I am not able to do Windows Updates, I am not able to do a Repair Install, I am not able to do a system restore, I am not even able to click on certain files without it giving me the "Windows cannot acces the specified device, path, or file. You may not have the appropriate permissions to access the item. But I am the Administrator (have been since day one and no other accounts on my computer). Nothing seems to work for me. I have run practically every scan/anti-virus/malware/rootkit program out there. They all come back with nothing. But then I read somewhere that viruses/malware can hide themselves from detection and OTL would seek them out. I downloaded it and did a scan. I am conviced I have something lurking on my computer. If anyone here knows how to interpret/analyze a OTL scan and tell me if there is something that needs fixed, can you please help me...this is my last resort.
EDIT: I did not know know exactly which scan setting(s) to select, so I just left the default options clicked....if anyone needs me to change the options and re-run the scan, please let me know.
This is from my OTL.txt file:
EDIT: I did not know know exactly which scan setting(s) to select, so I just left the default options clicked....if anyone needs me to change the options and re-run the scan, please let me know.
This is from my OTL.txt file:
Code:
OTL logfile created on: 8/14/2011 8:22:41 PM - Run 1
OTL by OldTimer - Version 3.2.26.3 Folder = C:\Users\Tre\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16982)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.99 Gb Total Physical Memory | 1.60 Gb Available Physical Memory | 53.68% Memory free
6.18 Gb Paging File | 4.61 Gb Available in Paging File | 74.60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.54 Gb Total Space | 163.06 Gb Free Space | 35.80% Space Free | Partition Type: NTFS
Drive D: | 10.22 Gb Total Space | 4.41 Gb Free Space | 43.18% Space Free | Partition Type: NTFS
Drive J: | 1863.01 Gb Total Space | 1187.82 Gb Free Space | 63.76% Space Free | Partition Type: NTFS
Computer Name: ELIMINATOR-II | User Name: Tre | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
[COLOR=#e56717]========== Processes (SafeList) ==========[/COLOR]
PRC - [2011/08/14 20:22:16 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Tre\Desktop\OTL.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/21 06:01:00 | 000,839,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2011/05/21 06:01:00 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/02/01 05:54:46 | 000,185,640 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\VERIZONDM\bin\tgsrvc.exe
PRC - [2011/02/01 05:54:42 | 000,206,120 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\VERIZONDM\bin\sprtsvc.exe
PRC - [2010/11/09 16:08:58 | 000,146,000 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
PRC - [2010/10/28 19:32:48 | 001,352,272 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
PRC - [2010/09/18 10:43:44 | 000,066,864 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2010/03/17 16:55:42 | 001,565,696 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Verizon\McciTrayApp.exe
PRC - [2008/07/30 15:23:26 | 000,161,064 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
PRC - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
PRC - [2007/04/06 17:10:56 | 000,223,704 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
PRC - [2007/04/06 17:10:22 | 000,272,856 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\QualityManager.exe
PRC - [2007/04/06 17:10:08 | 000,449,496 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
PRC - [2007/04/06 17:08:58 | 000,158,168 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
PRC - [2007/04/06 17:08:14 | 000,059,352 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\issm.exe
PRC - [2007/04/06 17:07:46 | 000,313,816 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
PRC - [2007/04/06 17:06:48 | 000,256,472 | ---- | M] () -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
PRC - [2007/03/21 16:00:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007/03/21 16:00:00 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007/02/28 22:57:08 | 000,090,112 | ---- | M] (SigmaTel, Inc.) -- C:\Program Files\SigmaTel\C-Major Audio\WDM\stacsv.exe
PRC - [2007/02/28 22:56:18 | 000,303,104 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\sttray.exe
PRC - [2007/02/12 13:46:34 | 000,208,896 | ---- | M] () -- C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
PRC - [2006/10/05 17:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2006/08/25 23:47:41 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2002/05/06 20:12:44 | 000,065,536 | ---- | M] (GTW) -- C:\Windows\GWMDMMSG.exe
PRC - [2002/04/18 19:32:36 | 000,073,728 | ---- | M] (Intel Corporation) -- C:\Windows\System32\PROMon.exe
PRC - [2001/01/03 15:50:56 | 000,066,048 | ---- | M] (Silitek Corporation) -- C:\Windows\System32\SK9910DM.EXE
[COLOR=#e56717]========== Modules (SafeList) ==========[/COLOR]
MOD - [2011/08/14 20:22:16 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Tre\Desktop\OTL.exe
MOD - [2011/08/01 15:43:53 | 000,159,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_51ca66a2bbe76806\ATL90.dll
MOD - [2011/07/22 23:04:25 | 006,378,144 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\Flash10t.ocx
MOD - [2011/07/12 11:20:50 | 000,121,704 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mdnsNSP.dll
MOD - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
MOD - [2011/06/15 15:16:42 | 000,161,024 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\eppmanifest.dll
MOD - [2011/06/04 08:27:24 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.1_none_da4695fc507e16e1\MFC90ENU.DLL
MOD - [2011/06/04 08:27:23 | 003,783,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.1_none_dcc7eae99ad0d9cf\mfc90u.dll
MOD - [2011/05/26 13:41:42 | 000,124,192 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
MOD - [2011/05/26 13:41:40 | 000,042,784 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
MOD - [2011/05/26 13:41:38 | 014,021,920 | ---- | M] (IBM Corporation and others) -- C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll
MOD - [2011/05/26 13:41:38 | 001,041,696 | ---- | M] (IBM Corporation and others) -- C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll
MOD - [2011/05/26 13:41:38 | 000,922,912 | ---- | M] (IBM Corporation and others) -- C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll
MOD - [2011/05/26 13:41:30 | 000,828,704 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
MOD - [2011/05/26 13:41:24 | 000,628,000 | ---- | M] (Apple, Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
MOD - [2011/05/21 06:01:00 | 011,992,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
MOD - [2011/05/21 06:01:00 | 002,335,848 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
MOD - [2011/05/21 06:01:00 | 001,752,680 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvUpdate\NvUpdt.dll
MOD - [2011/05/21 06:01:00 | 001,619,048 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvui.dll
MOD - [2011/05/21 06:01:00 | 000,938,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvUpdate\NvUpdtr.dll
MOD - [2011/05/21 06:01:00 | 000,543,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll
MOD - [2011/05/21 06:01:00 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
MOD - [2011/05/19 17:26:36 | 000,196,416 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\sqmapi.dll
MOD - [2011/04/27 15:37:26 | 000,538,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MpClient.dll
MOD - [2011/04/27 15:37:26 | 000,067,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MpOAv.dll
MOD - [2010/11/29 19:19:36 | 000,136,496 | ---- | M] (Apple Inc.) -- C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx
MOD - [2010/11/17 14:16:14 | 000,075,040 | ---- | M] (Apple, Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
MOD - [2010/11/09 16:09:20 | 000,282,704 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALUSB.dll
MOD - [2010/11/09 16:09:08 | 000,285,776 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMOU.dll
MOD - [2010/11/09 16:09:08 | 000,268,368 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMW.dll
MOD - [2010/11/09 16:08:58 | 000,146,000 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
MOD - [2010/11/09 16:08:46 | 000,708,688 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALHPP.dll
MOD - [2010/11/09 16:08:46 | 000,264,272 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALITCH.dll
MOD - [2010/11/09 16:08:34 | 000,485,456 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALAPI.dll
MOD - [2010/11/09 16:08:34 | 000,329,808 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALHID.dll
MOD - [2010/10/28 19:33:56 | 000,205,904 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\Macros\MacroMedia.dll
MOD - [2010/10/28 19:33:44 | 000,171,088 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\Macros\MacroEmail.dll
MOD - [2010/10/28 19:33:34 | 000,868,432 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
MOD - [2010/10/28 19:33:22 | 000,133,200 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\Macros\MacroAppSwitch.dll
MOD - [2010/10/28 19:33:10 | 000,030,288 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\WebBrowserSupport.dll
MOD - [2010/10/28 19:33:00 | 000,029,264 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPointCOM.dll
MOD - [2010/10/28 19:32:48 | 001,352,272 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
MOD - [2010/10/28 19:31:52 | 000,106,064 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\LCabHandler.dll
MOD - [2010/10/28 19:31:28 | 000,062,544 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\KGame.dll
MOD - [2010/10/28 19:31:28 | 000,037,968 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\khalwrapper.dll
MOD - [2010/10/28 19:31:16 | 000,069,200 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\KemXML.dll
MOD - [2010/10/28 19:31:06 | 000,119,888 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\KemUtil.dll
MOD - [2010/10/28 19:31:06 | 000,104,016 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\KemWnd.dll
MOD - [2010/10/28 19:30:54 | 000,133,712 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\kemutb.dll
MOD - [2010/10/28 19:30:42 | 000,023,120 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\KemMon.dll
MOD - [2010/10/28 06:13:22 | 000,133,200 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.dll
MOD - [2010/09/18 10:43:44 | 000,066,864 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
MOD - [2010/09/18 10:43:44 | 000,028,711 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWfiles-8876480.dll
MOD - [2010/09/18 10:43:36 | 002,293,804 | ---- | M] (BackWeb Technologies Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\backweb.dll
