Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Windows Update error code 80072EFE

Started by alighieri , Aug 27 2010 04:02 PM

Please log in to reply

#1
alighieri

Posted 27 August 2010 - 04:02 PM

New Member

Member
4 posts

Hi,

I suspect my computer of being infected with something I cannot find nor remove after having tried a variety of scans. There are several symptoms that lead me to this conclusion.

I cannot update Windows Vista. When using the Windows Update function on the control panel I receive the error code 80072EFE. I believe this is the error code for no internet connectivity, yet I can access any webpage on the net at the same time. When trying to update via IE or Firefox through the webpage windowsupdate.microsoft.com/ I am told the webpage is not online and at the same time Norton antivirus notifies me of "A recent attempt to attack your computer was blocked". Norton provides the following details in the log:

An intrusion attempt by 91jjak4555j.com was blocked. Application path \DEVICE\HARDDISKVOLUME2\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE
Risk Name: HTTP TidservRequest
Severity: High
Attacking computer: 91jjak4555j.com (91.216.73.59, 80)
Destination Address: HOME-PC (192.168.1.68, 49870)
Source Address: 91.216.73.59 (91.216.73.59)
Traffic Desciption: TCP, www-http

This is just one of frequent attacks I have experienced over the last few weeks. When online I am attacked on average every 2 minute.

I have Norton Antivirus enabled and have ran full system scans on several occasions without any luck.

I have ran through the following steps:

1. Temp File Cleaner ran - made no noticeable difference

2. Malwarebytes' Anti-Malware a.k.a. MBAM quick-scan ran as described and it did not find any errors. Log pasted below.

3. Full system scan ran with Norton AntiVirus. Found nothing.

4. GMER ran - computer rebooted and said a fatal error had occured. Did not attempt to rerun.

5. OTL ran, log posted below.

I would greatly appreciate any help on this as I am completely lost.

Many thanks,

alighieri

#2
alighieri

Posted 27 August 2010 - 04:03 PM

New Member

Topic Starter
Member
4 posts

MBAM-log:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4490

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18904

27/08/2010 20:55:24
mbam-log-2010-08-27 (20-55-24).txt

Scan type: Quick scan
Objects scanned: 143390
Time elapsed: 9 minute(s), 33 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#3
alighieri

Posted 27 August 2010 - 04:04 PM

New Member

Topic Starter
Member
4 posts

OTL Extra-log:

