Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Freezing After Loading


  • This topic is locked This topic is locked
3 replies to this topic

#1 Trencal

Trencal

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:02 PM

Posted 16 August 2010 - 05:02 PM

When i start up my computer i let it load, then I continue to play games, surf internet, etc etc.

It randomly freezes after some time, anywhere from 1 minute to 3 hours.

It does NOT do this in safe mode, I tried restoring it to a week ago and still having the same problem.

This computer is less then 2 months old.

It was not doing this a week ago.
Tested Ram.
Ran MalwareBytes.
Ran SFC.
Updated Drivers.

If it wasnt a virus and a hardware issue i believe it would still happen in safemode.

When i run GMER i get "C:\Windows\system32\config\system: The system cannot find the file specified." Even after i run as admin.
Here are the 2 requested logs.

Thank you for your help.


DDS (Ver_10-03-17.01) - NTFSX64
Run by Joseph at 17:52:24.40 on Mon 08/16/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_20
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.6069.3945 [GMT -4:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\Webroot\WebrootSecurity\WRConsumerService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\FBAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\SysWOW64\svchost.exe -k Akamai
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files (x86)\Intel\IntelŪ Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Webroot\WebrootSecurity\SpySweeper.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Users\Joseph\AppData\Local\Apps\2.0\GJPOJLXD.KYJ\7TZP9H61.GTB\curs..tion_eee711038731a406_0004.0000_172b37d8269e5e48\CurseClient.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe
C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
C:\Program Files (x86)\Razer\Mamba\RazerTray.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\Webroot\WebrootSecurity\SpySweeperUI.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\sppsvc.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Intel\IntelŪ Management Engine Components\UNS\UNS.exe
C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Program Files (x86)\Webroot\WebrootSecurity\SSU.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Users\Joseph\Desktop\dds.scr
C:\Windows\system32\conhost.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://asus.msn.com
uDefault_Page_URL = hxxp://asus.msn.com
mLocal Page = c:\windows\syswow64\blank.htm
mURLSearchHooks: H - No File
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files (x86)\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files (x86)\siber systems\ai roboform\roboform.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: IeMonitorBho Class: {bf00e119-21a3-4fd1-b178-3b8537e75c92} - c:\program files (x86)\megaupload\mega manager\MegaIEMn.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files (x86)\windows live\toolbar\wltcore.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files (x86)\windows live\toolbar\wltcore.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files (x86)\siber systems\ai roboform\roboform.dll
uRun: [msnmsgr] "c:\program files (x86)\windows live\messenger\msnmsgr.exe" /background
mRun: [UpdateLBPShortCut] "c:\program files (x86)\cyberlink\labelprint\muitransfer\muistartmenu.exe" "c:\program files (x86)\cyberlink\labelprint" updatewithcreateonce "software\cyberlink\labelprint\2.5"
mRun: [UpdateP2GoShortCut] "c:\program files (x86)\cyberlink\power2go\muitransfer\muistartmenu.exe" "c:\program files (x86)\cyberlink\power2go" updatewithcreateonce "software\cyberlink\power2go\6.0"
mRun: [ATKOSD2] "c:\program files (x86)\asus\atk package\atkosd2\ATKOSD2.exe"
mRun: [ATKMEDIA] "c:\program files (x86)\asus\atk package\atk media\DMedia.exe"
mRun: [HControlUser] "c:\program files (x86)\asus\atk package\atk hotkey\HControlUser.exe"
mRun: [VolPanel] "c:\program files (x86)\creative\sb audigy\volume panel\VolPanlu.exe" /r
mRun: [UpdReg] "c:\windows\UpdReg.EXE"
mRun: [CarboniteSetupLite] "c:\program files (x86)\carbonite\CarbonitePreinstaller.exe" /preinstalled /showonfirst /reshowat=900
mRun: [MaxMenuMgr] "c:\program files (x86)\seagate\seagatemanager\freeagent status\StxMenuMgr.exe"
mRun: [Razer Mamba Driver] "c:\program files (x86)\razer\mamba\RazerTray.exe"
mRun: [QuickTime Task] "c:\program files (x86)\quicktime\QTTask.exe" -atboottime
mRun: [DivXUpdate] "c:\program files (x86)\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "c:\program files (x86)\common files\java\java update\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files (x86)\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [iTunesHelper] "c:\program files (x86)\itunes\iTunesHelper.exe"
mRun: [PWRISOVM.EXE] "c:\program files (x86)\poweriso\PWRISOVM.EXE"
mRun: [StartCCC] "c:\program files (x86)\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [SpySweeper] "c:\program files (x86)\webroot\webrootsecurity\SpySweeperUI.exe" /startintray
StartupFolder: c:\users\joseph\appdata\roaming\microsoft\windows\start menu\programs\startup\CurseClientStartup.ccip
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Customize Menu - file://c:\program files (x86)\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: Download Link Using Mega Manager... - c:\program files (x86)\megaupload\mega manager\mm_file.htm
IE: Fill Forms - file://c:\program files (x86)\siber systems\ai roboform\RoboFormComFillForms.html
IE: RoboForm Toolbar - file://c:\program files (x86)\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files (x86)\siber systems\ai roboform\RoboFormComSavePass.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files (x86)\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files (x86)\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files (x86)\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files (x86)\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll
DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.72.0.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~2\common~1\skype\SKYPE4~1.DLL
LSA: Notification Packages = scecli c:\program files\asus\asus data security manager\ASPWDFLT
BHO-X64: Windows Live Family Safety Browser Helper Class: {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - c:\program files\windows live\family safety\fssbho.dll
BHO-X64: Windows Live Family Safety Browser Helper - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
TB-X64: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [RunDLLEntry] "c:\windows\system32\rundll32.exe" c:\windows\system32\AmbRunE.dll,RunDLLEntry

