Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Weird registry entries in HKCU

Started by Osijoe , May 07 2011 12:59 PM

  • Please log in to reply

#1
Osijoe
Posted 07 May 2011 - 12:59 PM

Osijoe

    New Member

  • Member
  • Pip
  • 1 posts
Hi there,
I would need some expert advice, as I think I have some nasty stuff in my PC.
Thanks in advance!!

There are some weird entries in HKCU

Screenshot...

Posted Image

I also run OTL and this is the result:

OTL.txt

OTL logfile created on: 5/7/2011 2:44:52 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Des\Downloads
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 36.00% Memory free
15.00 Gb Paging File | 11.00 Gb Available in Paging File | 71.00% Paging File free
Paging file location(s): f:\pagefile.sys 9216 9216 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 12.93 Gb Free Space | 10.85% Space Free | Partition Type: NTFS
Drive D: | 100.00 Mb Total Space | 70.27 Mb Free Space | 70.28% Space Free | Partition Type: NTFS
Drive F: | 97.66 Gb Total Space | 87.84 Gb Free Space | 89.95% Space Free | Partition Type: NTFS
Drive G: | 600.98 Gb Total Space | 432.24 Gb Free Space | 71.92% Space Free | Partition Type: NTFS

Computer Name: DES-BABE | User Name: Des | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Des\Downloads\OTL.exe (OldTimer Tools)
PRC - G:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - G:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - G:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe (
ASUSTeK Computer Inc.)
PRC - C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
PRC - C:\ASUS.SYS\config\DVMExportService.exe (DeviceVM, Inc.)
PRC - C:\Windows\DAODx.exe ()
PRC - C:\Users\Des\AppData\Roaming\NZXT Avatar Gaming Mouse\hid.exe ()
PRC - C:\Users\Des\AppData\Roaming\NZXT Avatar Gaming Mouse\Tray.exe ()
PRC - C:\Windows\SysWOW64\PSIService.exe ()


========== Modules (SafeList) ==========

MOD - C:\Users\Des\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\Windows\SysWOW64\guard32.dll (COMODO)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV:64bit: - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
SRV:64bit: - (ftpsvc) -- C:\Windows\SysNative\inetsrv\ftpsvc.dll (Microsoft Corporation)
SRV:64bit: - (PDAgent) -- C:\Program Files\Raxco\PerfectDisk\PDAgent.exe (Raxco Software, Inc.)
SRV:64bit: - (PDEngine) -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (Raxco Software, Inc.)
SRV:64bit: - (AMD Reservation Manager) -- C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe (Advanced Micro Devices)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (AntiVirSchedulerService) -- G:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AntiVirService) -- G:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (cmdAgent) -- G:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
SRV - (PCToolsSSDMonitorSvc) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe (PC Tools)
SRV - (WAS) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (W3SVC) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (AppHostSvc) -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll (Microsoft Corporation)
SRV - (Creative ALchemy AL6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (Creative Labs)
SRV - (Creative Audio Engine Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (Creative Labs)
SRV - (!SASCORE) -- G:\Program Files\SuperAntispyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Program Files (x86)\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (AsSysCtrlService) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe (ASUSTeK Computer Inc.)
SRV - (DvmMDES) -- C:\ASUS.SYS\config\DVMExportService.exe (DeviceVM, Inc.)
SRV - (HPSLPSVC) -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL (Hewlett-Packard Co.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (ProtexisLicensing) -- C:\Windows\SysWOW64\PSIService.exe ()


