OTL Extras logfile created on: 10/10/2014 16:00:17 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Shane\InstallImages Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.17280) Locale: 00001809 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy 2.96 Gb Total Physical Memory | 1.23 Gb Available Physical Memory | 41.42% Memory free 5.92 Gb Paging File | 3.94 Gb Available in Paging File | 66.61% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 232.79 Gb Total Space | 98.51 Gb Free Space | 42.32% Space Free | Partition Type: NTFS Computer Name: CHEZKNEE | User Name: Shane | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (All) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .bat [@ = batfile] -- "%1" %* .chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation) .cmd [@ = cmdfile] -- "%1" %* .com [@ = comfile] -- "%1" %* .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .exe [@ = exefile] -- "%1" %* .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .hta [@ = htafile] -- "%1" %* .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) .inf [@ = inffile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation) .ini [@ = inifile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation) .url [@ = InternetShortcut] -- C:\Windows\System32\rundll32.exe (Microsoft Corporation) .js [@ = JSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation) .jse [@ = JSEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation) .pif [@ = piffile] -- "%1" %* .reg [@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation) .scr [@ = scrfile] -- "%1" /S .txt [@ = txtfile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation) .vbe [@ = VBEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation) .vbs [@ = VBSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation) .wsf [@ = WSFFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation) .wsh [@ = WSHFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation) batfile [open] -- "%1" %* batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation) chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation) cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation) cmdfile [open] -- "%1" %* cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation) comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htafile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation) inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation) inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation) inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation) jsfile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation) jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation) jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation) jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation) jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation) regfile [open] -- regedit.exe "%1" (Microsoft Corporation) regfile [merge] -- Reg Error: Key error. regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation) scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation) txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation) txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation) vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation) vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation) vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation) vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation) vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation) vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation) wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation) wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation) wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation) wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation) Unknown [openas] -- "C:\Users\Shane\AppData\Roaming\File Scout\filescout.exe" /open "%1" Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{29A7946C-B7C8-42EF-8996-E218D492C42A}" = rport=445 | protocol=6 | dir=out | app=system | "{2DC7D62E-7F59-4E6A-B407-DFAA45192E91}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{32016740-B001-48DB-BCFB-8DDE36888C94}" = lport=138 | protocol=17 | dir=in | app=system | "{4748E2D3-5F3B-4F5A-9696-B0969F0ADD5A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{4ECA6AB4-B246-4BC6-94B0-B86F2A148B98}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe | "{52F4CB34-1AFB-47CD-86C9-5F621B007282}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{54E7A87C-653B-4290-8AC0-6827E6F43FBC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{5CC335AE-9832-4950-ABE1-884C1AD5499C}" = lport=137 | protocol=17 | dir=in | app=system | "{60CA5378-3998-42FF-A700-A8FF6E66A76C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{65F58415-2881-4155-9C51-3AF6319DD63F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{86EEED51-D051-4510-ABA0-B7B5C05E52B9}" = rport=138 | protocol=17 | dir=out | app=system | "{87F36154-1B66-425C-9BE7-D240E15688BF}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{8D379A42-377A-4D3B-A1F7-F8B1DB894941}" = rport=139 | protocol=6 | dir=out | app=system | "{9449B2D3-4893-4C35-970E-D0F0881D6908}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{991A8D19-219F-4537-B281-128669BBD961}" = rport=10243 | protocol=6 | dir=out | app=system | "{9928C0E7-2225-4056-B612-5486A1B2E1AD}" = lport=2869 | protocol=6 | dir=in | app=system | "{9E096139-08B9-4D75-837B-15091AC45F7A}" = lport=10243 | protocol=6 | dir=in | app=system | "{BC6F8B8C-0A90-4C26-806A-41CF307B7782}" = rport=137 | protocol=17 | dir=out | app=system | "{C8AACF30-E24E-4318-843D-D95BB5E124F1}" = lport=445 | protocol=6 | dir=in | app=system | "{CB520B26-D5F2-4D32-9CAC-CF1680456C9A}" = lport=139 | protocol=6 | dir=in | app=system | "{CEB9347B-A83B-4FCB-9372-6943DF46E923}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe | "{D0EAD7DD-9837-42CF-8E4B-8FF862B2E2B6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{D7E95DC1-2421-4339-8D4D-556B301EAD1A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{DE20AEE7-674B-4ACB-A466-169A1C56F22A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{F3E9D85A-F157-466E-B33B-67B81A737EC5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe | "{FC579E72-E8AF-4347-86B6-89F32F3389D1}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{000A610F-2924-4C03-8B30-1D97CE28339E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{0137C2CC-73CC-425B-BFBB-7065059B8E74}" = protocol=6 | dir=in | app=c:\program files\orange\rim\fscommand\cksocketserver.exe | "{028DF67B-138D-45D6-A653-DA48BCFBFCA3}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{045116E0-BAAC-4701-9A7A-518FA5D33AC5}" = protocol=6 | dir=out | app=system | "{10CEEC16-3D4C-424F-B5B6-7075EB238521}" = protocol=17 | dir=in | app=c:\program files\sweetim\communicator\sweetpacksupdatemanager.exe | "{137598C9-F157-47D4-B340-46D65487E261}" = protocol=17 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe | "{13E82BE8-6ADE-47C0-9D46-FBA727D4B025}" = dir=in | app=c:\program files\iminent\iminent.messengers.exe | "{15580BF7-CF02-4717-B3EF-FC71C917F9D4}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe | "{16797FEC-9F42-4897-9D2A-5C6625400A3E}" = protocol=6 | dir=in | app=c:\windows\system32\arfc\wrtc.exe | "{1801545B-6A53-471A-94C5-D00026897467}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe | "{1838D2D6-BBCB-4103-AC3F-241CE458D586}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{19C06B8B-2C5C-467D-8C31-C53E7B458C41}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{1B62A4A9-CDDE-4607-948D-F65D7D0A43E7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{1F63BD88-8D68-4CE2-B6AD-454CC1DC6DBE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{21DF8899-0C06-4353-A7A8-BDC83C5C5509}" = protocol=6 | dir=in | app=c:\program files\orange\rim\fscommand\rim.exe | "{21FFD442-08D1-4C54-8742-8759E39C2630}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe | "{226DCEEF-0915-4C14-8028-397D1139CBD2}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe | "{2441ABAB-1733-4185-BCC6-0E5C6F2B6257}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{265B381D-E1B5-40E8-AED8-FCC843FD0C69}" = protocol=6 | dir=in | app=c:\program files\sony mobile\update engine\sony mobile update engine.exe | "{2750730C-26A3-4874-9168-5FF1583A1E44}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe | "{275F02BA-8A2C-4AB1-8734-0030256BDBC4}" = protocol=17 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe | "{2942441C-1168-455D-98AC-266907E57FF2}" = protocol=17 | dir=in | app=c:\windows\system32\msiexec.exe | "{2F210DD8-993A-4B3A-B40C-B411DAB00E2B}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe | "{34FCFCC0-DC17-4FA5-B219-46455FC54C0E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{36683356-4026-4BFE-A429-1C81BD695E82}" = protocol=17 | dir=in | app=d:\fscommand\cksocketserver.exe | "{3759DE31-6A27-4309-9958-E0D43781449B}" = protocol=17 | dir=in | app=c:\program files\orange\rim\fscommand\rim.exe | "{39B7A1F7-3193-4B80-8196-2752121B5C9E}" = protocol=17 | dir=in | app=c:\program files\orange\rim\fscommand\cksocketserver.exe | "{3E269CFB-655D-46CA-866E-7BCEACFE56A3}" = protocol=17 | dir=in | app=d:\fscommand\cksocketserver.exe | "{436DD82E-1DA7-40EC-BD04-F1FC02BD1DAE}" = dir=in | app=c:\program files\hp\digital imaging\smart web printing\smartwebprintexe.exe | "{48A9F684-4FCA-4982-A02B-8A2A1BA78CE9}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe | "{490C8BFD-CC6E-4BB4-8D18-0A64815E9FFA}" = protocol=6 | dir=in | app=c:\program files\orange\rim\fscommand\cksocketserver.exe | "{4FA12D15-08BD-4DD9-8D18-06B9445A5491}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe | "{558B3E7A-6C80-468F-9538-E02739085787}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{585E18F6-1BAA-46CF-A208-5E5018DEE2A6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{5CA9AAEA-F900-4AEA-BF5F-D79A21BDDE73}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe | "{5FEC1E6E-445A-4C11-BE58-8C72B7B2D753}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe | "{68AF9BFF-14BB-46B6-804F-16C69B1DFB0E}" = dir=in | app=d:\setup\hpznui01.exe | "{69AA42A0-4C25-4CB0-9667-AEC85444EF80}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{718AE35B-1911-487C-BA2E-6D410A87E11E}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe | "{74AB76A1-DFD0-417B-9F03-2008B6823C01}" = protocol=17 | dir=in | app=c:\users\shane\appdata\roaming\dropbox\bin\dropbox.exe | "{7777E1D9-763A-45EC-8D1B-90B8B7A7D3D3}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe | "{79B5FB12-53E3-4ADE-B6A5-817882878EBD}" = dir=in | app=c:\program files\hp\hp photosmart 5510d series\bin\devicesetup.exe | "{7FA63BC4-306B-416F-A14E-CEE9599B6BFE}" = protocol=6 | dir=in | app=c:\program files\orange\rim\fscommand\rim.exe | "{8334D6C5-FD76-496A-878B-25E2629579EA}" = protocol=6 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe | "{895A2702-FBB9-4CF9-92E4-DEBF6848B4EE}" = protocol=17 | dir=in | app=c:\program files\orange\rim\fscommand\rim.exe | "{8CB99E95-9D38-4960-AA4D-E2A1EAD85DF0}" = protocol=17 | dir=in | app=c:\program files\orange\rim\fscommand\cksocketserver.exe | "{8D8EF1D2-97E8-4ABA-8EDC-EC18E2CD96AF}" = protocol=17 | dir=in | app=c:\windows\system32\arfc\wrtc.exe | "{8F32477D-47F9-4038-A24D-110A210B0E40}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{8FE92085-C73A-4F4F-A6E7-76ABC6B03187}" = protocol=6 | dir=in | app=c:\users\shane\appdata\roaming\dropbox\bin\dropbox.exe | "{9420E28C-1A03-4793-BB98-0D4506F47EB6}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{99BA965F-A5AB-4F59-833E-31BBB1F87617}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe | "{A198F89C-5A5E-4222-8224-115E21F5634E}" = dir=in | app=c:\program files\hp\hp photosmart 5510 series\bin\devicesetup.exe | "{A4429C70-A66B-451A-B30C-3E5D2330FD5E}" = dir=in | app=c:\program files\hp\hp photosmart 5510d series\bin\hpnetworkcommunicator.exe | "{A710DFB6-C9DA-4F8D-9405-1C56A19D09D7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{A82E4EF5-5E10-4A58-8401-7D2A96CF6F9D}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe | "{AE676A66-F624-4506-BB12-9231603AA188}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe | "{AFE59FB2-043A-4D72-9CFD-8124C515BAAB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{B3E725B9-0F8E-473F-A92E-265E0A034737}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe | "{B6539E94-1DE5-4BD9-B4C5-BF135CF60A89}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{B9E9C263-0D87-414E-8089-626BBEA61FFF}" = protocol=6 | dir=in | app=d:\fscommand\cksocketserver.exe | "{BA3DDE04-EAEB-48D4-891D-8379E8C450E7}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{C4B788A2-B92E-4F1F-84CD-7CC5092BB94A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{C89D2536-AD4D-4CDA-BBCE-168213B2DDF4}" = protocol=17 | dir=in | app=c:\windows\system32\arfc\wrtc.exe | "{D080F8A8-20FF-4FF0-A66F-E6C0C7AE7A6A}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe | "{D4755200-6EB2-4B60-B4F4-92267F04F4B3}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe | "{D89033E2-9443-47D8-BE28-1A1AD80A6567}" = dir=in | app=c:\program files\common files\hp\digital imaging\bin\hpqphotocrm.exe | "{D8C862E0-16E7-4C70-9DA9-C8361139294C}" = protocol=17 | dir=in | app=c:\program files\sony mobile\update engine\sony mobile update engine.exe | "{D991A385-3D77-4770-8161-BECA14F610CF}" = protocol=6 | dir=in | app=c:\windows\system32\msiexec.exe | "{D9ECBC92-CCF6-4D5D-A129-BC61EA63F853}" = dir=in | app=c:\program files\iminent\iminent.exe | "{DD9589B7-FD1E-46EE-ABFB-31667824CBDE}" = protocol=6 | dir=in | app=c:\windows\system32\arfc\wrtc.exe | "{DED5CBA0-F2BF-4236-B2E0-D182D06F039E}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe | "{E3C027C8-75AB-4D6C-B00F-BC998A90E5EB}" = dir=in | app=c:\program files\itunes\itunes.exe | "{E600F14C-EF07-480C-97F4-51B334D9E3B2}" = dir=in | app=c:\program files\hp\hp photosmart 5510 series\bin\hpnetworkcommunicator.exe | "{E64C781B-F188-4766-B1EA-B7E6BF423858}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{EA42E42B-6B17-4F25-9483-0F5CC3035F82}" = protocol=6 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe | "{ED064EF5-8134-40D9-9482-80734FCA3915}" = protocol=6 | dir=in | app=c:\program files\sweetim\communicator\sweetpacksupdatemanager.exe | "{EF0426CC-912A-46EF-89D9-F79FF1B79D42}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{F1714E00-E9F1-45A7-A2A1-37C6AEE94CB4}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe | "{F63E8D83-34BF-4983-9905-DAE9DD5EFEC1}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{F6953E10-AC2B-4A46-9D78-8F54302B1311}" = protocol=6 | dir=in | app=d:\fscommand\cksocketserver.exe | "{FA0793FF-D0EC-4581-8385-31FBA476D1AD}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe | "TCP Query User{369B0250-90D4-4FAF-8B39-37CAEDDCDEC5}C:\program files\microsoft office\office14\groove.exe" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "TCP Query User{9621DB8A-21DA-4FA2-8C40-899C71FA36D4}C:\program files\torntv.com\torntv downloader.exe" = protocol=6 | dir=in | app=c:\program files\torntv.com\torntv downloader.exe | "TCP Query User{BDB62D87-EC2D-4F39-AE00-677F7219EDCB}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "TCP Query User{E6A874A2-2DC1-436E-8698-279C6855EBD8}C:\users\shane\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\shane\appdata\roaming\dropbox\bin\dropbox.exe | "UDP Query User{9B0E0CC0-0E89-4E18-9D41-B08968AD92D7}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "UDP Query