============= SERVICES / DRIVERS ===============

R0 ssfs0bbc;ssfs0bbc;c:\windows\system32\drivers\ssfs0bbc.sys [2009-11-6 37488]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2010-6-8 379520]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2009-7-13 27136]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-7-6 203264]
R2 ASMMAP64;ASMMAP64;c:\program files (x86)\asus\atk package\atkgfnex\ASMMAP64.sys [2009-7-2 15416]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\common files\microsoft shared\virtualization handler\CVHSVC.EXE [2010-2-28 821664]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files (x86)\seagate\seagatemanager\sync\FreeAgentService.exe [2009-9-25 189736]
R2 sftlist;Application Virtualization Client;c:\program files (x86)\microsoft application virtualization client\sftlist.exe [2010-4-24 483688]
R2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\drivers\TurboB.sys [2009-8-6 13784]
R2 UNS;IntelŪ Management & Security Application User Notification Service;c:\program files (x86)\intel\intelŪ management engine components\uns\UNS.exe [2010-6-8 2314240]
R2 vpnagent;Cisco AnyConnect VPN Agent;c:\program files (x86)\cisco\cisco anyconnect vpn client\vpnagent.exe [2009-2-3 427192]
R2 WebrootSpySweeperService;Webroot Spy Sweeper Engine;c:\program files (x86)\webroot\webrootsecurity\SpySweeper.exe [2009-11-6 4048240]
R2 WRConsumerService;Webroot Client Service;c:\program files (x86)\webroot\webrootsecurity\WRConsumerService.exe [2010-6-30 1201640]
R3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atikmdag.sys [2010-7-6 7195648]
R3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2010-7-6 265728]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.sys [2009-8-21 44032]
R3 HECIx64;IntelŪ Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [2010-6-8 56344]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\drivers\L1C62x64.sys [2009-9-4 62464]
R3 Sftfs;Sftfs;c:\windows\system32\drivers\Sftfslh.sys [2010-4-24 721768]
R3 Sftplay;Sftplay;c:\windows\system32\drivers\Sftplaylh.sys [2010-4-24 269672]
R3 Sftredir;Sftredir;c:\windows\system32\drivers\Sftredirlh.sys [2010-4-24 25960]
R3 Sftvol;Sftvol;c:\windows\system32\drivers\Sftvollh.sys [2010-4-24 22376]
R3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\microsoft application virtualization client\sftvsa.exe [2010-4-24 209768]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\common files\creative labs shared\service\AL6Licensing.exe [2010-6-8 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\common files\creative labs shared\service\CTAELicensing.exe [2010-6-8 79360]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2010-7-19 61280]
S3 fsssvc;Windows Live Family Safety Service;c:\program files (x86)\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\drivers\ivusb.sys [2010-3-10 29720]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 nosGetPlusHelper;getPlusŪ Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2009-7-13 27136]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\drivers\SiSG664.sys [2009-6-10 56832]
S3 TurboBoost;TurboBoost;c:\program files\intel\turboboost\TurboBoost.exe [2009-8-6 118672]
S3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl64.sys [2010-4-19 50688]
S3 VaneFltr;Lachesis Mouse Driver;c:\windows\system32\drivers\Lachesis.sys [2007-8-17 30336]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-7-2 1255736]
S4 CSHelper;CopySafe Helper Service;c:\windows\syswow64\CSHelper.exe [2010-8-4 266240]
S4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\microsoft visual studio 8\common7\ide\remote debugger\x64\msvsmon.exe [2005-9-23 4476096]
S4 PS3 Media Server;PS3 Media Server;c:\program files (x86)\ps3 media server\win32\service\wrapper.exe [2008-8-17 217088]

