I found the run-through here: http://www.geekstogo...ogle-redirects/
OTM didn't seem to agree with my system. It froze and would not respond after I clicked 'MoveIt!' forcing me to restart the computer through task manager as all applications had been ended.
I moved onto GooredFix which gave this result:
GooredFix by jpshortstuff (03.07.10.1)
Log created at 19:07 on 23/06/2011 (Richard)
Firefox version [Unable to determine]
========== GooredScan ==========
========== GooredLog ==========
C:\Program Files\Mozilla Firefox\extensions\
(none)
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [22:30 08/08/2009]
---------- Old Logs ----------
GooredFix[17.16.55_23-06-2011].txt
-=E.O.F=-
Then TDSSKiller which found nothing.
So here I am now. I used OTL, it gave me two txt files. One titled 'Extras.Txt' and the other 'OTL.txt. The 'Extras' shows this:
OTL Extras logfile created on: 23/06/2011 19:10:20 - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Richard\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
1.87 Gb Total Physical Memory | 0.85 Gb Available Physical Memory | 45.53% Memory free
3.99 Gb Paging File | 2.62 Gb Available in Paging File | 65.68% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149.09 Gb Total Space | 38.93 Gb Free Space | 26.11% Space Free | Partition Type: NTFS
Drive D: | 149.00 Gb Total Space | 148.72 Gb Free Space | 99.81% Space Free | Partition Type: NTFS
Computer Name: RICHARD-PC | User Name: Richard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- Reg Error: Value error. File not found
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
chm.file [open] -- Reg Error: Value error.
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FinePix] -- "C:\Program Files\FinePixViewer\FinePixViewer.exe" "%1" (FUJIFILM Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{09E86452-642C-4C25-B0EC-270AA314F2FD}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{0D1A7A98-CA26-4D30-B3F2-525B55949D2F}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{1DBCF1CB-CE61-4559-9319-37773DBCD456}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{34AE4503-6E8F-4665-94B9-4603E281C872}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{448DA8DC-AAAD-4CE3-A886-19AD253A9EE8}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{4A0020FD-EB5F-4C36-B0BB-BAFB24DC98C0}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{5173BE79-D6B8-4AAF-9BE4-B76239DEBDEA}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{5AC498C3-C861-486D-B08C-E31CB8167FD9}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{5B6B8088-D0D1-41EE-AE43-7DFD7A6B06FE}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{5C643507-6D66-4167-B07C-1666E93F4FF7}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{603CEAB6-DE21-44F3-A800-CBE8E53D66C5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{6748FD0C-A574-4338-9CDF-F936DF041FFF}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{6C82A6A9-048B-403A-A78C-6DC4C84879BE}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{70FE7F10-CB18-4924-A1C5-E56721F5C333}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{712F6EF9-3D41-4733-8DB0-3806AE8F77D2}" = lport=2869 | protocol=6 | dir=in | app=system |
"{7160722C-42F7-4CC9-BDF9-E7C61B4198BF}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{719527D5-A755-4C91-9EB1-2A52610798BB}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{98F71EED-789C-408A-B433-7107B99C12EC}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{9BC27E4A-E851-45A2-BD0F-9A47F03EF855}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{9F403C62-67EE-4B36-9535-53DFC6E00C80}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{A3169085-DF92-4B39-A626-C1BF7739A64B}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{A46D9BD1-DEF1-4B40-BA30-E6769EFC5D69}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{AA822ADB-C83D-443B-AA76-5D2BD96644A2}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{B0835AFA-58B8-490E-A1F9-64A66CFD3C58}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{B0C11975-990A-40AE-AE29-C8BCC863E06A}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{B176B94C-CE16-4C69-A502-A41216A4FE4A}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{B2684C7B-F98C-4218-87CE-2B1E4397E7DF}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{B967F39D-69F9-4F41-91CA-AF7FC141CD98}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{C4B11DD8-F291-47D0-9CE8-2AFD5891E3E7}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{D13A9748-DD82-4345-AC33-30379233410F}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{E75E619C-2312-4CD9-BAED-F73C7DC7FA7A}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{E7F1EB8A-6E89-4B74-901A-9DABA1F1F256}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{F5E70D05-65DF-485B-8353-30FF402CCD0B}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03AA6127-8F29-4283-A408-BECE9C961689}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{063F12FA-995D-4B55-AA78-3DF6EF15A135}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{098A4642-D04F-4A57-A00F-370BFFB81DDF}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{0B366F25-AB2A-4BB7-8043-049FADCCD802}" = dir=in | app=c:\windows\system32\acprgwiz32.exe |
"{0B37DFD4-12CD-400C-AE0F-B4D70CE702D7}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{16E0A4C8-19A8-4BF6-9C4F-29E6F2456033}" = protocol=17 | dir=in | app=c:\windows\system32\lxcrcoms.exe |
"{1728F935-96D6-4254-97C8-D216B8B3E40F}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{1AB6781D-1932-4A32-A336-5C36CA9AABA5}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{22B86B8C-57DD-48A4-A7CC-6AB061CAA66B}" = protocol=6 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{2971A387-2EC2-481B-BECB-90CB7BF0B232}" = protocol=6 | dir=in | app=c:\program files\lexmark 2400 series\lxcrmon.exe |
"{2CA18860-AE50-4B36-9C96-258632515248}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\rome total war gold\rometw.exe |
"{31BDAFBF-CEB7-49D5-A46F-D2FF6714E829}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{32CAB104-91DA-486D-8D0E-CCAE8787A163}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{33515127-8619-45DB-9D2C-07C6B835D0A1}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{36F3E97D-1CE1-464C-9BE1-F2C0046AB071}" = protocol=17 | dir=in | app=c:\program files\lexmark 2400 series\lxcrmon.exe |
"{370AF92E-53E3-4F26-A148-E15769E82CE4}" = protocol=6 | dir=in | app=c:\windows\system32\dlbkcoms.exe |