OTL Extras logfile created on: 27/08/2010 21:34:10 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\The Den\Desktop\Malware Fix
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 57.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 81.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 176.16 Gb Total Space | 35.07 Gb Free Space | 19.91% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME-PC
Current User Name: The Den
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1450940846-3917319777-1352840795-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{766BB40C-3772-42D5-93DC-EAA0DE4975E2}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8AA2D794-EAB0-40D7-A8A1-3F7A37B5BA05}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{9AC7BCEF-4543-43D6-842A-F513BC4C24F4}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{027E7809-6F36-4C2D-A835-E670A4C17797}" = protocol=17 | dir=in | app=c:\program files\google\google talk\googletalk.exe |
"{0CFF161D-43C8-47E7-A328-A7470E6FBC72}" = protocol=17 | dir=in | app=c:\program files\sports interactive\football manager 2010 demo\fm.exe |
"{15676FB5-6730-4972-918D-A7B8826C7074}" = protocol=6 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{17006631-9B48-419B-B829-3E3300885DBF}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{21ABB06A-5051-4491-B262-C3762D9838D7}" = protocol=6 | dir=in | app=c:\program files\google\google talk\googletalk.exe |
"{234F89D1-8BCA-4F1D-926D-CC11FEDCAA9D}" = protocol=17 | dir=in | app=c:\program files\google\google talk\googletalk.exe |
"{2495618D-7CE8-4435-A4B4-F446DB04E9A3}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{4127A9BC-9ACE-4C6D-8B19-83DF608B16BC}" = protocol=6 | dir=in | app=c:\users\the den\appdata\local\google\google talk plugin\googletalkplugin.dll |
"{426FD3D3-1BDC-4CDA-A0ED-99FF4B16AD4D}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4F5C9F1C-D549-40F0-BB89-06ECEBC814A5}" = protocol=6 | dir=in | app=c:\program files\sports interactive\football manager 2010 demo\fm.exe |
"{56B4D8C5-E549-41B3-8926-399153FF339B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{57D2705D-093C-47E4-A66B-B945EF865586}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6029ADA4-7A60-4713-9F41-E3FCB9C4EB0E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{62146276-8A07-4CE5-A3D0-089A9864A9F7}" = protocol=6 | dir=in | app=c:\program files\cyanide\pro cycling manager - season 2009\pcm.exe |
"{6557EB34-41B8-4D67-AF68-25F05803B5A5}" = protocol=17 | dir=in | app=c:\program files\cyanide\pro cycling manager - season 2009\autorun\exe\autorun.exe |
"{76ED49E8-4CCB-4A3D-B822-BBD5A3ABCFD3}" = protocol=17 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{7B5F9558-2DEF-46D9-BF54-50EA27492C84}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2010\fm.exe |
"{83975237-6133-41DB-B962-61DE6D0226EB}" = protocol=6 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{90D985DD-6B61-4843-9759-C18509237E0E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{932E6C14-59B4-43AD-80CD-44F793B97BBF}" = protocol=17 | dir=in | app=c:\users\the den\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{95052DD7-03DA-4A54-9DD5-4BF41CA3341A}" = protocol=17 | dir=in | app=c:\users\the den\appdata\local\google\google talk plugin\googletalkplugin.dll |
"{98A077C6-F478-4CD0-865F-ACD81F8BE01F}" = protocol=17 | dir=in | app=c:\program files\cyanide\pro cycling manager - season 2009\pcm.exe |
"{A68A1483-4629-447E-89A2-8EF9CA1DF695}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AC29AE3A-4DF6-4966-9C7A-0929F26E0997}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\football manager 2010\fm.exe |
"{AD65B30D-DDA4-4C2B-91EE-45A97CA145F4}" = protocol=6 | dir=in | app=c:\program files\cyanide\pro cycling manager - season 2009\autorun\exe\autorun.exe |
"{B2F9A210-4BC6-4133-BBAC-7B653A40C0A2}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{B972E07F-71AB-443C-8C0E-16EB356425A3}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BBE76A5C-0DE2-4934-8B96-D09CAF065921}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{C4E2AC1C-5542-4D19-9AD8-00D19FB2F9A6}" = protocol=6 | dir=in | app=c:\program files\google\google talk\googletalk.exe |
"{CCCFE722-3269-4A50-BDA1-F925C699F9DD}" = protocol=6 | dir=in | app=c:\program files\cyanide\gamecenter\gamecenter.exe |
"{CE770E73-14C0-4467-9DA7-33D3B6E0ED78}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{D1A86B11-C428-4988-932E-CC91453DC301}" = protocol=6 | dir=in | app=c:\users\the den\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{D2D9D0D2-339E-4584-88DE-753EBAD91EC4}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{D773AB8A-2AF2-4118-8B86-AFA877E839FE}" = protocol=17 | dir=in | app=c:\program files\cyanide\gamecenter\gamecenter.exe |
"{DD8A0763-9778-47CD-BBC5-44A1EE9D8680}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{EAE62283-5E09-430A-9E7B-0F45369EFA48}" = protocol=17 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{EE6AD982-2F71-48B9-8995-62271B89A6A5}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{FC2D6B46-4E43-4AD5-A3C0-533DC2B8FA4C}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"TCP Query User{3205E778-CB42-4DD1-ADD1-CED4B2E0E995}C:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"UDP Query User{98A8EE53-559E-4BE6-9323-60811EB20538}C:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00E3E16A-EF37-6F18-2501-821AAB6903AB}" = ccc-core-static
"{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}" = Sony Video Shared Library
"{0299E902-A8ED-7748-4A47-8080C42436F2}" = Catalyst Control Center Core Implementation
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software 6.1.0.2200
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D8189EB-8824-AA13-6A45-8201E3353AC8}" = CCC Help German
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Windows Live ID Sign-in Assistant
"{1316AEF2-E086-46C7-B1FB-8C9A39A2ABF9}" = VAIO Media plus
"{14F47992-EF70-16D9-1DD6-8A240073CD82}" = ATI Catalyst Install Manager
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}" = VAIO Launcher
"{165E861A-D87F-5BED-190E-8EBC4ECCE65E}" = Catalyst Control Center Graphics Light
"{17F8195F-91B9-35A7-E4B9-6E54C0B7B9B3}" = CCC Help Korean
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1EDDE5D9-7455-3159-41BE-1BC8C76B8950}" = CCC Help Spanish
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for VAIO
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{23825B69-36DF-4DAD-9CFD-118D11D80F16}" = VAIO Content Folder Setting
"{248BF282-92C4-4C53-09F4-454E81503277}" = Catalyst Control Center Localization Italian
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java™ 6 Update 21
"{27A2ABE9-E4C4-45DD-B9A8-CEEEE380E7E1}" = VAIO Content Metadata Intelligent Analyzing Manager
"{28B52CF6-FC4D-38E7-2438-62EB527780FD}" = Catalyst Control Center Graphics Full Existing
"{29ADBAC3-97C3-1963-0F76-1687F73154D7}" = Catalyst Control Center Localization French
"{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}" = Wireless Switch Setting Utility
"{2E0993DB-99D1-3D3D-FDD8-757F7C44BB7F}" = CCC Help French
"{2E2F4CB9-70B3-B6BA-1241-BC53FE5BE5DA}" = Catalyst Control Center Localization Thai
"{31E6A959-22FA-51B9-4E5A-1E2D2C0C8F1E}" = CCC Help Hungarian
"{3248F0A8-6813-11D6-A77B-00B0D0160040}" = Java™ 6 Update 4
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{326DC400-1FC4-4D7D-946D-06D1EAB93200}" = VAIO Guide
"{356181AD-C50C-394F-20D8-C6CB0A961589}" = Catalyst Control Center Localization Portuguese
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
"{3E2C691B-B7E6-4053-B5C3-94B8BC407E7A}" = Adobe Premiere Elements 4.0
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector
"{46B9C26B-4370-C68D-1743-4F13AC12B4CD}" = CCC Help Turkish
"{495B3F8D-06AA-216A-6159-C9EABA6B7D8E}" = CCC Help Chinese Traditional
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A074D34-1F3D-B98F-CFF9-B2794DA33871}" = Catalyst Control Center Localization Danish
"{4A790D47-EBBF-659B-96BD-46AF5D69730B}" = Catalyst Control Center Localization Chinese Traditional
"{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = Click to Disc Editor
"{4EA55D20-27FB-45D7-8726-147E8A5F6C62}" = VAIO MusicBox
"{4FE475AA-C4CC-115A-1422-5DFB86FC806D}" = Catalyst Control Center Localization Hungarian
"{51AA8C3F-B316-44A8-B371-4BB6047E45DF}" = WSC Real 09
"{5463642B-44B3-34D3-E64E-0ACAA949BB5A}" = CCC Help Finnish
"{568457D9-A55B-D9BC-13EC-14C84E69BD86}" = Catalyst Control Center Graphics Full New
"{56A6F256-5323-4617-3AE8-45B28B559E37}" = CCC Help English
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57A3A36F-626E-8848-D9E0-41FCDC92FECA}" = CCC Help Portuguese
"{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}" = VAIO Data Restore Tool
"{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}" = VAIO DVD Menu Data Basic
"{5C5EE8F2-0B38-4C13-AE4E-A87A237FE718}" =
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.6
"{6332AFF1-9D9A-429C-AA03-F82749FA4F49}" = SonicStage Mastering Studio
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6788581C-ECDA-326B-EE71-F9BE4635355F}" = Catalyst Control Center Localization Korean
"{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}" = Click to Disc
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B1F20F2-6321-4669-A58C-33DF8E7517FF}" = VAIO Entertainment Platform
"{6CE464DB-CD52-F4F9-FB58-BC934702A499}" = CCC Help Japanese
"{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}" = VAIO Movie Story Template Data
"{7193B0D6-65E4-6FB1-EB23-E9CE6D611BDC}" = CCC Help Czech
"{72042FA6-5609-489F-A8EA-3C2DD650F667}" = VAIO Control Center
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio
"{757CC5BA-BF08-46A5-8D10-64C6FDF659C6}" = VAIO Content Metadata Manager Setting
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7AB3A249-FB81-416B-917A-A2A10E74C503}" = iTunes
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7BB90344-0647-468E-925A-7F69F7983421}" = ArcSoft Magic-i Visual Effects
"{7CB64BD2-0FB7-E037-6924-EA2B8BE44E7E}" = CCC Help Greek
"{7F6C2F96-3302-784E-BF0D-65D794E39BC2}" = Catalyst Control Center Localization Norwegian
"{802889F8-6AF5-45A5-9764-CA5B999E50FC}" = VAIO Power Management
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{83CDA18E-0BF3-4ACA-872C-B4CDABF2360E}" = VAIO Update 4
"{84EA9BEB-AFF7-06C6-60DF-608807EA7DF2}" = Catalyst Control Center Localization German
"{8550D6A8-0DBC-AC89-F12B-71167346845E}" = Catalyst Control Center Localization Dutch
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A2224A1-7C5F-170C-74B6-6EEF9F92FCC3}" = CCC Help Norwegian
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8ED3A392-28F1-4375-97AC-BF275B5855F9}" = OpenMG Secure Module 5.0.00
"{8EDBA74D-0686-4C99-BFDD-F894678E5102}" = Adobe Common File Installer
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{963B65F9-89C7-48BB-8E40-E7583DEC7C8D}" = SonicStage Mastering Studio
"{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}" =
"{96E3AED5-3D0B-4BB0-84C2-1EDADB204487}" = FlashFXP v3
"{96E425D4-2DB1-6B29-0944-7DC78E9EEF81}" = Catalyst Control Center Localization Finnish
"{98FC7A64-774B-49B5-B046-4B4EBC053FA9}" = VAIO MusicBox Sample Music
"{9973498D-EA29-4A68-BE0B-C88D6E03E928}" = ArcSoft WebCam Companion 2
"{9C1C8A04-F8CA-4472-A92D-4288CE32DE86}" = SonicStage Mastering Studio Plugins
"{9C71059E-6DDD-4958-9251-7A5F865B6BA0}" = VAIO Content Metadata Intelligent Analyzing Manager
"{9E332EEA-DCFC-424B-E499-0D35FFAD4D76}" = Catalyst Control Center Localization Greek
"{9F165569-C622-3F85-0F90-23CF9B0B7E50}" = Catalyst Control Center Localization Turkish
"{A33E457B-5369-481F-8B53-71108AE2EB5B}" = Roxio Easy Media Creator 10 LJ
"{A38F2A2D-F9AC-6303-A14D-DD2D77519627}" = Catalyst Control Center Localization Polish
"{A4399CF4-7A3F-4E84-B763-AD352640203D}" = VAIO Content Metadata XML Interface Library
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A63E7492-A0BC-4BB9-89A7-352965222380}" = VAIO Original Function Setting
"{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}" = Setting Utility Series
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1033-F400-BA7E-000000000003}" = Adobe Acrobat 8 Standard - English, Français, Deutsch
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B07FD2DE-87AB-976B-9E7E-9CD9598D1188}" = CCC Help Italian
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}" = VAIO Movie Story
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B74686F4-939E-9D89-2C09-3B0FCB3C2B37}" = Catalyst Control Center Localization Japanese
"{B7C03E84-AF46-42F4-809D-D4127D9086D0}" = VAIO Edit Components 6.4
"{B982D59B-B732-C911-51F3-CC962F906573}" = ccc-utility
"{BFCBC9EC-8ECC-2E8F-85DF-9D02C3B6E8AD}" = CCC Help Thai
"{C1141112-2968-FB36-0DF7-9D61AE6A0DCF}" = CCC Help Chinese Standard
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C7477742-DDB4-43E5-AC8D-0259E1E661B1}" = VAIO Event Service
"{C9B56B00-7A33-378D-E64E-E044BE535A46}" = Catalyst Control Center Localization Chinese Standard
"{CC56A2CB-EC09-4175-B8BD-93E2440D410B}" = VAIO Content Metadata Manager Setting
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D06F5884-B439-440B-A58D-6C057C2FF8EB}" = Click to Disc
"{D0AE373E-C276-432B-9A95-F8DD356A8242}" = VAIO Movie Story
"{D466F3D9-510C-4729-B7D4-2E70490E4CDF}" = BBC iPlayer Download Manager
"{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}" = VAIO Wallpaper Contents
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D79FDDB3-D6DD-63CC-BA61-D5406F392979}" = Catalyst Control Center Localization Russian
"{D90507A2-6183-497D-9075-951DC80362DA}" = VAIO Media plus
"{DA3C6D93-6EB8-BF5C-2C14-2B1A08284DBD}" = Catalyst Control Center Graphics Previews Vista
"{DEBA60A3-7CDE-48D7-993D-7C68663AEE68}" = VAIO Content Metadata Intelligent Analyzing Manager
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{DEFB9CA4-6242-B988-E263-CD102219F54F}" = Skins
"{DF02B276-8216-D2FC-1E3D-E6382F8F6D91}" = Catalyst Control Center Localization Swedish
"{DF7DB916-90E5-40F2-9010-B8125EB5FD6F}" = SonicStage Mastering Studio Audio Filter
"{E2E78020-45C7-6C28-E7FC-E31C656232BD}" = Rightmove Desktop
"{E40EE28E-1009-B9B3-1E6B-635E878EAFF4}" = CCC Help Danish
"{E626EA97-DC4B-B9C2-5120-F826D00623D5}" = Catalyst Control Center Localization Spanish
"{E6707034-D7A4-49B1-94D0-F5AACE46F06C}" = Instant Mode
"{E8EF1266-1D1F-C2FB-1E98-2FB9E71B3C7C}" = Catalyst Control Center Graphics Previews Common
"{EC37A846-53AC-4DA7-98FA-76A4E74AA900}" = SonicStage Mastering Studio Audio Filter Custom Preset
"{ED1273B9-C028-C97D-BBF4-B667AD1644AE}" = CCC Help Dutch
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1FD0F66-34CF-4555-8B13-BCFC96F3864C}" = Branding
"{F2D89AED-46DA-3DAF-CE35-BEA81D3CCE4B}" = CCC Help Polish
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F536B64C-FA0C-AAEE-AE89-E15B12E7C659}" = CCC Help Swedish
"{F54AC413-D2C6-4A24-B324-370C223C6250}" = Adobe Photoshop Elements 6.0
"{F570A6CC-53ED-4AA9-8B08-551CD3E38D8B}" =
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F76F1E24-BFF9-9754-FDB4-595A7DFF8651}" = CCC Help Russian
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{F85C7118-F3DC-4ED9-AB27-3E7931EA3D88}" = Adobe Premiere Elements 4.0 Templates
"{F8ECA4D4-3CB6-3B1C-A20A-884D5744C0FF}" = Catalyst Control Center Localization Czech
"{FACD3674-FC12-4B6C-A923-E1D687704E9B}" = VAIO Content Metadata XML Interface Library
"{FE51662F-D8F6-43B5-99D9-D4894AF00F83}" = Roxio Easy Media Creator Home
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Ad-Aware" = Ad-Aware
"Adobe Acrobat 8 Standard - English, Français, Deutsch" = Adobe Acrobat 8.1.3 Standard
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 6" = Adobe Photoshop Elements 6.0
"Atlantis - Sky Patrol" = Atlantis - Sky Patrol (remove only)
"BBC iPlayer Download Manager" = BBC iPlayer Download Manager
"Big Fish Games Center" = Big Fish Games Center
"Big Fish Games Sudoku" = Big Fish Games Sudoku (remove only)
"Bink and Smacker" = Bink and Smacker
"BurnAware Free_is1" = BurnAware Free 2.3.8
"CIMA Certificate Paper C05V1.0" = CIMA Certificate Paper C05
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200" = HDAUDIO SoftV92 Data Fax Modem with SmartCP
"com.rightmove.rmdesktop.303FAAB8E16C565CA4B74422796CD427470CE949.1" = Rightmove Desktop
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"dt icon module" =
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ERUNT_is1" = ERUNT 1.1j
"Football Manager 2010 Demo" = Football Manager 2010 Demo
"GameCenter" = GameCenter
"gtfirstboot Setting Request" =
"HAM" = HAM
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for VAIO
"InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}" = Click to Disc Editor
"InstallShield_{8ED3A392-28F1-4375-97AC-BF275B5855F9}" = OpenMG Secure Module 5.0.00
"Juniper Network Connect 6.2.0" = Juniper Networks Network Connect 6.2.0
"Juniper_Setup_Client Activex Control" = Juniper Networks Setup Client Activex Control
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.6.2 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MarketingTools" = Vaio Marketing Tools
"MFU Module" =
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Forefront UAG endpoint components 3.1.0" = Microsoft Forefront UAG endpoint components v4.0.0
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"NIS" = Norton Internet Security
"Picasa 3" = Picasa 3
"PremElem40" = Adobe Premiere Elements 4.0
"PremElem40Templates" = Adobe Premiere Elements 4.0 Templates
"Pro Cycling Manager 2009_is1" = Pro Cycling Manager - Season 2009 1.0.0.1
"Steam App 34000" = Football Manager 2010
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VAIO Help and Support" =
"VAIO_My Club VAIO" = My Club VAIO
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver

#4
alighieri

Posted 27 August 2010 - 04:05 PM

New Member

Topic Starter
Member
4 posts

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Juniper_Setup_Client" = Juniper Networks Setup Client

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 27/01/2010 02:56:03 | Computer Name = Home-PC | Source = VzCdbSvc | ID = 7
Description = Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error
code = 0x80042019)

Error - 27/01/2010 02:56:55 | Computer Name = Home-PC | Source = WinMgmt | ID = 10
Description =

Error - 27/01/2010 13:07:13 | Computer Name = Home-PC | Source = VzCdbSvc | ID = 7
Description = Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error
code = 0x80042019)

Error - 27/01/2010 13:08:13 | Computer Name = Home-PC | Source = WinMgmt | ID = 10
Description =

Error - 28/01/2010 05:41:18 | Computer Name = Home-PC | Source = VzCdbSvc | ID = 7
Description = Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error
code = 0x80042019)

Error - 28/01/2010 05:42:09 | Computer Name = Home-PC | Source = WinMgmt | ID = 10
Description =

Error - 28/01/2010 16:17:21 | Computer Name = Home-PC | Source = VzCdbSvc | ID = 7
Description = Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error
code = 0x80042019)

Error - 28/01/2010 16:18:06 | Computer Name = Home-PC | Source = WinMgmt | ID = 10
Description =

Error - 29/01/2010 08:27:22 | Computer Name = Home-PC | Source = VzCdbSvc | ID = 7
Description = Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error
code = 0x80042019)

Error - 29/01/2010 08:28:06 | Computer Name = Home-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 27/08/2010 14:55:23 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 27/08/2010 15:14:10 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 27/08/2010 15:30:31 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 27/08/2010 15:30:31 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 27/08/2010 16:08:19 | Computer Name = Home-PC | Source = DCOM | ID = 10010
Description =

Error - 27/08/2010 16:10:26 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 27/08/2010 16:10:26 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 27/08/2010 16:19:19 | Computer Name = Home-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 21:17:33 on 27/08/2010 was unexpected.

Error - 27/08/2010 16:20:12 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 27/08/2010 16:20:12 | Computer Name = Home-PC | Source = Service Control Manager | ID = 7000
Description =

< End of report >

OTL-log:

OTL logfile created on: 27/08/2010 21:34:10 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\The Den\Desktop\Malware Fix
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 57.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 81.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 176.16 Gb Total Space | 35.07 Gb Free Space | 19.91% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME-PC
Current User Name: The Den
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan

========== Processes (SafeList) ==========

PRC - C:\Users\The Den\Desktop\Malware Fix\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Google\Update\1.2.183.27\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe (Microsoft Â® Corporation)
PRC - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
PRC - C:\Program Files\Juniper Networks\Common Files\dsNcService.exe (Juniper Networks)
PRC - C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe (Sony Corporation)
PRC - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
PRC - C:\Program Files\Sony\Marketing Tools\MarketingTools.exe (Sony NSCE)
PRC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
PRC - C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Sony Corporation)
PRC - C:\Program Files\Kontiki\KService.exe (Kontiki Inc.)
PRC - C:\Program Files\Kontiki\KHost.exe (Kontiki Inc.)
PRC - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe (Sony Corporation)
PRC - C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (Sony Corporation)
PRC - C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
PRC - C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe (ArcSoft, Inc.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
PRC - C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe (Sony Corporation)
PRC - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
PRC - C:\Windows\Samsung\ComSMMgr\SSMMgr.exe (Samsung Electronics.)

========== Modules (SafeList) ==========

MOD - C:\Users\The Den\Desktop\Malware Fix\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\System32\BtMmHook.dll (Broadcom Corporation.)
MOD - C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll ()

========== Win32 Services (SafeList) ==========

SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe File not found
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (DMService) -- C:\Windows\Downloaded Program Files\DM.0\DMService.exe ()
SRV - (uagqecsvc) -- C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe (Microsoft Â® Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Norton Internet Security) -- C:\Program Files\Norton Internet Security\Engine\16.8.0.41\ccSvcHst.exe (Symantec Corporation)
SRV - (appdrvrem01) Application Driver Auto Removal Service (01) -- C:\Windows\System32\appdrvrem01.exe (Protection Technology)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (dsNcService) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe (Juniper Networks)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (SOHDs) -- C:\Program Files\Sony\VAIO Media plus\SOHDs.exe (Sony Corporation)
SRV - (SOHDms) -- C:\Program Files\Sony\VAIO Media plus\SOHDms.exe (Sony Corporation)
SRV - (SOHCImp) -- C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe (Sony Corporation)
SRV - (VcmIAlzMgr) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (Sony Corporation)
SRV - (VcmXmlIfHelper) -- C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe (Sony Corporation)
SRV - (KService) -- C:\Program Files\Kontiki\KService.exe (Kontiki Inc.)
SRV - (VAIO Event Service) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe (Sony Corporation)
SRV - (VzFw) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe (Sony Corporation)
SRV - (VAIO Entertainment TV Device Arbitration Service) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe (Sony Corporation)
SRV - (VzCdbSvc) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Sony Corporation)
SRV - (Vcsw) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (Sony Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (SPTISRV) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (MSCSPTISRV) -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (PACSPTISVR) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe (Sony Corporation)
SRV - (uCamMonitor) -- C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe (ArcSoft, Inc.)
SRV - (AdobeActiveFileMonitor6.0) -- C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
SRV - (IviRegMgr) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)

========== Driver Services (SafeList) ==========

DRV - (UIUSys) -- C:\Windows\System32\DRIVERS\UIUSYS.SYS File not found
DRV - (SYMREDRV) -- C:\Windows\System32\Drivers\NIS\1002000.007\SYMREDRV.SYS File not found
DRV - (SYMDNS) -- C:\Windows\System32\Drivers\NIS\1002000.007\SYMDNS.SYS File not found
DRV - (NwlnkFwd) -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- C:\Windows\System32\DRIVERS\ipinip.sys File not found
DRV - (igfx) -- C:\Windows\System32\DRIVERS\igdkmd32.sys File not found
DRV - (Lavasoft Kernexplorer) -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys ()
DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100827.003\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100827.003\NAVENG.SYS (Symantec Corporation)
DRV - (Lbd) -- C:\Windows\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100826.001\IDSvix86.sys (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (ccHP) -- C:\Windows\System32\Drivers\NIS\1008000.029\ccHPx86.sys (Symantec Corporation)
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek )
DRV - (SymEFA) -- C:\Windows\system32\drivers\NIS\1008000.029\SYMEFA.SYS (Symantec Corporation)
DRV - (SRTSP) -- C:\Windows\System32\Drivers\NIS\1008000.029\SRTSP.SYS (Symantec Corporation)
DRV - (BHDrvx86) -- C:\Windows\System32\Drivers\NIS\1008000.029\BHDrvx86.sys (Symantec Corporation)
DRV - (SYMTDI) -- C:\Windows\System32\Drivers\NIS\1008000.029\SYMTDI.SYS (Symantec Corporation)
DRV - (SYMFW) -- C:\Windows\System32\Drivers\NIS\1008000.029\SYMFW.SYS (Symantec Corporation)
DRV - (SYMNDISV) -- C:\Windows\System32\Drivers\NIS\1008000.029\SYMNDISV.SYS (Symantec Corporation)
DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\NIS\1008000.029\SRTSPX.SYS (Symantec Corporation)
DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (SymIM) -- C:\Windows\System32\drivers\SymIMV.sys (Symantec Corporation)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (appdrv01) Application Driver (01) -- C:\Windows\System32\drivers\appdrv01.sys (Protection Technology)
DRV - (dsNcAdpt) -- C:\Windows\System32\drivers\dsNcAdpt.sys (Juniper Networks)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (R5U870FLx86) -- C:\Windows\System32\drivers\R5U870FLx86.sys (Ricoh)
DRV - (R5U870FUx86) -- C:\Windows\System32\drivers\R5U870FUx86.sys (Ricoh)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.)
DRV - (HSF_DPV) -- C:\Windows\System32\drivers\HSX_DPV.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\Windows\System32\drivers\HSX_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSXHWAZL) -- C:\Windows\System32\drivers\HSXHWAZL.sys (Conexant Systems, Inc.)
DRV - (btwrchid) -- C:\Windows\System32\drivers\btwrchid.sys (Broadcom Corporation.)
DRV - (btwavdt) -- C:\Windows\System32\drivers\btwavdt.sys (Broadcom Corporation.)
DRV - (btwaudio) -- C:\Windows\System32\drivers\btwaudio.sys (Broadcom Corporation.)
DRV - (btwl2cap) -- C:\Windows\System32\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV - (ArcSoftKsUFilter) -- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys (ArcSoft, Inc.)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel® -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (HSFHWAZL) -- C:\Windows\System32\drivers\VSTAZL3.SYS (Conexant Systems, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (NETw3v32) Intel® -- C:\Windows\System32\drivers\NETw3v32.sys (Intel Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (SFEP) -- C:\Windows\System32\drivers\SFEP.sys (Sony Corporation)
DRV - (DMICall) -- C:\Windows\System32\drivers\DMICall.sys (Sony Corporation)
DRV - (ti21sony) -- C:\Windows\System32\drivers\ti21sony.sys (Texas Instruments)
DRV - (NETw4v32) Intel® -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation)
DRV - (WimFltr) -- C:\Windows\System32\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo)
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: [email protected]:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 9
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: [email protected]:1.0.0.071303000006
FF - prefs.js..extensions.enabledItems: {da8bd68d-8e90-41cd-8345-a71b294e72e6}:2.0.7.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21