MOD - [2010/09/18 10:43:35 | 000,225,335 | ---- | M] (BackWeb Technologies Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\bwsec.dll
MOD - [2010/09/18 10:43:35 | 000,159,781 | ---- | M] (BackWeb Technologies Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\bwfiles.dll
MOD - [2010/09/18 10:43:33 | 000,172,032 | ---- | M] (BackWeb Technologies Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\EN\ClientRc.dll
MOD - [2010/09/18 10:43:33 | 000,061,496 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.50-8876480SL\Program\clntutil.dll
MOD - [2010/09/18 10:43:26 | 000,148,744 | ---- | M] (Logitech) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\SyncExt.dll
MOD - [2010/03/17 16:55:42 | 001,565,696 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Verizon\McciTrayApp.exe
MOD - [2010/03/17 16:54:10 | 000,593,920 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Common Files\Motive\McciContextDetectorWin32_DSR.dll
MOD - [2010/03/17 16:54:02 | 000,525,824 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Common Files\Motive\McciContextX.dll
MOD - [2010/03/17 16:53:28 | 000,198,656 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Common Files\Motive\McciContextHook_DSR.dll
MOD - [2010/03/17 16:53:22 | 000,580,096 | ---- | M] (Alcatel-Lucent) -- C:\Program Files\Common Files\Motive\McciContextDetectorEmail_DSR.dll
MOD - [2010/03/01 19:47:05 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d08d7da0442a985d\msvcr80.dll
MOD - [2010/03/01 19:47:05 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d08d7da0442a985d\msvcp80.dll
MOD - [2009/12/21 18:27:50 | 000,061,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MOD - [2009/12/18 08:51:46 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
MOD - [2009/12/18 08:48:24 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
MOD - [2009/12/18 08:48:18 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\AppPatch\iebrshim.dll
MOD - [2009/12/18 08:47:39 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
MOD - [2009/12/18 08:47:39 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
MOD - [2009/11/03 16:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009/11/03 16:51:34 | 000,406,816 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
MOD - [2009/11/03 16:51:34 | 000,053,024 | ---- | M] (Open Source Software community project) -- C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
MOD - [2009/10/23 13:54:58 | 000,713,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
MOD - [2009/10/19 10:37:11 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
MOD - [2009/08/06 21:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
MOD - [2009/07/11 15:32:57 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2009/02/16 19:30:47 | 000,655,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.1_none_e163563597edeada\msvcr90.dll
MOD - [2009/02/16 19:30:47 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.1_none_e163563597edeada\msvcp90.dll
MOD - [2009/01/10 11:02:04 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2009/01/10 11:02:04 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2009/01/10 10:54:10 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
MOD - [2008/11/27 00:35:51 | 001,744,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16782_none_9ea1072ec96e0be7\GdiPlus.dll
MOD - [2008/10/25 06:18:56 | 000,061,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 2007\Office12\MSOHEVI.DLL
MOD - [2008/07/11 20:09:11 | 002,644,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
MOD - [2008/07/11 20:08:43 | 004,874,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
MOD - [2008/07/11 20:08:40 | 000,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
MOD - [2007/12/23 04:14:57 | 000,564,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
MOD - [2007/12/23 04:10:21 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2007/12/23 04:10:20 | 001,984,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
MOD - [2007/05/31 09:20:56 | 000,058,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdsyncman.dll
MOD - [2007/05/31 09:20:28 | 000,024,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wcescommproxy.dll
MOD - [2007/04/06 17:08:08 | 000,176,600 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\IntelDH\bin\IntelDH.dll
MOD - [2007/03/21 16:00:00 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
MOD - [2007/03/21 15:55:10 | 000,069,632 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaamon_ENU.dll
MOD - [2007/03/21 15:40:28 | 000,258,048 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll
MOD - [2007/02/28 22:56:18 | 000,303,104 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\sttray.exe
MOD - [2007/02/28 22:56:12 | 000,243,712 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\System32\stapi32.dll
MOD - [2007/02/28 22:56:04 | 001,601,536 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\System32\stlang.dll
MOD - [2006/11/02 08:36:19 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
MOD - [2006/11/02 08:36:03 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
MOD - [2006/11/02 08:35:57 | 000,208,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
MOD - [2006/11/02 08:35:52 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpps.dll
MOD - [2006/11/02 08:35:34 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
MOD - [2006/11/02 08:35:09 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2006/11/02 08:34:50 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
MOD - [2006/11/02 08:34:48 | 002,205,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2006/11/02 08:34:47 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
MOD - [2006/11/02 08:34:46 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2006/11/02 08:34:45 | 001,499,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
MOD - [2006/11/02 08:34:33 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2006/11/02 05:46:14 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2006/11/02 05:46:14 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
MOD - [2006/11/02 05:46:14 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
MOD - [2006/11/02 05:46:13 | 000,869,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winbrand.dll
MOD - [2006/11/02 05:46:13 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2006/11/02 05:46:13 | 000,244,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2006/11/02 05:46:13 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2006/11/02 05:46:13 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmpapi.dll
MOD - [2006/11/02 05:46:13 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
MOD - [2006/11/02 05:46:13 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSChannel.dll
MOD - [2006/11/02 05:46:13 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
MOD - [2006/11/02 05:46:12 | 001,822,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2006/11/02 05:46:12 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
MOD - [2006/11/02 05:46:12 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pautoenr.dll
MOD - [2006/11/02 05:46:12 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\osbaseln.dll
MOD - [2006/11/02 05:46:12 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2006/11/02 05:46:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2006/11/02 05:46:11 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
MOD - [2006/11/02 05:46:09 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
MOD - [2006/11/02 05:46:07 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
MOD - [2006/11/02 05:46:06 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2006/11/02 05:46:06 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2006/11/02 05:46:05 | 002,014,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
MOD - [2006/11/02 05:46:05 | 001,162,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
MOD - [2006/11/02 05:46:05 | 001,139,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
MOD - [2006/11/02 05:46:05 | 000,543,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2006/11/02 05:46:05 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
MOD - [2006/11/02 05:46:05 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
MOD - [2006/11/02 05:46:05 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
MOD - [2006/11/02 05:46:05 | 000,146,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2006/11/02 05:46:05 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
MOD - [2006/11/02 05:46:05 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetmib1.dll
MOD - [2006/11/02 05:46:05 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
MOD - [2006/11/02 05:46:05 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2006/11/02 05:46:04 | 000,445,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
MOD - [2006/11/02 05:46:04 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
MOD - [2006/11/02 05:46:04 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxva2.dll
MOD - [2006/11/02 05:46:04 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
MOD - [2006/11/02 05:46:04 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2006/11/02 05:46:03 | 001,788,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
MOD - [2006/11/02 05:46:03 | 000,528,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll
MOD - [2006/11/02 05:46:03 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
MOD - [2006/11/02 05:46:03 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispex.dll
MOD - [2006/11/02 05:46:03 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddrawex.dll
MOD - [2006/11/02 05:46:03 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\corpol.dll
MOD - [2006/11/02 05:46:03 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
MOD - [2006/11/02 05:46:02 | 001,105,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
MOD - [2006/11/02 05:46:02 | 000,398,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
MOD - [2006/11/02 05:46:02 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
MOD - [2006/11/02 05:46:02 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\AppPatch\AcRedir.dll
MOD - [2006/11/02 05:46:02 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2006/11/02 05:46:02 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2006/11/02 05:44:42 | 000,989,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2006/11/02 05:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
MOD - [2006/11/02 05:38:56 | 000,537,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\comctl32.dll
MOD - [2006/08/25 20:19:24 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
MOD - [2006/08/25 20:15:04 | 000,090,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpOAV.dll
MOD - [2006/08/25 20:02:55 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