=============== Created Last 30 ================

2010-08-16 19:47:14 0 d-----w- c:\programdata\ATI
2010-08-16 19:42:58 0 d-----w- c:\program files\ATI Technologies
2010-08-16 19:42:22 0 d-----w- C:\ATI
2010-08-16 19:38:00 0 d-----w- C:\AMD
2010-08-16 19:32:39 0 d-----w- c:\program files (x86)\CodeStuff
2010-08-16 19:27:44 463360 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-16 19:27:44 404992 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-08-16 19:27:44 162304 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-16 19:27:31 340992 ----a-w- c:\windows\system32\schannel.dll
2010-08-16 19:27:29 224256 ----a-w- c:\windows\syswow64\schannel.dll
2010-08-16 19:26:24 1896832 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-08-16 19:24:59 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll
2010-08-16 19:24:58 176640 ----a-w- c:\windows\syswow64\ieui.dll
2010-08-16 19:24:57 48128 ----a-w- c:\windows\syswow64\jsproxy.dll
2010-08-16 19:24:57 1638912 ----a-w- c:\windows\syswow64\mshtml.tlb
2010-08-16 19:24:57 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2010-08-16 19:24:57 12800 ----a-w- c:\windows\syswow64\msfeedssync.exe
2010-08-16 19:24:36 52224 ----a-w- c:\windows\system32\rtutils.dll
2010-08-16 19:24:36 37376 ----a-w- c:\windows\syswow64\rtutils.dll
2010-08-16 19:23:58 82944 ----a-w- c:\windows\syswow64\iccvid.dll
2010-08-16 19:23:09 3122688 ----a-w- c:\windows\system32\win32k.sys
2010-08-16 19:22:47 1877504 ----a-w- c:\windows\system32\msxml3.dll
2010-08-16 19:22:47 1233920 ----a-w- c:\windows\syswow64\msxml3.dll
2010-08-16 18:49:46 0 d-----w- c:\windows\pss
2010-08-16 18:46:36 65536 --sha-w- c:\users\joseph\ntuser.dat{8100124b-a966-11df-88f6-485b3990643d}.TM.blf
2010-08-16 18:46:36 524288 --sha-w- c:\users\joseph\ntuser.dat{8100124b-a966-11df-88f6-485b3990643d}.TMContainer00000000000000000002.regtrans-ms
2010-08-16 18:46:36 524288 --sha-w- c:\users\joseph\ntuser.dat{8100124b-a966-11df-88f6-485b3990643d}.TMContainer00000000000000000001.regtrans-ms
2010-08-16 18:42:38 65536 --sha-w- c:\users\joseph\ntuser.dat{e48c0230-a965-11df-84a4-485b3990643d}.TM.blf
2010-08-16 18:42:38 524288 --sha-w- c:\users\joseph\ntuser.dat{e48c0230-a965-11df-84a4-485b3990643d}.TMContainer00000000000000000002.regtrans-ms
2010-08-16 18:42:38 524288 --sha-w- c:\users\joseph\ntuser.dat{e48c0230-a965-11df-84a4-485b3990643d}.TMContainer00000000000000000001.regtrans-ms
2010-08-16 18:36:36 65536 --sha-w- c:\users\joseph\ntuser.dat{1bab823a-a965-11df-8309-485b3990643d}.TM.blf
2010-08-16 18:36:36 524288 --sha-w- c:\users\joseph\ntuser.dat{1bab823a-a965-11df-8309-485b3990643d}.TMContainer00000000000000000002.regtrans-ms
2010-08-16 18:36:36 524288 --sha-w- c:\users\joseph\ntuser.dat{1bab823a-a965-11df-8309-485b3990643d}.TMContainer00000000000000000001.regtrans-ms
2010-08-16 18:29:04 65536 --sha-w- c:\users\joseph\ntuser.dat{1561b210-a964-11df-81c2-485b3990643d}.TM.blf
2010-08-16 18:29:04 524288 --sha-w- c:\users\joseph\ntuser.dat{1561b210-a964-11df-81c2-485b3990643d}.TMContainer00000000000000000002.regtrans-ms
2010-08-16 18:29:04 524288 --sha-w- c:\users\joseph\ntuser.dat{1561b210-a964-11df-81c2-485b3990643d}.TMContainer00000000000000000001.regtrans-ms
2010-08-14 19:15:03 65536 --sha-w- c:\users\joseph\ntuser.dat{1836607e-a7d7-11df-867b-485b3990643d}.TM.blf
2010-08-14 19:15:03 524288 --sha-w- c:\users\joseph\ntuser.dat{1836607e-a7d7-11df-867b-485b3990643d}.TMContainer00000000000000000002.regtrans-ms
2010-08-14 19:15:03 524288 --sha-w- c:\users\joseph\ntuser.dat{1836607e-a7d7-11df-867b-485b3990643d}.TMContainer00000000000000000001.regtrans-ms
