OTL Extras logfile created on: 4/16/2014 7:23:20 AM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\t5403cg\Downloads 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 3.89 Gb Total Physical Memory | 1.65 Gb Available Physical Memory | 42.45% Memory free 7.77 Gb Paging File | 5.30 Gb Available in Paging File | 68.23% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 149.05 Gb Total Space | 91.03 Gb Free Space | 61.07% Space Free | Partition Type: NTFS Computer Name: CID-TDENZL403CG | User Name: T5403CG | NOT logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] "EnableFirewall" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.) "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.) [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{53D5259D-FC14-4B3C-85C9-D85AB048203B}" = lport=17472 | protocol=6 | dir=in | name=taniumclient.exe | "{5DC5C8EF-62C5-4D15-89B8-D33030ADBD63}" = rport=80 | protocol=6 | dir=out | app=c:\program files (x86)\common files\intuit\update service v4\intuitupdateservice.exe | "{61E55350-FD7B-4FEB-AC22-BE7FC4CAD4F4}" = rport=80 | protocol=6 | dir=out | app=c:\program files (x86)\common files\intuit\update service v4\intuitupdater.exe | "{88FE9BE5-56ED-46A9-9B6D-53A633938ED4}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe | "{C84782BC-748B-42C1-A0D1-8EED4F15FB84}" = lport=17472 | protocol=6 | dir=in | name=taniumclient.exe | "{C9CF334C-7558-4535-ACB9-EBCA13127A43}" = lport=2799 | protocol=6 | dir=in | name=altova license metering port (tcp) | "{E72D44F6-D305-4938-9EBC-A7D05FD27D3D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe | "{FBD020D4-E41B-4A7C-8FC8-ECDDA72F1325}" = lport=2799 | protocol=17 | dir=in | name=altova license metering port (udp) | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{85204383-A3E4-4DBB-95A7-CA4E4110FEC8}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\symantec shared\ccapp.exe | "{A5F0063B-26C7-4AC9-A9F7-0E4BFE342837}" = protocol=17 | dir=in | app=c:\program files (x86)\symantec\symantec endpoint protection\smc.exe | "{B4E8167B-9266-429B-A643-543DEC7006DE}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\symantec shared\ccapp.exe | "{B6EF6119-3771-42E1-BBA6-57A0ACB3E083}" = protocol=6 | dir=in | app=c:\program files (x86)\symantec\symantec endpoint protection\snac64.exe | "{DF4E324C-3D4C-4F2A-B616-5D4E8E14FD30}" = protocol=6 | dir=in | app=c:\windows\system32\supdsvc2.exe | "{E03B1343-8819-46FF-84F0-397FA71EFCD9}" = protocol=17 | dir=in | app=c:\windows\system32\supdsvc2.exe | "{EFFA9102-1E78-44C9-A09D-9B05783FB58F}" = protocol=17 | dir=in | app=c:\program files (x86)\symantec\symantec endpoint protection\snac64.exe | "{F0AF0BA6-94D7-4D13-B3F8-1396F300FFF1}" = protocol=6 | dir=in | app=c:\program files (x86)\symantec\symantec endpoint protection\smc.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{26624215-248C-4F88-A415-35301812FB75}" = Symantec Endpoint Protection "{2FAAF841-F52B-41DD-BE4C-3C249CAFF637}" = Microsoft Host Integration Server 2010 "{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10 "{6256C08C-31BA-4FE1-8C06-5E34F5D131F4}" = (NYL) LM Agent 7.0.0.691 "{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64) "{89322526-66A6-4EF4-B1F2-C58527938A79}" = SecureDoc Disk Encryption (x64) "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007 "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64) "{B56A7C44-1DCF-46DD-B8F7-5A20C2891A0E}" = Lumension Patch Agent for Windows "{BC705572-C8CD-49e4-9693-BDC8E4D35570}" = (NYL) AgentInstall64 "{C338ACAC-7162-42E3-8B8C-85E5746F4A2E}" = Aventail Connect "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "CCleaner" = CCleaner "CNXT_AUDIO_HDA" = Conexant 20672 SmartAudio HD "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Power Management Driver" = ThinkPad Power Management Driver "Snapshot Viewer" = (NYL) Snapshot Viewer "SynTPDeinstKey" = ThinkPad UltraNav Driver [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002C9999-0000-0000-C000-000000000114}" = Microsoft Office Web Components "{07C69B3A-62B3-41BF-82EE-B3A87BD6EA0C}" = (NYL) Lotus Notes 8.5.2 "{0A7DD94B-B746-4FB0-8688-8598C22793A0}" = TurboTax 2013 WinPerFedFormset "{0F7F13E7-D61D-461A-8423-BE8864FCB250}" = (NYL) Cisco NAC Agent "{106A2322-9182-4245-AD80-2825185CB9A0}" = (NYL) CA_WA_Workstation_v11.3 - Build 81_EN_R1 "{16921FEE-16A1-459D-B4FD-EA2A7D5D02B1}" = (NYL) WinAAC32_Win7_Core_Ver1.0 "{2450192C-1F57-4E73-B989-229AB4F622D3}" = (NYL) Password Policy Client 6.1 "{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = (NYL) Java(TM) 6 Update 24 "{2A4EEB5C-3BA6-4299-A87F-783861B567D9}" = TurboTax 2013 