MOD - [2002/05/06 20:12:44 | 000,065,536 | ---- | M] (GTW) -- C:\Windows\GWMDMMSG.exe
MOD - [2002/05/03 13:36:36 | 000,147,456 | ---- | M] (Intel Corporation) -- C:\Windows\System32\NMSAPI.DLL
MOD - [2002/04/18 19:32:36 | 000,073,728 | ---- | M] (Intel Corporation) -- C:\Windows\System32\PROMon.exe
MOD - [2001/01/03 15:50:56 | 000,066,048 | ---- | M] (Silitek Corporation) -- C:\Windows\System32\SK9910DM.EXE
MOD - [2000/12/19 16:38:06 | 000,037,888 | ---- | M] (Silitek Corp.) -- C:\Windows\System32\SKOSD.DLL
MOD - [2000/11/13 16:44:50 | 000,112,640 | ---- | M] (Silitek Corp.) -- C:\Windows\System32\SKUTIL.DLL
[COLOR=#e56717]========== Win32 Services (SafeList) ==========[/COLOR]
SRV - File not found [On_Demand | Stopped] -- -- (RYQJOH)
SRV - File not found [On_Demand | Stopped] -- -- (PBPPEIJ)
SRV - File not found [On_Demand | Stopped] -- -- (KFUXI)
SRV - File not found [On_Demand | Stopped] -- -- (CpPwdSvc)
SRV - File not found [Disabled | Stopped] -- -- (0170181226404771mcinstcleanup) McAfee Application Installer Cleanup (0170181226404771)
SRV - [2011/06/16 13:13:20 | 000,151,552 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe -- (IHA_MessageCenter)
SRV - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/02/01 05:54:46 | 000,185,640 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\VERIZONDM\bin\tgsrvc.exe -- (tgsrvc_verizondm) SupportSoft Repair Service (verizondm)
SRV - [2011/02/01 05:54:42 | 000,206,120 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\VERIZONDM\bin\sprtsvc.exe -- (sprtsvc_verizondm) SupportSoft Sprocket Service (verizondm)
SRV - [2010/10/28 06:13:30 | 000,293,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2008/10/21 14:36:36 | 000,801,272 | ---- | M] (CA) [Disabled | Stopped] -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe -- (UmxCfg)
SRV - [2008/09/10 12:52:46 | 001,141,240 | ---- | M] (CA) [Disabled | Stopped] -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe -- (UmxAgent)
SRV - [2008/09/02 14:53:28 | 000,289,272 | ---- | M] (CA) [Disabled | Stopped] -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe -- (UmxPol)
SRV - [2008/07/30 15:23:26 | 000,161,064 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe -- (sprtsvc_ddoctorv2) SupportSoft Sprocket Service (ddoctorv2)
SRV - [2007/05/31 09:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 09:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007/04/06 17:10:56 | 000,223,704 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\IntelDH\CCU\AlertService.exe -- (AlertService) Intel(R)
SRV - [2007/04/06 17:10:22 | 000,272,856 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe -- (QualityManager) Intel(R)
SRV - [2007/04/06 17:10:08 | 000,449,496 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe -- (Remote UI Service) Intel(R)
SRV - [2007/04/06 17:08:58 | 000,158,168 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe -- (MCLServiceATL) Intel(R)
SRV - [2007/04/06 17:08:24 | 000,039,896 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe -- (DHTRACE) Intel(R)
SRV - [2007/04/06 17:08:14 | 000,059,352 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe -- (ISSM) Intel(R)
SRV - [2007/04/06 17:07:46 | 000,313,816 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe -- (NMSCore) Intel(R)
SRV - [2007/04/06 17:06:48 | 000,256,472 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe -- (M1 Server) Intel(R) Viiv(TM)
SRV - [2007/03/21 16:00:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2007/02/28 22:57:08 | 000,090,112 | ---- | M] (SigmaTel, Inc.) [Auto | Running] -- C:\Program Files\SigmaTel\C-Major Audio\WDM\stacsv.exe -- (STacSV)
SRV - [2007/02/12 13:46:34 | 000,208,896 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe -- (DQLWinService)
SRV - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)
SRV - [2006/10/05 17:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006/08/25 23:47:41 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2006/08/25 20:15:04 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2002/05/03 13:36:24 | 001,118,208 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Windows\System32\NMSSvc.Exe -- (NMSSvc) Intel(R)
[COLOR=#e56717]========== Driver Services (SafeList) ==========[/COLOR]
DRV - [2011/08/14 19:51:41 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DC91C160-7E3B-4338-8EA8-0FBF147C7D39}\MpKslc62bab37.sys -- (MpKslc62bab37)
DRV - [2011/05/21 06:01:00 | 010,589,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/08/24 13:31:02 | 000,037,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2010/08/24 13:30:52 | 000,038,864 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2010/08/24 13:30:40 | 000,040,912 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV - [2010/08/24 13:30:40 | 000,010,448 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidEqd.sys -- (LHidEqd)
DRV - [2010/03/17 16:53:38 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2010/03/17 16:53:22 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2009/12/30 11:21:18 | 000,027,192 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/08/21 16:24:03 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/08/13 15:07:12 | 001,163,328 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009/06/23 11:01:42 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2009/06/23 11:01:40 | 000,072,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2009/06/23 11:01:40 | 000,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2008/10/21 14:36:36 | 000,203,768 | ---- | M] (CA) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\KmxCfg.sys -- (KmxCfg)
DRV - [2008/08/06 13:42:14 | 000,072,184 | ---- | M] (CA) [File_System | System | Running] -- C:\Windows\System32\drivers\KmxAgent.sys -- (KmxAgent)
DRV - [2008/07/08 14:54:02 | 000,148,496 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\03982633.sys -- (is-RRFTOdrv)
DRV - [2007/12/04 17:10:30 | 000,016,640 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PalmUSBD.sys -- (PalmUSBD)
DRV - [2007/04/13 16:22:56 | 000,228,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
DRV - [2007/04/06 17:10:40 | 000,014,808 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys -- (TSHWMDTCP)
DRV - [2007/03/13 16:05:30 | 000,044,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI) Intel(R)
DRV - [2007/02/28 22:57:28 | 000,323,584 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2007/02/18 23:34:50 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\nmsunidr.sys -- (nmsunidr)
DRV - [2007/01/24 16:27:54 | 000,039,704 | ---- | M] (Belcarra Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rcblan.sys -- (RemoteControl-USBLAN)
DRV - [2006/11/29 18:24:57 | 000,033,588 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2006/11/02 04:55:05 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb)
DRV - [2006/11/02 03:30:56 | 002,589,184 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw2v32.sys -- (NETw2v32) Intel(R)
DRV - [2006/11/02 03:30:53 | 000,045,056 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006/09/16 17:23:06 | 000,047,360 | ---- | M] (DigitalPersona®, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbdpfp.sys -- (usbdpfp)
DRV - [2006/08/25 19:48:35 | 000,005,504 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntelDH.sys -- (IntelDH)
[COLOR=#e56717]========== Standard Registry (SafeList) ==========[/COLOR]
[COLOR=#e56717]========== Internet Explorer ==========[/COLOR]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [URL="http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=nofound&Br=GTW&Loc=ENG_US&Sys=DTP&M=GT5628"][U][COLOR=#0066cc]http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=nofound&Br=GTW&Loc=ENG_US&Sys=DTP&M=GT5628[/COLOR][/U][/URL]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = [URL="http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr7/*http://www.yahoo.com/ext/search/search.html"][U][COLOR=#0066cc]http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr7/*http://www.yahoo.com/ext/search/search.html[/COLOR][/U][/URL]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [URL="http://yahoo.com/"][U][COLOR=#800080]http://yahoo.com/[/COLOR][/U][/URL]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant_bak = [URL="http://www.dogpile.com/info.dogpl.toolbar/dog/forms/search.htm"][U][COLOR=#0066cc]http://www.dogpile.com/info.dogpl.toolbar/dog/forms/search.htm[/COLOR][/U][/URL]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:63221
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.1: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.1879: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1939: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.872: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll (Viewpoint Corporation)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Users\Tre\AppData\Local\Google\Update\1.2.183.7\npGoogleOneClick8.dll (Google Inc.)
O1 HOSTS File: ([2009/07/17 21:43:34 | 000,000,000 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [GWMDMMSG] C:\Windows\GWMDMMSG.exe (GTW)
O4 - HKLM..\Run: [Hot Key Kbd 9910 Daemon] C:\Windows\System32\SK9910DM.EXE (Silitek Corporation)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NMSSupport] C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe (Intel Corporation)
O4 - HKLM..\Run: [PROMon.exe] C:\Windows\System32\PROMon.exe (Intel Corporation)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Windows\sttray.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [Verizon_McciTrayApp] C:\Program Files\Verizon\McciTrayApp.exe (Alcatel-Lucent)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKCU\..Trusted Domains: excite.com ([webmail] https in Trusted sites)
O16 - DPF: {00000055-0000-0010-8000-00AA00389B71} [URL="http://codecs.microsoft.com/codecs/i386/fhgax.CAB"][U][COLOR=#0066cc]http://codecs.microsoft.com/codecs/i386/fhgax.CAB[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: {00000161-0000-0010-8000-00AA00389B71} [URL="http://codecs.microsoft.com/codecs/i386/msaudio.cab"][U][COLOR=#0066cc]http://codecs.microsoft.com/codecs/i386/msaudio.cab[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} [URL="http://office.microsoft.com/templates/ieawsdc.cab"][U][COLOR=#0066cc]http://office.microsoft.com/templates/ieawsdc.cab[/COLOR][/U][/URL] (Microsoft Office Template and Media Control)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} [URL="http://pcpitstop.com/betapit/PCPitStop.CAB"][U][COLOR=#0066cc]http://pcpitstop.com/betapit/PCPitStop.CAB[/COLOR][/U][/URL] (PCPitstop Utility)
O16 - DPF: {3334504D-0000-0010-8000-00AA00389B71} [URL="http://codecs.microsoft.com/codecs/i386/mpeg4ax.cab"][U][COLOR=#0066cc]http://codecs.microsoft.com/codecs/i386/mpeg4ax.cab[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} [URL="http://codecs.microsoft.com/codecs/i386/wmv9dmo.cab"][U][COLOR=#0066cc]http://codecs.microsoft.com/codecs/i386/wmv9dmo.cab[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} [URL="http://photo2.walgreens.com/WalgreensActivia.cab"][U][COLOR=#0066cc]http://photo2.walgreens.com/WalgreensActivia.cab[/COLOR][/U][/URL] (Snapfish Activia)