========== Driver Services (SafeList) ==========

DRV:64bit: - (VClone) -- C:\Windows\SysNative\drivers\VClone.sys (Elaborate Bytes AG)
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV:64bit: - (RAMDiskVE) -- C:\Windows\SysNative\drivers\RAMDiskVE.sys ()
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:64bit: - (cpuz134) -- C:\Windows\SysNative\drivers\cpuz134_x64.sys (Windows ® Win 7 DDK provider)
DRV:64bit: - (NPF) -- C:\Windows\SysNative\drivers\npf.sys (CACE Technologies, Inc.)
DRV:64bit: - (MEMSWEEP2) -- C:\Windows\SysNative\33B.tmp (Sophos Plc)
DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (ahcix64) -- C:\Windows\SysNative\drivers\ahcix64.sys (Advanced Micro Devices, Inc)
DRV:64bit: - (JRAID) -- C:\Windows\SysNative\drivers\jraid.sys (JMicron Technology Corp.)
DRV:64bit: - (TcUsb) -- C:\Windows\SysNative\drivers\tcusb.sys (UPEK Inc.)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (NEC Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (NEC Electronics Corporation)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (AtiPcie) AMD PCI Express (3GIO) -- C:\Windows\SysNative\drivers\AtiPcie.sys (Advanced Micro Devices Inc.)
DRV:64bit: - (skfiltv) -- C:\Windows\SysNative\drivers\skfiltv.sys (Creative Technology Ltd.)
DRV:64bit: - (SaiH0461) -- C:\Windows\SysNative\drivers\SaiH0461.sys (Saitek)
DRV:64bit: - (nzxtFltr) -- C:\Windows\SysNative\drivers\nzxtFltr.sys (Razer (Asia-Pacific) Pte Ltd)
DRV:64bit: - (SaiNtBus) -- C:\Windows\SysNative\drivers\SaiBus.sys (Saitek)
DRV:64bit: - (SaiMini) -- C:\Windows\SysNative\drivers\SaiMini.sys (Saitek)
DRV - (SMSIVZAM5X64) -- C:\Program Files (x86)\Verizon Wireless\VZAccess Manager\SMSIVZAM5X64.sys (Smith Micro Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 36 16 DA A2 7E F7 CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: [email protected]:5.9.3.6241.3.6
FF - prefs.js..extensions.enabledItems: {DE2EB073-84DF-46aa-9A76-7B54C75366FA}:1.1
FF - prefs.js..extensions.enabledItems: [email protected]:4.5.2.0
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\components
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/05/07 14:30:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/04/06 11:47:49 | 000,000,000 | ---D | M]

