glad you got it resolved. Most manufacturers install there own MBR and there recognized in the scans, if you install windows on your own it maynot recognize it and thats whey you may be getting that unknown MBR warning.


Take care,

Ken