O16 - DPF: {6F750203-1362-4815-A476-88533DE61D0C} [URL="http://targetphoto.kodakgallery.com/downloads/BUM/BUM_WIN_IE_2/axofupld.cab"][U][COLOR=#0066cc]http://targetphoto.kodakgallery.com/downloads/BUM/BUM_WIN_IE_2/axofupld.cab[/COLOR][/U][/URL] (Kodak Gallery Easy Upload Manager Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} [URL="http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab"][U][COLOR=#0066cc]http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab[/COLOR][/U][/URL] (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [URL="http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab"][U][COLOR=#0066cc]http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab[/COLOR][/U][/URL] (Java Plug-in 1.6.0_14)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} [URL="http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab"][U][COLOR=#0066cc]http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} [URL="http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37574.911412037"][U][COLOR=#0066cc]http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37574.911412037[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [URL="http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab"][U][COLOR=#0066cc]http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab[/COLOR][/U][/URL] (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [URL="http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab"][U][COLOR=#0066cc]http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab[/COLOR][/U][/URL] (Java Plug-in 1.6.0_14)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [URL="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"][U][COLOR=#0066cc]http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab[/COLOR][/U][/URL] (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java [URL="file:///C:/Windows/Java/classes/xmldso.cab"][U][COLOR=#0066cc]file://C:\Windows\Java\classes\xmldso.cab[/COLOR][/U][/URL] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.252.0.12
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\PFW: DllName - UmxWnp.Dll - C:\Windows\System32\UmxWNP.dll (CA)
O24 - Desktop WallPaper: C:\Users\Tre\Pictures\obama.jpg
O24 - Desktop BackupWallPaper: C:\Users\Tre\Pictures\obama.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {9EF34FF2-3396-4527-9D27-04C8C1C67806} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/04/30 20:01:00 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/03/15 05:51:19 | 000,000,000 | RH-D | M] - J:\autorun -- [ NTFS ]
O32 - AutoRun File - [2002/10/16 08:56:50 | 000,000,036 | RH-- | M] () - J:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{06c6fe94-ecbd-11dd-b1f9-00038a000015}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL K:\index.html
O33 - MountPoints2\{24dcf519-2aea-11dd-9275-00038a000015}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL L:\CAISS/CAInstallationMenu.html
O33 - MountPoints2\{3e2d2124-11b3-11de-9009-00038a000015}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL K:\index.html
O33 - MountPoints2\{d79d307d-0760-11de-bc1c-00038a000015}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL K:\index.html
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\SETUP.Exe
O33 - MountPoints2\E\Shell\Install\Command - "" = E:\SETUP.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[COLOR=#e56717]========== Files/Folders - Created Within 30 Days ==========[/COLOR]
[2011/08/14 20:22:05 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\Tre\Desktop\OTL.exe
[2011/08/14 19:32:31 | 000,000,000 | ---D | C] -- C:\Boot
[2011/08/14 15:41:05 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/08/14 11:23:13 | 000,000,000 | ---D | C] -- C:\$UPGRADE.~OS
[2011/08/12 18:43:34 | 000,000,000 | ---D | C] -- C:\Users\Tre\AppData\Local\VS Revo Group
[2011/08/12 18:43:30 | 000,027,192 | ---- | C] (VS Revo Group) -- C:\Windows\System32\drivers\revoflt.sys
[2011/08/12 18:43:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2011/08/12 18:43:26 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2011/08/12 12:45:25 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/08/12 12:44:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011/08/12 12:44:21 | 000,000,000 | ---D | C] -- C:\Users\Tre\AppData\Roaming\SUPERAntiSpyware.com
[2011/08/12 12:44:21 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011/08/06 11:50:15 | 000,000,000 | ---D | C] -- C:\Users\Tre\.frostwire5
[2011/08/01 21:33:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/08/01 21:31:37 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/08/01 21:31:16 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011/08/01 21:27:56 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/08/01 21:24:51 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/08/01 21:00:12 | 000,000,000 | ---D | C] -- C:\Program Files\Weskysoft
[2011/08/01 20:59:32 | 000,000,000 | ---D | C] -- C:\Users\Tre\AppData\Roaming\GetRightToGo
[2011/08/01 16:17:50 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2011/08/01 15:57:54 | 000,000,000 | ---D | C] -- C:\0d4a1039c53bdad06af87dacc236
[2011/08/01 15:49:45 | 000,000,000 | ---D | C] -- C:\Program Files\LSI SoftModem
[2011/08/01 02:15:35 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2009/07/24 16:29:26 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Tre\AppData\Roaming\pcouffin.sys
[2008/10/03 20:07:23 | 000,018,944 | ---- | C] ( ) -- C:\Windows\System32\Implode.dll
[2004/07/17 11:37:52 | 000,840,976 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WM9Codecs.exe
[2003/12/29 13:36:24 | 003,267,450 | ---- | C] (Soltek Micoelectronics) -- C:\Program Files\SetupChat786.exe
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[COLOR=#e56717]========== Files - Modified Within 30 Days ==========[/COLOR]
[2011/08/14 20:22:16 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Tre\Desktop\OTL.exe
[2011/08/14 19:51:42 | 000,003,200 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/14 19:51:42 | 000,003,200 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/14 19:51:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/14 18:03:13 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2011/08/14 15:56:37 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/08/14 15:42:13 | 000,000,414 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{DA6054C7-AF5D-4EAB-951D-0599B8B19463}.job
[2011/08/14 15:41:01 | 000,000,898 | ---- | M] () -- C:\Users\Tre\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/08/14 14:21:26 | 000,000,055 | ---- | M] () -- C:\$DRVLTR$
[2011/08/14 13:06:51 | 4294,967,104 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox.dat
[2011/08/14 13:06:51 | 052,056,800 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox.idx
[2011/08/14 13:06:29 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k7
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k7
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k6
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k5
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k4
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k3
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k2
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k1
[2011/08/14 13:06:29 | 000,000,028 | ---- | M] () -- C:\Windows\System32\drivers\kmxzone.u2k0
[2011/08/14 13:06:28 | 000,255,794 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k0
[2011/08/14 13:06:28 | 000,000,272 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k1
[2011/08/14 13:06:28 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k6
[2011/08/14 13:06:28 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k5
[2011/08/14 13:06:28 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k4
[2011/08/14 13:06:28 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k3
[2011/08/14 13:06:28 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\kmxcfg.u2k2
[2011/08/14 13:05:28 | 000,002,408 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011/08/14 13:05:28 | 000,001,887 | ---- | M] () -- C:\Windows\diagerr.xml
[2011/08/14 11:54:18 | 000,000,002 | RHS- | M] () -- C:\$drvmig$
[2011/08/14 09:28:46 | 000,115,712 | ---- | M] () -- C:\Users\Tre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/14 08:13:10 | 000,024,158 | ---- | M] () -- C:\Users\Tre\Desktop\Sound Events.reg
[2011/08/12 18:43:33 | 000,001,025 | ---- | M] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2011/08/12 18:26:40 | 000,000,862 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/08/12 15:57:39 | 000,000,961 | ---- | M] () -- C:\Users\Tre\Desktop\bootspeed.vbs
[2011/08/11 11:07:59 | 000,196,608 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl
[2011/08/11 08:34:42 | 000,000,342 | ---- | M] () -- C:\Windows\tasks\PerfectOptimzier_home.job
[2011/08/08 18:46:41 | 000,000,960 | ---- | M] () -- C:\Users\Tre\Desktop\New ReBoot-Time.vbs
[2011/08/06 11:47:49 | 000,000,708 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/06 11:19:56 | 000,139,659 | ---- | M] () -- C:\Users\Tre\Desktop\GEICO policyDocs.pdf
[2011/08/01 17:22:57 | 000,851,968 | ---- | M] () -- C:\Windows\SPInstall.etl
[2011/08/01 15:46:03 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/07/31 14:37:43 | 002,424,832 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf
[2011/07/31 14:37:42 | 000,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[COLOR=#e56717]========== Files Created - No Company Name ==========[/COLOR]
[2011/08/14 15:41:01 | 000,000,904 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011/08/14 15:41:01 | 000,000,898 | ---- | C] () -- C:\Users\Tre\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/08/14 13:05:15 | 000,000,055 | ---- | C] () -- C:\$DRVLTR$
[2011/08/14 11:54:18 | 000,000,002 | RHS- | C] () -- C:\$drvmig$
[2011/08/14 08:13:10 | 000,024,158 | ---- | C] () -- C:\Users\Tre\Desktop\Sound Events.reg
[2011/08/12 18:43:33 | 000,001,025 | ---- | C] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2011/08/12 15:57:38 | 000,000,961 | ---- | C] () -- C:\Users\Tre\Desktop\bootspeed.vbs
[2011/08/12 12:44:26 | 000,000,862 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011/08/11 22:30:07 | 000,255,794 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k0
[2011/08/11 22:30:07 | 000,000,272 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k1
[2011/08/11 22:30:07 | 000,000,064 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k7
[2011/08/11 22:30:07 | 000,000,064 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k6
