SystemLook 30.07.11 by jpshortstuff
Log created at 19:47 on 07/05/2013 by OLA
Administrator - Elevation successful

========== reg ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\PrefetchParameters]
"BootId"= 0x000000075b (1883)
"BaseTime"= 0x0016ae0758 (380503896)
"EnableSuperfetch"= 0x0000000003 (3)
"EnablePrefetcher"= 0x0000000003 (3)
"EnableBootTrace"= 0x0000000000 (0)


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Rdyboost]
"DisplayName"="ReadyBoost"
"ErrorControl"= 0x0000000003 (3)
"Group"="PnP Filter"
"ImagePath"="System32\drivers\rdyboost.sys"
"Start"= 0x0000000000 (0)
"Type"= 0x0000000001 (1)
"Description"="ReadyBoost"
"Tag"= 0x0000000002 (2)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Rdyboost\AttachState]
"p.~C~~"= 0x0000000000 (0)
"p.~G&~"= 0x0000000000 (0)
"p.~T<~"= 0x0000000000 (0)
"p.f~~~"= 0x0000000000 (0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Rdyboost\Parameters]
"ReadyBootVolumeUniqueId"=d2 4f b4 22 00 00 80 d2 02 00 00 00  (REG_BINARY)
"ReadyBootPlanAge"= 0x0000000000 (0)
"LastBootPlanUserTime"="‎Śr‎, ‎maj ‎01 ‎13, 10:08:56"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Rdyboost\Performance]
"Close"="CloseReadyBoostPerfData"
"Open"="OpenReadyBoostPerfData"
"Collect"="CollectReadyBoostPerfData"
"Library"="%systemroot%\system32\sysmain.dll"
"InstallType"= 0x0000000001 (1)
"PerfIniFile"="ReadyBoostPerfCounters.ini"
"First Counter"= 0x000000161c (5660)
"Last Counter"= 0x0000001630 (5680)
"First Help"= 0x000000161d (5661)
"Last Help"= 0x0000001631 (5681)
"Object List"="5660"
"1023"=d5 ff c9 08 b6 94 cc 01  (REG_QWORD)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Rdyboost\Enum]
"0"="Root\LEGACY_RDYBOOST\0000"
"Count"= 0x0000000005 (5)
"NextInstance"= 0x0000000005 (5)
"1"="STORAGE\Volume\{c79bfe34-9b57-11e0-bf81-806e6f6e6963}#0000000000007E00"
"2"="STORAGE\Volume\{c79bfe34-9b57-11e0-bf81-806e6f6e6963}#0000000002800000"
"3"="STORAGE\Volume\{c79bfe34-9b57-11e0-bf81-806e6f6e6963}#00000002D2800000"
"4"="STORAGE\Volume\{c79bfe34-9b57-11e0-bf81-806e6f6e6963}#0000003C98700000"


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Ecache\Parameters\ReadyBootStats]
(Unable to open key - key not found)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WMI\Autologger\ReadyBoot]
"MinimumBuffers"= 0x0000000020 (32)
"GUID"="{6b0dbc1a-f119-4318-b3f4-b1afe348b963}"
"Start"= 0x0000000001 (1)
"BufferSize"= 0x0000000100 (256)
"MaxFileSize"= 0x0000000014 (20)
"Status"= 0x0000000000 (0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WMI\Autologger\ReadyBoot\{2a274310-42d5-4019-b816-e4b8c7abe95c}]
"Enabled"= 0x0000000001 (1)
"EnableFlags"= 0x0000000020 (32)
"Status"= 0x0000000000 (0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WMI\Autologger\ReadyBoot\{a319d300-015c-48be-acdb-47746e154751}]
"Enabled"= 0x0000000001 (1)
"Status"= 0x0000000000 (0)


========== dir ==========

c:\windows\prefetch - Parameters: "/s"