"{4264D82D-8A94-468D-9EE0-5BEA5FCA6AD3}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbstreamerclient.exe |
"{45AC6193-6174-44A9-B2B4-E8B55BC89D00}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{4D3FFAF8-9777-4BEF-A017-F39219492A38}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{4E8469B6-413B-4ACB-B34D-364933A6CC48}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"{546086BD-CD32-42F7-AF7D-BE4B6232C85B}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"{5C13A0D4-3B04-45D3-87F1-8895A3DF1DBB}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{5CB7B019-927F-4A7A-899C-04BD2E933C56}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\rome total war gold\rometw-bi.exe |
"{62ED2A14-EB94-43A3-8ADD-A3EA5277FBB5}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{67059999-56FE-47EE-AC82-806400F390B5}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{689643DE-E6CE-42B3-B7EF-9C0816877725}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{6AAE6A6B-8C26-4A82-8561-D7E898729A2C}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{6B3D054B-A3D6-4035-A410-529E5A7C3341}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{6EFD9EFD-7D5B-4368-BDA7-68D4B4F28919}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{7719DA99-E3F0-4B21-8292-EB23B5C26DC7}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{79721ABF-CE6C-43F3-8628-00676CBC5849}" = protocol=6 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{7A4E19DA-6CFD-4B48-98FB-C28EC0CE80F6}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{7D634A93-1061-4412-BCE8-A9CEBD323852}" = protocol=6 | dir=in | app=c:\program files\sports interactive\football manager 2008\fm.exe |
"{7D6D87EF-113F-43CF-BBD7-1B98D4433941}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orb.exe |
"{7D75C3AE-9BD0-4259-B24D-3E96456FAB36}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"{815E1928-0979-423E-AE21-8C3D35B469E2}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8219DAF6-27EB-4530-B60A-E262C8891C1E}" = protocol=17 | dir=in | app=c:\program files\sports interactive\football manager 2008\fm.exe |
"{88E4BDCD-DEFF-408E-9222-A845C4ABA571}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{8ADBEA06-A02B-4060-92ED-C8C01431D8E5}" = protocol=6 | dir=in | app=c:\windows\system32\lxcrcoms.exe |
"{91BB5438-CBB4-44F5-8D18-9D105CFD10A6}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\rome total war gold\rometw-bi.exe |
"{93551C05-DBC9-4E8B-9730-F35BCB15B41E}" = protocol=17 | dir=in | app=c:\windows\system32\dlbkcoms.exe |
"{93D59006-4364-43DB-9A47-03D10576C672}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{93F33DCB-F380-418C-B413-8AFAD4D5085E}" = protocol=17 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{9512921F-400D-4B95-A4DE-09B7A78DE70E}" = protocol=17 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"{97C4B9F5-4C5E-4D72-A3CD-86D3957C74BF}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{997787B3-097E-41CD-9965-AB85642CD2C4}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{9CBC1AFE-74B6-49AF-A4EC-677C032FE2CD}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{A0CED304-976A-41A5-AFF8-2AB0A0CB82C8}" = dir=in | app=c:\windows\system32\acprgwiz32.exe |
"{A11B502B-2487-4C18-871C-E189A4105E87}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{A91E457C-304F-460A-9EFC-B93A74F0A210}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{ABC32B2D-0070-4372-9973-B87953D22F37}" = dir=in | app=c:\windows\system32\acprgwiz32.exe |
"{AC801560-65C9-4DDF-A0A8-FEC3C5B2335B}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{AEECE47B-AB03-4321-A6D7-AC5BA743D6D2}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AF99A9AE-5A96-46FF-AA50-2D6BEF0B5ED3}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"{B5F8512F-477F-43ED-B779-ACEA23BDCB17}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbir.exe |
"{B766ED05-97C1-4C2A-996F-323E40226A8C}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{B8BFB873-FC25-4544-8C46-F17076FA2002}" = protocol=17 | dir=in | app=c:\program files\lexmark 2400 series\lxcraiox.exe |
"{BB0704EB-CEB9-44C5-B652-0C9129C77217}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\rome total war gold\rometw.exe |
"{BB9149FE-48F0-4989-B7F3-0F31204C3BF2}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{BCE12CC0-539D-4EC6-823E-7D8B73AD18A2}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{C8202BC5-1AFE-4656-9003-1501B706F562}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{C98EDF96-4869-4806-B00C-9E5E2A1B8495}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{C9F5AB38-8B93-49C2-ADA1-0B7788BDCBE7}" = protocol=6 | dir=in | app=c:\program files\lexmark 2400 series\lxcraiox.exe |
"{CCE3007C-A195-421C-9DB7-16E953D9DD77}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbir.exe |
"{CD1E2F26-2301-4B2B-B0A6-E5E8BD3AA8BB}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{D8291F19-ECF0-4DB6-97DA-346916AA0E8F}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mna\mcnasvc.exe |
"{E46245B0-CDD7-4609-AFFE-3833A6360BD6}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E4CDB0D4-89F4-480C-ACA2-9D2BCF782015}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{ED9D780C-56D0-48C8-BDC0-7658D416C2BD}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{EE2E85E0-4739-4BBD-AF3C-EBBE539634CC}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orb.exe |
"{FA21B43B-45E4-454E-8EBD-8E41CAF81206}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{FCFAF4FD-0CA6-42EF-B8DC-084A33051A3D}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{FE95289C-EA55-43D7-BFBD-2D7B1A663FF6}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbstreamerclient.exe |
"{FF5A022F-4379-4A22-B2D4-DFFD4BDB835E}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"TCP Query User{0149598B-ABC5-4E15-9CE1-C6C32030A272}C:\program files\sports interactive\cm99-00\cm9900.exe" = protocol=6 | dir=in | app=c:\program files\sports interactive\cm99-00\cm9900.exe |
"TCP Query User{18206EB3-48C4-4728-8522-8BA97F01FFAF}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{212DDF26-C6F2-454D-96A9-C0524E504E9A}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{27295952-BDAB-4000-AB73-E88D5E7E0A36}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{278EA485-4FA1-4D9C-BBAC-F398AD402E71}C:\program files\mohaa\mohaa.exe" = protocol=6 | dir=in | app=c:\program files\mohaa\mohaa.exe |