[2011/08/11 22:30:07 | 000,000,064 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k5
[2011/08/11 22:30:07 | 000,000,064 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k4
[2011/08/11 22:30:07 | 000,000,064 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k3
[2011/08/11 22:30:07 | 000,000,064 | ---- | C] () -- C:\Windows\System32\drivers\kmxcfg.u2k2
[2011/08/08 18:46:40 | 000,000,960 | ---- | C] () -- C:\Users\Tre\Desktop\New ReBoot-Time.vbs
[2011/08/06 11:19:55 | 000,139,659 | ---- | C] () -- C:\Users\Tre\Desktop\GEICO policyDocs.pdf
[2011/08/01 21:00:22 | 000,000,342 | ---- | C] () -- C:\Windows\tasks\PerfectOptimzier_home.job
[2011/08/01 01:42:44 | 000,851,968 | ---- | C] () -- C:\Windows\SPInstall.etl
[2010/04/15 14:00:49 | 000,098,136 | ---- | C] () -- C:\Windows\gzip.exe
[2009/12/25 11:46:53 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/07/24 16:29:26 | 000,087,608 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\inst.exe
[2009/07/24 16:29:26 | 000,007,887 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\pcouffin.cat
[2009/07/24 16:29:26 | 000,001,144 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\pcouffin.inf
[2009/07/17 01:10:25 | 4294,967,104 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox.dat
[2009/07/14 20:19:31 | 000,000,035 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\SetValue.bat
[2009/07/14 20:19:30 | 000,000,691 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\GetValue.vbs
[2009/07/12 21:15:42 | 000,001,356 | ---- | C] () -- C:\Users\Tre\AppData\Local\d3d9caps.dat
[2009/03/20 01:05:10 | 000,000,256 | ---- | C] () -- C:\Windows\System32\pool.bin
[2009/03/20 00:25:01 | 000,038,435 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\Comma Separated Values (Windows).ADR
[2008/11/23 17:12:24 | 000,108,032 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2008/10/03 20:07:30 | 000,204,848 | ---- | C] () -- C:\Windows\System32\gswin32c.exe
[2008/10/03 20:07:23 | 000,748,160 | ---- | C] () -- C:\Windows\System32\Co2c40en.dll
[2008/10/03 20:07:23 | 000,054,272 | ---- | C] () -- C:\Windows\System32\P2irdao.dll
[2008/10/03 20:07:23 | 000,050,176 | ---- | C] () -- C:\Windows\System32\P2ctdao.dll
[2008/09/19 17:57:34 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/08/15 01:07:27 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2008/08/14 23:44:29 | 000,000,094 | ---- | C] () -- C:\Windows\family.ini
[2007/12/22 11:10:07 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat
[2007/12/22 01:00:50 | 000,115,712 | ---- | C] () -- C:\Users\Tre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/12/22 00:49:19 | 000,000,114 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\wklnhst.dat
[2007/10/06 17:10:22 | 000,000,000 | ---- | C] () -- C:\Windows\QuickInstall.INI
[2006/12/27 22:59:39 | 000,684,032 | ---- | C] () -- C:\Windows\System32\libeay32.dll
[2006/12/27 22:59:38 | 000,155,648 | ---- | C] () -- C:\Windows\System32\ssleay32.dll
[2006/11/22 17:16:18 | 000,003,612 | ---- | C] () -- C:\Windows\ReaderString.ini
[2006/11/21 13:50:06 | 000,000,037 | ---- | C] () -- C:\Windows\sunkist.ini
[2006/11/15 03:31:51 | 000,000,047 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2006/11/02 08:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 08:47:37 | 000,422,248 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:33:01 | 000,621,314 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 06:33:01 | 000,104,662 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 03:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 03:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2006/08/06 15:21:54 | 000,000,021 | ---- | C] () -- C:\Windows\CS_SETUP.ini
[2006/06/23 13:09:34 | 000,019,968 | R--- | C] () -- C:\Windows\System32\cpuinf32.dll
[2006/06/11 20:01:15 | 000,352,256 | ---- | C] () -- C:\Windows\System32\HotlineClient.exe
[2006/05/13 16:18:42 | 000,004,212 | -H-- | C] () -- C:\Windows\System32\zllictbl.dat
[2006/05/11 13:51:22 | 000,000,084 | ---- | C] () -- C:\Windows\encore_launcher.ini
[2006/05/11 12:38:27 | 000,000,000 | ---- | C] () -- C:\Windows\PestPatrol5.INI
[2006/05/10 17:33:18 | 000,684,032 | ---- | C] () -- C:\Windows\libeay32.dll
[2006/05/10 17:33:18 | 000,155,648 | ---- | C] () -- C:\Windows\ssleay32.dll
[2006/05/09 23:43:05 | 000,000,003 | ---- | C] () -- C:\Windows\unq32.dat
[2006/05/09 22:48:19 | 000,001,094 | ---- | C] () -- C:\Windows\System32\w00cc946.ini
[2006/05/09 22:45:51 | 000,015,355 | ---- | C] () -- C:\Windows\System32\winbrume.dat
[2006/05/09 22:43:46 | 001,492,285 | ---- | C] () -- C:\Users\Tre\AppData\Roaming\Install.dat
[2006/05/09 22:43:18 | 000,000,325 | ---- | C] () -- C:\Windows\System32\clsemixer.dll
[2005/06/29 01:22:53 | 000,000,006 | ---- | C] () -- C:\Windows\msoffice.ini
[2005/05/10 09:50:27 | 000,001,788 | ---- | C] () -- C:\Windows\System32\dcache.bin
[2005/05/04 11:53:41 | 000,022,016 | R--- | C] () -- C:\Windows\System32\docobj.dll
[2005/02/21 09:12:25 | 000,102,731 | R--- | C] () -- C:\Windows\System32\admparse.exe
[2004/12/14 14:47:14 | 000,000,177 | ---- | C] () -- C:\Windows\upst.ini
[2004/10/04 02:19:00 | 000,004,569 | ---- | C] () -- C:\Windows\System32\secupd.dat
[2004/09/20 03:01:41 | 000,000,016 | ---- | C] () -- C:\Windows\System32\cfg.dat
[2004/08/15 20:22:53 | 000,003,473 | ---- | C] () -- C:\Windows\jawa32vs.bin
[2004/07/27 22:35:10 | 000,000,060 | ---- | C] () -- C:\Windows\wininit.ini_
[2004/07/15 14:16:30 | 000,000,020 | ---- | C] () -- C:\Program Files\topmoxi
[2004/07/15 14:16:30 | 000,000,020 | ---- | C] () -- C:\Program Files\Gratisw
[2004/07/15 14:16:29 | 000,000,020 | ---- | C] () -- C:\Program Files\Riviera Gol4
[2004/07/15 14:16:29 | 000,000,020 | ---- | C] () -- C:\Program Files\Newton
[2004/07/15 14:16:29 | 000,000,020 | ---- | C] () -- C:\Program Files\Grokste
[2004/07/15 14:16:28 | 000,000,020 | ---- | C] () -- C:\Program Files\Twisted
[2004/07/15 14:16:28 | 000,000,020 | ---- | C] () -- C:\Users\Tre\AppData\Local\T4
[2004/07/15 14:16:28 | 000,000,020 | ---- | C] () -- C:\Program Files\I-Looku4
[2004/07/14 18:18:16 | 002,242,584 | ---- | C] () -- C:\Windows\FP1_03_0_485.EXE_
[2004/07/14 18:17:44 | 000,164,864 | ---- | C] () -- C:\Windows\System32\UNWISE.EXE
[2004/06/01 11:55:47 | 000,000,047 | ---- | C] () -- C:\Windows\upth.ini
[2004/06/01 11:55:47 | 000,000,029 | ---- | C] () -- C:\Windows\atid.ini
[2004/04/20 10:36:02 | 000,000,402 | ---- | C] () -- C:\Windows\System32\master.dll
[2004/01/22 12:00:28 | 000,012,635 | ---- | C] () -- C:\Windows\System32\DAntivirus.ini
[2003/12/22 22:08:38 | 000,000,030 | ---- | C] () -- C:\Windows\Morphexe.INI
[2003/12/22 20:59:06 | 000,000,708 | ---- | C] () -- C:\Program Files\webCache
[2003/09/09 13:33:22 | 000,000,026 | ---- | C] () -- C:\Windows\UP9ASP.INI
[2003/06/18 12:59:31 | 000,000,275 | ---- | C] () -- C:\Windows\PHOTOIMP.INI
[2003/04/16 09:11:02 | 000,006,550 | ---- | C] () -- C:\Windows\jautoexp.dat
[2003/02/03 04:28:41 | 000,000,000 | ---- | C] () -- C:\Windows\iPlayer.INI
[2002/10/05 13:17:54 | 000,343,040 | ---- | C] () -- C:\Windows\System32\lffpx7.dll
[2002/10/05 13:17:54 | 000,116,736 | ---- | C] () -- C:\Windows\System32\LFKODAK.DLL
[2002/09/16 11:33:55 | 000,000,120 | ---- | C] () -- C:\Windows\vgplayer.ini
[2002/08/26 01:11:08 | 000,032,256 | ---- | C] () -- C:\Windows\System32\Decln.dll
[2002/08/26 01:11:08 | 000,014,629 | ---- | C] () -- C:\Windows\System32\Declw.dll
[2002/08/24 03:03:41 | 000,126,976 | ---- | C] () -- C:\Windows\System32\unzdll.dll
[2002/08/24 01:27:43 | 000,051,279 | ---- | C] () -- C:\Windows\cdPlayer.ini
[2002/08/23 02:02:09 | 000,000,499 | ---- | C] () -- C:\Windows\eReg.dat
[2002/08/19 18:04:33 | 000,000,061 | ---- | C] () -- C:\Windows\smscfg.ini
[2002/08/19 17:53:48 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2002/08/19 17:50:22 | 000,007,406 | ---- | C] () -- C:\Windows\ICOADB32.DAT
[2002/08/19 17:50:22 | 000,000,052 | ---- | C] () -- C:\Windows\intuprof.ini
[2002/08/19 17:49:42 | 000,022,528 | ---- | C] () -- C:\Windows\Hpreg.exe
[2002/08/19 17:49:23 | 000,069,632 | ---- | C] () -- C:\Windows\System32\PROInst.dll_
[2002/08/19 17:49:23 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NMSInst.dll
[2002/08/19 17:46:45 | 000,000,258 | ---- | C] () -- C:\Windows\System32\UPDATE.INI
[2002/06/13 13:59:40 | 000,126,976 | ---- | C] () -- C:\Windows\System32\zip.exe
[2002/06/13 13:58:58 | 000,147,456 | ---- | C] () -- C:\Windows\System32\lttls13n.dll
[2002/06/13 13:58:44 | 000,708,608 | ---- | C] () -- C:\Windows\System32\ltcry13n.dll
[2002/03/14 14:00:26 | 000,038,567 | ---- | C] () -- C:\Windows\System32\pcpbios.exe
[2001/10/09 14:08:15 | 000,000,742 | ---- | C] () -- C:\Windows\orun32.ini
[2001/10/09 13:47:40 | 000,021,640 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2001/10/09 13:40:34 | 000,004,161 | ---- | C] () -- C:\Windows\ODBCINST.INI
[1998/08/16 07:00:00 | 000,004,096 | ---- | C] () -- C:\Windows\System32\sysres.dll
[1980/01/01 01:00:00 | 000,262,144 | ---- | C] () -- C:\Windows\System32\shpshftr.dll
[1980/01/01 01:00:00 | 000,046,258 | ---- | C] () -- C:\Windows\System32\mib.bin
[1980/01/01 01:00:00 | 000,028,672 | ---- | C] () -- C:\Windows\System32\igfxdgps.dll
[COLOR=#e56717]========== LOP Check ==========[/COLOR]
[2007/12/22 16:18:14 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\acccore
[2007/12/22 16:18:20 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Aim
[2007/12/22 16:18:20 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Aladdin Systems
[2008/12/26 05:29:50 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Auslogics
[2011/08/14 19:29:54 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Azureus
[2009/03/20 01:07:34 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Blackberry Desktop
[2011/08/14 19:30:34 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\CallingID
[2011/08/14 19:30:35 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\ComcastToolbar
[2011/08/14 19:30:35 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\FrostWire
[2011/08/14 19:30:35 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\GetRightToGo
[2008/08/15 00:42:28 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\HotSync
[2007/12/22 16:19:15 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\htdr
[2011/06/04 08:31:55 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Leadertech
[2011/08/14 19:30:35 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\LimeWire
[2011/08/14 19:30:45 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\MiniDm
[2007/12/22 16:19:22 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Musicmatch
[2011/08/14 19:30:45 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\MusicNet
[2007/12/22 16:19:24 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Nikon
[2009/03/20 01:05:08 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Research In Motion