FF - HKLM\software\mozilla\Firefox\Extensions\\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\ [2010/04/27 18:26:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/08/20 18:28:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/13 21:41:09 | 000,000,000 | ---D | M]

[2008/10/07 21:59:57 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Mozilla\Extensions
[2010/08/27 20:47:39 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\extensions
[2010/05/01 23:09:05 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/03/14 23:10:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\extensions\{9d1f059c-cada-4111-9696-41a62d64e3ba}(40)
[2010/04/17 20:48:42 | 000,000,000 | ---D | M] (Property Bee) -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\extensions\{da8bd68d-8e90-41cd-8345-a71b294e72e6}
[2009/12/11 17:30:53 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\extensions\[email protected]
[2009/03/14 20:17:51 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\extensions\[email protected]
[2008/10/12 18:21:12 | 000,000,523 | ---- | M] () -- C:\Users\The Den\AppData\Roaming\Mozilla\Firefox\Profiles\2rhl9wgu.default\searchplugins\daemon-search.xml
[2010/08/27 21:10:15 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/13 21:41:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2008/02/27 18:57:38 | 000,106,496 | ---- | M] (British Broadcasting Corporation) -- C:\Program Files\Mozilla Firefox\plugins\npBBCPlugin.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/03/21 00:55:50 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/03/21 00:55:51 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/03/21 00:55:51 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/03/21 00:55:53 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2009/07/01 13:03:34 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google BAE\BAE.dll (Your Company Name)
O2 - BHO: (FlashFXP Helper for Internet Explorer) - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Program Files\FlashFXP\IEFlash.dll (IniCom Networks, Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe File not found
O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe File not found
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe (Sony NSCE)
O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe File not found
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Samsung Common SM] C:\Windows\Samsung\ComSMMgr\ssmmgr.exe (Samsung Electronics.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [kdx] C:\Program Files\Kontiki\KHost.exe (Kontiki Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Append to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\WhlNSP.dll (Microsoft Â® Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\WhlLSP.dll (Microsoft Â® Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\WhlLSP.dll (Microsoft Â® Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\WhlLSP.dll (Microsoft Â® Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\WhlLSP.dll (Microsoft Â® Corporation)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: falkirk.gov.uk ([remoteworking] https in Trusted sites)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail....NPUplden-gb.cab (MSN Photo Upload Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8D9563A9-8D5F-459B-87F2-BA842255CB9A} https://remoteworkin.../WhlCompMgr.cab (Forefront UAG endpoint components)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {AC414988-E5BB-4C2C-873B-EA53D2F3D23A} http://t.live.cctv.c...dateInstall.dll (CCTVUpdateInstall)
O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_04)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - File not found
O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\System32\VESWinlogon.dll (Sony Corporation)
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{ac8c4997-6d38-11de-a1b4-001a80ce57b4}\Shell - "" = AutoRun
O33 - MountPoints2\{ac8c4997-6d38-11de-a1b4-001a80ce57b4}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -- File not found
O33 - MountPoints2\{bc85f08b-9881-11dd-8e5e-001e3da30729}\Shell - "" = AutoRun
O33 - MountPoints2\{bc85f08b-9881-11dd-8e5e-001e3da30729}\Shell\AutoRun\command - "" = G:\setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.ac3acm - C:\Windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.siren - C:\Windows\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.dvsd - C:\Program Files\Common Files\Sony Shared\VideoLib\sonydv.dll (Sony Corporation)
Drivers32: VIDC.FFDS - C:\Windows\System32\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\System32\yv12vfw.dll (www.helixcommunity.org)

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 90 Days ==========

[2010/08/27 21:19:13 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010/08/27 20:36:22 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/08/27 20:35:29 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/08/27 20:12:52 | 000,000,000 | ---D | C] -- C:\Users\The Den\Desktop\Malware Fix
[2010/08/25 20:48:41 | 000,000,000 | ---D | C] -- C:\Users\The Den\AppData\Roaming\com.rightmove.rmdesktop.303FAAB8E16C565CA4B74422796CD427470CE949.1
[2010/08/25 20:47:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010/08/25 20:47:43 | 000,000,000 | ---D | C] -- C:\Program Files\Rightmove
[2010/08/14 10:00:06 | 000,000,000 | ---D | C] -- C:\Users\The Den\Desktop\FM
[2010/08/13 21:42:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/08/13 19:39:55 | 000,000,000 | ---D | C] -- C:\Users\The Den\AppData\Roaming\Malwarebytes
[2010/08/13 19:39:42 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/08/13 19:39:40 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/08/13 19:39:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/08/13 19:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/08/13 18:54:22 | 000,000,000 | ---D | C] -- C:\Users\The Den\AppData\Local\Sunbelt Software
[2010/08/13 18:50:33 | 000,000,000 | -H-D | C] -- C:\ProgramData\{BD986C1B-72EC-4B82-B47B-6CAC4E6F494E}
[2010/08/12 22:28:24 | 000,000,000 | ---D | C] -- C:\Users\The Den\AppData\Roaming\EAC7FF39D5D2353B8DFCB21D1472160F
[2010/07/25 09:20:01 | 000,000,000 | ---D | C] -- C:\ProgramData\NOS
[2010/06/26 15:34:07 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/06/26 15:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/06/26 15:29:46 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010/06/26 15:27:47 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2010/06/24 19:04:48 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/06/08 20:41:59 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2010/05/31 15:30:40 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Forefront UAG
[2010/05/31 14:41:10 | 000,000,000 | ---D | C] -- C:\Users\The Den\.whalesslwrapper
[2010/05/31 14:38:16 | 000,000,000 | ---D | C] -- C:\Users\The Den\IAG Remote Access Agent

========== Files - Modified Within 90 Days ==========

[2010/08/27 21:34:27 | 002,584,576 | ---- | M] () -- C:\Users\The Den\ntuser.dat
[2010/08/27 21:19:33 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/08/27 21:19:29 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/08/27 21:19:29 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/08/27 21:19:29 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/08/27 21:19:16 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/08/27 21:19:06 | 3219,578,880 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/27 21:19:04 | 330,426,521 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/08/27 21:09:57 | 000,524,288 | -HS- | M] () -- C:\Users\The Den\ntuser.dat{61a9b5b4-b211-11df-a9a6-001a80ce57b4}.TMContainer00000000000000000002.regtrans-ms
[2010/08/27 21:09:57 | 000,524,288 | -HS- | M] () -- C:\Users\The Den\ntuser.dat{61a9b5b4-b211-11df-a9a6-001a80ce57b4}.TMContainer00000000000000000001.regtrans-ms
[2010/08/27 21:09:57 | 000,065,536 | -HS- | M] () -- C:\Users\The Den\ntuser.dat{61a9b5b4-b211-11df-a9a6-001a80ce57b4}.TM.blf
[2010/08/27 21:08:30 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2010/08/27 21:08:24 | 002,883,584 | -HS- | M] () -- C:\Users\The Den\ntuser.bak
[2010/08/27 21:08:23 | 000,524,288 | -HS- | M] () -- C:\Users\The Den\ntuser.dat{83b1ee68-312f-11df-8f66-001a80ce57b4}.TMContainer00000000000000000001.regtrans-ms
[2010/08/27 21:08:23 | 000,065,536 | -HS- | M] () -- C:\Users\The Den\ntuser.dat{83b1ee68-312f-11df-8f66-001a80ce57b4}.TM.blf
[2010/08/27 21:08:21 | 001,375,600 | -H-- | M] () -- C:\Users\The Den\AppData\Local\IconCache.db
[2010/08/27 21:08:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1450940846-3917319777-1352840795-1000UA.job
[2010/08/27 21:03:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/08/25 20:48:06 | 000,000,956 | ---- | M] () -- C:\Users\Public\Desktop\Rightmove Desktop.lnk
[2010/08/20 18:28:55 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010/08/14 10:16:47 | 000,000,039 | ---- | M] () -- C:\Windows\Irremote.ini
[2010/08/14 01:52:09 | 000,098,926 | ---- | M] () -- C:\Users\The Den\Desktop\Budget.xlsx
[2010/08/13 19:39:45 | 000,000,818 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/13 18:50:31 | 000,001,031 | ---- | M] () -- C:\Users\The Den\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2010/08/13 18:50:31 | 000,001,007 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010/08/11 23:33:25 | 000,002,585 | ---- | M] () -- C:\Users\The Den\Desktop\Microsoft Office Excel 2007.lnk
[2010/08/01 08:56:52 | 000,002,231 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/07/23 21:57:38 | 000,603,282 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/07/23 21:57:37 | 000,694,964 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/07/23 21:57:37 | 000,106,696 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/07/22 10:35:51 | 000,000,862 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1450940846-3917319777-1352840795-1000Core.job
[2010/07/12 09:55:39 | 000,064,288 | ---- | M] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2010/07/12 09:55:38 | 000,015,880 | ---- | M] () -- C:\Windows\System32\lsdelete.exe
[2010/07/09 22:04:13 | 000,000,165 | -H-- | M] () -- C:\Users\The Den\Desktop\~$Budget.xlsx
[2010/06/19 10:38:21 | 000,001,748 | ---- | M] () -- C:\Users\The Den\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/06/06 20:08:05 | 000,111,048 | ---- | M] () -- C:\Users\The Den\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/06/06 20:04:10 | 000,412,296 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/05/31 15:47:52 | 000,108,273 | ---- | M] () -- C:\Windows\System32\WhlLSPBackup_2.reg
[2010/05/31 15:47:02 | 000,003,964 | ---- | M] () -- C:\Windows\System32\WhlNSPBackup_2.reg