[2011/03/21 09:09:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Des\AppData\Roaming\Mozilla\Extensions
[2011/04/15 15:40:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Des\AppData\Roaming\Mozilla\Firefox\Profiles\qe6exagg.default\extensions
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] ("Wishpot") -- C:\Users\Des\AppData\Roaming\Mozilla\Firefox\Profiles\qe6exagg.default\extensions\{DE2EB073-84DF-46aa-9A76-7B54C75366FA}
[2011/03/21 09:09:35 | 000,000,000 | ---D | M] (20-20 3D Viewer) -- C:\Users\Des\AppData\Roaming\Mozilla\Firefox\Profiles\qe6exagg.default\extensions\[email protected]
[2011/03/21 09:09:35 | 000,000,000 | ---D | M] (Password Bank) -- C:\Users\Des\AppData\Roaming\Mozilla\Firefox\Profiles\qe6exagg.default\extensions\[email protected]
[2011/04/06 11:47:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/04/06 11:47:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\USERS\DES\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QE6EXAGG.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\USERS\DES\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\QE6EXAGG.DEFAULT\EXTENSIONS\{A7C6CF7F-112C-4500-A7EA-39801A327E5F}.XPI
[2011/03/18 13:53:24 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2011/04/06 11:47:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/03/20 22:17:11 | 000,430,259 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-domains-registrations.com
O1 - Hosts: 127.0.0.1 www.1-domains-registrations.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 14834 more lines...
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Wishpot Button) - {9E40F4A8-6896-4b67-91F5-F6F287ECB5D9} - C:\Program Files (x86)\Wishpot\ietb.dll (VONeS.NET)
O3 - HKLM\..\Toolbar: (Wishpot Button) - {7DAAFFD0-5A88-447d-96C6-E6CA06AF0758} - C:\Program Files (x86)\Wishpot\ietb.dll (VONeS.NET)
O4:64bit: - HKLM..\Run: [COMODO Internet Security] G:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [PSQLLauncher] C:\Program Files\Protector Suite\launcher.exe (UPEK Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [avgnt] G:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [Six Engine] C:\Program Files (x86)\ASUS\EPU\EPU.exe (
ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TurboV EVO] C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe (ASUSTeK Computer Inc.)
O4 - HKCU..\Run: [cdloader] C:\Users\Des\AppData\Roaming\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKCU..\Run: [NZXT Gaming Mouse] C:\Users\Des\AppData\Roaming\NZXT Avatar Gaming Mouse\hid.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\psfus: DllName - Reg Error: Key error. - C:\Program Files\Protector Suite\psqlpwd.dll (UPEK Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\autorun.exe
O33 - MountPoints2\I\Shell\phone\command - "" = I:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/05/06 11:40:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2011/04/26 18:20:24 | 000,000,000 | ---D | C] -- C:\Users\Des\AppData\Roaming\Media Player Classic
[2011/04/26 17:46:18 | 000,000,000 | ---D | C] -- C:\Users\Des\AppData\Roaming\Ashampoo
[2011/04/26 17:43:51 | 000,000,000 | ---D | C] -- C:\Users\Des\AppData\Local\ashampoo
[2011/04/26 17:43:51 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo
[2011/04/26 17:43:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
[2011/04/22 15:51:59 | 000,000,000 | ---D | C] -- C:\Battle of Britain II
[2011/04/22 09:34:13 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Softwrap
[2011/04/22 09:34:13 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Fonts
[2011/04/22 09:34:13 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Config
[2011/04/22 09:18:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Ulead Systems
[2011/04/22 09:18:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulead GIF Animator 5 TBYB
[2011/04/22 09:18:06 | 000,000,000 | ---D | C] -- C:\Windows\Noslip
[2011/04/21 17:58:38 | 000,000,000 | ---D | C] -- C:\Users\Des\AppData\Roaming\wargaming.net
[2011/04/21 17:32:55 | 000,000,000 | ---D | C] -- C:\ProgramData\DVD Shrink
[2011/04/21 17:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
[2011/04/21 17:27:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2011/04/18 07:24:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
[2011/04/17 20:05:09 | 000,000,000 | ---D | C] -- C:\ubuntu
[2011/04/13 15:49:56 | 000,000,000 | ---D | C] -- C:\Users\Des\Documents\Online-Training
[2011/04/13 12:21:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011/04/13 12:16:40 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011/04/13 12:16:21 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011/04/11 09:10:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2011/04/11 09:10:43 | 000,000,000 | ---D | C] -- C:\Users\Des\AppData\Roaming\SystemRequirementsLab