"TCP Query User{4176C9E7-49DF-429C-B690-5AB7D49C2016}C:\program files\common files\nokia\service layer\a\nsl_host_process.exe" = protocol=6 | dir=in | app=c:\program files\common files\nokia\service layer\a\nsl_host_process.exe |
"TCP Query User{45FC586D-A408-4913-81A6-D1B0846B2EBC}C:\program files\azureus\azureus.exe" = protocol=6 | dir=in | app=c:\program files\azureus\azureus.exe |
"TCP Query User{47EF3E70-C360-4F20-90B4-402B47D2AAE3}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{68B55ED5-2D52-4FC0-A61B-E1248610D867}C:\program files\sports interactive\football manager 2006\fm.exe" = protocol=6 | dir=in | app=c:\program files\sports interactive\football manager 2006\fm.exe |
"TCP Query User{6DFF0D05-41C8-43F6-953A-CB0A17BCC8FE}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{7AD59CCF-FE27-4898-B0F3-D7EBDDB0D85F}C:\program files\azureus\azureus.exe" = protocol=6 | dir=in | app=c:\program files\azureus\azureus.exe |
"TCP Query User{7C2DDBB6-86D2-4E1E-B025-74145EB4AE5B}C:\program files\frostwire\frostwire.exe" = protocol=6 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"TCP Query User{808F87B7-C258-4854-8A86-DD6D74653650}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{8E2FA094-AE8D-4F56-B2DC-B2F284637E61}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{8ED906A9-96B1-42D5-8477-66586B1593B4}C:\users\richard\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\richard\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{924686EB-ECBA-4F07-8C65-A14D102148AC}C:\users\richard\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\richard\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{966480D6-89C0-4673-B4C1-983FA1736A44}C:\users\richard\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\richard\program files\utorrent\utorrent.exe |
"TCP Query User{9DDA6077-7A99-4E48-AC5E-2817863E78AA}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{A388B890-C58A-468E-AC93-BE7D046BF08D}C:\program files\nokia\nokia software updater\nsu_ui_client.exe" = protocol=6 | dir=in | app=c:\program files\nokia\nokia software updater\nsu_ui_client.exe |
"TCP Query User{A429AE59-DED3-48FA-AE8F-0FA442BEEFFE}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{A95D9AC7-D4FF-400C-8A03-925C81AB4192}C:\users\richard\desktop\housecall66.exe" = protocol=6 | dir=in | app=c:\users\richard\desktop\housecall66.exe |
"TCP Query User{AA8D9595-D66E-4C6E-82D6-6E1C4E4FE9AE}C:\program files\freeciv-2.0.9-gtk2\civserver.exe" = protocol=6 | dir=in | app=c:\program files\freeciv-2.0.9-gtk2\civserver.exe |
"TCP Query User{CBF291DA-5FAB-41C9-AF3D-A37839B7177A}C:\program files\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"TCP Query User{FF1E827B-F90D-49A4-B3D5-A781F7F6DAA2}C:\program files\common files\nokia\service layer\a\nsl_host_process.exe" = protocol=6 | dir=in | app=c:\program files\common files\nokia\service layer\a\nsl_host_process.exe |
"UDP Query User{00303D10-54E4-4762-86A9-4B01C3AF0D28}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{00F2E532-FFE1-45D1-8699-189824ABC0E2}C:\program files\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"UDP Query User{05146993-BF7E-47EE-83D4-D07F31CE24C9}C:\program files\frostwire\frostwire.exe" = protocol=17 | dir=in | app=c:\program files\frostwire\frostwire.exe |
"UDP Query User{11F7882C-D688-407D-BC7B-7164449B1EEC}C:\users\richard\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\richard\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{1731ADC8-4C58-4CE4-B95B-97A75E2D650E}C:\program files\nokia\nokia software updater\nsu_ui_client.exe" = protocol=17 | dir=in | app=c:\program files\nokia\nokia software updater\nsu_ui_client.exe |
"UDP Query User{1F623F42-1949-467F-A8FC-4E5409B35E67}C:\program files\mohaa\mohaa.exe" = protocol=17 | dir=in | app=c:\program files\mohaa\mohaa.exe |
"UDP Query User{2542397E-AAFF-46F8-80DC-FD93FB954619}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{2B0D99E8-F1CB-4D22-9BB1-8A6D92BD4FFE}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{543FF0BB-F6F7-4BAF-BA19-5B90AF1EB133}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{54956F9A-02C5-4206-AED3-13BA673FA85A}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{5D09241A-C2D0-41E6-8DA9-9EE40E847F3F}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{69300B01-BA31-47D1-B6ED-B4A6125CEB97}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{79F45C71-3CEA-4727-B81D-2CC700F88262}C:\program files\sports interactive\football manager 2006\fm.exe" = protocol=17 | dir=in | app=c:\program files\sports interactive\football manager 2006\fm.exe |
"UDP Query User{8BB377D6-40A7-422D-BDA9-5B0ACA894410}C:\program files\common files\nokia\service layer\a\nsl_host_process.exe" = protocol=17 | dir=in | app=c:\program files\common files\nokia\service layer\a\nsl_host_process.exe |
"UDP Query User{8D8AA5BC-7620-4E4C-9CF9-335CD99706DB}C:\program files\azureus\azureus.exe" = protocol=17 | dir=in | app=c:\program files\azureus\azureus.exe |
"UDP Query User{9197FE7A-35B3-430A-8574-4CD311F5A74F}C:\users\richard\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\richard\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{9415A175-C7A1-436F-80B8-2E85A394AD0A}C:\program files\sports interactive\cm99-00\cm9900.exe" = protocol=17 | dir=in | app=c:\program files\sports interactive\cm99-00\cm9900.exe |
"UDP Query User{9C9D2C72-83FB-4E37-95D9-271941E3EB8F}C:\program files\azureus\azureus.exe" = protocol=17 | dir=in | app=c:\program files\azureus\azureus.exe |
"UDP Query User{A8AD482F-DED0-4E22-8086-E91FABC19BA9}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{AF65A4EC-04A3-4DFC-8363-20BAD18300C8}C:\program files\freeciv-2.0.9-gtk2\civserver.exe" = protocol=17 | dir=in | app=c:\program files\freeciv-2.0.9-gtk2\civserver.exe |
"UDP Query User{B4758F15-6311-4B7E-9A7C-1A6EE6C195E0}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{C62A886D-4E82-4574-B9FE-CE53EC2A72C3}C:\users\richard\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\richard\program files\utorrent\utorrent.exe |
"UDP Query User{E0B683BF-E23C-4C21-8EC4-0671EBFD25D3}C:\users\richard\desktop\housecall66.exe" = protocol=17 | dir=in | app=c:\users\richard\desktop\housecall66.exe |
"UDP Query User{EC5D6501-F627-4D3F-A53E-820044A45712}C:\program files\common files\nokia\service layer\a\nsl_host_process.exe" = protocol=17 | dir=in | app=c:\program files\common files\nokia\service layer\a\nsl_host_process.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.0.0 (r181)