========== Files Created - No Company Name ==========

[2010/08/27 21:19:04 | 330,426,521 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010/08/27 21:16:15 | 000,293,376 | ---- | C] () -- C:\Users\The Den\Desktop\gmer.exe
[2010/08/27 21:09:57 | 000,524,288 | -HS- | C] () -- C:\Users\The Den\ntuser.dat{61a9b5b4-b211-11df-a9a6-001a80ce57b4}.TMContainer00000000000000000002.regtrans-ms
[2010/08/27 21:09:57 | 000,524,288 | -HS- | C] () -- C:\Users\The Den\ntuser.dat{61a9b5b4-b211-11df-a9a6-001a80ce57b4}.TMContainer00000000000000000001.regtrans-ms
[2010/08/27 21:09:57 | 000,065,536 | -HS- | C] () -- C:\Users\The Den\ntuser.dat{61a9b5b4-b211-11df-a9a6-001a80ce57b4}.TM.blf
[2010/08/27 21:07:07 | 000,262,144 | -H-- | C] () -- C:\Users\The Den\ntuser.tmp.LOG1
[2010/08/27 21:07:07 | 000,000,000 | -H-- | C] () -- C:\Users\The Den\ntuser.tmp.LOG2
[2010/08/25 20:48:06 | 000,000,956 | ---- | C] () -- C:\Users\Public\Desktop\Rightmove Desktop.lnk
[2010/08/20 18:28:55 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010/08/13 19:39:45 | 000,000,818 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/13 18:50:31 | 000,001,031 | ---- | C] () -- C:\Users\The Den\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2010/08/13 18:50:31 | 000,001,007 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010/07/09 22:04:13 | 000,000,165 | -H-- | C] () -- C:\Users\The Den\Desktop\~$Budget.xlsx
[2010/06/26 15:35:54 | 000,002,231 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/06/19 10:38:21 | 000,001,748 | ---- | C] () -- C:\Users\The Den\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/05/31 15:47:52 | 000,108,273 | ---- | C] () -- C:\Windows\System32\WhlLSPBackup_2.reg
[2010/05/31 15:47:02 | 000,003,964 | ---- | C] () -- C:\Windows\System32\WhlNSPBackup_2.reg
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/02 16:26:57 | 000,000,317 | ---- | C] () -- C:\Users\The Den\AppData\Roaming\burnaware.ini
[2009/06/07 12:46:55 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/03/28 18:27:25 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009/03/28 17:44:21 | 000,000,039 | ---- | C] () -- C:\Windows\Irremote.ini
[2009/03/05 07:54:58 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009/02/22 20:41:33 | 000,168,448 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009/02/22 20:41:31 | 000,795,648 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2009/02/22 20:41:31 | 000,130,048 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009/02/22 20:41:30 | 000,067,584 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009/02/22 20:41:30 | 000,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2009/01/18 21:37:51 | 000,000,063 | ---- | C] () -- C:\Program Files\CIMA_Certificate_PaperC5.ini
[2008/11/29 12:18:12 | 000,000,037 | ---- | C] () -- C:\Windows\iltwain.ini
[2008/10/18 10:22:19 | 000,025,773 | ---- | C] () -- C:\Users\The Den\AppData\Roaming\UserTile.png
[2008/10/12 18:16:11 | 000,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008/10/10 16:55:37 | 000,030,720 | ---- | C] () -- C:\Users\The Den\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/10/06 20:08:31 | 000,001,356 | ---- | C] () -- C:\Users\The Den\AppData\Local\d3d9caps.dat
[2008/09/19 22:57:34 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/09/19 22:55:10 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008/09/19 22:55:10 | 000,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008/09/19 22:54:18 | 000,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2008/05/19 13:36:29 | 000,000,000 | ---- | C] () -- C:\Windows\VAIOUpdt.INI
[2008/05/19 13:31:07 | 000,344,064 | ---- | C] () -- C:\Windows\System32\SSMSIppCustom.dll
[2008/04/21 22:22:19 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008/02/05 01:09:01 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1295.dll
[2007/10/30 18:44:52 | 000,393,216 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2007/08/17 14:41:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2006/12/04 01:25:14 | 000,022,723 | ---- | C] () -- C:\Windows\System32\sugs1l3.dll
[2006/11/02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2001/11/14 21:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll

========== LOP Check ==========

[2010/01/20 22:01:44 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Azureus
[2010/08/25 20:48:41 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\com.rightmove.rmdesktop.303FAAB8E16C565CA4B74422796CD427470CE949.1
[2008/10/12 18:15:58 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\DAEMON Tools
[2010/08/12 22:28:41 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\EAC7FF39D5D2353B8DFCB21D1472160F
[2008/12/23 19:38:35 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\InterVideo
[2009/03/29 19:13:10 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Juniper Networks
[2008/11/15 00:38:10 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Opera
[2008/10/18 10:22:19 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\PeerNetworking
[2009/07/26 00:25:06 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Pro Cycling Manager 2009
[2009/11/03 23:25:27 | 000,000,000 | ---D | M] -- C:\Users\The Den\AppData\Roaming\Sports Interactive
[2010/08/27 21:08:28 | 000,032,554 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2010/08/27 21:19:04 | 000,081,238 | ---- | M] () -- C:\aaw7boot.log
[2009/10/20 22:01:43 | 000,000,000 | ---- | M] () -- C:\AdobeDebug.txt
[2006/09/18 22:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/04/11 07:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
[2008/04/21 22:22:50 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2009/04/25 23:44:51 | 000,000,129 | ---- | M] () -- C:\CD Drive - Shortcut (2).lnk
[2009/04/25 23:44:51 | 000,000,145 | ---- | M] () -- C:\CD Drive - Shortcut.lnk
[2006/09/18 22:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
[2010/08/27 21:19:06 | 3219,578,880 | -HS- | M] () -- C:\hiberfil.sys
[2005/01/03 14:37:18 | 000,000,017 | -H-- | M] () -- C:\initrd.pam
[2007/03/27 22:33:48 | 000,000,067 | -H-- | M] () -- C:\kernel.pam
[2009/04/25 23:44:51 | 000,000,129 | ---- | M] () -- C:\Memory Stick (D) - Shortcut.lnk
[2010/08/27 21:19:04 | 3533,373,440 | -HS- | M] () -- C:\pagefile.sys
[2009/04/25 23:44:51 | 000,000,129 | ---- | M] () -- C:\SD - MMC (E) - Shortcut.lnk
[2009/03/11 20:42:13 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm
[2009/03/11 20:42:55 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm
[2009/03/11 20:45:27 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm
[2009/03/12 08:25:48 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm
[2009/03/20 11:58:13 | 000,000,232 | -H-- | M] () -- C:\sqmdata04.sqm
[2009/03/24 21:38:01 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm
[2009/03/25 21:44:45 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm
[2009/02/21 18:59:46 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
[2009/02/21 18:59:51 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm
[2009/02/21 19:03:14 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm
[2009/02/23 19:35:18 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
[2009/02/27 19:38:33 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm
[2009/02/27 19:40:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/02/28 13:05:44 | 000,000,232 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/03/09 21:25:29 | 000,000,232 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/03/09 21:26:58 | 000,000,232 | -H-- | M] () -- C:\sqmdata15.sqm
[2009/03/10 22:45:56 | 000,000,232 | -H-- | M] () -- C:\sqmdata16.sqm
[2009/03/11 20:37:28 | 000,000,232 | -H-- | M] () -- C:\sqmdata17.sqm
[2009/03/11 20:40:41 | 000,000,232 | -H-- | M] () -- C:\sqmdata18.sqm
[2009/03/11 20:41:28 | 000,000,232 | -H-- | M] () -- C:\sqmdata19.sqm
[2009/03/11 20:42:13 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2009/03/11 20:42:55 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2009/03/11 20:45:27 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2009/03/12 08:25:48 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2009/03/20 11:58:13 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
[2009/03/24 21:38:01 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
[2009/03/25 21:44:45 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
[2009/02/21 18:59:46 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
[2009/02/21 18:59:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
[2009/02/21 19:03:14 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2009/02/23 19:35:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
[2009/02/27 19:38:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
[2009/02/27 19:40:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/02/28 13:05:44 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/03/09 21:25:29 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/03/09 21:26:58 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2009/03/10 22:45:56 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
[2009/03/11 20:37:28 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
[2009/03/11 20:40:41 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
[2009/03/11 20:41:28 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm

< %systemroot%\Fonts\*.com >
[2006/11/02 13:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006/11/02 13:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006/11/02 13:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/06/08 18:31:23 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2006/09/18 22:37:34 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2006/11/02 10:46:04 | 000,032,768 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\spool\prtprocs\w32x86\EP0NPP01.DLL
[2006/11/02 13:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006/10/27 03:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
[2006/09/18 01:57:22 | 000,019,456 | ---- | M] (Windows ® 2000 DDK provider) -- C:\Windows\System32\spool\prtprocs\w32x86\sugs1pc.dll

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >
[2009/01/18 21:37:51 | 000,000,063 | ---- | M] () -- C:\Program Files\CIMA_Certificate_PaperC5.ini
[2008/01/21 03:43:21 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2008/01/21 04:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2008/01/21 04:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2008/01/21 04:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 11:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 11:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2010/05/22 11:14:18 | 000,000,241 | -HS- | M] () -- C:\Users\The Den\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini

< %USERPROFILE%\Desktop\*.exe >
[2009/12/15 11:24:48 | 000,293,376 | ---- | M] () -- C:\Users\The Den\Desktop\gmer.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >
[2009/06/08 18:49:22 | 000,008,192 | ---- | M] () -- C:\Windows\security\database\edb.chk
[2009/06/08 18:48:52 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edb.log
[2009/06/08 18:37:40 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbres00001.jrs
[2009/06/08 18:37:40 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbres00002.jrs
[2009/06/08 18:48:52 | 001,056,768 | ---- | M] () -- C:\Windows\security\database\tmp.edb

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\0*.exe >

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >
[2008/10/06 20:08:58 | 000,000,402 | -HS- | M] () -- C:\Users\The Den\Favorites\desktop.ini

