OTL Extras logfile created on: 5/3/2012 4:40:19 PM - Run 1 OTL by OldTimer - Version 3.2.42.2 Folder = C:\Users\Owner\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 2.99 Gb Total Physical Memory | 2.15 Gb Available Physical Memory | 71.82% Memory free 6.19 Gb Paging File | 4.70 Gb Available in Paging File | 75.98% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 144.29 Gb Total Space | 64.03 Gb Free Space | 44.38% Space Free | Partition Type: NTFS Drive D: | 144.04 Gb Total Space | 143.76 Gb Free Space | 99.81% Space Free | Partition Type: NTFS Computer Name: OWNER-PC | User Name: Owner | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-995999603-3923213685-2086273713-1000\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{775F7BC9-B831-4CF2-A59D-8F101B68FC3C}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{A02498C2-D75C-4EB4-89A4-5FFF536250BF}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{FA97ECDA-6BC3-4373-A5B1-E0A07C7F987E}" = lport=2869 | protocol=6 | dir=in | app=system | "{FFE0A854-3640-4E21-B210-5CB97F84B73B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{00707881-D0D7-49B4-A532-F11C44FDA4AF}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe | "{05E69DA1-DD72-4866-9AB0-86303456A871}" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\lxddamon.exe | "{07591BD6-4C95-4408-9E97-91565A68D1BA}" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\lxddamon.exe | "{0D4E0F0C-35AB-4169-835D-B223AD0E9DF1}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe | "{107D2AF6-F1E1-4EF6-AF82-98BEAE205BAD}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe | "{38AE9B53-AF87-49B4-8516-822D89640F24}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe | "{3DB7FCC9-BC18-4548-9213-0B66B71A0F45}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddjswx.exe | "{46010D9B-0C49-4091-B464-CB1EAE4E0293}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddwbgw.exe | "{4734264D-66EA-44BB-9DA2-341C90629114}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddpswx.exe | "{5CD19FF5-6B6F-4BA3-9AA6-8A9FC6B22B5D}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddjswx.exe | "{5FE9789C-18B7-416D-A492-706BB9650560}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddtime.exe | "{6B14DEDF-8474-4C03-8A5F-DEE8DE7CAB4B}" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\app4r.exe | "{703C8A2A-29E2-48EA-A631-BC5473740EEF}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddpswx.exe | "{7C9B320E-3424-45CC-A61E-E5D08E8AAA48}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe | "{8A7E696F-C315-4F1F-A20B-B1A5D172E96C}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{96F18B1A-4A79-4E74-A27C-5BFE5E93E254}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | "{9AFDBEA6-C333-4115-94BA-D944D1C84B9A}" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\app4r.exe | "{9DB48529-51EC-40A6-B5D3-9546BF7354E1}" = protocol=17 | dir=in | app=c:\program files\lexmark 2500 series\lxddmon.exe | "{A6EA292F-4586-4B2A-BA71-9EF9D076B3E6}" = protocol=6 | dir=in | app=c:\program files\lexmark 2500 series\lxddmon.exe | "{B6E58274-2116-4BD6-9AEC-A081FBB2F0A8}" = protocol=17 | dir=in | app=c:\windows\system32\lxddcoms.exe | "{B6FA6690-AF30-4051-A314-2809AA184F93}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe | "{C98800AE-1AB1-48F7-8D2B-05620FC72A04}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddwbgw.exe | "{CD58B32E-C0C0-479A-886F-4A55E0A70711}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe | "{E285641B-BD80-43B9-8CC7-1810F1E7FF1E}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe | "{EDB956AD-9DFF-4CAA-BD78-B0E181AE3523}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxddtime.exe | "{FE1D7622-0BF5-40EF-BE24-84531D9737C2}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe | "{FF977ABD-1179-4C63-9B2B-73C8690BFDCD}" = protocol=6 | dir=in | app=c:\windows\system32\lxddcoms.exe | "TCP Query User{0B33BF55-A28A-4A1E-8047-AAD01FDB48F8}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "TCP Query User{E2663D4D-9D1A-4644-9BA7-F015E2A88D6E}C:\program files\1clickdownload\1clickdownloader.exe" = protocol=6 | dir=in | app=c:\program files\1clickdownload\1clickdownloader.exe | "UDP Query User{423399AD-2809-4EB9-B403-E1508F861C50}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "UDP Query User{EB7AF686-61DF-4936-ADBF-DFAA03708926}C:\program files\1clickdownload\1clickdownloader.exe" = protocol=17 | dir=in | app=c:\program files\1clickdownload\1clickdownloader.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker "{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}" = Cool & Quiet "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1 "{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery "{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{44F2B2D0-40A7-42A5-AF6C-812CA8A6809E}" = Trust CP-2300 Webcam "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion "{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack "{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{73868DD9-CC9A-4F7F-B708-99F096DEAB6D}" = Adobe Shockwave Player 11.5 "{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime "{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer "{A7836FF5-7293-40A4-B86E-E2038F82E8F3}" = AVG 2012 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5 "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer "{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.1 "{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter "{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant "{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D14AAC37-38FC-4454-9CEC-B3CD081632C4}" = calibre "{D2340C67-0F20-4B9C-A3A8-CD8821582E5D}" = WebDwarf V2 "{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D6DE02C7-1F47-11D4-9515-00105AE4B89A}" = Paint Shop Pro 7 ESD "{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources "{E06D6DDE-090C-476B-BA2E-D8630E54B9B4}" = AVG 2012 "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger "{E6B87DC4-2B3D-4483-ADFF-E483BF718991}" = OpenOffice.org 3.1 "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F8131A35-47FD-27AD-116D-0E79AF5DE5EE}" = Acrobat.com "{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "AVG" = AVG 2012 "com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com "Coupon Printer for Windows5.0.0.1" = Coupon Printer for Windows "Digital Editions" = Adobe Digital Editions "ExpressZip" = Express Zip File Compression Software "HDMI" = Intel(R) Graphics Media Accelerator Driver "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager "InstallShield_{44F2B2D0-40A7-42A5-AF6C-812CA8A6809E}" = Trust CP-2300 Webcam "Kobo" = Kobo "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Mozilla Firefox 12.0 (x86 en-US)" = Mozilla Firefox 12.0 (x86 en-US) "MozillaMaintenanceService" = Mozilla Maintenance Service "RealPlayer 12.0" = RealPlayer "SMSERIAL" = Motorola SM56 Speakerphone Modem "SoftwareUpdUtility" = Download Updater (AOL LLC) "WinLiveSuite" = Windows Live Essentials [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-995999603-3923213685-2086273713-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 5/2/2012 12:41:58 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:41:59 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:41:59 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:41:59 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:41:59 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:42:03 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:42:04 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 12:43:27 PM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 5/2/2012 4:35:51 PM | Computer Name = Owner-PC | Source = WinMgmt | ID = 10 Description = Error - 5/3/2012 10:04:12 AM | Computer Name = Owner-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = [ System Events ] Error - 5/1/2012 5:16:01 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = Error - 5/1/2012 5:41:42 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = Error - 5/1/2012 6:07:22 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = Error - 5/1/2012 6:32:57 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = Error - 5/2/2012 11:49:11 AM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7026 Description = Error - 5/2/2012 4:34:26 PM | Computer Name = Owner-PC | Source = EventLog | ID = 6008 Description = The previous system shutdown at 12:50:45 PM on 5/2/2012 was unexpected. Error - 5/2/2012 4:35:51 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7026 Description = Error - 5/3/2012 10:55:46 AM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = Error - 5/3/2012 1:13:43 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = Error - 5/3/2012 3:51:17 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7011 Description = < End of report >