"{02F6993D-B763-4F40-8F93-2A9CD97586E3}" = Microsoft IntelliType Pro 6.3
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0CB3C535-1171-4A20-B549-E2CB5DEB9723}" = MySQL Connector/ODBC 3.51
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{14C35072-D7D0-4B29-B5BF-C94E426D77E9}" = Sky Broadband
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24ED4D80-8294-11D5-96CD-0040266301AD}" = FinePixViewer Ver.5.3
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java™ 6 Update 26
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{49CFD5D9-0556-4037-B7D6-E13ED4BEA4C5}" = Football Manager 2006
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79C25975-740E-436E-9327-C164831ADCE7}" = enhanced keyboard driver
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 4.3
"{A64FA784-7795-11D8-86F5-0050BF6C9337}" = Keyboard driver
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
"{B44529FF-501E-47CD-A06D-223C161BE058}" = FinePixViewer Resource
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}" = PC Connectivity Solution
"{BE06114F-559D-11E0-B5A1-001D0926B1BF}" = Google Earth
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C7DDA8E7-AD3D-4F51-AC1E-B0FF57002192}" = Microsoft IntelliPoint 6.3
"{C897FCB3-2F8B-4185-8035-79E2AF3A92A4}" = iTunes
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D62FD787-E963-43CA-9B84-555D08971CC1}" = Kies-OutlookAddIn
"{E3B3AB03-8ABC-46CF-8CA9-DB5581E1F368}" = FinePix Studio
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{F010EF78-8CBC-453B-BD6E-0B6D9E60F96C}" = Multimedia Mouse Driver
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F87A8E11-02A4-4875-A3A5-5961081B0E4E}" = OpenOffice.org 2.4
"{F90D6825-8F1F-4E3A-9E42-A9C8A9DD1033}" = Nero 7 Essentials
"504244733D18C8F63FF584AEB290E3904E791693" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ashampoo Magical UnInstall" = Ashampoo Magical UnInstall
"Audacity_is1" = Audacity 1.2.6
"avast" = avast! Free Antivirus
"BlueSquare Poker" = BlueSquare Poker
"Championship Manager 1_is1" = v1.02
"Championship Manager 3" = Championship Manager 3
"Championship Manager 99-00" = Championship Manager 99-00
"CyberTweak_is1" = CyberTweak Version 1.3 Final
"Dan Elwell's Broadband Speed Test_is1" = Dan Elwell's Broadband Speed Test
"DivX Setup.divx.com" = DivX Setup
"doubleTwist" = doubleTwist
"ffdshow_is1" = ffdshow [rev 2527] [2008-12-19]
"Football Manager 2008" = Football Manager 2008
"Football Manager Live universe_1c" = Football Manager Live
"FrostWire" = FrostWire 4.21.8
"HandBrake" = HandBrake 0.9.5
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"InstallShield_{F010EF78-8CBC-453B-BD6E-0B6D9E60F96C}" = Multimedia Mouse Driver
"LastFM_is1" = Last.fm 1.5.4.24567
"Lexmark 2400 Series" = Lexmark 2400 Series
"Lexmark Fax Solutions" = Lexmark Fax Solutions
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Network Play System" = EA AutoPatch
"New Star Soccer" = New Star Soccer
"NVIDIA Drivers" = NVIDIA Drivers
"OpenMG HotFix4.7-07-13-22-01" = OpenMG Limited Patch 4.7-07-14-05-01
"Picasa 3" = Picasa 3
"PROR" = Microsoft Office Professional 2007
"RealPlayer 6.0" = RealPlayer
"Steam App 4760" = Rome: Total War Gold
"StumbleUponIEToolbar" = StumbleUpon IE Toolbar
"Trend Micro HouseCall 6.6" = HouseCall 6.6
"TweakVI" = TweakVI
"Veetle TV" = Veetle TV 0.9.18
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"Winamp" = Winamp
"Winamp Toolbar for Firefox" = Winamp Toolbar for Firefox
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Xvid_is1" = Xvid 1.1.3 final uninstall
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"MyFreeCodec" = MyFreeCodec
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 11/11/2009 12:44:49 | Computer Name = Richard-PC | Source = avast! | ID = 33554522
Description =
Error - 19/03/2010 12:12:30 | Computer Name = Richard-PC | Source = avast! | ID = 33554522
Description =
[ Application Events ]
Error - 23/06/2011 12:54:38 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\DATA_3>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 12:54:38 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\DATA_3>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 12:54:40 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\INDEX>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 12:54:40 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\INDEX>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 13:31:35 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_000008>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 13:31:38 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_00001F>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 13:31:43 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_000074>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 13:31:44 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_00007E>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 13:31:45 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_000084>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
Error - 23/06/2011 13:31:45 | Computer Name = Richard-PC | Source = Windows Search Service | ID = 3013
Description = The entry <C:\USERS\RICHARD\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\F_000089>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)
[ Media Center Events ]
Error - 16/04/2008 11:34:29 | Computer Name = Richard-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
Error - 23/05/2008 14:06:18 | Computer Name = Richard-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
[ OSession Events ]
Error - 19/01/2011 15:47:00 | Computer Name = Richard-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 8, Application Name: Microsoft Office Publisher, Application Version:
12.0.6546.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10302
seconds with 1500 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 23/06/2011 12:10:06 | Computer Name = Richard-PC | Source = Service Control Manager | ID = 7034
Description =
Error - 23/06/2011 12:15:13 | Computer Name = Richard-PC | Source = DCOM | ID = 10010
Description =
Error - 23/06/2011 12:16:50 | Computer Name = Richard-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description =
Error - 23/06/2011 12:18:16 | Computer Name = Richard-PC | Source = HTTP | ID = 15016
Description =
Error - 23/06/2011 12:22:48 | Computer Name = Richard-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 17:20:55 on 23/06/2011 was unexpected.