< %systemroot%\System32\Wbem\*.* >
[2006/09/18 22:26:19 | 000,001,097 | ---- | M] () -- C:\Windows\System32\wbem\aaclient.mof
[2008/01/21 03:24:54 | 000,004,352 | ---- | M] () -- C:\Windows\System32\wbem\audiocore.mof
[2006/09/18 22:35:02 | 000,001,092 | ---- | M] () -- C:\Windows\System32\wbem\authfwcfg.mof
[2008/01/21 03:24:23 | 000,003,007 | ---- | M] () -- C:\Windows\System32\wbem\auxiliarydisplayapi.mof
[2006/11/02 13:36:04 | 000,002,995 | ---- | M] () -- C:\Windows\System32\wbem\auxiliarydisplaycpl.mof
[2006/11/02 13:36:04 | 000,003,049 | ---- | M] () -- C:\Windows\System32\wbem\auxiliarydisplaydriverlib.mof
[2006/11/02 13:36:04 | 000,003,039 | ---- | M] () -- C:\Windows\System32\wbem\auxiliarydisplayservices.mof
[2008/01/21 03:24:25 | 000,009,307 | ---- | M] () -- C:\Windows\System32\wbem\bcd.mof
[2009/06/08 20:43:36 | 000,002,626 | ---- | M] () -- C:\Windows\System32\wbem\BthMtpEnum.mof
[2006/09/18 22:29:37 | 000,001,260 | ---- | M] () -- C:\Windows\System32\wbem\CbsCore.mof
[2009/04/11 07:28:18 | 001,362,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\cimwin32.dll
[2008/01/21 03:24:41 | 002,703,098 | ---- | M] () -- C:\Windows\System32\wbem\cimwin32.mof
[2006/09/18 22:38:57 | 000,003,472 | ---- | M] () -- C:\Windows\System32\wbem\clfs.mof
[2006/09/18 22:39:00 | 000,000,123 | ---- | M] () -- C:\Windows\System32\wbem\clfsUninstall.mof
[2006/11/02 07:27:38 | 000,029,290 | ---- | M] () -- C:\Windows\System32\wbem\cli.mof
[2006/11/02 07:27:38 | 002,815,350 | ---- | M] () -- C:\Windows\System32\wbem\cliegaliases.mof
[2008/01/21 03:23:41 | 000,066,511 | ---- | M] () -- C:\Windows\System32\wbem\dfsrprov.mof
[2006/09/18 22:42:48 | 000,001,239 | ---- | M] () -- C:\Windows\System32\wbem\dimsjob.mof
[2006/09/18 22:42:50 | 000,001,284 | ---- | M] () -- C:\Windows\System32\wbem\dimsroam.mof
[2008/01/21 03:24:22 | 000,006,072 | ---- | M] () -- C:\Windows\System32\wbem\dot3.mof
[2006/09/18 22:45:56 | 000,003,685 | ---- | M] () -- C:\Windows\System32\wbem\drvinst.mof
[2008/01/21 03:24:49 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\dsprov.dll
[2006/11/02 07:27:35 | 000,018,398 | ---- | M] () -- C:\Windows\System32\wbem\dsprov.mof
[2006/09/18 22:40:27 | 000,001,300 | ---- | M] () -- C:\Windows\System32\wbem\eaimeapi.mof
[2009/04/11 07:28:19 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\esscli.dll
[2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\fastprox.dll
[2006/09/18 22:38:51 | 000,000,719 | ---- | M] () -- C:\Windows\System32\wbem\fdPHost.mof
[2006/09/18 22:38:53 | 000,000,736 | ---- | M] () -- C:\Windows\System32\wbem\fdrespub.mof
[2006/09/18 22:46:01 | 000,000,656 | ---- | M] () -- C:\Windows\System32\wbem\fdSSDP.mof
[2008/01/21 03:23:39 | 000,000,705 | ---- | M] () -- C:\Windows\System32\wbem\fdwcn.mof
[2006/09/18 22:38:53 | 000,000,716 | ---- | M] () -- C:\Windows\System32\wbem\fdWNet.mof
[2006/09/18 22:46:02 | 000,000,656 | ---- | M] () -- C:\Windows\System32\wbem\fdWSD.mof
[2006/09/18 22:39:15 | 000,017,935 | ---- | M] () -- C:\Windows\System32\wbem\filetrace.mof
[2006/09/18 22:35:44 | 000,001,100 | ---- | M] () -- C:\Windows\System32\wbem\Firewall.mof
[2006/09/18 22:36:01 | 000,001,913 | ---- | M] () -- C:\Windows\System32\wbem\firewallapi.mof
[2006/09/18 22:38:51 | 000,000,702 | ---- | M] () -- C:\Windows\System32\wbem\FunDisc.mof
[2006/09/18 22:35:54 | 000,001,081 | ---- | M] () -- C:\Windows\System32\wbem\fwcfg.mof
[2008/01/21 03:24:22 | 000,240,536 | ---- | M] () -- C:\Windows\System32\wbem\hbaapi.mof
[2006/09/18 22:29:52 | 000,008,404 | ---- | M] () -- C:\Windows\System32\wbem\hnetcfg.mof
[2009/02/18 19:38:41 | 000,032,198 | ---- | M] () -- C:\Windows\System32\wbem\IMAPIv2-Base.mof
[2006/09/18 22:31:55 | 000,002,073 | ---- | M] () -- C:\Windows\System32\wbem\IMAPIv2-FileSystemSupport.mof
[2006/09/18 22:31:55 | 000,000,759 | ---- | M] () -- C:\Windows\System32\wbem\IMAPIv2-LegacyShim.mof
[2006/11/02 13:34:49 | 000,002,263 | ---- | M] () -- C:\Windows\System32\wbem\InkObj.mof
[2006/09/18 22:46:01 | 000,000,672 | ---- | M] () -- C:\Windows\System32\wbem\IPBusEnum.mof
[2006/09/18 22:35:37 | 000,001,278 | ---- | M] () -- C:\Windows\System32\wbem\ipsecsvc.mof
[2006/09/18 22:32:37 | 000,003,615 | ---- | M] () -- C:\Windows\System32\wbem\irda.mof
[2006/09/18 22:32:27 | 000,002,211 | ---- | M] () -- C:\Windows\System32\wbem\irmon.mof
[2006/11/02 07:35:19 | 000,019,872 | ---- | M] () -- C:\Windows\System32\wbem\iscsidsc.mof
[2006/11/02 07:35:18 | 000,111,599 | ---- | M] () -- C:\Windows\System32\wbem\iscsihba.mof
[2006/11/02 07:35:20 | 000,046,042 | ---- | M] () -- C:\Windows\System32\wbem\iscsiprf.mof
[2006/11/02 07:35:21 | 000,004,503 | ---- | M] () -- C:\Windows\System32\wbem\iscsirem.mof
[2006/11/02 13:34:49 | 000,002,287 | ---- | M] () -- C:\Windows\System32\wbem\journal.mof
[2006/09/18 22:39:25 | 000,008,758 | ---- | M] () -- C:\Windows\System32\wbem\kerberos.mof
[2009/04/11 07:28:20 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\KrnlProv.dll
[2006/11/02 08:15:21 | 000,015,170 | ---- | M] () -- C:\Windows\System32\wbem\krnlprov.mof
[2006/09/18 22:32:48 | 000,001,367 | ---- | M] () -- C:\Windows\System32\wbem\l2gpstore.mof
[2008/01/21 03:24:24 | 000,002,334 | ---- | M] () -- C:\Windows\System32\wbem\L2SecHC.mof
[2006/09/18 22:30:13 | 000,001,242 | ---- | M] () -- C:\Windows\System32\wbem\lltdio.mof
[2006/09/18 22:30:11 | 000,001,688 | ---- | M] () -- C:\Windows\System32\wbem\lltdsvc.mof
[2008/01/21 03:24:15 | 000,013,780 | ---- | M] () -- C:\Windows\System32\wbem\lsasrv.mof
[2006/11/02 13:36:03 | 000,003,018 | ---- | M] () -- C:\Windows\System32\wbem\mblctr.mof
[2006/09/18 22:41:14 | 000,000,677 | ---- | M] () -- C:\Windows\System32\wbem\Microsoft-Windows-Remote-FileSystem.mof
[2006/09/18 22:26:23 | 000,000,698 | ---- | M] () -- C:\Windows\System32\wbem\mmc.mof
[2006/11/02 10:46:05 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\MMFUtil.dll
[2008/01/21 03:23:52 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\mofcomp.exe
[2009/04/11 07:28:20 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\mofd.dll
[2008/01/21 03:24:01 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\mofinstall.dll
[2006/09/18 22:35:23 | 000,001,088 | ---- | M] () -- C:\Windows\System32\wbem\mpsdrv.mof
[2006/09/18 22:35:54 | 000,001,900 | ---- | M] () -- C:\Windows\System32\wbem\mpssvc.mof
[2006/09/18 22:38:01 | 000,001,876 | ---- | M] () -- C:\Windows\System32\wbem\msfeeds.mof
[2006/09/18 22:38:01 | 000,001,938 | ---- | M] () -- C:\Windows\System32\wbem\msfeedsbs.mof
[2006/11/02 07:27:38 | 000,172,294 | ---- | M] () -- C:\Windows\System32\wbem\msi.mof
[2008/01/21 03:24:50 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\msiprov.dll
[2006/09/18 22:31:59 | 000,004,599 | ---- | M] () -- C:\Windows\System32\wbem\msiscsi.mof
[2006/09/18 22:28:06 | 000,001,110 | ---- | M] () -- C:\Windows\System32\wbem\mstsc.mof
[2006/09/18 22:27:27 | 000,001,967 | ---- | M] () -- C:\Windows\System32\wbem\mstscax.mof
[2006/09/18 22:39:39 | 000,007,721 | ---- | M] () -- C:\Windows\System32\wbem\msv1_0.mof
[2006/11/02 13:35:58 | 000,001,710 | ---- | M] () -- C:\Windows\System32\wbem\mswmdm.mof
[2008/01/21 03:24:56 | 000,000,640 | ---- | M] () -- C:\Windows\System32\wbem\NAPCLIENTPROV.MOF
[2008/01/21 03:24:56 | 000,003,992 | ---- | M] () -- C:\Windows\System32\wbem\NAPCLIENTSCHEMA.MOF
[2006/09/18 22:36:02 | 000,001,259 | ---- | M] () -- C:\Windows\System32\wbem\nci.mof
[2009/04/11 07:28:22 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\NCProv.dll
[2006/11/02 09:41:18 | 000,002,964 | ---- | M] () -- C:\Windows\System32\wbem\ncprov.mof
[2006/09/18 22:28:21 | 000,001,131 | ---- | M] () -- C:\Windows\System32\wbem\ncsi.mof
[2006/09/18 22:36:03 | 000,001,306 | ---- | M] () -- C:\Windows\System32\wbem\ndishc.mof