WinPerReleaseEngine "{358C44FD-6943-4CDD-B947-7F7C4ADC8A8F}" = TurboTax 2013 WinPerTaxSupport "{3D5564EC-6F57-4BC7-AD97-493B65638C4E}" = (NYL) HIS CONFIG FIX 1.0.0 "{3F04067F-0DA5-4F48-9A89-6FCFD2A9E040}" = TextPad 6 "{408553EF-9437-4C55-9508-F143B404EB4C}" = (NYL) ZipMail V10 for Lotus Notes "{4CB49C7C-2BD8-47E3-9EC1-28554D3406F1}" = (NYL) Toad for Oracle 11.5 "{52F2FB99-3D3E-49dd-9C75-79ACFC719D80}" = Altiris Inventory Agent "{5685A224-6D76-469B-B038-C1206B3DF830}" = (NYL) Micro Focus Rumba 8.1 "{606EB5EB-AADF-4E21-B715-1CAD291181D6}" = TurboTax 2013 wrapper "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{6299A847-7034-4349-87BA-2BA6B859C44E}" = Software Management Solution Agent "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71C30359-5CCD-40AC-AF75-9B3377B0EBF9}" = SAFE Servlet "{72552C46-944B-4E16-BBC8-0D85F31C1800}" = Aventail Access Manager "{743D18E2-1B67-4AA9-9E74-B392505A3565}" = Aventail OPSWAT End Point Control "{795096D9-8C08-4D47-97C5-571AA10C7B50}" = WebEx Productivity Tools "{7E8E00CC-6540-43CC-B6D7-0FB3269F1B51}" = Deployment Solution Agent "{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007 "{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007 "{90120000-0015-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007 "{90120000-0016-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007 "{90120000-0018-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007 "{90120000-0019-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007 "{90120000-001A-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007 "{90120000-001B-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-002A-0409-1000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007 "{90120000-003A-0000-0000-0000000FF1CE}" = Microsoft Office Project Standard 2007 "{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007 "{90120000-0044-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0051-0000-0000-0000000FF1CE}" = Microsoft Office Visio Professional 2007 "{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{AA4F2610-5FF1-4DCD-A6FB-BCA2D09A6443}" = Microsoft Office Visio 2007 Service Pack 1 (SP1) "{90120000-0054-0409-0000-0000000FF1CE}" = Microsoft Office Visio MUI (English) 2007 "{90120000-0054-0409-0000-0000000FF1CE}_VISPRO_{EA35370F-586C-45E1-AC6C-A4E275C6B762}" = Microsoft Office Visio 2007 Service Pack 1 (SP1) "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007 "{90120000-006E-0409-0000-0000000FF1CE}_PRJSTD_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-006E-0409-0000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-006E-0409-0000-0000000FF1CE}_VISPRO_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-00A4-0409-0000-0000000FF1CE}" = Microsoft Office 2003 Web Components "{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs "{90120000-00B4-0409-0000-0000000FF1CE}" = Microsoft Office Project MUI (English) 2007 "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007 "{90120000-0115-0409-0000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0116-0409-1000-0000000FF1CE}_PROPLUS_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007 "{90120000-0117-0409-0000-0000000FF1CE}_PROPLUS_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3) "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A6564B06-A90E-4F4E-A45A-3EE22DD65D35}" = Serena PVCS Version Manager "{A760D2C6-C681-4DC0-911E-8B0FEF8A3627}" = (NYL) WinAAC32_Win7_Tables_Ver_1.0 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AAD01103-AC47-4314-9DC3-B1C8BC94AD68}" = TurboTax 2013 wnyiper "{AC76BA86-1033-0000-7760-000000000004}" = Adobe Acrobat 9 Pro "{AC76BA86-1033-0000-7760-000000000004}_954" = Adobe Acrobat 9.5.4 - CPSID_83708 "{AC76BA86-1033-0000-7760-000000000004}{AC76BA86-1033-0000-7760-000000000004}" = Adobe Acrobat 9 Pro "{AC76BA86-7AD7-1033-7B44-A94000000001}" = (NYL) Adobe Reader 9.4.0 "{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy "{B72D5DAB-D018-4CEC-B97A-7C58537FC511}" = (NYL) Altova XMLSpy® 2013 rel. 2 sp2 Professional Edition "{BEA28DE3-EDB9-4B2E-B00F-973D41865FC6}" = (NYL) NYL Employee Remote Assistance - Go To Assist 1.0.0 "{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = (NYL) WinZip 14.5 "{D9DF8D5A-2160-402B-819F-A5A964215528}_is1" = RegistryNuke 2014 version 2.1.6.80 "{E2A8CC5D-ED2F-4697-B0D2-B8961F4C9835}" = Serena PVCS Version Manager "{E376E22C-BE4D-4A73-B338-E589C56E7AE3}" = NYL's Office branding standards 2014-1-10 "{E55F1797-F76B-4BB5-82ED-4AA31002EA1F}" = (NYL) MS HIS 2010 TRANSPORT Fix 1.0.0 "{ED90D472-F467-4DC2-9578-C7C2C2881FF4}" = (NYL) Remedy Icon 1.0.0 "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics "{F20A984B-9B30-4A9E-A3AC-918AF0D85A48}" = (NYL) Snagit 9.1.1 "{F6DCF3F7-6C77-415D-AB43-93E31F93FBB5}" = (NYL) WinAAC32_Win7_DevLibs_Ver_1.0 "{FD19FF06-EDB4-4A86-A4EB-818B665A9E08}" = Altiris Application Metering Agent "7-zip" = 7-zip v9.20 "ActiveTouchMeetingClient" = Cisco WebEx Meetings "Adobe Flash Player ActiveX" = Adobe Flash Player 13 ActiveX "Adobe Shockwave Player" = Adobe Shockwave Player 12.0 "BvSshClient" = Bitvise SSH Client 4.60 (remove only) "ERUNT_is1" = ERUNT 1.1j "Google Chrome" = Google Chrome "GoToAssist" = GoToAssist Corporate "ieSpell" = ieSpell 2.0.1 (build 325) "InstallShield_{A6564B06-A90E-4F4E-A45A-3EE22DD65D35}" = Serena PVCS Version Manager 8.4.5 "InstallShield_{E2A8CC5D-ED2F-4697-B0D2-B8961F4C9835}" = Serena PVCS Version Manager 8.4 "LiveUpdate" = LiveUpdate 3.3 (Symantec Corporation) "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300 "Microsoft Host Integration Server 2010" = (NYL) Microsoft Host Integration Server 2010 "Microsoft Host Integration Server 2010 x64 Hotfix [See KB article 2616519 for detail]LDR" = Microsoft Host Integration Server 2010 x64 Hotfix [See KB article 2616519 for detail]LDR "PRJSTD" = Microsoft Office Project Standard 2007 "PROPLUS" = Microsoft Office Professional Plus 2007 "Samsung Universal Print Driver" = Samsung Universal Print Driver "Savings Bond Wizard" = Savings Bond Wizard "Snapshot Viewer" = Snapshot Viewer "ST6UNST #1" = MultiFileCompare version 1 - Beta 1 "Tanium Client" = (NYL) Tanium Client 6.0.314.1190 "TurboTax 2013" = TurboTax 2013 "VISPRO" = Microsoft Office Visio Professional 2007 "Websteroids" = Websteroids "Windows Grep_is1" = Windows Grep 2.3 "winscp3_is1" = WinSCP 4.3.2 [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{72552C46-944B-4E16-BBC8-0D85F31C1800}" = Aventail Access Manager "GoToMeeting" = GoToMeeting 6.0.0.1259 [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 4/15/2014 3:46:02 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Symantec AntiVirus | ID = 16711731 Description = Security Risk Found!W64.Viknok.B!inf in File: C:\Windows\System32\sysprep\cryptbase.dll by: Auto-Protect scan. Action: Clean failed : Quarantine failed : Access denied. Action Description: The file was left unchanged. Error - 4/15/2014 6:58:08 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = WinMgmt | ID = 10 Description = Error - 4/15/2014 6:58:29 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = PerfNet | ID = 2005 Description = Error - 4/15/2014 6:59:19 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = AutoEnrollment | ID = 6 Description = Error - 4/15/2014 7:07:40 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Symantec AntiVirus | ID = 16711731 Description = Security Risk Found!W64.Viknok.B!inf in File: C:\Windows\System32\sysprep\cryptbase.dll by: Auto-Protect scan. Action: Clean failed : Quarantine failed : Access denied. Action Description: The file was left unchanged. Error - 4/15/2014 7:07:58 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Symantec AntiVirus | ID = 16711731 Description = Security Risk Found!W64.Viknok.B!inf in File: C:\Windows\System32\sysprep\cryptbase.dll by: Auto-Protect scan. Action: Clean failed : Quarantine failed : Access denied. Action Description: The file was left unchanged. Error - 4/15/2014 7:09:06 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Symantec AntiVirus | ID = 16711731 Description = Security Risk Found!W64.Viknok.B!inf in File: C:\Windows\System32\sysprep\cryptbase.dll by: Auto-Protect scan. Action: Clean failed : Quarantine failed : Access denied. Action Description: The file was left unchanged. Error - 4/15/2014 7:16:12 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = PerfNet | ID = 2004 Description = Error - 4/15/2014 7:16:12 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = WinMgmt | ID = 10 Description = Error - 4/15/2014 7:16:54 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = AutoEnrollment | ID = 6 Description = [ Lumension Events ] Error - 4/8/2014 7:13:11 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' Error - 4/9/2014 7:09:49 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error uploading inventory results - error code = -20 Error - 4/9/2014 7:09:50 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error uploading inventory results - error code = -20 Error - 4/9/2014 7:09:50 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error reading inventory results - error code = 0, bytes read = 0 Error - 4/9/2014 7:19:24 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' Error - 4/10/2014 7:20:29 