Error - 23/06/2011 12:22:35 | Computer Name = Richard-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description =
Error - 23/06/2011 12:23:06 | Computer Name = Richard-PC | Source = HTTP | ID = 15016
Description =
Error - 23/06/2011 12:29:04 | Computer Name = Richard-PC | Source = Service Control Manager | ID = 7022
Description =
Error - 23/06/2011 12:51:18 | Computer Name = Richard-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description =
Error - 23/06/2011 12:51:38 | Computer Name = Richard-PC | Source = HTTP | ID = 15016
Description =
< End of report >
and the 'OTL' shows this:
OTL logfile created on: 23/06/2011 19:10:20 - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Richard\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
1.87 Gb Total Physical Memory | 0.85 Gb Available Physical Memory | 45.53% Memory free
3.99 Gb Paging File | 2.62 Gb Available in Paging File | 65.68% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149.09 Gb Total Space | 38.93 Gb Free Space | 26.11% Space Free | Partition Type: NTFS
Drive D: | 149.00 Gb Total Space | 148.72 Gb Free Space | 99.81% Space Free | Partition Type: NTFS
Computer Name: RICHARD-PC | User Name: Richard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/06/04 21:50:07 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Richard\Downloads\OTL.exe
PRC - [2011/05/11 17:41:20 | 000,019,856 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2011/05/11 17:41:10 | 003,373,968 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2011/05/10 13:10:58 | 003,459,712 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/12/14 16:49:30 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
PRC - [2008/11/26 12:34:22 | 000,089,600 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclIrSrv.exe
PRC - [2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (SafeList) ==========
MOD - [2011/06/04 21:50:07 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Richard\Downloads\OTL.exe
MOD - [2011/05/10 13:10:55 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010/08/31 16:39:57 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2011/05/10 13:10:57 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/07/26 14:15:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2010/05/15 09:55:22 | 000,395,048 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/08/24 13:16:12 | 000,378,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2009/03/04 11:25:12 | 000,621,056 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008/11/09 21:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/06/25 22:17:04 | 000,537,840 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\dlbkcoms.exe -- (dlbk_device)
SRV - [2007/05/31 09:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 09:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007/05/08 18:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) [Auto | Running] -- C:\Program Files\Multimedia Mouse Driver\v5\KMWDSrv.exe -- (KMWDSERVICE)
SRV - [2007/02/05 11:11:18 | 000,075,320 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV)
SRV - [2007/02/05 11:11:16 | 000,112,184 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service)
SRV - [2006/12/14 03:21:20 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2006/12/14 03:02:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2006/12/14 02:46:16 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2006/12/11 12:12:06 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\lxcrcoms.exe -- (lxcr_device)
========== Driver Services (SafeList) ==========
DRV - [2011/05/10 13:03:54 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/05/10 13:03:44 | 000,307,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/05/10 13:02:37 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/05/10 12:59:56 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/05/10 12:59:44 | 000,053,592 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/05/10 12:59:35 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011/01/29 18:00:20 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2011/01/03 09:38:36 | 000,136,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011/01/03 09:38:36 | 000,121,192 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV - [2011/01/03 09:38:36 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV - [2010/12/21 06:55:02 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2010/12/21 06:55:02 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2010/12/21 06:55:02 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2010/10/22 07:23:05 | 010,084,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/08/04 22:41:04 | 000,006,656 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\iPodDrv.sys -- (iPodDrv)
DRV - [2010/07/26 14:15:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009/09/28 02:02:42 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\PeerBlock\pbfilter.sys -- (pbfilter)
DRV - [2008/12/20 01:08:28 | 000,030,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\point32k.sys -- (Point32)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/05/07 10:55:22 | 000,767,488 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/01/19 06:55:21 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)
DRV - [2008/01/19 06:53:22 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb)
DRV - [2007/12/31 13:06:17 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2007/12/31 13:06:17 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2007/12/24 18:37:00 | 000,138,384 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tmcomm.sys -- (tmcomm)
DRV - [2007/11/18 04:39:50 | 001,040,544 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2007/08/09 19:12:30 | 000,110,624 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32)
DRV - [2007/06/25 10:43:38 | 000,098,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117obex.sys -- (s117obex)
DRV - [2007/06/25 10:43:36 | 000,108,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117mdm.sys -- (s117mdm)
DRV - [2007/06/25 10:43:36 | 000,100,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117mgmt.sys -- (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM)
DRV - [2007/06/25 10:43:36 | 000,098,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117unic.sys -- (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM)
DRV - [2007/06/25 10:43:36 | 000,022,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117nd5.sys -- (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS)
DRV - [2007/06/25 10:43:26 | 000,014,888 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117mdfl.sys -- (s117mdfl)
DRV - [2007/06/25 10:43:22 | 000,082,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV - [2007/04/23 16:54:50 | 000,100,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s115mgmt.sys -- (s115mgmt) Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM)
DRV - [2007/04/23 16:54:50 | 000,098,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s115obex.sys -- (s115obex)
DRV - [2007/04/23 16:54:48 | 000,108,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s115mdm.sys -- (s115mdm)
DRV - [2007/04/23 16:54:48 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s115mdfl.sys -- (s115mdfl)
DRV - [2007/04/23 16:54:46 | 000,083,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s115bus.sys -- (s115bus) Sony Ericsson Device 115 driver (WDM)
DRV - [2003/11/10 12:31:38 | 000,036,232 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETMD033.sys -- (NETMDUSB)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sky.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://uk.ask.com/?o...o=312&o=0&l=dir
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 90 C4 ED 01 3E AB 91 47 83 56 9D 86 E9 3C 1C 6F [binary data]
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTNavAssist.dll (Yahoo! Inc.)