2010-08-14 19:14:20 0 --sha-w- c:\users\joseph\S-1-5-21-1601995694-4171918502-4021788505-1001.rrr.LOG2
2010-08-14 19:14:20 0 --sha-w- c:\users\joseph\S-1-5-21-1601995694-4171918502-4021788505-1001.rrr.LOG1
2010-08-14 16:49:57 0 d-----w- c:\program files\My Lockbox
2010-08-14 02:37:40 0 d-----w- c:\programdata\Wowhead
2010-08-13 18:49:56 0 d-----w- c:\program files (x86)\common files\Symantec Shared
2010-08-13 15:52:52 0 d-----w- c:\users\joseph\appdata\roaming\SaveThePuppy
2010-08-13 14:39:03 0 d-----w- c:\program files (x86)\MSN Toolbar
2010-08-13 14:38:27 0 d-----w- c:\program files (x86)\MSN Toolbar Installer
2010-08-13 14:38:20 0 d-----w- c:\program files (x86)\Shockwave.com
2010-08-13 03:11:15 0 d-----w- c:\windows\system32\drivers\NSSx64
2010-08-13 03:11:15 0 d-----w- c:\programdata\Symantec
2010-08-13 03:11:15 0 d-----w- c:\programdata\Norton
2010-08-13 03:11:15 0 d-----w- c:\program files (x86)\Norton Security Scan
2010-08-13 03:11:13 0 d-----w- c:\programdata\NortonInstaller
2010-08-13 03:11:13 0 d-----w- c:\program files (x86)\NortonInstaller
2010-08-13 00:11:13 0 d-----w- c:\windows\syswow64\Adobe
2010-08-11 23:14:23 0 d-----w- c:\programdata\LGMOBILEAX
2010-08-11 22:33:38 0 d-----w- c:\users\joseph\appdata\roaming\Malwarebytes
2010-08-11 22:33:38 0 d-----w- c:\programdata\Malwarebytes
2010-08-09 23:43:52 32768 ----a-w- c:\windows\syswow64\f3PSSavr.scr
2010-08-09 23:43:50 0 d-----w- c:\program files (x86)\MyWebSearch
2010-08-09 23:43:41 0 d-----w- c:\program files (x86)\FunWebProducts
2010-08-09 21:58:43 0 d-----w- c:\users\joseph\appdata\roaming\IObit
2010-08-09 21:46:02 91568 ----a-w- c:\windows\system32\drivers\scdemu.sys
2010-08-09 21:46:02 0 d-----w- c:\program files (x86)\PowerISO
2010-08-09 17:17:46 0 d-----w- c:\program files (x86)\Port Forwarding Wizard
2010-08-09 16:44:58 0 d-----w- c:\program files (x86)\Windows Resource Kits
2010-08-09 16:26:49 0 d-----w- c:\program files (x86)\Gomez
2010-08-05 03:46:00 0 d-----w- c:\program files (x86)\QS
2010-08-05 03:38:56 0 d-----w- c:\programdata\WinZip
2010-08-05 02:06:23 266240 ----a-w- c:\windows\syswow64\CSHelper.exe
2010-08-05 02:06:23 225280 ----a-w- c:\windows\syswow64\CSInstru.DLL
2010-08-04 17:37:56 0 d-----w- c:\program files (x86)\Coupons
2010-08-04 03:14:21 0 d-----w- c:\program files (x86)\ProxyFinderEnterprise
2010-08-04 01:32:08 0 d-----w- c:\users\joseph\appdata\roaming\TeamViewer
2010-08-03 19:17:46 0 d-----w- c:\programdata\RoboForm
2010-08-03 19:17:26 0 d-----w- c:\program files (x86)\Siber Systems
2010-08-03 19:08:14 0 d-----w- c:\program files (x86)\Gpotato
2010-08-03 18:53:01 0 d-----w- c:\programdata\PMB Files
2010-08-03 18:52:42 0 d-----w- c:\program files (x86)\Pando Networks
2010-08-02 23:41:36 12867584 ----a-w- c:\windows\syswow64\shell32.dll
2010-08-02 23:36:25 65536 --sha-w- c:\users\joseph\ntuser.dat{e8f629a7-9e8d-11df-814d-485b3990643d}.TM.blf
2010-08-02 23:36:25 524288 --sha-w- c:\users\joseph\ntuser.dat{e8f629a7-9e8d-11df-814d-485b3990643d}.TMContainer00000000000000000002.regtrans-ms
2010-08-02 23:36:25 524288 --sha-w- c:\users\joseph\ntuser.dat{e8f629a7-9e8d-11df-814d-485b3990643d}.TMContainer00000000000000000001.regtrans-ms
2010-08-01 00:52:29 0 d-----w- c:\users\joseph\appdata\roaming\My Games
2010-08-01 00:32:02 0 d-----w- C:\Games
2010-07-31 19:38:15 0 d-----w- c:\program files (x86)\World of Warcraft
2010-07-31 15:45:25 468480 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-31 15:45:12 0 d-----w- c:\program files\Java
2010-07-31 00:37:31 0 d-----w- c:\programdata\InstallShield