[2006/09/18 22:36:26 | 000,004,548 | ---- | M] () -- C:\Windows\System32\wbem\ndistrace.mof
[2006/09/18 22:38:14 | 000,001,117 | ---- | M] () -- C:\Windows\System32\wbem\netprofm.mof
[2006/09/18 22:29:57 | 000,000,683 | ---- | M] () -- C:\Windows\System32\wbem\networkitemfactory.mof
[2006/09/18 22:30:03 | 000,000,631 | ---- | M] () -- C:\Windows\System32\wbem\networkmap.mof
[2006/09/18 22:45:56 | 000,003,681 | ---- | M] () -- C:\Windows\System32\wbem\newdev.mof
[2006/09/18 22:38:28 | 000,003,914 | ---- | M] () -- C:\Windows\System32\wbem\nlasvc.mof
[2008/01/21 03:24:05 | 000,002,873 | ---- | M] () -- C:\Windows\System32\wbem\nlsvc.mof
[2006/09/18 22:35:29 | 000,001,266 | ---- | M] () -- C:\Windows\System32\wbem\nshipsec.mof
[2009/04/11 07:28:23 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\ntevt.dll
[2006/11/02 07:27:39 | 000,030,348 | ---- | M] () -- C:\Windows\System32\wbem\ntevt.mof
[2006/09/18 22:39:46 | 000,000,308 | ---- | M] () -- C:\Windows\System32\wbem\ntfs.mof
[2008/01/21 03:23:51 | 000,002,952 | ---- | M] () -- C:\Windows\System32\wbem\onex.mof
[2006/11/02 13:35:38 | 000,001,836 | ---- | M] () -- C:\Windows\System32\wbem\p2p-collab.mof
[2006/11/02 13:36:04 | 000,001,187 | ---- | M] () -- C:\Windows\System32\wbem\p2p-crp.mof
[2006/11/02 13:35:39 | 000,002,564 | ---- | M] () -- C:\Windows\System32\wbem\p2p-meetings.mof
[2006/11/02 13:35:39 | 000,002,380 | ---- | M] () -- C:\Windows\System32\wbem\p2p-mesh.mof
[2006/11/02 13:35:39 | 000,002,297 | ---- | M] () -- C:\Windows\System32\wbem\p2p-pnrp.mof
[2006/09/18 22:45:56 | 000,001,060 | ---- | M] () -- C:\Windows\System32\wbem\pnpsetup.mof
[2006/09/18 22:46:02 | 000,000,665 | ---- | M] () -- C:\Windows\System32\wbem\PNPXAssoc.mof
[2006/09/18 22:35:35 | 000,001,275 | ---- | M] () -- C:\Windows\System32\wbem\polstore.mof
[2009/06/08 21:22:20 | 000,005,105 | ---- | M] () -- C:\Windows\System32\wbem\portabledeviceapi.mof
[2009/06/08 21:22:20 | 000,003,202 | ---- | M] () -- C:\Windows\System32\wbem\portabledeviceclassextension.mof
[2009/06/08 21:22:20 | 000,001,777 | ---- | M] () -- C:\Windows\System32\wbem\portabledeviceconnectapi.mof
[2009/06/08 21:22:21 | 000,003,490 | ---- | M] () -- C:\Windows\System32\wbem\portabledevicetypes.mof
[2006/11/02 13:35:58 | 000,001,760 | ---- | M] () -- C:\Windows\System32\wbem\portabledevicewiacompat.mof
[2006/11/02 13:35:58 | 000,003,092 | ---- | M] () -- C:\Windows\System32\wbem\portabledevicewmdrm.mof
[2006/09/18 22:49:01 | 000,002,601 | ---- | M] () -- C:\Windows\System32\wbem\PrintFilterPipelineSvc.mof
[2006/09/18 22:34:46 | 000,002,302 | ---- | M] () -- C:\Windows\System32\wbem\qmgr.mof
[2006/09/18 22:39:30 | 000,000,623 | ---- | M] () -- C:\Windows\System32\wbem\rawxml.xsl
[2006/09/18 22:30:56 | 000,001,066 | ---- | M] () -- C:\Windows\System32\wbem\rdpencom.mof
[2006/11/02 08:15:20 | 000,111,686 | ---- | M] () -- C:\Windows\System32\wbem\regevent.mof
[2009/04/11 07:28:24 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\repdrvfs.dll
[2006/09/18 22:46:10 | 000,001,688 | ---- | M] () -- C:\Windows\System32\wbem\RestartManager.mof
[2006/09/18 22:46:10 | 000,000,090 | ---- | M] () -- C:\Windows\System32\wbem\RestartManagerUninstall.mof
[2006/11/02 08:22:17 | 000,100,388 | ---- | M] () -- C:\Windows\System32\wbem\rsop.mof
[2006/09/18 22:30:16 | 000,002,221 | ---- | M] () -- C:\Windows\System32\wbem\rspndr.mof
[2008/01/21 03:24:37 | 000,061,288 | ---- | M] () -- C:\Windows\System32\wbem\samsrv.mof
[2006/09/18 22:41:58 | 000,001,241 | ---- | M] () -- C:\Windows\System32\wbem\sapi.mof
[2006/09/18 22:41:24 | 000,004,357 | ---- | M] () -- C:\Windows\System32\wbem\scersop.mof
[2006/09/18 22:39:53 | 000,001,064 | ---- | M] () -- C:\Windows\System32\wbem\schannel.mof
[2006/09/18 22:37:09 | 000,002,250 | ---- | M] () -- C:\Windows\System32\wbem\SchedSvc.mof
[2006/09/18 22:46:11 | 000,020,158 | ---- | M] () -- C:\Windows\System32\wbem\scm.mof
[2008/01/21 03:24:14 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\scrcons.exe
[2006/09/18 22:39:42 | 000,005,744 | ---- | M] () -- C:\Windows\System32\wbem\scrcons.mof
[2006/09/18 22:29:35 | 000,003,767 | ---- | M] () -- C:\Windows\System32\wbem\sdbus.mof
[2006/11/02 07:27:39 | 000,064,142 | ---- | M] () -- C:\Windows\System32\wbem\secrcw32.mof
[2008/01/21 03:24:44 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\ServDeps.dll
[2009/02/01 13:55:09 | 000,083,479 | ---- | M] () -- C:\Windows\System32\wbem\ServiceModel.mof
[2006/11/02 13:37:13 | 000,000,896 | ---- | M] () -- C:\Windows\System32\wbem\ServiceModel.mof.uninstall
[2006/09/18 22:46:11 | 000,002,866 | ---- | M] () -- C:\Windows\System32\wbem\services.mof
[2006/09/18 22:45:57 | 000,003,689 | ---- | M] () -- C:\Windows\System32\wbem\setupapi.mof
[2009/04/11 02:58:58 | 000,032,574 | ---- | M] () -- C:\Windows\System32\wbem\slwmi.mof
[2006/11/02 10:46:13 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\SMTPCons.dll
[2006/09/18 22:39:42 | 000,004,280 | ---- | M] () -- C:\Windows\System32\wbem\smtpcons.mof
[2006/11/02 13:34:32 | 000,016,973 | ---- | M] () -- C:\Windows\System32\wbem\speechux.mof
[2006/11/02 13:34:31 | 000,001,229 | ---- | M] () -- C:\Windows\System32\wbem\sptip.mof
[2006/11/02 13:36:17 | 000,003,834 | ---- | M] () -- C:\Windows\System32\wbem\sr.mof
[2006/09/18 22:42:35 | 000,002,583 | ---- | M] () -- C:\Windows\System32\wbem\ssdpsrv.mof
[2008/01/21 03:25:05 | 000,002,604 | ---- | M] () -- C:\Windows\System32\wbem\sstpsvc.mof
[2008/01/21 03:24:46 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\stdprov.dll
[2006/09/18 22:31:16 | 000,017,937 | ---- | M] () -- C:\Windows\System32\wbem\stortrace.mof
[2006/09/18 22:39:38 | 000,000,668 | ---- | M] () -- C:\Windows\System32\wbem\subscrpt.mof
[2006/11/02 07:27:35 | 000,126,686 | ---- | M] () -- C:\Windows\System32\wbem\system.mof
[2006/11/02 13:34:31 | 000,002,295 | ---- | M] () -- C:\Windows\System32\wbem\tabbtn.mof
[2006/11/02 13:35:24 | 000,002,845 | ---- | M] () -- C:\Windows\System32\wbem\TabSvc.mof
[2006/09/18 22:37:10 | 000,002,254 | ---- | M] () -- C:\Windows\System32\wbem\TaskEng.mof
[2006/09/18 22:36:40 | 000,003,066 | ---- | M] () -- C:\Windows\System32\wbem\tcpip.mof
[2006/09/18 22:39:30 | 000,006,000 | ---- | M] () -- C:\Windows\System32\wbem\texttable.xsl
[2006/09/18 22:39:30 | 000,002,766 | ---- | M] () -- C:\Windows\System32\wbem\textvaluelist.xsl
[2006/09/18 22:39:20 | 000,000,964 | ---- | M] () -- C:\Windows\System32\wbem\tspkg.mof
[2006/09/18 22:46:02 | 000,000,646 | ---- | M] () -- C:\Windows\System32\wbem\umb.mof
[2006/09/18 22:45:41 | 000,002,459 | ---- | M] () -- C:\Windows\System32\wbem\umbus.mof
[2006/09/18 22:45:42 | 000,002,462 | ---- | M] () -- C:\Windows\System32\wbem\umpass.mof
[2006/09/18 22:46:00 | 000,003,692 | ---- | M] () -- C:\Windows\System32\wbem\umpnpmgr.mof
[2009/04/11 07:28:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
[2008/01/21 03:24:04 | 000,010,702 | ---- | M] () -- C:\Windows\System32\wbem\UserProfileWmiProvider.mof
[2006/11/02 07:35:15 | 000,060,994 | ---- | M] () -- C:\Windows\System32\wbem\vds.mof
[2008/01/21 03:23:44 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\vdswmi.dll
[2008/01/21 03:24:19 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\viewprov.dll
[2006/11/02 07:35:15 | 000,055,846 | ---- | M] () -- C:\Windows\System32\wbem\vss.mof
[2008/01/21 03:24:07 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\vsswmi.dll
[2008/01/21 03:24:44 | 000,250,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemcntl.dll
[2008/01/21 03:24:14 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemcons.dll
[2006/09/18 22:39:42 | 000,018,580 | ---- | M] () -- C:\Windows\System32\wbem\WBEMCons.mof
[2009/04/11 07:28:25 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemcore.dll
[2008/01/21 03:24:58 | 000,188,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemdisp.dll