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[2009/04/24 20:30:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Richard\AppData\Roaming\Mozilla\Extensions
[2009/04/24 20:30:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Richard\AppData\Roaming\Mozilla\Extensions\[email protected]
O1 HOSTS File: ([2011/06/23 17:10:14 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (StumbleUpon Launcher) - {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll (stumbleupon.com)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (PodcastBHO Class) - {65134FDF-F8A5-4B3D-91D9-CDF273CFD578} - C:\Program Files\Common Files\doubleTwist\IEPodcastPlugin.dll (doubleTwist Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (StumbleUpon Toolbar) - {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll (stumbleupon.com)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - No CLSID value found.
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [LXCRCATS] C:\Windows\System32\spool\DRIVERS\W32X86\3\LXCRtime.DLL (Lexmark International Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKCU..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKCU..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKCU..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [RTHDBPL] File not found
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\AdvancedOptions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 157
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} http://www.sibelius....tiveXPlugin.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\about - No CLSID value found
O18 - Protocol\Handler\cdl - No CLSID value found
O18 - Protocol\Handler\file - No CLSID value found
O18 - Protocol\Handler\ftp - No CLSID value found
O18 - Protocol\Handler\http - No CLSID value found
O18 - Protocol\Handler\https - No CLSID value found
O18 - Protocol\Handler\javascript - No CLSID value found
O18 - Protocol\Handler\local - No CLSID value found
O18 - Protocol\Handler\mailto - No CLSID value found
O18 - Protocol\Handler\mhtml - No CLSID value found
O18 - Protocol\Handler\mk - No CLSID value found
O18 - Protocol\Handler\res - No CLSID value found
O18 - Protocol\Handler\vbscript - No CLSID value found
O18 - Protocol\Filter\deflate - No CLSID value found
O18 - Protocol\Filter\gzip - No CLSID value found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Richard\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Richard\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{714b186e-ed69-11df-a68b-00196639e941}\Shell - "" = AutoRun
O33 - MountPoints2\{714b186e-ed69-11df-a68b-00196639e941}\Shell\AutoRun\command - "" = F:\TotalLock.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/06/23 18:17:34 | 001,441,584 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Richard\Desktop\TDSSKiller.exe
[2011/06/23 18:16:55 | 000,000,000 | ---D | C] -- C:\Users\Richard\Desktop\GooredFix Backups
[2011/06/23 17:10:04 | 000,000,000 | ---D | C] -- C:\_OTM
[2011/06/22 20:20:03 | 000,000,000 | ---D | C] -- C:\Users\Richard\Documents\Wondershare DVD Ripper Platinum
[2011/06/22 20:19:46 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\Windows\System32\iconv.dll
[2011/06/22 20:19:44 | 000,000,000 | ---D | C] -- C:\Program Files\Wondershare
[2011/06/22 20:12:12 | 000,000,000 | ---D | C] -- C:\Users\Richard\Documents\PCHand Media Converter Pro
[2011/06/22 18:52:41 | 000,000,000 | ---D | C] -- C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
[2011/06/17 20:14:39 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/06/16 19:43:28 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2011/06/13 00:35:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/06/08 22:26:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/06/08 22:25:12 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/05/29 20:14:09 | 000,000,000 | -HSD | C] -- C:\Users\Richard\AppData\Roaming\SysWin
[2009/01/23 20:37:56 | 000,323,584 | ---- | C] ( ) -- C:\Windows\System32\LXCRhcp.dll
[2007/06/25 22:17:06 | 000,386,288 | ---- | C] ( ) -- C:\Windows\System32\dlbkih.exe
[2007/06/25 22:17:04 | 000,537,840 | ---- | C] ( ) -- C:\Windows\System32\dlbkcoms.exe
[2007/06/25 22:17:00 | 000,382,192 | ---- | C] ( ) -- C:\Windows\System32\dlbkcfg.exe
[2007/03/21 14:41:30 | 000,073,728 | ---- | C] ( ) -- C:\Windows\System32\dlbkcu.dll
[2007/01/30 15:47:52 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\dlbkpmui.dll
[2007/01/30 15:46:00 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\dlbkserv.dll
[2007/01/30 15:38:18 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\dlbkcomm.dll
[2007/01/30 15:36:30 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\dlbklmpm.dll
[2007/01/30 15:35:00 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\dlbkiesc.dll
[2007/01/30 15:32:06 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\dlbkpplc.dll
[2007/01/30 15:31:08 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\dlbkcomc.dll
[2007/01/30 15:30:30 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\dlbkprox.dll
[2007/01/30 15:22:32 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\dlbkinpa.dll
[2007/01/30 15:21:46 | 000,995,328 | ---- | C] ( ) -- C:\Windows\System32\dlbkusb1.dll
[2007/01/30 15:17:02 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\dlbkhbn3.dll
[2006/02/03 04:25:42 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\lxcrpmui.dll
[2006/02/03 04:24:32 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\lxcrserv.dll
[2006/02/03 04:19:36 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\lxcrcomm.dll
[2006/02/03 04:12:32 | 000,385,968 | ---- | C] ( ) -- C:\Windows\System32\lxcrih.exe
[2006/02/03 04:12:26 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\lxcrlmpm.dll
[2006/02/03 04:11:30 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\lxcrpplc.dll
[2006/02/03 04:11:22 | 000,537,520 | ---- | C] ( ) -- C:\Windows\System32\lxcrcoms.exe
[2006/02/03 04:10:48 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\lxcrcomc.dll
[2006/02/03 04:10:18 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\lxcrprox.dll
[2006/02/03 04:06:24 | 000,991,232 | ---- | C] ( ) -- C:\Windows\System32\lxcrusb1.dll
[2006/02/03 04:01:44 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\lxcriesc.dll
[2006/02/03 03:59:12 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\lxcrinpa.dll