[2007/12/22 01:14:13 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\SampleView
[2009/11/25 20:27:30 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Snapfish
[2011/08/14 19:30:46 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Spare Backup
[2007/12/22 12:20:37 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Spearit
[2011/08/14 19:30:47 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\TechWizard
[2011/08/14 19:30:47 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Template
[2009/07/18 10:50:57 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\URSoft
[2007/12/22 16:47:47 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Viewpoint
[2009/07/24 16:29:45 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\Vso
[2011/08/14 19:30:49 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\WholeSecurity
[2007/12/22 10:44:14 | 000,000,000 | ---D | M] -- C:\Users\Tre\AppData\Roaming\WildTangent
[2011/08/11 08:34:42 | 000,000,342 | ---- | M] () -- C:\Windows\Tasks\PerfectOptimzier_home.job
[2011/08/14 15:56:37 | 000,032,528 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/08/14 15:42:13 | 000,000,414 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{DA6054C7-AF5D-4EAB-951D-0599B8B19463}.job
[COLOR=#e56717]========== Purity Check ==========[/COLOR]
[COLOR=#e56717]========== Alternate Data Streams ==========[/COLOR]
@Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:B3D74A13
< End of report >
[B]This is from my Extras.txt file:[/B]
OTL Extras logfile created on: 8/14/2011 8:22:41 PM - Run 1
OTL by OldTimer - Version 3.2.26.3 Folder = C:\Users\Tre\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16982)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.99 Gb Total Physical Memory | 1.60 Gb Available Physical Memory | 53.68% Memory free
6.18 Gb Paging File | 4.61 Gb Available in Paging File | 74.60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.54 Gb Total Space | 163.06 Gb Free Space | 35.80% Space Free | Partition Type: NTFS
Drive D: | 10.22 Gb Total Space | 4.41 Gb Free Space | 43.18% Space Free | Partition Type: NTFS
Drive J: | 1863.01 Gb Total Space | 1187.82 Gb Free Space | 63.76% Space Free | Partition Type: NTFS
Computer Name: ELIMINATOR-II | User Name: Tre | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
[COLOR=#e56717]========== Extra Registry (SafeList) ==========[/COLOR]
[COLOR=#e56717]========== File Associations ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
[COLOR=#e56717]========== Shell Spawning ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office 2007\Office12\msohtmed.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Program Files\VLC Player\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VLC Player\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
[COLOR=#e56717]========== Security Center Settings ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AntiVirusDisableNotify" = 0x00000000
"AntiVirusOverride" = 1
"FirewallDisableNotify" = 0x00000000
"FirewallOverride" = 0
"UpdatesDisableNotify" = 0x00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\CA Personal Firewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[COLOR=#e56717]========== System Restore Settings ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[COLOR=#e56717]========== Firewall Settings ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[COLOR=#e56717]========== Authorized Applications List ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe" = C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7 -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe" = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe:*:Enabled:Yahoo! Music Jukebox
"C:\Program Files\IEPro\MiniDM.exe" = C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM -- (IE7Pro.com)
"C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe" = C:\Program Files\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7 -- ()
[COLOR=#e56717]========== Vista Active Open Ports Exception List ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{08A58A31-4320-4AED-8AC5-92566912B5F0}" = lport=445 | protocol=6 | dir=in | app=system |
"{09CCAC8E-5D44-4E3B-A3A6-BCA0868EAC36}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{160930D9-2859-49AF-9377-EAEB04FF561C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [U][COLOR=#0066cc][email protected],-28539[/COLOR][/U] |
"{1C6ABA6B-F79E-4526-A816-29A572C9696F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{22E35FA3-C696-4740-A25F-A46712A1E5C6}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2FFB6C8F-7B33-440D-B7CA-8E50E2139CCC}" = rport=139 | protocol=6 | dir=out | app=system |
"{3AF43F31-23A0-4E40-B764-6F491C00DD86}" = lport=138 | protocol=17 | dir=in | app=system |
"{3E1543DF-CD64-44F8-82E1-6C594B17ADCA}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{4647B845-5393-42FE-93F7-37D7A72341CC}" = lport=1900 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server upnp discovery |
"{521945C7-5FC7-445B-928B-66D8F360E0CC}" = rport=137 | protocol=17 | dir=out | app=system |
"{5D5CC1C1-F07B-4DA3-8EAA-9D273088EC4B}" = lport=10243 | protocol=6 | dir=in | app=system |
"{63B8144D-67C8-4079-B00A-CA2AF4464D16}" = rport=445 | protocol=6 | dir=out | app=system |
"{63E039AE-1796-456A-A5E1-7F8E7A460770}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6D56341D-284F-4A06-8355-2130259D00C0}" = rport=138 | protocol=17 | dir=out | app=system |
"{7D517E24-D925-4603-A3AF-2D55E38A46F2}" = lport=137 | protocol=17 | dir=in | app=system |
"{85402507-7276-4789-A29D-8AB1E6AFE1E4}" = lport=9442 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server discovery |
"{896A769F-1522-4AD6-8F8C-80FBF1FB395E}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{898D0A3C-B71E-42FF-A8B8-11E0F70BDEDC}" = rport=10243 | protocol=6 | dir=out | app=system |
"{937DE291-4B0C-410E-8055-6C8330F76852}" = lport=26675 | protocol=6 | dir=in | [U][COLOR=#0066cc]name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006[/COLOR][/U] |
"{A52517F8-F7D9-4CA0-9554-42F493282A61}" = lport=139 | protocol=6 | dir=in | app=system |
"{A78A0C60-A311-46F9-A705-53ECACDAAC8F}" = lport=50000 | protocol=17 | dir=in | name=iha_messagecenter |
"{AB76CA52-70FF-43EF-B9D4-995CA85A6D25}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B0B11323-6FCD-490B-886E-D688ADF14E0D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office 2007\office12\outlook.exe |
"{B8A23084-BE09-4CA4-9786-ED74F63CCF43}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{BB0C0601-882D-4BEC-AA41-214C88C6CE18}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{C3BFF8B7-0699-42EB-A116-F4BB88A66198}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D785F067-4633-4A34-8F23-20D083D726C8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E35D3D80-A93F-4DF2-B60A-34F2987DF0FD}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F07C228A-C31A-4DDB-B5DC-7512D4E1FA51}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
[COLOR=#e56717]========== Vista Active Application Exception List ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01930F5E-F2F1-4E69-B5B2-F00308C0E372}" = protocol=17 | dir=in | app=c:\program files\intel\inteldh\intel media server\shells\remote ui service.exe |
"{01C0B074-003B-4D2A-9449-DAFAB71C95DE}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{06B49956-CE29-44C7-8F3B-2B56016C171A}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{073C5CA5-FC20-4E38-A1A1-9184BFC3751C}" = protocol=17 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe |
"{0764B145-7E71-4065-BDC6-16A147143114}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{0CCF239C-BA2C-4A3F-A36C-66C4956D7B75}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{0DA9E9E4-0F34-4EBC-833A-FCFEF3BE07E8}" = protocol=6 | dir=in | app=c:\program files\azureus\azureus.exe |
"{0EDF6625-DEA3-424C-BEFB-AD538E843600}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{13E883AF-947E-419A-AD13-75CFA950A0CD}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{14BE407C-49AD-49E8-B146-917DE6465B5B}" = protocol=6 | dir=in | app=c:\program files\aol 9.1\waol.exe |
"{16014DA7-3496-4ABE-BD08-1C4CACB94E11}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{1618D89F-0F6B-4F24-A24F-9892E632252B}" = protocol=17 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{18545C40-E7D6-4720-816D-E8EBA9198F84}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19BE8720-843C-41B2-A9C8-AED7D25E3B83}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{19D691AB-E0B3-407F-B4C0-5F6FDB572121}" = protocol=17 | dir=in | app=c:\program files\aol 9.0a\waol.exe |
"{19EB266A-9BC5-4A17-BF31-5B79E3A121D9}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe |
"{23CAE724-C269-469F-A69C-1B3282BB808A}" = protocol=17 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{27BE713E-A318-4B9D-AD7D-DD4EB12FAFB8}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"{28BB0144-DBD3-4C88-B9EB-7517A7972F9F}" = protocol=17 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{2965AA54-D4E8-413B-8F8D-96F57D61E1D0}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe |
"{2D586EA0-6E25-439B-8B2A-84FEB374D44B}" = protocol=17 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{2FD254BF-9397-4DA3-B622-64DC3FC37D48}" = protocol=17 | dir=in | app=c:\program files\aol 9.1\waol.exe |
"{3083FA01-BFEC-4899-A805-7ADFBE464D52}" = protocol=17 | dir=in | app=c:\program files\aol 9.5\waol.exe |
"{32DEB62D-A1FB-4D38-B8B8-04671B69C81C}" = protocol=6 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{3436B92A-8ED0-46D7-8765-96CE78BE0938}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{37D00F82-0F0D-4CAA-8BD3-7F200A9501A0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{38F072D7-5B9F-418D-91F8-8E68BDAEAC3A}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe |
"{39E0E59D-04E5-4D32-A20E-FAEBFEE93C0F}" = protocol=17 | dir=in | app=c:\program files\common files\aol\1198336193\ee\aolsoftware.exe |
"{3BD62DF1-4ECE-4BC0-8023-01D2C1986FFD}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe |
"{411931FA-603C-4BE8-B9C8-6BD2768CA637}" = protocol=17 | dir=in | app=c:\program files\common files\aol\1198336193\ee\aolsoftware.exe |
"{450468BE-AB0D-4FF9-9B6A-245F794262DF}" = protocol=6 | dir=in | app=c:\program files\aol 9.5\waol.exe |
"{45EFDB90-E9DA-4ABB-9101-4097410C7A55}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{49E66812-60FE-4A4F-88B2-5C2EC994B572}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{4AAC14A0-CF0B-46B4-85BD-AB0E20033CAC}" = protocol=6 | dir=in | app=c:\program files\intel\inteldh\intel media server\shells\remote ui service.exe |
"{4DE375A2-0BCA-4C03-A96B-8A30B8A090D1}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{503488B7-39C8-4A4C-8705-2217F766478E}" = protocol=6 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe |
"{529EDC84-B647-4E4F-8B6D-A0F8E773678E}" = protocol=6 | dir=in | app=c:\program files\common files\aol\1198336193\ee\aolsoftware.exe |
"{565E87A6-F94A-4BC9-8FBA-4873D548B859}" = protocol=17 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe |
"{570D8541-B09D-4D40-BC1B-535A5C6DFC20}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{57DB4201-D168-40F8-8C42-60752DE27B4E}" = protocol=17 | dir=in | app=c:\program files\azureus\azureus.exe |
"{5E655937-0107-4303-A51E-A8F8AA6BEE2A}" = protocol=6 | dir=out | app=system |
"{62BB9EA3-2FDA-440A-AC21-C2F252409963}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{6352D20C-31EF-4593-8718-30A3ABB4F1B1}" = protocol=58 | dir=in | [U][COLOR=#0066cc][email protected],-28545[/COLOR][/U] |
"{64A34A9F-77DD-4398-8BF9-BCD4DD4DE526}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{657BFDA4-14E9-4F11-9FBF-064A95DC0F4D}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe |
"{6BDBE7D8-ADCE-4B12-B502-829610B47137}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{6BF1C703-22DD-4A41-A102-16F045AC03D9}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{77EC089C-ED9C-4F05-A5C2-EBE7AD77BDAC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A6F0350-356A-4B2D-929F-9CCE188E0CF3}" = protocol=58 | dir=in | [U][COLOR=#0066cc][email protected],-28545[/COLOR][/U] |
"{7CDD7835-612F-4A13-87D0-6F61C37F6768}" = protocol=6 | dir=in | app=c:\users\tre\appdata\local\temp\7zs6d54.tmp\symnrt.exe |
"{7FD7F9B5-2E4E-48E0-9680-43739B52E419}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{88C838C2-EF8B-48FB-9489-E080231BFD21}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8C5AE6D5-F693-4E1A-875E-88D3725A6626}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{8CB37286-0643-443D-90D8-F25F0EB1401A}" = protocol=17 | dir=in | app=c:\users\tre\appdata\local\temp\7zs6d54.tmp\symnrt.exe |
"{8F0B4B07-935B-4ACE-849E-20B6CEC68430}" = protocol=6 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{8FBB2E5B-A46D-44FD-A557-E38707FE12DD}" = protocol=6 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\mediaserver.exe |
"{91CD3876-AC9F-4057-8AEE-01D2266F0AD9}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe |
"{9557E17C-D192-4624-84C6-F97775A614A5}" = protocol=1 | dir=out | [U][COLOR=#0066cc][email protected],-28544[/COLOR][/U] |
"{9AF984AF-BC59-40F0-B1C6-A1D170CE7D09}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9DFE8432-7D3E-4EE1-96DE-F7FCD29F32FF}" = protocol=6 | dir=in | app=c:\program files\aol 9.0a\waol.exe |
"{9FDDD11C-F627-4734-9AB5-44235D71F305}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{A3073923-7890-4652-9068-8EB1AA3E0FE2}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A4AB981B-685A-4AFC-8A54-F5C8B6D7B7B1}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe |
"{A80C389F-CE71-4727-9493-50787D9D2A6E}" = protocol=17 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\mediaserver.exe |
"{AC89912F-06EE-4124-AE53-2D98FF311EEF}" = protocol=6 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{B1A54985-E1DB-4A38-BA2D-7369D8C04A1F}" = protocol=58 | dir=out | [U][COLOR=#0066cc][email protected],-28546[/COLOR][/U] |
"{BA2C65EB-842F-4C8C-B41E-C34877DDA8C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BA3F3849-1FB1-4304-A2DC-F03C66CD1E88}" = protocol=58 | dir=out | [U][COLOR=#0066cc][email protected],-28546[/COLOR][/U] |
"{BA6D1876-7A99-48F7-A4F3-1720284C8847}" = protocol=1 | dir=in | [U][COLOR=#0066cc][email protected],-28543[/COLOR][/U] |
"{BAD28833-A19D-4396-8EEF-36675E348697}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C0A6A803-9E0F-42E5-B966-89D02AC49080}" = protocol=6 | dir=in | app=c:\program files\common files\aol\1198336193\ee\aolsoftware.exe |
"{C513E690-E188-46CB-944F-591431044A7B}" = protocol=6 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\tshwmdtcp.exe |
"{C55DFE7E-7AAF-43F8-A2A9-F7F416225832}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{C7F42793-76E6-4415-B093-F9127FAC699A}" = protocol=17 | dir=in | app=c:\program files\intel\inteldh\intel media server\media server\bin\tshwmdtcp.exe |
"{C8CA43B1-D7F0-4EB5-A3D8-146A979EC072}" = protocol=6 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe |
"{CC07FBAC-DA2B-4776-8201-A28C40998BF0}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{CF042B40-C8F6-4345-B5E5-F7AFEFBF23D3}" = protocol=6 | dir=in | app=c:\program files\frostwire 5\frostwire.exe |
"{D42062CA-DD92-44FB-9948-4661583682F2}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{DA797810-EC30-4B23-8B88-31DB3495A1F9}" = protocol=1 | dir=in | [U][COLOR=#0066cc][email protected],-28543[/COLOR][/U] |
"{DAF9B326-0312-4B10-AD26-02137596B58F}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{DE4BA788-0AC0-4E1A-92D6-9ED222A7488E}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{E086F807-92EC-4EC2-BFF2-22162ADA97FC}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{E2FC8B8F-C337-456E-BE23-B2F103F146DC}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe |
"{E8E40EB1-425E-4F4A-9294-D4AB3763526E}" = protocol=17 | dir=in | app=c:\program files\frostwire 5\frostwire.exe |
"{EEAE4CDB-2846-4F2B-A95B-E749B565CA7F}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{EF6269E2-19D8-4304-9091-59A3CEF04CB4}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{F02AF851-9173-440E-B602-301DBF202152}" = protocol=6 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{F07306A0-0E04-48F5-BA64-6C841D7C2EF0}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{F212C089-083B-4877-AAF7-0480D1BB8F9D}" = protocol=1 | dir=out | [U][COLOR=#0066cc][email protected],-28544[/COLOR][/U] |
"{F5EDE65F-B11F-4AD7-98B9-D6B1843D8577}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FA743E1B-9D20-44C9-9D09-C6A4BB731AC7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FC3D9A83-58C7-4546-86A6-046C9DAB5A58}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"{FD32E68B-1713-41D7-B77E-CDEE637277D7}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{1CFDA21F-3CFD-4C2F-A3F1-BD276EAF5D5B}C:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"TCP Query User{2DDAD746-3F46-4A27-9876-ABF29439D627}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{31EBE68A-48CD-40E4-BC16-A319A8B0BD0B}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{5686816C-7B3E-4B1F-9A3B-9A1D1EDF236E}C:\program files\logmein rescue calling card\callingcard.exe" = protocol=6 | dir=in | app=c:\program files\logmein rescue calling card\callingcard.exe |
"TCP Query User{5CFCCD5B-0995-48F1-BA1E-B963DE0C784B}C:\windows\lmi4aa2.tmp\lmi_rescue.exe" = protocol=6 | dir=in | app=c:\windows\lmi4aa2.tmp\lmi_rescue.exe |
"TCP Query User{9764E179-F286-4AC0-AF4A-CA7528D6B4DE}K:\techwizard.exe" = protocol=6 | dir=in | app=k:\techwizard.exe |
"TCP Query User{9EE40A07-2141-4D10-86A0-C716C7611D02}C:\program files\azureus\azureus.exe" = protocol=6 | dir=in | app=c:\program files\azureus\azureus.exe |
"TCP Query User{B27DD6C7-4006-450B-80E3-A8A492F558F1}C:\program files\aol 9.1\waol.exe" = protocol=6 | dir=in | app=c:\program files\aol 9.1\waol.exe |
"TCP Query User{C0B21CC3-833F-499F-8942-93B42BF3EB33}C:\windows\lmi423.tmp\lmi_rescue.exe" = protocol=6 | dir=in | app=c:\windows\lmi423.tmp\lmi_rescue.exe |
"TCP Query User{DD766008-86F1-4BDE-AB66-66D06B70709D}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{37A8AAD1-E845-462C-962E-4D57CD8A27B9}C:\program files\aol 9.1\waol.exe" = protocol=17 | dir=in | app=c:\program files\aol 9.1\waol.exe |
"UDP Query User{5060EF78-4CB8-4F24-AE45-03F2E2BC89CD}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{514C4FC7-915A-4FA4-AD67-5FC01F402033}C:\windows\lmi423.tmp\lmi_rescue.exe" = protocol=17 | dir=in | app=c:\windows\lmi423.tmp\lmi_rescue.exe |
"UDP Query User{51AB93EF-4A23-48F3-85ED-E944A9865ACF}C:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"UDP Query User{771664B4-983B-447E-AE01-A3AF20D45F68}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{8CD870F1-5904-42BC-A1DF-D42907D1854C}K:\techwizard.exe" = protocol=17 | dir=in | app=k:\techwizard.exe |
"UDP Query User{A38299BB-5B5A-4EAF-9475-7A36F36DE0F2}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{D3A57F80-1649-4643-B813-140F75468400}C:\program files\logmein rescue calling card\callingcard.exe" = protocol=17 | dir=in | app=c:\program files\logmein rescue calling card\callingcard.exe |
"UDP Query User{E48D8C36-8F79-4961-9867-4EB5C8DB309E}C:\windows\lmi4aa2.tmp\lmi_rescue.exe" = protocol=17 | dir=in | app=c:\windows\lmi4aa2.tmp\lmi_rescue.exe |
"UDP Query User{ED6720E6-C50F-4D14-B988-F4286E928CF1}C:\program files\azureus\azureus.exe" = protocol=17 | dir=in | app=c:\program files\azureus\azureus.exe |
[COLOR=#e56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/COLOR]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01001202-823E-46CD-A70E-BEE818F97169}" = Microsoft Encarta Encyclopedia Standard 2002
"{01A4AEDE-F219-49A2-B855-16A016EAF9A4}" = Intel(R) PROSet II
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{06EA5F57-9903-40A5-9DA3-1841ABC81E6F}" = PCWatchDogs.com
"{0B59A227-CAC2-4688-8759-580B4DC5F220}" = BlackBerry Device Software v4.5.0 for the BlackBerry 8330 smartphone
"{0D048BE8-AE02-4CB5-A428-616B9848E4A7}" = BlackBerry Desktop Software 4.3
"{0DAA5653-60D4-44C1-AD10-EC7D4FA4D820}" = Intel(R) Viiv(TM) Software
"{107254A0-0ADF-11D4-9397-00D0B7020B38}" =
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1DA6AB38-2876-4AE4-8236-24C2CF66601B}" = MediaFACE 4.0 Spiritual Image Library
"{1F7CCFA3-D926-4882-B2A5-A0217ED25597}" = PC-Doctor for Windows
"{268D18A2-4539-4530-8192-F13EDD876FFC}" = MediaFACE 4.0 General Image Library
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 14
"{2C8DD75D-D12B-4D3B-9102-520F878645B3}_is1" = Chattage
"{31C44235-A613-4E95-B297-207BF6C6A8C1}" = Creative ZEN Vision M Series
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39DA87A1-0B26-4562-A70C-2A6147366E47}" = PC-Doctor Services
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go 5.0
"{41915CC3-BD28-43C3-9C94-1A7548DEF582}" = StuffIt Standard Edition 7.5
"{44CDBD1B-89FB-4E02-8319-2A4C550F664A}" = RTC Client API v1.2
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5C6F884D-680C-448B-B4C9-22296EE1B206}" = Logitech Harmony Remote Software 7
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5EED93A8-33AD-46A7-A6AC-4DEAFBEFEEE1}" = Roxio Media Manager
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.3
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75C023EC-64A0-44F7-9D99-C6F6E21EB6F0}" = Do More 5.0
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{797EE0CA-8165-405C-B5CE-F11EC20F1BB0}" = Microsoft VC9 runtime libraries
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{7F3BCF8A-8E02-4659-AF25-F9AB66BD6718}" = Gateway Recovery Center Installer
"{7F581D1D-C9A7-4C77-B88A-27537173CEDF}" = MediaFACE 4.0
"{8471021C-F529-43DE-84DF-3612E10F58C4}" = Remote Control USB Driver