2010-07-28 03:12:02 0 d-----w- c:\program files (x86)\Combined Community Codec Pack
2010-07-27 15:32:26 0 d-----w- c:\programdata\Blizzard Entertainment
2010-07-27 15:32:26 0 d-----w- c:\program files (x86)\StarCraft II
2010-07-27 03:28:22 0 d-----w- c:\program files (x86)\TVersity Codec Pack
2010-07-27 02:46:58 0 d-----w- c:\users\joseph\fontconfig
2010-07-27 00:32:12 0 d-----w- c:\windows\SQLTools9_KB970892_ENU
2010-07-27 00:30:59 0 d-----w- c:\windows\SQL9_KB970892_ENU
2010-07-25 14:47:32 0 d-----w- c:\windows\syswow64\1033
2010-07-25 03:08:59 0 d-----w- c:\users\joseph\appdata\roaming\Megaupload
2010-07-25 00:29:12 0 d-----w- c:\program files\Microsoft.NET
2010-07-25 00:28:05 0 d-----w- c:\program files\Microsoft Visual Studio 8
2010-07-25 00:25:32 0 d-----w- c:\program files\Microsoft SQL Server
2010-07-25 00:25:29 0 d-----w- c:\program files (x86)\Microsoft SQL Server
2010-07-25 00:25:05 0 d-----w- c:\program files (x86)\Microsoft Device Emulator
2010-07-25 00:25:01 0 d-----w- c:\program files (x86)\Microsoft SQL Server 2005 Mobile Edition
2010-07-25 00:21:50 172 ----a-w- c:\windows\ODBC.INI
2010-07-25 00:02:55 0 d-----w- c:\programdata\PreEmptive Solutions
2010-07-25 00:02:55 0 d-----w- c:\program files (x86)\common files\Business Objects
2010-07-25 00:02:55 0 d-----w- c:\program files (x86)\CE Remote Tools
2010-07-25 00:02:54 0 d-----w- c:\program files (x86)\HTML Help Workshop
2010-07-25 00:02:54 0 d-----w- c:\program files (x86)\common files\Merge Modules
2010-07-25 00:00:35 0 d-----w- c:\programdata\Microsoft Help
2010-07-25 00:00:35 0 d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2010-07-25 00:00:24 0 d-----w- c:\windows\system32\1033
2010-07-24 19:13:26 679936 ----a-w- c:\windows\syswow64\D3DX81ab.dll
2010-07-24 19:13:26 1970176 ----a-w- c:\windows\syswow64\d3dx9.dll
2010-07-24 00:43:42 0 d-----w- c:\users\joseph\appdata\roaming\GeoVid
2010-07-24 00:43:31 77824 ----a-w- c:\windows\syswow64\xvid.ax
2010-07-24 00:43:31 765952 ----a-w- c:\windows\syswow64\xvidcore.dll
2010-07-24 00:43:31 180224 ----a-w- c:\windows\syswow64\xvidvfw.dll
2010-07-24 00:43:30 89088 ----a-w- c:\windows\syswow64\atl71.dll
2010-07-24 00:43:30 60416 ----a-w- c:\windows\syswow64\dsetup.dll
2010-07-24 00:43:30 499712 ----a-w- c:\windows\syswow64\msvcp71.dll
2010-07-24 00:43:30 348160 ----a-w- c:\windows\syswow64\msvcr71.dll
2010-07-24 00:43:30 1060864 ----a-w- c:\windows\syswow64\mfc71.dll
2010-07-24 00:43:30 1047552 ----a-w- c:\windows\syswow64\mfc71u.dll
2010-07-24 00:43:27 0 d-----w- c:\program files (x86)\GeoVid
2010-07-24 00:30:42 0 d-----w- c:\programdata\Deskshare
2010-07-24 00:30:34 0 d-----w- c:\windows\XSxS
2010-07-24 00:30:34 0 d-----w- c:\program files (x86)\Xenocode
2010-07-24 00:29:29 0 d-----w- c:\program files (x86)\Deskshare
2010-07-23 22:39:39 180224 ----a-w- c:\windows\system32\ac3filter.cpl
2010-07-23 22:39:39 0 d-----w- c:\program files (x86)\AC3Filter
2010-07-23 22:31:48 0 d-----w- c:\program files (x86)\PS3 Media Server
2010-07-23 22:07:37 0 d-----w- c:\program files (x86)\Cisco Systems
2010-07-23 22:07:14 0 d-----w- c:\programdata\Cisco Systems
2010-07-22 01:54:44 0 d-----w- c:\programdata\McAfee Security Scan
2010-07-22 01:54:44 0 d-----w- c:\programdata\McAfee
2010-07-22 01:54:42 0 d-----w- c:\program files (x86)\McAfee Security Scan
2010-07-22 01:54:23 0 d-----w- c:\programdata\NOS
2010-07-19 04:48:06 61280 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2010-07-19 04:34:48 0 d-----w- c:\users\joseph\Tracing
2010-07-19 01:40:31 0 d-----w- c:\program files (x86)\Free Online Web Cam Recorder