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Richard\Documents\*.tmp files -> C:\Users\Richard\Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/06/23 19:13:04 | 000,004,912 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/23 19:13:04 | 000,004,912 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/23 19:08:00 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/23 18:23:00 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3456724143-1184340653-1783022048-1000UA.job
[2011/06/23 18:08:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/23 17:51:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/23 17:29:28 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/06/23 17:22:40 | 256,252,461 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/06/23 17:10:14 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011/06/23 15:51:30 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{BF1112C5-21DC-4288-9407-81BF26CBA82F}.job
[2011/06/22 20:58:27 | 000,666,261 | ---- | M] () -- C:\Users\Richard\Desktop\pic quiz 17.08.08.pdf
[2011/06/22 19:23:01 | 000,000,864 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3456724143-1184340653-1783022048-1000Core.job
[2011/06/22 18:52:41 | 000,000,816 | ---- | M] () -- C:\Users\Richard\Desktop\Handbrake.lnk
[2011/06/22 18:30:45 | 000,328,234 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/06/22 18:30:45 | 000,046,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/06/19 20:24:39 | 001,939,968 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz july 2.pub
[2011/06/17 20:14:39 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/06/16 15:28:52 | 001,441,584 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Richard\Desktop\TDSSKiller.exe
[2011/06/14 20:25:40 | 002,011,136 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz 26.6.11.pub
[2011/06/14 20:17:37 | 002,011,136 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz july1.pub
[2011/06/13 22:51:29 | 000,087,569 | ---- | M] () -- C:\Users\Richard\Desktop\2011-06-13 22.49.55.jpg
[2011/06/09 11:37:22 | 001,679,872 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz 19.6.11.pub
[2011/06/08 22:26:11 | 000,001,664 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/06/07 01:43:49 | 001,638,912 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz 12.6.11.pub
[2011/06/05 20:20:32 | 004,011,008 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz 5.6.11.pub
[2011/06/05 19:47:46 | 000,879,518 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz 5.6.11.pdf
[2011/06/05 19:13:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011/06/05 19:13:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011/06/03 14:28:50 | 002,094,080 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz june 3.pub
[2011/05/31 18:35:20 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2011/05/29 20:14:09 | 000,000,085 | ---- | M] () -- C:\Windows\System32\251647472
[2011/05/29 20:14:07 | 000,199,680 | ---- | M] () -- C:\Windows\System32\dlbkcoin32.exe
[2011/05/29 10:21:18 | 000,001,356 | ---- | M] () -- C:\Users\Richard\AppData\Local\d3d9caps.dat
[2011/05/28 23:20:11 | 001,125,888 | ---- | M] () -- C:\Users\Richard\Documents\picture quiz 29.5.11.pub
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Richard\Documents\*.tmp files -> C:\Users\Richard\Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/06/22 20:58:25 | 000,666,261 | ---- | C] () -- C:\Users\Richard\Desktop\pic quiz 17.08.08.pdf
[2011/06/22 20:19:46 | 000,675,840 | ---- | C] () -- C:\Windows\System32\ac3filter.ax
[2011/06/19 20:24:39 | 001,939,968 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz july 2.pub
[2011/06/14 20:25:39 | 002,011,136 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz 26.6.11.pub
[2011/06/13 22:51:29 | 000,087,569 | ---- | C] () -- C:\Users\Richard\Desktop\2011-06-13 22.49.55.jpg
[2011/06/09 10:31:43 | 001,679,872 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz 19.6.11.pub
[2011/06/08 22:26:11 | 000,001,664 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/06/07 01:30:04 | 001,638,912 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz 12.6.11.pub
[2011/06/05 19:47:45 | 000,879,518 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz 5.6.11.pdf
[2011/06/05 19:13:24 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011/06/05 19:13:24 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011/06/03 14:41:34 | 002,011,136 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz july1.pub
[2011/06/02 20:04:45 | 004,011,008 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz 5.6.11.pub
[2011/06/02 11:23:59 | 002,094,080 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz june 3.pub
[2011/05/31 18:35:20 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/05/29 20:14:07 | 000,199,680 | ---- | C] () -- C:\Windows\System32\dlbkcoin32.exe
[2011/05/29 20:14:07 | 000,000,085 | ---- | C] () -- C:\Windows\System32\251647472
[2011/05/25 17:10:21 | 001,125,888 | ---- | C] () -- C:\Users\Richard\Documents\picture quiz 29.5.11.pub
[2011/04/01 16:29:18 | 000,194,088 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/03/27 14:27:52 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011/01/29 18:00:24 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011/01/29 18:00:22 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2011/01/29 18:00:22 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2011/01/29 18:00:22 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2011/01/29 18:00:22 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2010/11/09 12:48:08 | 000,000,127 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2010/11/09 12:47:38 | 000,057,344 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/08/10 18:38:53 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2010/08/10 18:38:53 | 000,036,640 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2010/01/02 11:53:31 | 000,000,102 | ---- | C] () -- C:\Windows\dellstat.ini
[2009/05/07 16:28:32 | 000,000,391 | ---- | C] () -- C:\Windows\PUB_QUIZ.INI
[2009/02/18 12:25:15 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/02/18 12:25:15 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/10/05 16:13:23 | 000,001,356 | ---- | C] () -- C:\Users\Richard\AppData\Local\d3d9caps.dat