[2006/11/02 08:14:20 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemdisp.tlb
[2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemess.dll
[2009/04/11 07:28:25 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemprox.dll
[2009/04/11 07:28:25 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemsvc.dll
[2008/01/21 03:24:27 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemtest.exe
[2006/11/02 13:34:35 | 000,003,980 | ---- | M] () -- C:\Windows\System32\wbem\wcncsvc.mof
[2006/11/02 13:34:29 | 000,001,007 | ---- | M] () -- C:\Windows\System32\wbem\wcnwiz.mof
[2009/02/18 19:38:37 | 000,001,009 | ---- | M] () -- C:\Windows\System32\wbem\wcnwiz2.mof
[2006/09/18 22:43:14 | 000,004,052 | ---- | M] () -- C:\Windows\System32\wbem\Wdf01000.mof
[2006/09/18 22:43:14 | 000,000,118 | ---- | M] () -- C:\Windows\System32\wbem\Wdf01000Uninstall.mof
[2006/09/18 22:39:24 | 000,001,103 | ---- | M] () -- C:\Windows\System32\wbem\wdigest.mof
[2006/09/18 22:36:01 | 000,001,083 | ---- | M] () -- C:\Windows\System32\wbem\WFAPIGP.mof
[2008/01/21 03:23:55 | 000,000,814 | ---- | M] () -- C:\Windows\System32\wbem\WFP.MOF
[2006/11/02 13:34:41 | 000,004,388 | ---- | M] () -- C:\Windows\System32\wbem\WgxInstalledGame.mof
[2006/11/02 08:03:34 | 000,004,120 | ---- | M] () -- C:\Windows\System32\wbem\whqlprov.mof
[2006/09/18 22:46:36 | 000,004,003 | ---- | M] () -- C:\Windows\System32\wbem\Win32_OsBaseline.mof
[2006/11/02 07:27:38 | 000,097,278 | ---- | M] () -- C:\Windows\System32\wbem\win32_printer.mof
[2008/01/21 03:24:45 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\Win32_Tpm.dll
[2006/09/18 22:44:14 | 000,017,012 | ---- | M] () -- C:\Windows\System32\wbem\Win32_Tpm.mof
[2006/09/18 22:34:14 | 000,016,503 | ---- | M] () -- C:\Windows\System32\wbem\WindowsMobileTracing.mof
[2006/09/18 22:41:56 | 000,001,333 | ---- | M] () -- C:\Windows\System32\wbem\wininit.mof
[2006/09/18 22:35:37 | 000,001,270 | ---- | M] () -- C:\Windows\System32\wbem\winipsec.mof
[2006/09/18 22:41:56 | 000,002,794 | ---- | M] () -- C:\Windows\System32\wbem\winlogon.mof
[2008/01/21 03:24:59 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WinMgmt.exe
[2006/11/02 08:14:23 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WinMgmtR.dll
[2006/11/02 13:34:36 | 000,001,545 | ---- | M] () -- C:\Windows\System32\wbem\Winsat.mof
[2006/11/02 13:34:35 | 000,000,487 | ---- | M] () -- C:\Windows\System32\wbem\WinsatUninstall.mof
[2008/01/21 03:23:29 | 000,012,880 | ---- | M] () -- C:\Windows\System32\wbem\wlan.mof
[2006/11/02 13:34:34 | 000,001,311 | ---- | M] () -- C:\Windows\System32\wbem\WLanHC.mof
[2006/11/02 08:15:20 | 000,012,030 | ---- | M] () -- C:\Windows\System32\wbem\wmi.mof
[2009/04/11 07:28:15 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIADAP.exe
[2006/11/02 08:15:27 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiApRes.dll
[2009/04/11 07:28:25 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiApRpl.dll
[2009/04/11 07:28:15 | 000,137,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiApSrv.exe
[2008/01/21 03:24:48 | 000,625,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIC.exe
[2009/04/11 07:28:25 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMICOOKR.dll
[2009/04/11 07:28:25 | 000,129,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiDcPrv.dll
[2008/01/21 03:24:23 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmipcima.dll
[2006/11/02 08:15:20 | 000,041,902 | ---- | M] () -- C:\Windows\System32\wbem\wmipcima.mof
[2006/11/02 10:46:14 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmipdfs.dll
[2006/11/02 08:15:19 | 000,014,780 | ---- | M] () -- C:\Windows\System32\wbem\wmipdfs.mof
[2008/01/21 03:24:23 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmipdskq.dll
[2006/11/02 08:15:19 | 000,013,500 | ---- | M] () -- C:\Windows\System32\wbem\wmipdskq.mof
[2008/01/21 03:24:42 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPerfClass.dll
[2009/02/18 19:39:43 | 000,001,156 | ---- | M] () -- C:\Windows\System32\wbem\WmiPerfClass.mof
[2009/04/11 07:28:25 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPerfInst.dll
[2009/02/18 19:39:44 | 000,000,980 | ---- | M] () -- C:\Windows\System32\wbem\WmiPerfInst.mof
[2008/01/21 03:24:48 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIPICMP.dll
[2006/11/02 08:15:21 | 000,020,340 | ---- | M] () -- C:\Windows\System32\wbem\wmipicmp.mof
[2008/01/21 03:23:54 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIPIPRT.dll
[2006/11/02 08:15:21 | 000,024,154 | ---- | M] () -- C:\Windows\System32\wbem\wmipiprt.mof
[2008/01/21 03:23:54 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIPJOBJ.dll
[2006/11/02 08:15:20 | 000,061,364 | ---- | M] () -- C:\Windows\System32\wbem\wmipjobj.mof
[2009/04/11 07:28:25 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprov.dll
[2009/04/11 07:28:25 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSD.dll
[2009/04/11 07:28:15 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
[2006/11/02 10:46:14 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIPSESS.dll
[2006/11/02 08:15:19 | 000,014,024 | ---- | M] () -- C:\Windows\System32\wbem\wmipsess.mof
[2009/04/11 07:28:25 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIsvc.dll
[2006/11/02 10:46:14 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmitimep.dll
[2006/11/02 09:41:17 | 000,006,494 | ---- | M] () -- C:\Windows\System32\wbem\wmitimep.mof
[2009/04/11 07:28:25 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiutils.dll
[2006/09/18 22:39:56 | 000,001,682 | ---- | M] () -- C:\Windows\System32\wbem\WMI_Tracing.mof
[2006/11/02 13:35:53 | 000,004,887 | ---- | M] () -- C:\Windows\System32\wbem\wmp.mof
[2006/11/02 13:36:04 | 000,004,628 | ---- | M] () -- C:\Windows\System32\wbem\wmpnetwk.mof
[2006/11/02 13:35:34 | 000,001,368 | ---- | M] () -- C:\Windows\System32\wbem\wpc.mof
[2006/11/02 13:35:34 | 000,021,677 | ---- | M] () -- C:\Windows\System32\wbem\wpcsprov.mof
[2006/11/02 13:35:34 | 000,000,470 | ---- | M] () -- C:\Windows\System32\wbem\wpcuninst.mof
[2009/06/08 21:22:22 | 000,002,759 | ---- | M] () -- C:\Windows\System32\wbem\wpdbusenum.mof
[2006/11/02 13:35:58 | 000,002,737 | ---- | M] () -- C:\Windows\System32\wbem\wpdfs.mof
[2009/06/08 20:43:37 | 000,003,011 | ---- | M] () -- C:\Windows\System32\wbem\wpdmtp.mof
[2006/11/02 13:35:58 | 000,003,184 | ---- | M] () -- C:\Windows\System32\wbem\wpdshext.mof
[2006/11/02 13:35:58 | 000,003,063 | ---- | M] () -- C:\Windows\System32\wbem\WPDShServiceObj.mof
[2006/11/02 13:35:58 | 000,002,987 | ---- | M] () -- C:\Windows\System32\wbem\wpdsp.mof
[2006/11/02 13:35:58 | 000,003,740 | ---- | M] () -- C:\Windows\System32\wbem\wpdwcn.mof
[2009/06/08 20:40:39 | 000,003,009 | ---- | M] () -- C:\Windows\System32\wbem\wpd_ci.mof
[2009/02/18 19:38:38 | 000,000,334 | ---- | M] () -- C:\Windows\System32\wbem\WscEapPr.mof
[2008/01/21 03:23:38 | 000,003,332 | ---- | M] () -- C:\Windows\System32\wbem\wscenter.mof
[2006/09/18 22:41:39 | 000,001,072 | ---- | M] () -- C:\Windows\System32\wbem\wscmisetup.mof
[2006/09/18 22:47:40 | 000,002,348 | ---- | M] () -- C:\Windows\System32\wbem\WSDApi.mof
[2006/09/18 22:40:05 | 000,004,430 | ---- | M] () -- C:\Windows\System32\wbem\WsmAuto.mof
[2006/09/18 22:44:23 | 000,048,262 | ---- | M] () -- C:\Windows\System32\wbem\WUDFx.mof
[2006/09/18 22:44:23 | 000,000,475 | ---- | M] () -- C:\Windows\System32\wbem\WUDFxUninstall.mof
[2008/01/21 03:23:31 | 000,000,723 | ---- | M] () -- C:\Windows\System32\wbem\wzcdlg.mof
[2006/09/18 22:39:31 | 000,002,866 | ---- | M] () -- C:\Windows\System32\wbem\xsl-mappings.xml
[2006/09/18 22:43:11 | 000,001,050 | ---- | M] () -- C:\Windows\System32\wbem\xwizards.mof

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-06-06 15:14:24
< End of report >