==================== Find3M ====================

2010-08-16 16:07:09 104448 ----a-w- c:\users\joseph\fbchathistory.dat
2010-07-07 07:50:09 45056 ----a-w- c:\windows\system32\acovcnt.exe
2010-07-07 02:30:08 7195648 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2010-07-07 02:16:20 20118528 ----a-w- c:\windows\system32\atio6axx.dll
2010-07-07 01:55:08 15461888 ----a-w- c:\windows\syswow64\atioglxx.dll
2010-07-07 01:54:16 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-07-07 01:54:08 513024 ----a-w- c:\windows\syswow64\aticfx32.dll
2010-07-07 01:53:20 594432 ----a-w- c:\windows\system32\aticfx64.dll
2010-07-07 01:51:30 446464 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-07-07 01:51:26 462336 ----a-w- c:\windows\system32\atieclxx.exe
2010-07-07 01:50:54 203264 ----a-w- c:\windows\system32\atiesrxx.exe
2010-07-07 01:49:48 120320 ----a-w- c:\windows\system32\atitmm64.dll
2010-07-07 01:49:36 421376 ----a-w- c:\windows\system32\atipdl64.dll
2010-07-07 01:49:28 356352 ----a-w- c:\windows\syswow64\atipdlxx.dll
2010-07-07 01:49:18 278528 ----a-w- c:\windows\syswow64\Oemdspif.dll
2010-07-07 01:49:14 12288 ----a-w- c:\windows\system32\atimuixx.dll
2010-07-07 01:49:10 59392 ----a-w- c:\windows\system32\atiedu64.dll
2010-07-07 01:49:06 43520 ----a-w- c:\windows\syswow64\ati2edxx.dll
2010-07-07 01:46:26 3826688 ----a-w- c:\windows\syswow64\atidxx32.dll
2010-07-07 01:37:36 4463616 ----a-w- c:\windows\system32\atidxx64.dll
2010-07-07 01:30:12 2785792 ----a-w- c:\windows\system32\atiumd6a.dll
2010-07-07 01:29:26 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2010-07-07 01:29:24 46080 ----a-w- c:\windows\syswow64\aticalrt.dll
2010-07-07 01:29:16 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2010-07-07 01:29:14 44032 ----a-w- c:\windows\syswow64\aticalcl.dll
2010-07-07 01:29:06 5378560 ----a-w- c:\windows\system32\aticaldd64.dll
2010-07-07 01:28:20 3975680 ----a-w- c:\windows\syswow64\atiumdag.dll
2010-07-07 01:27:58 4323840 ----a-w- c:\windows\syswow64\aticaldd.dll
2010-07-07 01:24:34 55296 ----a-w- c:\windows\system32\coinst.dll
2010-07-07 01:23:14 3058688 ----a-w- c:\windows\syswow64\atiumdva.dll
2010-07-07 01:22:26 5099008 ----a-w- c:\windows\system32\atiumd64.dll
2010-07-07 01:16:06 335872 ----a-w- c:\windows\system32\atiadlxx.dll
2010-07-07 01:16:02 237568 ----a-w- c:\windows\syswow64\atiadlxy.dll
2010-07-07 01:15:54 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2010-07-07 01:15:50 12800 ----a-w- c:\windows\syswow64\atiglpxx.dll
2010-07-07 01:15:50 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2010-07-07 01:15:48 18432 ----a-w- c:\windows\system32\atig6txx.dll
2010-07-07 01:15:46 16896 ----a-w- c:\windows\syswow64\atigktxx.dll
2010-07-07 01:15:42 265728 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2010-07-07 01:15:04 39424 ----a-w- c:\windows\system32\atiuxp64.dll
2010-07-07 01:14:58 30208 ----a-w- c:\windows\syswow64\atiuxpag.dll
2010-07-07 01:14:50 30208 ----a-w- c:\windows\system32\atiu9p64.dll
2010-07-07 01:14:44 22528 ----a-w- c:\windows\syswow64\atiu9pag.dll
2010-07-07 01:14:16 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2010-07-07 01:11:12 54272 ----a-w- c:\windows\system32\atimpc64.dll
2010-07-07 01:11:12 54272 ----a-w- c:\windows\system32\amdpcom64.dll
2010-07-07 01:11:06 52736 ----a-w- c:\windows\syswow64\atimpc32.dll
2010-07-07 01:11:06 52736 ----a-w- c:\windows\syswow64\amdpcom32.dll
2010-07-06 20:55:00 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2010-07-02 17:36:37 153376 ----a-w- c:\windows\syswow64\javaws.exe