"{85D3CC30-8859-481A-9654-FD9B74310BEF}" = Musicmatch® Jukebox
"{8739235F-201D-449C-A03F-277A85F0FE1E}" = MediaFACE 4.0 Music Image Library
"{885F5AC6-4413-4D30-99A9-F4494BFA4923}" = Logitech Harmony Remote Software 7
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{90110409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUSR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUSR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUSR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROPLUSR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROPLUSR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROPLUSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Standard
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90300409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Media Content
"{904CCF62-818D-4675-BC76-D37EB399F917}" = Windows Mobile Device Center
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{91120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{911B0409-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{99B7F66B-42D0-4378-9791-C66A6418A520}" = IHA_MessageCenter
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AD92782-CAC6-48DF-A060-BFD6FE7689E7}" = MediaFACE 4.0 Lifestyle Image Library
"{9F765BD0-B900-4EDE-A90B-61C8A9E95C42}" = PC-Doctor Consumer UI
"{A0524B49-9798-4EFB-A392-06C18BEC7432}" = Vz In Home Agent
"{A1B7B9B3-E1D2-41CA-9B4A-F18DC2710704}" = Microsoft Works 6.0
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A57C6094-FC5A-4DEC-B1E0-1B2F48EEE8F4}" = Spare Backup
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B1D89E54-08B1-4542-A69B-E634AEF10A40}" = Seagate Manager Installer
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
"{B64BC516-2406-43AE-A21A-1E387A2343B1}" = ContentManager
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B749EB05-5507-4436-8334-4389724901EC}" = ZIP Reader 8.00.0007
"{BAD59025-5B73-4E12-B789-0028C5A573C2}" = PC-Doctor Diagnostics
"{BD3DCAB0-3FE5-44FB-90DA-EFB0A2CD1387}" = Works Synchronization
"{BE2CC4A5-2128-4EA2-941D-14F7A6A1AB61}" = Digital Media Reader
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support
"{C3A439E4-7303-491F-A678-CEA36A87D517}" = Microsoft Works Suite Add-in for Microsoft Word
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C73CA646-73B3-4AEF-A136-C37505745174}" = iTunes
"{C769A271-7E1C-48F9-B331-474600DD4C06}" = Microsoft Picture It! Photo 2002
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D03482C5-9AD8-496D-B388-692AE04C93AF}" = Bonjour
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D547A594-AA85-4B92-80EB-47B371B98C68}" = Verizon Download Manager
"{D627784F-B3EE-44E8-96B1-9509B991EA34}_is1" = AusLogics Registry Defrag
"{DA84434F-25B6-4716-A390-AC678FB6516D}" = MediaFACE 4.0 Special Occasion Image Library
"{DC19E750-988B-4005-A355-85EF66055EFE}" = Works Suite OS Pack
"{E3436EE2-D5CB-4249-840B-3A0140CC34C3}" = PhoneTools
"{E7044E25-3038-4A76-9064-344AC038043E}" = Windows Mobile Device Center Driver Update
"{EE5EEDAF-F932-462B-A2CB-EEBDF819D5F5}" = Gateway Connect
"{EE7C3A14-1D20-49F6-B903-491561076F0F}" = ArcSoft Software Suite
"{F05A5232-CE5E-4274-AB27-44EB8105898D}" = CA Pest Patrol Realtime Protection
"{F1FBF021-B965-42D3-BF63-D7A121B5490D}" = HelpSpot
"{F226C1DA-66D7-4ABC-86B5-3F978A660EBF}" = AOL Mail and AIM Gadget
"{F3CA9611-CD42-4562-ADAB-A554CF8E17F1}" = Microsoft WSE 2.0 SP3 Runtime
"{FED4E1E2-9E19-44FE-8265-E4AAE03EBC80}" = MediaFACE 4.0 Business Image Library
"{FF3999BE-1A7B-4738-88AA-97BF14094A4A}" = PictureProject
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Agere Systems Soft Modem" = Agere Systems PCI-SV92PP Soft Modem
"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)
"AolCoach2_en" = AOL Coach Version 2.0(Build:20041026.5 en)
"AudibleManager" = AudibleManager
"BlackBerry_{0D048BE8-AE02-4CB5-A428-616B9848E4A7}" = BlackBerry Desktop Software 4.3
"CCleaner" = CCleaner (remove only)
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"ComcastHSI" = Comcast High-Speed Internet Install Wizard
"ComcastToolbar" = Comcast Toolbar
"Creative Removable Disk Manager" = Creative Removable Disk Manager
"Defraggler" = Defraggler (remove only)
"DivX Setup.divx.com" = DivX Setup
"DVDFab 6_is1" = DVDFab 6.0.2.2 (June 26, 2009)
"ffdshow_is1" = ffdshow v1.1.3516 [2010-07-25]
"FrostWire" = FrostWire 4.21.7
"Gateway Game Console" = Gateway Game Console
"GTW V.92 Voicemodem" = GTW V.92 Voicemodem
"HECI" = Intel(R) Management Engine Interface
"hp deskjet 5550 series" = hp deskjet 5550 series (Remove only)
"hp instant support" = hp instant support
"hp print screen utility" = hp print screen utility
"ie7" = Windows Internet Explorer 7
"IE7Pro" = IE7Pro
"InstallShield_{1DA6AB38-2876-4AE4-8236-24C2CF66601B}" = MediaFACE 4.0 Spiritual Image Library
"InstallShield_{268D18A2-4539-4530-8192-F13EDD876FFC}" = MediaFACE 4.0 General Image Library
"InstallShield_{7F581D1D-C9A7-4C77-B88A-27537173CEDF}" = MediaFACE 4.0
"InstallShield_{8739235F-201D-449C-A03F-277A85F0FE1E}" = MediaFACE 4.0 Music Image Library
"InstallShield_{9AD92782-CAC6-48DF-A060-BFD6FE7689E7}" = MediaFACE 4.0 Lifestyle Image Library
"InstallShield_{B1D89E54-08B1-4542-A69B-E634AEF10A40}" = Seagate Manager Installer
"InstallShield_{BE2CC4A5-2128-4EA2-941D-14F7A6A1AB61}" = Digital Media Reader
"InstallShield_{DA84434F-25B6-4716-A390-AC678FB6516D}" = MediaFACE 4.0 Special Occasion Image Library
"InstallShield_{FED4E1E2-9E19-44FE-8265-E4AAE03EBC80}" = MediaFACE 4.0 Business Image Library
"Intel(R) Configuration Center" = Intel(R) Viiv(TM) Software
"Intuit SiteBuilder" = Intuit SiteBuilder
"LSI Soft Modem" = LSI PCI-SV92PP Soft Modem
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"MusicMatch Update" = MusicMatch Update
"Network Play System (Patching)" = Network Play System (Patching)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"OfotoEZUpload" = KODAK EASYSHARE Gallery Upload ActiveX Control
"PhotoImpression" = PhotoImpression
"PlayFLV" = PlayFLV
"PROPLUSR" = Microsoft Office Professional Plus 2007
"PROSet" = Intel(R) PRO Network Connections Drivers
"RealPlayer 6.0" = RealPlayer
"SK_PS2MillenniumKeyboard" = PS/2 Millennium Keyboard
"Sophos-AntiRootkit" = Sophos Anti-Rootkit 1.5.0
"sp6" = Logitech SetPoint 6.22
"SysInfo" = Creative System Information
"TuneXP_1.5" = TuneXP 1.5
"Tweak UI 2.10" = Tweak UI
"Verizon Help and Support" = Verizon Help and Support Tool
"Viewpoint Manager" = Viewpoint Manager (Remove Only)
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VideoLAN VLC media player 0.8.6a
"WGA" = Windows Genuine Advantage Validation Tool
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR archiver
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Works2002Setup" = Microsoft Works 2002 Setup Launcher
"WT022707" = Bejeweled 2 Deluxe
"WT023296" = Family Feud 2
"WT023314" = FATE
"Yahoo! Messenger" = Yahoo! Messenger
"ZENcast Organizer" = ZENcast Organizer
[COLOR=#e56717]========== HKEY_CURRENT_USER Uninstall List ==========[/COLOR]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"GoToMeeting" = GoToMeeting/GoToWebinar 3.0.0.198
[COLOR=#e56717]========== Last 10 Event Log Errors ==========[/COLOR]
[ Application Events ]
Error - 8/12/2011 12:54:07 PM | Computer Name = Eliminator-II | Source = Application Hang | ID = 1002
Description = The program SUPERAntiSpyware.exe version 4.26.0.1006 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: d48 Start Time: 01cc590f1b4004de Termination Time: 60000
Error - 8/12/2011 1:34:26 PM | Computer Name = Eliminator-II | Source = WerSvc | ID = 5007
Description =
Error - 8/12/2011 2:28:06 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 8/12/2011 2:30:09 PM | Computer Name = Eliminator-II | Source = WerSvc | ID = 5007
Description =
Error - 8/12/2011 3:54:34 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 8/12/2011 4:51:17 PM | Computer Name = Eliminator-II | Source = WerSvc | ID = 5007
Description =
Error - 8/12/2011 7:17:19 PM | Computer Name = Eliminator-II | Source = VSS | ID = 8194
Description =
Error - 8/12/2011 7:27:24 PM | Computer Name = Eliminator-II | Source = VSS | ID = 8194
Description =
Error - 8/14/2011 3:37:59 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 8/14/2011 7:57:25 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
[ IntelDH Events ]
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 8/25/2006 7:50:51 PM | Computer Name = LH-U4YBZ8OKHBMH | Source = AlertService | ID = 15
Description = A CCU internal function detected an error: XMLDoc::LoadXML failed
with reason: XML document must have a top level element.
Error - 7/13/2008 12:55:38 AM | Computer Name = Eliminator-II | Source = AlertService | ID = 17
Description = A CCU interface function returned an error: DataManager::GetData failed
to retrieve the data
[ ODiag Events ]
Error - 4/15/2010 11:36:31 AM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Diagnostics | ID = 320
Description = An unexpected error occurred. Tag: 2kcz. Error code: N/A
[ OSession Events ]
Error - 1/12/2008 9:08:14 AM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6211.1000, Microsoft Office Version: 12.0.6215.1000. This session lasted 229871
seconds with 2460 seconds of active time. This session ended with a crash.
Error - 5/24/2009 4:30:17 PM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6423.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2
seconds with 0 seconds of active time. This session ended with a crash.
Error - 7/14/2009 7:23:45 AM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8
seconds with 0 seconds of active time. This session ended with a crash.
Error - 7/26/2009 11:16:19 PM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6
seconds with 0 seconds of active time. This session ended with a crash.
Error - 9/11/2009 1:53:36 AM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5
seconds with 0 seconds of active time. This session ended with a crash.
Error - 4/15/2010 11:36:29 AM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4
seconds with 0 seconds of active time. This session ended with a crash.
Error - 6/28/2010 12:57:40 AM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 2386
seconds with 1500 seconds of active time. This session ended with a crash.
Error - 7/25/2010 2:41:27 PM | Computer Name = Eliminator-II | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 44170
seconds with 6960 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 8/14/2011 8:06:48 PM | Computer Name = Eliminator-II | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
< End of report >
Last edited by a moderator:
So I'll focus my suggestions on the prevention side, I know you've got the security part of your website, but it might be nice to add a few things on the end of the removal process just to make sure people actually do them.