[2011/04/08 15:54:12 | 000,000,000 | ---D | C] -- C:\Users\Des\AppData\Roaming\Virtual Mechanics
[2011/04/08 15:54:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Virtual Mechanics
[2011/04/08 15:54:12 | 000,000,000 | ---D | C] -- C:\Users\Des\Documents\My IMS Projects
[2011/04/08 15:50:16 | 000,000,000 | ---D | C] -- C:\Users\Des\amaya
[2011/04/08 15:50:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amaya
[5 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/05/07 14:44:59 | 000,014,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/07 14:44:59 | 000,014,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/07 14:42:41 | 000,775,712 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/05/07 14:42:41 | 000,660,768 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/05/07 14:42:41 | 000,117,706 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/05/07 14:37:48 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/05/07 14:37:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/07 14:37:36 | 534,634,495 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/07 13:33:38 | 000,000,177 | -H-- | M] () -- C:\dvmexp.idx
[2011/05/04 01:19:43 | 000,002,042 | -H-- | M] () -- C:\Users\Des\Documents\Default.rdp
[2011/04/27 22:23:03 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/04/27 18:02:41 | 000,000,120 | ---- | M] () -- C:\Users\Des\Desktop\Basement.url
[2011/04/27 17:23:07 | 000,002,338 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/04/27 14:08:28 | 000,066,190 | ---- | M] () -- C:\Users\Des\Documents\cc_20110427_140822.reg
[2011/04/26 17:43:51 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2010 Advanced.lnk
[2011/04/26 17:43:51 | 000,000,870 | ---- | M] () -- C:\Users\Des\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 2010 Advanced.lnk
[2011/04/26 09:11:05 | 000,000,900 | ---- | M] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2011/04/25 09:51:09 | 000,000,989 | ---- | M] () -- C:\Users\Des\Desktop\magicJack.lnk
[2011/04/22 15:53:07 | 000,000,637 | ---- | M] () -- C:\Users\Public\Desktop\Battle of Britain II.lnk
[2011/04/22 15:39:04 | 000,301,176 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/04/22 09:34:29 | 000,000,206 | ---- | M] () -- C:\Windows\ulead32.ini
[2011/04/22 09:34:25 | 000,000,560 | ---- | M] () -- C:\Users\Public\Documents\Global.sw
[2011/04/22 09:21:20 | 000,000,893 | ---- | M] () -- C:\Users\Public\Desktop\Ulead GIF Animator 5.lnk
[2011/04/21 17:32:26 | 000,000,676 | ---- | M] () -- C:\Users\Des\Desktop\DVD Shrink 3.2.lnk
[2011/04/21 17:27:05 | 000,000,681 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2011/04/18 07:24:17 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk
[2011/04/15 07:14:55 | 000,412,964 | ---- | M] () -- C:\Users\Des\Documents\Linequality_ DSLReports.pdf
[2011/04/14 12:48:47 | 000,007,622 | ---- | M] () -- C:\Users\Des\AppData\Local\Resmon.ResmonCfg
[2011/04/13 12:40:46 | 000,001,435 | ---- | M] () -- C:\Users\Des\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/04/13 12:31:27 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/04/13 12:31:27 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2011/04/08 15:52:55 | 000,001,967 | ---- | M] () -- C:\Users\Public\Desktop\SiteSpinner.lnk
[2011/04/08 15:50:14 | 000,000,868 | ---- | M] () -- C:\Users\Public\Desktop\Amaya.lnk
[5 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[2 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/04/27 14:08:25 | 000,066,190 | ---- | C] () -- C:\Users\Des\Documents\cc_20110427_140822.reg
[2011/04/26 17:43:51 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2010 Advanced.lnk
[2011/04/26 17:43:51 | 000,000,870 | ---- | C] () -- C:\Users\Des\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 2010 Advanced.lnk
[2011/04/22 15:53:07 | 000,000,637 | ---- | C] () -- C:\Users\Public\Desktop\Battle of Britain II.lnk
[2011/04/22 09:34:13 | 000,000,560 | ---- | C] () -- C:\Users\Public\Documents\Global.sw
[2011/04/22 09:34:11 | 000,000,206 | ---- | C] () -- C:\Windows\ulead32.ini
[2011/04/22 09:18:33 | 000,000,893 | ---- | C] () -- C:\Users\Public\Desktop\Ulead GIF Animator 5.lnk
[2011/04/21 17:32:26 | 000,000,676 | ---- | C] () -- C:\Users\Des\Desktop\DVD Shrink 3.2.lnk
[2011/04/21 17:27:05 | 000,000,681 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2011/04/18 07:24:17 | 000,000,909 | ---- | C] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk
[2011/04/15 07:14:55 | 000,412,964 | ---- | C] () -- C:\Users\Des\Documents\Linequality_ DSLReports.pdf