---Files---
ACRORD32.EXE-56554EBE.pf	--a---- 55486 bytes	[09:25 06/05/2013]	[10:06 06/05/2013]
AgAppLaunch.db	--a---- 334168 bytes	[11:52 07/05/2013]	[11:52 07/05/2013]
AGCP.EXE-F854F4BA.pf	--a---- 55772 bytes	[11:52 06/05/2013]	[11:52 06/05/2013]
AgGlFaultHistory.db	--a---- 391191 bytes	[11:52 07/05/2013]	[17:24 07/05/2013]
AgGlFgAppHistory.db	--a---- 1768760 bytes	[11:52 07/05/2013]	[17:24 07/05/2013]
AgGlGlobalHistory.db	--a---- 4024396 bytes	[11:52 07/05/2013]	[17:24 07/05/2013]
AgGlUAD_P_S-1-5-21-174518211-2018185214-1358451916-1001.db	--a---- 259503 bytes	[13:34 07/05/2013]	[13:34 07/05/2013]
AgGlUAD_S-1-5-21-174518211-2018185214-1358451916-1001.db	--a---- 40747 bytes	[13:34 07/05/2013]	[13:34 07/05/2013]
AgRobust.db	--a---- 349216 bytes	[11:52 07/05/2013]	[17:24 07/05/2013]
ATBROKER.EXE-5CD29207.pf	--a---- 10336 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
ATIECLXX.EXE-77700B6F.pf	--a---- 20982 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
AUDIODG.EXE-AB22E9A6.pf	--a---- 35136 bytes	[19:56 31/10/2012]	[13:11 07/05/2013]
AVAST.SETUP-0144B743.pf	--a---- 561482 bytes	[14:56 02/09/2011]	[11:18 07/05/2013]
AVASTEMUPDATE.EXE-BE6307C0.pf	--a---- 18420 bytes	[11:36 06/05/2013]	[15:35 06/05/2013]
AVBUGREPORT.EXE-90230411.pf	--a---- 33132 bytes	[09:42 06/05/2013]	[11:54 07/05/2013]
BLUETOOTHHEADSETPROXY.EXE-3AEE9EAA.pf	--a---- 14270 bytes	[18:18 01/09/2011]	[16:19 07/05/2013]
BTSTACKSERVER.EXE-5321C573.pf	--a---- 150318 bytes	[11:45 02/12/2011]	[16:19 07/05/2013]
CCLEANER.EXE-DD6AC7E5.pf	--a---- 31974 bytes	[15:32 06/05/2013]	[15:32 06/05/2013]
CCLEANER64.EXE-4469D777.pf	--a---- 113886 bytes	[15:32 06/05/2013]	[15:32 06/05/2013]
CMD.EXE-0BD30981.pf	--a---- 12142 bytes	[11:21 07/05/2013]	[11:50 07/05/2013]
CONHOST.EXE-0C6456FB.pf	--a---- 21192 bytes	[15:22 23/08/2011]	[16:20 07/05/2013]
CSC.EXE-F8803EEA.pf	--a---- 43798 bytes	[15:29 23/08/2011]	[14:08 02/05/2013]
CSRSS.EXE-F3C368CB.pf	--a---- 22738 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
CVTRES.EXE-CB8485B0.pf	--a---- 17400 bytes	[15:29 23/08/2011]	[14:08 02/05/2013]
DEFRAG.EXE-3D9E8D72.pf	--a---- 19242 bytes	[08:48 06/05/2013]	[07:25 07/05/2013]
DLLHOST.EXE-4B6CB38A.pf	--a---- 115590 bytes	[14:16 16/04/2013]	[17:01 07/05/2013]
DLLHOST.EXE-6389524F.pf	--a---- 20796 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
DLLHOST.EXE-63B92852.pf	--a---- 47844 bytes	[09:25 06/05/2013]	[12:04 07/05/2013]
DLLHOST.EXE-94657348.pf	--a---- 19946 bytes	[16:06 06/05/2013]	[20:08 06/05/2013]
DLLHOST.EXE-D49D3641.pf	--a---- 27190 bytes	[08:52 24/12/2011]	[17:29 07/05/2013]