User{B713DD45-DCBF-4CD9-BC47-23768DCA30CD}C:\program files\torntv.com\torntv downloader.exe" = protocol=17 | dir=in | app=c:\program files\torntv.com\torntv downloader.exe | "UDP Query User{D08A2E33-B157-436B-801E-4D24FCE4E366}C:\users\shane\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\shane\appdata\roaming\dropbox\bin\dropbox.exe | "UDP Query User{F4C98B21-E6F1-4706-9F8F-D96050FBD93C}C:\program files\microsoft office\office14\groove.exe" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support "{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data "{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE 10.3 "{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store "{11D4FAA0-A577-4FA8-B24E-D24283D861D1}" = QuickShare "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools "{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1 "{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager "{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2 "{42929F0F-CE14-47AF-9FC7-FF297A603021}" = Dell Resource CD "{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support "{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1 "{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth "{54215B8A-6212-8DB8-39B4-98EE2BB98BD1}" = Media Go Video Playback Engine 1.116.110.02030 "{5DB849D6-9392-4FB7-9ABB-87ED433152E5}" = LG United Mobile Drivers "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3 "{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX "{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7A6C3344-5CF9-4B83-959C-6576C5B27D09}" = Media Go "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010 "{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010 "{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010 "{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010 "{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010 "{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010 "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010 "{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010 "{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010 "{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010 "{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010 "{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010 "{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010 "{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010 "{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010 "{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010 "{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1 "{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad "{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 3.4 "{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.3 "{AF549236-6258-4AC6-A043-5B5B89C6EB61}" = SpyHunter "{B04FB606-75EA-4174-B750-35E2DEC20AF4}" = HP Photosmart 5510d series Product Improvement Study "{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime "{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy "{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver "{C2F3460B-0C14-4A85-A330-5D1D5028C496}" = HP Photosmart 5510 series Product Improvement Study "{CDB1080E-BF0A-4A61-9E77-D1BBA68582C7}" = HP Photosmart 5510 series Basic Device Software "{CE2121C6-C94D-4A73-8EA4-6943F33EE335}" = Picture Package Music Transfer "{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00 "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D13FE823-C575-4451-AC37-E645A67AA581}_1.2.3.0" = Orange Installeur version 1.2.3.0 "{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility "{E02964EA-0E1B-4620-A26E-CBAB0341B1BB}" = HP Photosmart 5510 series Help "{E05D82D8-FE70-4228-B073-B0C07FE27595}" = iTunes "{E59ADA18-03DB-44F5-9EF5-0FA25E4D4384}" = HP Photosmart 5510d series Help "{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE 10.3 "{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.226 "{F68DF3B3-7E42-4504-9696-82EDA2C669C2}" = HP Photosmart 5510d series Basic Device Software "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "DivX Setup" = DivX Setup "Google Chrome" = Google Chrome "Google Desktop" = Google Desktop "HDMI" = Intel(R) Graphics Media Accelerator Driver "HP Photo Creations" = HP Photo Creations "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "InstallShield_{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00 "MailNotifier" = Notification Mail "Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.0.2.1012 "Office14.PROPLUSR" = Microsoft Office Professional Plus 2010 "OptimizerProUpdater" = OptimizerPro Updater "OrangeUpdateManager" = Orange update "Picasa 3" = Picasa 3 "RealPlayer 15.0" = RealPlayer "RIM" = Module de vérification de la connexion Internet "TVWiz" = Intel(R) TV Wizard "Update Engine" = Sony Mobile Update Engine "YU2010_is1" = Your Uninstaller! 7 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Dropbox" = Dropbox [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ System Events ] Error - 10/10/2014 07:46:26 | Computer Name = ChezKnee | Source = DCOM | ID = 10010 Description = Error - 10/10/2014 07:46:51 | Computer Name = ChezKnee | Source = DCOM | ID = 10010 Description = < End of report >