2010-07-02 17:36:37 145184 ----a-w- c:\windows\syswow64\javaw.exe
2010-07-02 17:36:37 145184 ----a-w- c:\windows\syswow64\java.exe
2010-07-02 17:36:36 411368 ----a-w- c:\windows\syswow64\deployJava1.dll
2010-06-30 07:13:46 1192960 ----a-w- c:\windows\system32\wininet.dll
2010-06-30 06:25:31 978432 ----a-w- c:\windows\syswow64\wininet.dll
2010-06-30 06:25:18 1226240 ----a-w- c:\windows\syswow64\urlmon.dll
2010-06-30 06:22:45 606208 ----a-w- c:\windows\syswow64\mstime.dll
2010-06-30 06:22:34 5971456 ----a-w- c:\windows\syswow64\mshtml.dll
2010-06-30 06:21:47 185856 ----a-w- c:\windows\syswow64\iepeers.dll
2010-06-30 06:21:46 10985472 ----a-w- c:\windows\syswow64\ieframe.dll
2010-06-30 06:21:44 381440 ----a-w- c:\windows\syswow64\iedkcs32.dll
2010-06-19 07:05:01 5507968 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-06-19 06:33:29 3955080 ----a-w- c:\windows\syswow64\ntkrnlpa.exe
2010-06-19 06:33:29 3899784 ----a-w- c:\windows\syswow64\ntoskrnl.exe
2010-06-15 22:28:58 2857 ----a-w- c:\windows\syswow64\atipblag.dat
2010-06-15 22:28:58 2857 ----a-w- c:\windows\system32\atipblag.dat
2010-06-08 08:46:41 612352 ----a-w- c:\windows\system32\vbscript.dll
2010-06-08 08:46:41 427520 ----a-w- c:\windows\syswow64\vbscript.dll
2010-06-08 08:45:31 139264 ----a-w- c:\windows\system32\cabview.dll
2010-06-08 08:45:31 132608 ----a-w- c:\windows\syswow64\cabview.dll
2010-06-08 08:45:22 220672 ----a-w- c:\windows\system32\wintrust.dll
2010-06-08 08:45:22 172032 ----a-w- c:\windows\syswow64\wintrust.dll
2010-06-08 08:45:12 613888 ----a-w- c:\windows\system32\psisdecd.dll
2010-06-08 08:45:12 465408 ----a-w- c:\windows\syswow64\psisdecd.dll
2010-06-08 08:44:40 7680 ----a-w- c:\windows\syswow64\instnm.exe
2010-06-08 08:44:40 5120 ----a-w- c:\windows\syswow64\wow32.dll
2010-06-08 08:44:40 25600 ----a-w- c:\windows\syswow64\setup16.exe
2010-06-08 08:44:40 243200 ----a-w- c:\windows\system32\wow64.dll
2010-06-08 08:44:40 2048 ----a-w- c:\windows\syswow64\user.exe
2010-06-08 08:44:40 14336 ----a-w- c:\windows\syswow64\ntvdm64.dll
2010-06-08 08:44:31 716800 ----a-w- c:\windows\syswow64\jscript.dll
2010-06-08 08:44:06 389632 ----a-w- c:\windows\system32\winlogon.exe
2010-06-08 08:44:06 2870272 ----a-w- c:\windows\explorer.exe
2010-06-08 08:44:06 2614272 ----a-w- c:\windows\syswow64\explorer.exe
2010-06-08 08:42:41 85504 ----a-w- c:\windows\syswow64\secproc_ssp_isv.dll
2010-06-08 08:41:14 311808 ----a-w- c:\windows\system32\msv1_0.dll
2010-06-08 08:41:14 257024 ----a-w- c:\windows\syswow64\msv1_0.dll
2010-06-08 08:41:05 46592 ----a-w- c:\windows\system32\msasn1.dll
2010-06-08 08:41:05 34816 ----a-w- c:\windows\syswow64\msasn1.dll
2010-06-08 08:40:34 1975296 ----a-w- c:\windows\system32\CertEnroll.dll
2010-06-08 08:40:34 1320960 ----a-w- c:\windows\syswow64\CertEnroll.dll
2010-06-08 08:40:34 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2010-06-08 08:40:34 12625408 ----a-w- c:\windows\syswow64\wmploc.DLL
2010-06-08 08:40:34 11406336 ----a-w- c:\windows\syswow64\wmp.dll
2010-06-08 08:26:42 520192 ----a-w- c:\windows\syswow64\ASUS_Notebook_G73.scr
2010-06-08 08:26:38 3058304 ----a-w- c:\windows\AsScrPro.exe
2010-06-08 08:22:14 419840 ----a-w- c:\windows\system32\wrap_oal.dll
2010-06-08 08:22:14 413696 ----a-w- c:\windows\syswow64\wrap_oal.dll
2010-06-08 08:22:14 133632 ----a-w- c:\windows\system32\OpenAL32.dll
2010-06-08 08:22:14 110592 ----a-w- c:\windows\syswow64\OpenAL32.dll
2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