EACORESERVER.EXE-5F73BAF1.pf	--a---- 58178 bytes	[16:46 07/05/2013]	[16:46 07/05/2013]
FIREFOX.EXE-359C61A4.pf	--a---- 262480 bytes	[14:51 16/04/2013]	[17:46 07/05/2013]
FLASHPLAYERPLUGIN_11_6_602_18-225A603A.pf	--a---- 65070 bytes	[06:10 21/03/2013]	[07:29 03/05/2013]
FLASHPLAYERPLUGIN_11_7_700_16-F4543D7D.pf	--a---- 82544 bytes	[09:14 06/05/2013]	[17:42 07/05/2013]
FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf	--a---- 30728 bytes	[05:48 03/04/2012]	[20:04 03/05/2013]
I4JDEL0.EXE-D6218C66.pf	--a---- 15268 bytes	[18:37 06/05/2013]	[16:44 07/05/2013]
JAVAW.EXE-6340EE82.pf	--a---- 22426 bytes	[19:44 06/05/2013]	[19:44 06/05/2013]
JAVAW.EXE-CB358306.pf	--a---- 257026 bytes	[14:16 16/04/2013]	[16:44 07/05/2013]
KEYTOOL.EXE-D65BCDD8.pf	--a---- 158752 bytes	[09:42 06/05/2013]	[11:41 07/05/2013]
LOADER.EXE-281D8579.pf	--a---- 39222 bytes	[14:16 16/04/2013]	[16:51 07/05/2013]
LOGONUI.EXE-F639BD7E.pf	--a---- 136294 bytes	[22:28 16/04/2013]	[11:48 06/05/2013]
MINECRAFT.EXE-9CDDFD20.pf	--a---- 81496 bytes	[18:37 06/05/2013]	[16:44 07/05/2013]
MPNOTIFY.EXE-B290F693.pf	--a---- 63098 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
MSCONFIG.EXE-690F60C3.pf	--a---- 85864 bytes	[15:31 06/05/2013]	[15:35 06/05/2013]
MSCORSVW.EXE-16B291C4.pf	--a---- 36658 bytes	[06:57 01/12/2011]	[16:16 07/05/2013]
MSCORSVW.EXE-8CE1A322.pf	--a---- 24710 bytes	[06:57 01/12/2011]	[16:16 07/05/2013]
MSPAINT.EXE-6406C4A1.pf	--a---- 50976 bytes	[18:34 06/05/2013]	[19:41 06/05/2013]
NOTEPAD.EXE-C5670914.pf	--a---- 24704 bytes	[12:03 07/05/2013]	[12:03 07/05/2013]
NTOSBOOT-B00DFAAD.pf	--a---- 1647248 bytes	[11:54 07/05/2013]	[11:54 07/05/2013]
OIS.EXE-3F225545.pf	--a---- 67596 bytes	[11:57 07/05/2013]	[11:57 07/05/2013]
OIS.EXE-5E12C6D6.pf	--a---- 59514 bytes	[09:33 06/05/2013]	[09:37 06/05/2013]
ORIGINLEGACYCLI.EXE-9675FBE4.pf	--a---- 54738 bytes	[16:46 07/05/2013]	[16:46 07/05/2013]
OSE.EXE-F9A69931.pf	--a---- 17318 bytes	[09:38 06/05/2013]	[09:38 06/05/2013]
PfSvPerfStats.bin	--a---- 584 bytes	[17:14 23/08/2011]	[13:34 07/05/2013]
PLUGIN-CONTAINER.EXE-6B605020.pf	--a---- 64598 bytes	[06:59 01/12/2011]	[17:42 07/05/2013]
PLUGIN-HANG-UI.EXE-2BCFC24E.pf	--a---- 63334 bytes	[09:42 06/05/2013]	[09:36 07/05/2013]
REG.EXE-A93A1343.pf	--a---- 12056 bytes	[11:21 07/05/2013]	[11:51 07/05/2013]
REGSVR32.EXE-B31EC963.pf	--a---- 34712 bytes	[18:17 01/09/2011]	[16:19 07/05/2013]
RUNDLL32.EXE-0D53616E.pf	--a---- 15714 bytes	[06:19 17/04/2013]	[16:19 07/05/2013]
RUNDLL32.EXE-6FD72002.pf	--a---- 198618 bytes	[07:28 07/05/2013]	[07:28 07/05/2013]
SAI.EXE-5587A5CA.pf	--a---- 68368 bytes	[19:50 06/05/2013]	[19:50 06/05/2013]