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' Error - 4/11/2014 7:06:01 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' Error - 4/14/2014 10:36:00 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' Error - 4/15/2014 7:36:15 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' Error - 4/16/2014 7:10:04 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Lumension Detection Agent | ID = 2 Description = Error occurred posting detection to PLUS (incremental diff) - error code = -30 error msg = 'Error: Invalid CheckSum' [ Media Center Events ] Error - 1/13/2014 5:03:48 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 4:03:47 PM - Failed to retrieve SportsSchedule (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 5:03:48 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 4:03:48 PM - Failed to retrieve SportsV2 (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 5:03:49 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 4:03:48 PM - Failed to retrieve Broadband (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:14 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:14 PM - Failed to retrieve Directory (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:36 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:36 PM - Failed to retrieve NetTV (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:37 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:37 PM - Failed to retrieve MCESpotlight (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:37 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:37 PM - Failed to retrieve MCEClientUX (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:38 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:38 PM - Failed to retrieve SportsSchedule (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:39 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:39 PM - Failed to retrieve SportsV2 (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) Error - 1/13/2014 6:04:40 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = MCUpdate | ID = 0 Description = 5:04:39 PM - Failed to retrieve Broadband (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.) [ OSession Events ] Error - 2/14/2014 3:18:16 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 25753 seconds with 3180 seconds of active time. This session ended with a crash. Error - 2/27/2014 4:20:46 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 90706 seconds with 6840 seconds of active time. This session ended with a crash. Error - 3/7/2014 11:35:48 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 352868 seconds with 1020 seconds of active time. This session ended with a crash. Error - 3/7/2014 12:09:39 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 16631 seconds with 2520 seconds of active time. This session ended with a crash. Error - 3/14/2014 5:29:49 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 80608 seconds with 1800 seconds of active time. This session ended with a crash. Error - 4/1/2014 8:02:36 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 80698 seconds with 0 seconds of active time. This session ended with a crash. Error - 4/6/2014 9:14:31 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 160079 seconds with 3900 seconds of active time. This session ended with a crash. Error - 4/9/2014 8:41:12 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 175606 seconds with 120 seconds of active time. This session ended with a crash. Error - 4/11/2014 6:00:15 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 116689 seconds with 6300 seconds of active time. This session ended with a crash. Error - 4/11/2014 6:38:19 PM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 2299 seconds with 60 seconds of active time. This session ended with a crash. [ System Events ] Error - 4/16/2014 7:07:30 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:32 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:32 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:32 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:34 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:34 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:34 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:36 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:36 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 Error - 4/16/2014 7:07:36 AM | Computer Name = CID-TDENZL403CG.hq.nt.newyorklife.com | Source = Service Control Manager | ID = 7001 Description = The Computer Browser service depends on the Server service which failed to start because of the following error: %%1058 < End of report >