[2011/04/13 12:31:27 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/04/13 12:31:27 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/04/13 12:17:14 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011/04/13 12:16:07 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011/04/13 12:15:55 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011/04/13 12:15:54 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011/04/13 12:15:45 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc
[2011/04/13 12:15:45 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011/04/08 15:52:55 | 000,001,967 | ---- | C] () -- C:\Users\Public\Desktop\SiteSpinner.lnk
[2011/04/08 15:52:54 | 000,001,967 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiteSpinner.lnk
[2011/04/08 15:50:14 | 000,000,868 | ---- | C] () -- C:\Users\Public\Desktop\Amaya.lnk
[2011/04/01 09:37:45 | 000,000,080 | ---- | C] () -- C:\Users\Des\AppData\Local\CrystalDiskMark30.ini
[2011/03/30 08:17:30 | 000,000,085 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011/03/28 12:00:00 | 000,030,347 | ---- | C] () -- C:\Users\Des\AppData\Local\backup.vtp
[2011/03/21 11:53:36 | 000,007,622 | ---- | C] () -- C:\Users\Des\AppData\Local\Resmon.ResmonCfg
[2011/03/21 09:00:19 | 000,743,126 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/03/21 08:58:46 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/03/20 21:55:36 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/03/20 21:55:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/03/20 21:55:36 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011/03/20 21:55:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/03/20 21:55:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/01/24 10:02:14 | 000,000,900 | ---- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2010/12/31 14:54:19 | 000,000,268 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/12/26 13:44:51 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/12/21 02:27:22 | 000,003,113 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2010/11/15 12:09:40 | 000,000,635 | ---- | C] () -- C:\Windows\rtcwgoty.INI
[2010/09/16 14:02:57 | 000,132,441 | ---- | C] () -- C:\Windows\hpwins26.dat
[2010/09/16 14:02:57 | 000,000,370 | ---- | C] () -- C:\Windows\hpwmdl26.dat
[2010/08/17 17:41:41 | 000,000,030 | ---- | C] () -- C:\Windows\SysWow64\brss01a.ini
[2010/08/17 17:41:40 | 000,000,447 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2010/08/17 17:41:40 | 000,000,026 | ---- | C] () -- C:\Windows\BRPP2KA.INI
[2010/08/14 09:03:10 | 000,000,061 | -HS- | C] () -- C:\Windows\cnerolf.bin
[2010/08/11 17:25:23 | 000,000,457 | ---- | C] () -- C:\Windows\hpomdl29.dat.temp
[2010/08/10 19:31:51 | 000,164,914 | ---- | C] () -- C:\Windows\hpoins29.dat
[2010/08/10 19:31:51 | 000,000,457 | ---- | C] () -- C:\Windows\hpomdl29.dat
[2010/07/09 10:31:36 | 000,794,408 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2010/06/25 13:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2010/06/19 00:01:06 | 000,000,094 | ---- | C] () -- C:\Windows\family.ini
[2010/05/19 17:23:06 | 000,022,360 | ---- | C] () -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010/05/19 17:23:02 | 001,374,232 | ---- | C] () -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2010/05/19 17:23:02 | 000,444,776 | ---- | C] () -- C:\Windows\SysWow64\d3dx10_36.dll
[2010/05/19 17:22:59 | 001,123,696 | ---- | C] () -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010/05/19 17:17:15 | 000,234,576 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010/05/19 17:16:53 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010/05/19 13:55:14 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2010/05/19 13:55:14 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010/05/19 13:55:11 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010/05/19 13:55:11 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010/05/19 13:48:59 | 000,046,930 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2010/05/19 13:47:50 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010/05/19 13:47:47 | 000,031,303 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2009/07/14 01:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 22:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 22:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 20:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/07/05 22:48:34 | 000,013,368 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsUpIO.sys
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/04/02 08:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2009/03/30 02:32:40 | 000,032,768 | R--- | C] () -- C:\Windows\DAODx.exe
[2008/12/01 18:32:32 | 000,362,029 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll
[2008/09/19 01:49:26 | 000,001,209 | ---- | C] () -- C:\Windows\skSPcfg.ini
[2008/09/19 01:49:24 | 000,000,381 | ---- | C] () -- C:\Windows\skMCcfg.ini
[2007/06/05 14:20:32 | 000,177,704 | ---- | C] () -- C:\Windows\SysWow64\PSIService.exe