SEARCHFILTERHOST.EXE-44162447.pf	--a---- 19020 bytes	[06:10 17/04/2013]	[17:47 07/05/2013]
SEARCHPROTOCOLHOST.EXE-69C456C3.pf	--a---- 101086 bytes	[06:10 17/04/2013]	[17:47 07/05/2013]
SIMS3LAUNCHER.EXE-4E5DD8EC.pf	--a---- 19546 bytes	[16:46 07/05/2013]	[16:46 07/05/2013]
SIMS3LAUNCHERW.EXE-7F5C64BF.pf	--a---- 186832 bytes	[16:46 07/05/2013]	[16:46 07/05/2013]
SKYPE.EXE-A716A034.pf	--a---- 123778 bytes	[18:03 06/05/2013]	[16:32 07/05/2013]
SMSS.EXE-B5B810DB.pf	--a---- 2458 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
SNDVOL.EXE-425BC49B.pf	--a---- 30556 bytes	[11:20 07/05/2013]	[17:46 07/05/2013]
SPPSVC.EXE-96070FE0.pf	--a---- 22552 bytes	[15:24 23/08/2011]	[16:16 07/05/2013]
START-SAI.EXE-E0CA59A9.pf	--a---- 16954 bytes	[19:50 06/05/2013]	[19:50 06/05/2013]
SVCHOST.EXE-67EC2DA7.pf	--a---- 19670 bytes	[08:48 06/05/2013]	[07:25 07/05/2013]
SVCHOST.EXE-6A249820.pf	--a---- 21830 bytes	[06:10 17/04/2013]	[08:26 06/05/2013]
SYNTPENH.EXE-8A564A20.pf	--a---- 41798 bytes	[15:31 06/05/2013]	[15:31 06/05/2013]
SYNTPHELPER.EXE-C8D211B9.pf	--a---- 10922 bytes	[15:31 06/05/2013]	[15:31 06/05/2013]
SYSTEMLOOK_X64.EXE-D4474E8C.pf	--a---- 20962 bytes	[17:47 07/05/2013]	[17:47 07/05/2013]
TASKENG.EXE-35FA9C06.pf	--a---- 27586 bytes	[19:44 02/09/2011]	[17:29 07/05/2013]
TASKHOST.EXE-A0F5E092.pf	--a---- 60136 bytes	[15:23 23/08/2011]	[17:04 07/05/2013]
TS3EP05.EXE-B2E51862.pf	--a---- 48974 bytes	[16:46 07/05/2013]	[16:46 07/05/2013]
TS3W.EXE-05414334.pf	--a---- 199596 bytes	[16:46 07/05/2013]	[16:46 07/05/2013]
UNS.EXE-40FB88B6.pf	--a---- 23688 bytes	[15:24 23/08/2011]	[16:16 07/05/2013]
UTORRENT.EXE-1E1C3987.pf	--a---- 69936 bytes	[16:06 06/05/2013]	[20:08 06/05/2013]
VSSVC.EXE-6C8F0C66.pf	--a---- 46662 bytes	[06:10 17/04/2013]	[08:26 06/05/2013]
WERMGR.EXE-F439C551.pf	--a---- 13412 bytes	[15:38 23/08/2011]	[16:26 07/05/2013]
WINLOGON.EXE-DEDDC9B6.pf	--a---- 34926 bytes	[11:48 06/05/2013]	[11:48 06/05/2013]
WINRAR.EXE-BA8CDB31.pf	--a---- 84378 bytes	[18:15 06/05/2013]	[13:11 07/05/2013]
WLRMDR.EXE-A7C36FDD.pf	--a---- 25834 bytes	[11:26 07/05/2013]	[11:52 07/05/2013]
WMIADAP.EXE-BB21CD77.pf	--a---- 20018 bytes	[15:22 23/08/2011]	[16:17 07/05/2013]
WMIPRVSE.EXE-E8B8DD29.pf	--a---- 108728 bytes	[15:25 23/08/2011]	[16:46 07/05/2013]
WMPLAYER.EXE-EBBA463B.pf	--a---- 197482 bytes	[16:07 06/05/2013]	[13:11 07/05/2013]
WMPNSCFG.EXE-18FC9E64.pf	--a---- 9070 bytes	[21:52 11/04/2013]	[11:17 07/05/2013]
WSQMCONS.EXE-4048402C.pf	--a---- 1792 bytes	[19:00 06/05/2013]	[19:00 06/05/2013]
XBOOTMGR.EXE-516DF55B.pf	--a---- 410602 bytes	[11:26 07/05/2013]	[11:56 07/05/2013]

c:\windows\prefetch\ReadyBoot	d------	[16:11 20/06/2011]

-= EOF =-