============= FINISH: 17:54:17.07 ===============

Attached Files


Edited by Trencal, 16 August 2010 - 05:04 PM.


BC AdBot (Login to Remove)

 


#2 kahdah

kahdah

  • Security Colleague
  • 11,138 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:11:02 PM

Posted 24 August 2010 - 06:44 AM

Hello Trencal

Welcome to BleepingComputer smile.gif
==========================
I see no malware in your logs however I see these in the event viewer.
8/13/2010 12:40:56 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR21.
8/13/2010 12:05:15 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR20.
8/12/2010 2:55:11 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR4.
8/12/2010 11:31:49 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk2\DR3.

This may be the chipset drivers failing or the hard drive failing.
Have you tried any diagnostic's for the hard drive?
That would be the first step to rule it out.
Please do not pm for help, post it in the forums instead.

If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Posted Image

#3 Trencal

Trencal
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:11:02 PM

Posted 25 August 2010 - 04:32 PM

After some more fiddling around i fixed the initial problem, thx for the malware check.

That is most likely my external hd having some issues.

Thx again.

#4 kahdah

kahdah

  • Security Colleague
  • 11,138 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:11:02 PM

Posted 25 August 2010 - 06:24 PM

You are welcome smile.gif


Since this issue appears to be resolved ... this Topic has been closed.

If your the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Please do not pm for help, post it in the forums instead.

If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users