========== LOP Check ==========

[2011/04/26 18:06:34 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Ashampoo
[2011/03/21 09:09:31 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\ChaosPro
[2011/03/21 09:09:31 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\ChaosPro 4.0
[2011/04/07 11:08:29 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Downloaded Installations
[2011/03/21 09:09:31 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Foxit Software
[2011/03/21 09:09:31 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\HotSync
[2011/03/08 13:19:22 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\IMSIDesign
[2011/04/25 09:51:11 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\mjusbsp
[2011/04/07 13:27:04 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Nitro PDF
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\NZXT
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\NZXT Avatar Gaming Mouse
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\OpenOffice.org
[2011/05/07 14:30:58 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\PDF Writer
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Process Hacker 2
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Protector Suite
[2011/01/24 11:20:50 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Publish Providers
[2011/03/21 09:09:36 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Registry Mechanic
[2011/03/21 09:09:38 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Sony
[2011/04/07 02:04:17 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Sports Interactive
[2011/03/21 09:09:39 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\StoneTrip
[2011/04/11 09:10:43 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\SystemRequirementsLab
[2011/04/08 15:54:12 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Virtual Mechanics
[2011/04/21 18:01:50 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\wargaming.net
[2011/03/21 09:09:39 | 000,000,000 | ---D | M] -- C:\Users\Des\AppData\Roaming\Wireshark
[2009/07/14 01:08:49 | 000,026,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:D1B5B4F1

< End of report >

Extras.txt

OTL Extras logfile created on: 5/7/2011 2:44:52 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Des\Downloads
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 36.00% Memory free
15.00 Gb Paging File | 11.00 Gb Available in Paging File | 71.00% Paging File free
Paging file location(s): f:\pagefile.sys 9216 9216 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 12.93 Gb Free Space | 10.85% Space Free | Partition Type: NTFS
Drive D: | 100.00 Mb Total Space | 70.27 Mb Free Space | 70.28% Space Free | Partition Type: NTFS
Drive F: | 97.66 Gb Total Space | 87.84 Gb Free Space | 89.95% Space Free | Partition Type: NTFS
Drive G: | 600.98 Gb Total Space | 432.24 Gb Free Space | 71.92% Space Free | Partition Type: NTFS

Computer Name: DES-BABE | User Name: Des | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}" = Network64
"{08347912-0AA5-C85E-BC02-416568E741B4}" = AMD Drag and Drop Transcoding
"{0F841121-4DB6-4B31-839F-7F5AB3BB3423}" = Protector Suite 2009.3
"{26A24AE4-039D-4CA4-87B4-2F86416024FF}" = Java™ 6 Update 24 (64-bit)
"{32939827-d8e5-470a-b126-870db3c69fd0}" = Python 2.7.1 (64-bit)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{55D55008-E5F6-47D6-B16F-B2A40D4D145F}" = 64 Bit HP CIO Components Installer
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7F2E5C3B-DBDF-469D-AD8D-F686D3B71176}" = Debugging Tools for Windows (x64)
"{8181C5B7-2FF5-4677-BA6A-8E2C3F5A7601}" = HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{84057C9C-2F85-4C67-A035-FD75FFE2DE88}" = Logitech Gaming Software 5.09
"{914CCC59-DFED-4C27-8810-3346CF479DFF}" = Saitek SD6 Programming Software 6.0.10.7
"{AE57C044-8912-A181-A0E4-BC2DAB3A092A}" = ATI Catalyst Install Manager
"{B2C5B378-546F-75A7-7757-C1EAAFAF9E33}" = ccc-utility64
"{B7607FC8-72AD-486D-B6B7-A402D5876309}" = PerfectDisk 11 Home Premium
"{BBA7005D-8C56-FFD3-81AE-D0481829BC70}" = AMD Fuel
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CEB219B0-9A1B-4CFB-8D77-5D826EE6F4C4}" = HP Officejet 4500 G510g-m Corporate Edition 13.0
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"Bullzip PDF Printer_is1" = Bullzip PDF Printer 7.1.0.1218
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.56
"CrystalDiskMark_is1" = CrystalDiskMark 3.0.0h
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Process_Hacker2_is1" = Process Hacker 2.12