[2008/09/10 13:51:54 | 000,028,160 | ---- | C] () -- C:\Windows\System32\pfppmd.dll
[2008/06/22 16:19:55 | 000,024,206 | ---- | C] () -- C:\Users\Richard\AppData\Roaming\UserTile.png
[2008/06/21 11:56:09 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2008/06/06 16:48:29 | 000,274,432 | ---- | C] () -- C:\Windows\System32\LXCRinst.dll
[2008/03/21 21:30:08 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/03/04 14:58:20 | 000,000,739 | ---- | C] () -- C:\Windows\eReg.dat
[2008/03/03 22:11:16 | 000,164,352 | ---- | C] () -- C:\Windows\System32\SpoonUninstall.exe
[2008/03/03 22:11:16 | 000,001,476 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-New Star Soccer.dat
[2008/01/27 19:05:08 | 000,000,090 | ---- | C] () -- C:\Windows\cdplayer.ini
[2008/01/06 19:12:01 | 000,532,480 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Sony.dll
[2008/01/03 15:39:15 | 000,000,190 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2007/12/31 13:06:17 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2007/12/31 13:06:17 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2007/12/30 20:12:00 | 000,765,952 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2007/12/30 20:12:00 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2007/12/24 16:02:34 | 000,049,152 | ---- | C] () -- C:\Users\Richard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/12/22 10:58:33 | 000,020,480 | ---- | C] () -- C:\Windows\System32\CPUINFO2.DLL
[2007/12/17 10:36:13 | 000,040,960 | ---- | C] () -- C:\Windows\System32\LXPRMON.DLL
[2007/12/17 10:36:13 | 000,032,768 | ---- | C] () -- C:\Windows\System32\LXPMONUI.DLL
[2007/12/05 19:50:16 | 000,000,078 | ---- | C] () -- C:\Windows\Hotkey.INI
[2007/12/04 18:58:12 | 000,003,636 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2007/03/21 14:53:26 | 000,462,848 | ---- | C] () -- C:\Windows\System32\dlbkjswr.dll
[2007/03/21 14:53:16 | 000,090,112 | ---- | C] () -- C:\Windows\System32\dlbkcur.dll
[2007/03/21 14:41:20 | 000,413,696 | ---- | C] () -- C:\Windows\System32\dlbkutil.dll
[2007/02/22 23:32:00 | 000,344,064 | ---- | C] () -- C:\Windows\System32\dlbkcoin.dll
[2007/02/07 23:58:00 | 000,039,899 | ---- | C] () -- C:\Windows\System32\rtsicis.ini
[2006/11/30 12:32:52 | 000,344,064 | ---- | C] () -- C:\Windows\System32\lxcrcoin.dll
[2006/11/02 13:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 13:47:37 | 000,423,192 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 11:33:01 | 000,328,234 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 11:33:01 | 000,046,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/08/14 17:01:48 | 000,065,536 | ---- | C] () -- C:\Windows\System32\lxcrcaps.dll
[2006/08/08 15:58:04 | 000,692,224 | ---- | C] () -- C:\Windows\System32\lxcrdrs.dll
[2005/12/20 17:54:04 | 000,061,440 | ---- | C] () -- C:\Windows\System32\lxcrcnv4.dll
[2005/12/16 20:15:44 | 000,040,960 | ---- | C] () -- C:\Windows\System32\dlbkvs.dll
[2005/10/15 15:25:20 | 000,028,672 | ---- | C] () -- C:\Windows\System32\myodbc3i.exe
[2005/10/15 15:25:20 | 000,011,776 | ---- | C] () -- C:\Windows\System32\myodbc3m.exe
[2005/09/13 22:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbkcnv5.dll
[2005/09/13 22:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbkcnv4.dll
[2005/07/08 09:11:22 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxcrvs.dll
[2000/07/15 01:00:00 | 000,030,720 | ---- | C] () -- C:\Windows\regtlib.exe
========== LOP Check ==========
[2010/09/22 17:05:12 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\AnvSoft
[2011/01/09 12:32:01 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Azureus
[2010/09/22 16:22:47 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\FreeVideoConverter
[2011/06/23 16:53:44 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\FrostWire
[2008/01/01 20:13:39 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\FUJIFILM
[2011/06/22 19:29:12 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\HandBrake
[2008/12/20 00:38:07 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\HouseCall 6.6
[2011/01/09 12:36:24 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\LimeWire
[2008/03/14 11:43:15 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\NCH Swift Sound
[2009/06/08 17:21:31 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Nokia
[2008/03/02 21:07:33 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Oberon Media
[2009/05/06 19:39:24 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\PC Suite
[2011/02/22 20:20:57 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Samsung
[2009/03/09 19:14:46 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Sony
[2008/01/10 11:09:44 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Sony Setup
[2010/10/07 17:51:41 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Sports Interactive
[2011/05/29 20:11:07 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\StumbleUpon
[2011/06/06 23:52:12 | 000,000,000 | -HSD | M] -- C:\Users\Richard\AppData\Roaming\SysWin
[2007/12/28 16:56:28 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Teleca
[2008/04/22 02:04:54 | 000,000,000 | ---D | M] -- C:\Users\Richard\AppData\Roaming\Uniblue
[2010/08/13 00:15:00 | 000,000,368 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2011/06/23 17:29:29 | 000,032,622 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/03/18 00:46:59 | 000,000,258 | ---- | M] () -- C:\Windows\Tasks\Uniblue SpeedUpMyPC Nag.job
[2008/04/21 23:47:53 | 000,000,364 | ---- | M] () -- C:\Windows\Tasks\Uniblue SpeedUpMyPC.job
[2011/06/23 15:51:30 | 000,000,422 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{BF1112C5-21DC-4288-9407-81BF26CBA82F}.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:D31BE97C
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:3E7393FC
< End of report >
I am using Windows vista 32bit and Google Chrome.
Since I tried the above, Google seems to redirect less but instead it simply fails to direct at all on certain links. I will click one and literally nothing occurs. It is always the same link. For instance, supposing I click the 1st result of a search and it fails to load. If I then click the second result and that loads fine, pressing back on my browser window and then clicking the 1st search result again will have the same result, i.e nothing.
Thank sin advance to anyone who can help.
Richard
Sign In
Create Account