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01D5FF1F-BB19-4387-8EF1-C6319037EC12}" = RAMDisk
"{0EDBEB2B-7C8D-42E6-8312-0F84394A3223}" = Windows Media Center Add-in for Silverlight
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{162F0E70-9CF0-46D3-AFDC-E98C5C47B25A}" = Flight Deck 4 for FSX
"{16887790-8642-4267-A605-C9EDD9240B66}" = 4500G510gm_Ent
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1A7C2340-D1AC-4742-BCFF-1EA6CADFDC8B}" = Microsoft Windows Debugging Symbols
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks v.0.6.3.11
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java™ 6 Update 24
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2EF0D7ED-F944-4E0D-AC78-7DA00C0B81E4}_is1" = Penumbra Overture
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{355BCF4B-A2A6-46F1-A33E-FA8D6B1794C7}" = SiteSpinner V2
"{38468127-9E6F-4FC9-B5F7-42D4AD437D96}" = Unigine Heaven Benchmark v2.1
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3A5F4680-8B45-4D84-B9EE-89CFE2E40650}" = TurboCAD Deluxe 15
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{3E171899-0175-47CC-84C4-562ACDD4C021}" = OpenOffice.org 3.3
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{4847BBB9-EADD-4C92-90BF-4223B0892FF6}" = Microsoft Flight Simulator X Service Pack 2
"{491D92A9-69CA-4EB4-81D3-0106F9337957}" = TurboV EVO
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BF021F7-37A7-4086-B4F1-D5914925D18B}" = VZAccess Manager
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{5B3A354B-C059-4861-A85B-CA46F1089E15}" = Creative USB Headsets
"{5FD89EA1-99C2-40EE-BBF5-20F8991ED756}" = Catalyst Control Center - Branding
"{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
"{664D6E1D-2A6C-D54D-31A5-B6BC30CEB0C6}" = CCC Help English
"{679F739E-5C76-4A41-B562-F9392156B6DD}" = System Requirements Lab CYRI
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7B9F5775-8C8C-2A4E-0CAB-74EA7AF5CB09}" = ccc-core-static
"{7E5A8023-0E90-4503-A1EA-C9FC25680AF9}" = PS_AIO_03_C4400_Software_Min
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AF3E926-ED59-11D4-A44B-0000E86D2305}" = Ulead GIF Animator
"{9527A496-5DF9-412A-ADC7-168BA5379CA6}" = Microsoft Flight Simulator X
"{9720C029-0C2C-4D1E-9DE0-E89971C4C8C7}" = Silent Hunter III
"{99AD9D6D-A456-49EE-8360-F22EE7AA1272}" = Express Gate
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{9C2AC00C-0C06-4B7E-97A4-A833808D54D6}" = EPU
"{9D318C86-AF4C-409F-A6AC-7183FF4CF424}" = Internet TV for Windows Media Center
"{A4095642-9995-42B1-B589-D8E7AD6B11DA}" = Just Flight - Air Hauler
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA945C94-285E-DE48-A30F-70105C6580DE}" = Catalyst Control Center Graphics Previews Common
"{AF78A04C-C6FE-4BB1-A592-1405192B4669}" = Flight Deck 4 Update 3 for FSX
"{B0319FCD-559D-4335-ADB3-7B57C4D33DC2}" = Advanced IP Scanner
"{B1E33614-25CC-4C2A-8CBA-88B51ABF67E0}" = C4400
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7C7A59F-CF70-481E-A94F-7C2563AA5ADD}" = Sony DVD Architect Studio 4.5
"{B8887E02-C910-4498-A7C0-186ABFDCD110}" = GPU Boost Driver
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{BE6E6BF7-6A81-4EC2-AD29-4580025149F1}" = TrackIR4
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC29B835-95A5-3CD9-087B-F94D7B9ECC9B}" = Catalyst Control Center InstallProxy
"{D186EE99-F905-4F87-B188-01D60D8FF1B3}" = Just Flight - Traffic X
"{D734A52D-624E-428E-8DE6-B2665E3621CC}" = Microsoft Windows Debugging Symbols
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{DA507A38-4B2A-40C0-90AC-E30AAA0B757C}" = Vegas Movie Studio Platinum 9.0
"{E2D09AC2-4153-4817-AAEB-24F92A8BCE88}" = Windows Media Center Add-in for Flash
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3CA05B7-B4C0-4C9B-AAA6-16B868B35DF2}" = TrackIR5
"{F6C5F1A1-F459-498F-A50A-EE6C80799D3B}" = Cinescore Studio 1.0
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"12bbe590-c890-11d9-9669-0800200c9a66_is1" = The Lord of the Rings Online™ v03.02.05.8032
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ALchemy" = Creative ALchemy
"Amaya" = Amaya
"Ashampoo Burning Studio 2010 Advanced_is1" = Ashampoo Burning Studio 2010 Advanced
"avast" = avast! Free Antivirus
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Battle of Britain II" = Battle of Britain II
"ChaosPro 4.0" = ChaosPro
"Cisco Connect" = Cisco Connect
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CrystalDiskInfo_is1" = CrystalDiskInfo 3.9.0
"DVD Shrink_is1" = DVD Shrink 3.2
"Earth Screensaver HD" = Earth Screensaver HD
"Foxit Reader" = Foxit Reader
"Freespace 2_is1" = Freespace 2
"Google Chrome" = Google Chrome
"GPL Ghostscript Lite_is1" = GPL Ghostscript Lite 8.70
"HTC_WModemDriver" = WModem Driver Installer
"InstallShield_{9527A496-5DF9-412A-ADC7-168BA5379CA6}" = Microsoft Flight Simulator X
"InstallShield_{9720C029-0C2C-4D1E-9DE0-E89971C4C8C7}" = Silent Hunter III
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.6.6 (Standard)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox 4.0 (x86 en-US)" = Mozilla Firefox 4.0 (x86 en-US)
"OpenAL" = OpenAL
"Picasa 3" = Picasa 3
"PunkBusterSvc" = PunkBuster Services
"Registry Mechanic_is1" = Registry Mechanic 10.0
"SP1_9527A496-5DF9-412A-ADC7-168BA5379CA6" = Microsoft Flight Simulator X Service Pack 1
"Steam App 34390" = Football Manager 2011 Demo
"Steam App 550" = Left 4 Dead 2
"SysInfo" = Creative System Information
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Verizon V CAST Media Manager" = Verizon V CAST Media Manager
"VirtualCloneDrive" = VirtualCloneDrive
"WinPcapInst" = WinPcap 4.1.2
"Wireshark" = Wireshark 1.4.2
"Wishpot Button for Internet Explorer_is1" = Wishpot Button for Internet Explorer
"World of Warcraft" = World of Warcraft
"World of Warcraft Public Test" = World of Warcraft Public Test
"Wubi" = Kubuntu

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{667508AA-98EB-4F1E-8590-AAD185B8930F}" = NZXT Avatar Gaming Mouse
"magicJack" = magicJack

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >


Looking forward to get some feedback/help.

Thanks
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP