Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

It just hates to game


  • Please log in to reply

#1
mrFlyte

mrFlyte

    Member

  • Member
  • PipPip
  • 10 posts
Personally I feel this isn't actually malware related, but then again, I am not too familiar with computers, so I guess this is a good starting point.

I don't really remember when it started happening, but my computer HATES gaming. Before you jump and tell me I have settings too high, that's not true. Because games I had played in the past (at full graphic capability) are doing the same thing. I get - if I am lucky - 10 minutes to play and then the screens go black (as if the computer is going to hibernate) and then the computer freezes. Every game I have does that...well except on game, which I thought was odd that it doesn't do that. I use a nVidia 9800 GPU, and after getting fed up with this freezing stuff, I went ahead and adjusted some of it's settings in the GPU control panel. Nothing changed though. So I tried updating the driver...still, nada (but a flashy new control panel for the GPU is nice :) )

Anyways, if I failed to give a specific detail or whatever else feel free to ask. I have to OTL log open too, should you need that (I'm thinking you will)
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
Download OTL from
http://www.geekstogo...timers-list-it/
and Save it to your desktop.

Run OTL (Vista or Win 7 => right click and Run As Administrator)

select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.

Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Attach the file to your next post.

Ron
  • 0

#3
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Wow, my GPU is running HOT! That wouldn't be the problem right there would it?

First text document from OTL:

OTL logfile created on: 8/31/2011 7:38:32 PM - Run 2
OTL by OldTimer - Version 3.2.26.7 Folder = K:\Nolan PC\Downloads
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.87 Gb Available Physical Memory | 43.65% Memory free
4.22 Gb Paging File | 2.49 Gb Available in Paging File | 58.98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 177.55 Gb Total Space | 13.12 Gb Free Space | 7.39% Space Free | Partition Type: NTFS
Drive D: | 8.76 Gb Total Space | 1.00 Gb Free Space | 11.45% Space Free | Partition Type: NTFS
Drive K: | 1397.26 Gb Total Space | 1255.38 Gb Free Space | 89.85% Space Free | Partition Type: NTFS

Computer Name: NOLAN-PC | User Name: Nolan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/31 16:43:31 | 000,580,608 | ---- | M] (OldTimer Tools) -- K:\Nolan PC\Downloads\OTL.exe
PRC - [2011/07/11 16:47:06 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2011/05/25 01:09:08 | 000,839,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2011/05/25 01:09:07 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011/05/25 01:09:06 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/05/16 11:22:26 | 000,326,504 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\DriverScanner\driverscanner.exe
PRC - [2011/05/16 11:22:26 | 000,025,464 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
PRC - [2011/03/14 12:51:49 | 002,071,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011/02/08 16:24:30 | 002,056,194 | ---- | M] (Acoustica, Inc) -- C:\Program Files\Acoustica Mixcraft 5\mixcraft5.exe
PRC - [2010/11/24 12:39:57 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/09/23 09:44:46 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/08/26 17:48:00 | 000,285,152 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe
PRC - [2010/08/26 17:47:00 | 004,577,760 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WNA3100.exe
PRC - [2010/07/21 09:56:10 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010/07/16 09:43:03 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/16 09:42:54 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/16 09:40:50 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/05/21 01:55:00 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010/05/21 01:54:56 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2009/11/23 18:53:58 | 004,781,352 | ---- | M] (Wacom Technology, Corp.) -- C:\Program Files\WTouch\WTouchUser.exe
PRC - [2009/11/23 18:53:58 | 000,113,448 | ---- | M] (Wacom Technology, Corp.) -- C:\Program Files\WTouch\WTouchService.exe
PRC - [2009/11/23 18:53:56 | 004,497,704 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\System32\Pen_Tablet.exe
PRC - [2009/11/23 18:53:56 | 001,823,528 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\System32\WTablet\Pen_TabletUser.exe
PRC - [2009/08/29 01:00:12 | 000,966,656 | ---- | M] () -- C:\Users\Nolan\Local Settings\Apps\F.lux\flux.exe
PRC - [2009/03/12 20:18:48 | 000,602,624 | ---- | M] () -- C:\Program Files\Everything\Everything.exe
PRC - [2007/01/09 16:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2007/01/05 09:04:10 | 000,554,616 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2007/01/04 19:19:28 | 000,047,712 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
PRC - [2006/11/02 04:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2011/08/31 17:52:24 | 003,153,920 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Temp\YWS_DspIpp.dll
MOD - [2011/08/30 02:50:34 | 000,400,440 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\13.0.782.218\ppgooglenaclpluginchrome.dll
MOD - [2011/08/30 02:50:33 | 004,118,072 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\13.0.782.218\pdf.dll
MOD - [2011/08/30 02:49:01 | 000,104,520 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\13.0.782.218\avutil-50.dll
MOD - [2011/08/30 02:49:00 | 000,203,848 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\13.0.782.218\avformat-52.dll
MOD - [2011/08/30 02:48:58 | 001,846,344 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\13.0.782.218\avcodec-52.dll
MOD - [2011/08/30 00:50:36 | 006,338,720 | ---- | M] () -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\13.0.782.218\gcswf32.dll
MOD - [2011/05/16 11:22:26 | 000,407,400 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\locale\en\en.dll
MOD - [2011/05/16 11:22:26 | 000,071,016 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\InstallerExtensions.dll
MOD - [2011/05/16 11:22:26 | 000,018,792 | ---- | M] () -- C:\Program Files\Uniblue\DriverScanner\cwebpage.dll
MOD - [2011/04/21 12:35:54 | 007,675,904 | ---- | M] () -- C:\Program Files\VST\SuperDrumFX.dll
MOD - [2011/02/08 16:23:30 | 002,953,216 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\sndengine.dll
MOD - [2011/02/02 10:30:24 | 000,397,312 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\acuvidtl.dll
MOD - [2011/02/02 10:30:20 | 000,950,272 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\acuimgtl.dll
MOD - [2011/02/02 10:30:20 | 000,708,608 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\CDLib.dll
MOD - [2011/02/02 10:30:18 | 001,294,336 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\acuutils.dll
MOD - [2011/01/27 14:38:36 | 000,155,648 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\acufutls.dll
MOD - [2011/01/03 17:42:44 | 002,302,464 | ---- | M] () -- C:\Program Files\VST\TAL-Reverb-3\TAL-Reverb-3.dll
MOD - [2010/08/26 17:47:00 | 004,577,760 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WNA3100.exe
MOD - [2010/07/26 14:06:04 | 004,339,166 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\VST\3rdParty\Pultronic Tube EQ.dll
MOD - [2010/05/23 00:18:24 | 000,482,304 | ---- | M] () -- C:\Program Files\VST\Synth1\Synth1 VST.dll
MOD - [2010/05/04 16:36:28 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2010/03/15 11:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2010/02/17 15:13:58 | 000,516,608 | ---- | M] () -- C:\Program Files\VST\ReaPlugs\reaxcomp-standalone.dll
MOD - [2010/02/17 15:13:02 | 000,526,848 | ---- | M] () -- C:\Program Files\VST\ReaPlugs\reaeq-standalone.dll
MOD - [2010/02/03 11:31:02 | 000,282,624 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvcLib.dll
MOD - [2009/08/29 01:00:12 | 000,966,656 | ---- | M] () -- C:\Users\Nolan\Local Settings\Apps\F.lux\flux.exe
MOD - [2009/03/12 20:18:48 | 000,602,624 | ---- | M] () -- C:\Program Files\Everything\Everything.exe
MOD - [2007/11/05 15:25:52 | 000,908,800 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\VST\3rdParty\Classic Master Limiter.dll
MOD - [2007/11/05 15:25:52 | 000,907,264 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\VST\3rdParty\Classic Phaser.dll
MOD - [2007/11/05 15:25:52 | 000,905,216 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\VST\3rdParty\Classic Chorus.dll
MOD - [2007/11/05 15:25:50 | 001,014,272 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\VST\3rdParty\Voxengo Spectrum Analyzer.dll
MOD - [2007/01/13 20:09:32 | 000,009,328 | ---- | M] () -- c:\Program Files\Norton Internet Security\Norton AntiVirus\NAVShExt.loc
MOD - [2005/04/14 15:16:16 | 000,147,456 | ---- | M] () -- C:\Program Files\Acoustica Mixcraft 5\wmaengine.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/08/02 20:21:12 | 003,542,616 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\netsession_win_2da1ebd.dll -- (Akamai)
SRV - [2011/05/30 11:33:54 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/05/25 01:09:06 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/05/13 00:45:06 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/05/02 22:38:33 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- c:\Program Files\Steam\steamapps\common\dragon age ultimate edition\bin_ship\DAUpdaterSvc.Service.exe -- (DAUpdaterSvc)
SRV - [2010/11/23 16:58:46 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/08/26 17:48:00 | 000,285,152 | ---- | M] () [Auto | Running] -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe -- (WSWNA3100)
SRV - [2010/07/21 09:56:10 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/07/16 09:42:54 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2009/11/23 18:53:58 | 000,113,448 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\WTouch\WTouchService.exe -- (WTouchService)
SRV - [2009/11/23 18:53:56 | 004,497,704 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\WINDOWS\System32\Pen_Tablet.exe -- (TabletServicePen)
SRV - [2007/05/06 16:31:20 | 001,174,664 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2007/01/13 18:11:06 | 000,080,504 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\isPwdSvc.exe -- (ISPwdSvc)
SRV - [2007/01/12 14:40:58 | 000,049,248 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)
SRV - [2007/01/09 16:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2007/01/09 16:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2007/01/09 16:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2007/01/05 09:04:10 | 002,918,008 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate)
SRV - [2007/01/05 09:04:10 | 000,554,616 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2007/01/04 19:19:28 | 000,047,712 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- (SymAppCore)
SRV - [2006/11/02 07:34:32 | 000,263,272 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/05/25 01:09:05 | 010,589,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/05/05 08:52:09 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/11/09 15:35:30 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\cpuz135_x32.sys -- (cpuz135)
DRV - [2010/07/16 09:40:58 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/02 09:00:55 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/02/03 11:21:56 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\npf.sys -- (NPF)
DRV - [2009/12/01 16:49:54 | 000,034,384 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ScreamingBAudio.sys -- (SCREAMINGBDRIVER)
DRV - [2009/11/06 08:37:20 | 000,699,896 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\bcmwlhigh6.sys -- (BCMH43XX)
DRV - [2009/08/27 17:06:32 | 000,016,168 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\wacmoumonitor.sys -- (wacmoumonitor)
DRV - [2009/07/09 11:16:24 | 000,013,480 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\WacomVTHid.sys -- (WacomVTHid)
DRV - [2009/06/11 18:34:34 | 000,049,904 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2009/05/20 13:54:06 | 000,013,736 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\wacomvhid.sys -- (wacomvhid)
DRV - [2008/10/29 15:05:28 | 000,655,872 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2007/12/04 16:50:56 | 000,464,384 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\netr73.sys -- (netr73)
DRV - [2007/05/06 16:33:14 | 000,115,000 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2007/03/19 08:58:50 | 000,101,672 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/02/16 13:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV - [2007/01/19 18:20:54 | 000,021,728 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\scmndisp.sys -- (SCMNdisP)
DRV - [2007/01/11 13:22:20 | 000,276,792 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2007/01/11 13:22:18 | 000,025,400 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2007/01/11 13:22:14 | 000,247,608 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2007/01/09 20:00:00 | 000,833,048 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20070110.052\NAVEX15.SYS -- (NAVEX15)
DRV - [2007/01/09 20:00:00 | 000,387,384 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2007/01/09 20:00:00 | 000,080,408 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20070110.052\NAVENG.SYS -- (NAVENG)
DRV - [2007/01/03 02:05:02 | 000,417,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2006/12/27 17:48:26 | 000,212,280 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\SymcData\idsdefs\20070108.003\IDSvix86.sys -- (IDSvix86)
DRV - [2006/12/12 11:16:06 | 000,022,528 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\emAudio.sys -- (emAudio)
DRV - [2006/12/07 10:04:40 | 000,258,048 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006/12/07 10:03:32 | 000,985,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\HSX_DP.sys -- (HSF_DP)
DRV - [2006/11/28 11:44:52 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/11/02 03:55:05 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2006/11/02 02:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\nvm60x32.sys -- (NVENETFD)
DRV - [2005/12/21 09:14:52 | 000,100,957 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\emDevice.sys -- (DCamUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,005,245 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\emFilter.sys -- (FiltUSBEMPIA)
DRV - [2005/12/21 09:14:52 | 000,004,493 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\emScan.sys -- (ScanUSBEMPIA)
DRV - [2005/09/23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2005/06/28 19:28:00 | 000,349,856 | ---- | M] (SMC Networks, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\2862WICB.sys -- (SMC2862W)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...ario&pf=desktop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...ario&pf=desktop

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook....home.php?ref=hp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@emusic.com/dlm-plugin: C:\Program Files\eMusic Download Manager\plugin\npemusic.dll (eMusic.com)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2629: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.3: C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF - HKCU\Software\MozillaPlugins\@emusic.com/dlm-plugin: C:\Program Files\eMusic Download Manager\plugin\npemusic.dll (eMusic.com)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Nolan\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Nolan\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Nolan\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Nolan\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\eMusic Download Manager\Extensions\\Components: C:\Program Files\eMusic Download Manager\xulrunner\components [2011/03/28 18:16:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\eMusic Download Manager\Extensions\\Plugins: C:\Program Files\eMusic Download Manager\xulrunner\plugins [2011/03/28 18:16:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/07/21 20:55:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/08/24 11:24:07 | 000,000,000 | ---D | M]

[2010/05/27 10:44:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nolan\AppData\Roaming\Mozilla\Extensions
[2010/05/27 10:44:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nolan\AppData\Roaming\Mozilla\Extensions\[email protected]
[2011/07/21 20:55:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/03/28 18:16:40 | 000,000,000 | ---D | M] (eMusic - Apple iTunes Support) -- C:\PROGRAM FILES\EMUSIC DOWNLOAD MANAGER\XULRUNNER\EXTENSIONS\[email protected]
[2011/03/28 18:16:40 | 000,000,000 | ---D | M] (eMusic - Nullsoft Winamp Support) -- C:\PROGRAM FILES\EMUSIC DOWNLOAD MANAGER\XULRUNNER\EXTENSIONS\[email protected]
[2011/03/28 18:16:40 | 000,000,000 | ---D | M] (eMusic - Microsoft Media Player Support) -- C:\PROGRAM FILES\EMUSIC DOWNLOAD MANAGER\XULRUNNER\EXTENSIONS\[email protected]
[2011/07/08 02:16:28 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/07/11 16:48:12 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010/01/01 03:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2006/09/18 16:41:30 | 000,000,761 | ---- | M]) - C:\WINDOWS\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBHO.dll (Symantec Corporation)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Everything] C:\Program Files\Everything\Everything.exe ()
O4 - HKLM..\Run: [USB2Check] C:\Windows\System32\PCLECoInst.dll (Pinnacle Systems)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [DriverScanner] C:\Program Files\Uniblue\DriverScanner\launcher.exe (Uniblue Systems Limited)
O4 - HKCU..\Run: [F.lux] C:\Users\Nolan\Local Settings\Apps\F.lux\flux.exe ()
O4 - HKLM..\RunOnce: [Launcher] C:\WINDOWS\SMINST\Launcher.exe (soft thinks)
O4 - Startup: C:\Users\Nolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.co...sreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: K:\Nolan PC\Pictures\Pictures\Mutual_Attraction_Dual_Screen.jpg
O24 - Desktop BackupWallPaper: K:\Nolan PC\Pictures\Pictures\Mutual_Attraction_Dual_Screen.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/05/06 16:09:39 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/03/15 04:26:58 | 000,000,000 | RH-D | M] - K:\autorun -- [ NTFS ]
O32 - AutoRun File - [2002/10/16 07:56:50 | 000,000,036 | RH-- | M] () - K:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{b0c24752-5fbc-11df-8bd0-001bfc698e36}\Shell\AutoRun\command - "" = J:\EASTER\ERASER\Easter.exe
O33 - MountPoints2\{b0c24752-5fbc-11df-8bd0-001bfc698e36}\Shell\open\command - "" = J:\EASTER\ERASER\Easter.exe
O33 - MountPoints2\{db7cd26b-0f85-11e0-9713-001bfc698e36}\Shell\AutoRun\command - "" = J:\setupSNK.exe
O33 - MountPoints2\{fdadf95e-3ef3-11df-955b-001bfc698e36}\Shell\AutoRun\command - "" = J:\Autorun.exe /run
O33 - MountPoints2\{fdadf95e-3ef3-11df-955b-001bfc698e36}\Shell\Shell00\Command - "" = J:\Autorun.exe /run
O33 - MountPoints2\{fdadf95e-3ef3-11df-955b-001bfc698e36}\Shell\Shell01\Command - "" = J:\Autorun.exe /action
O33 - MountPoints2\{fdadf95e-3ef3-11df-955b-001bfc698e36}\Shell\Shell02\Command - "" = J:\Autorun.exe /uninstall
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/31 19:39:16 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2011/08/26 15:00:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Uniblue
[2011/08/24 11:34:53 | 000,000,000 | ---D | C] -- C:\Program Files\FoxTabAudioConverter
[2011/08/24 11:24:34 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\Uniblue
[2011/08/24 11:24:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[2011/08/24 11:24:23 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2011/08/24 11:24:08 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Detector Plug-in
[2011/08/24 11:24:08 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2011/08/24 11:24:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2011/08/24 11:23:06 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Local\OpenCandy
[2011/08/24 11:22:56 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\OpenCandy
[2011/08/24 11:22:55 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\Winamp
[2011/08/24 11:22:55 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2011/08/10 19:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Plogue
[2011/08/08 16:05:54 | 000,066,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2011/08/08 16:05:53 | 002,557,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2011/08/08 16:05:52 | 003,693,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2011/08/08 16:05:51 | 000,111,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2011/08/08 16:05:34 | 000,543,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll
[2011/08/08 16:04:38 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011/08/08 15:53:06 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011/08/08 15:53:05 | 016,456,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011/08/08 15:53:05 | 010,589,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011/08/08 15:53:05 | 006,555,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2011/08/08 15:53:04 | 000,899,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco3220150.dll
[2011/08/08 15:53:04 | 000,865,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322090.dll
[2011/08/08 15:53:03 | 011,992,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011/08/08 15:53:03 | 005,301,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011/08/08 15:53:03 | 002,804,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011/08/08 15:53:03 | 002,082,408 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011/08/08 15:53:02 | 013,011,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011/08/08 15:53:02 | 002,335,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2011/08/08 15:53:02 | 000,012,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011/08/08 15:43:36 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011/08/08 15:35:43 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\Lazy 8 Studios
[2011/08/08 15:27:54 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Local\Lazy 8 Studios
[2011/08/08 15:27:41 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cogs
[2011/08/08 15:27:10 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2011/08/08 15:25:58 | 000,000,000 | ---D | C] -- C:\Program Files\Cogs
[2011/08/08 12:05:38 | 000,000,000 | ---D | C] -- C:\Users\Nolan\Documents\Crayon Physics Deluxe
[2011/08/08 12:03:56 | 000,000,000 | ---D | C] -- C:\Users\Nolan\AppData\Roaming\Crayon Physics Deluxe
[2011/08/08 11:37:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crayon Physics Deluxe
[2011/08/08 11:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\Crayon Physics Deluxe

========== Files - Modified Within 30 Days ==========

[2011/08/31 19:28:49 | 000,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/31 19:28:49 | 000,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/31 19:05:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3503241594-1054900223-2829401210-1000UA.job
[2011/08/31 18:05:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3503241594-1054900223-2829401210-1000Core.job
[2011/08/31 16:33:45 | 000,618,410 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/08/31 16:33:45 | 000,103,818 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/08/31 16:28:36 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\DriverScanner.job
[2011/08/31 16:28:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/31 16:28:11 | 2145,902,592 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/31 00:07:45 | 000,002,048 | ---- | M] () -- C:\Users\Nolan\Desktop\Google Chrome.lnk
[2011/08/31 00:07:45 | 000,002,010 | ---- | M] () -- C:\Users\Nolan\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/08/30 18:45:54 | 085,111,995 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/08/26 14:59:16 | 003,910,720 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/08/24 11:24:30 | 000,000,909 | ---- | M] () -- C:\Users\Nolan\Application Data\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk
[2011/08/14 16:04:34 | 000,092,631 | ---- | M] () -- C:\Users\Nolan\Desktop\248620_230209813657056_100000041173445_1038121_6476277_n-2.jpg
[2011/08/08 15:58:36 | 000,001,356 | ---- | M] () -- C:\Users\Nolan\AppData\Local\d3d9caps.dat
[2011/08/06 01:55:10 | 000,062,464 | ---- | M] () -- C:\Users\Nolan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== Files Created - No Company Name ==========

[2011/08/24 11:24:37 | 000,000,328 | ---- | C] () -- C:\Windows\tasks\DriverScanner.job
[2011/08/24 11:24:30 | 000,000,909 | ---- | C] () -- C:\Users\Nolan\Application Data\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk
[2011/08/14 16:04:31 | 000,092,631 | ---- | C] () -- C:\Users\Nolan\Desktop\248620_230209813657056_100000041173445_1038121_6476277_n-2.jpg
[2011/08/08 16:14:20 | 2145,902,592 | -HS- | C] () -- C:\hiberfil.sys
[2011/08/08 15:53:04 | 000,004,364 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2011/05/20 22:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011/04/29 20:15:44 | 000,870,736 | ---- | C] () -- C:\Users\Nolan\AppData\Local\rx_image.Cache
[2011/03/28 15:20:25 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll
[2011/02/12 16:04:32 | 000,000,082 | ---- | C] () -- C:\Windows\TweakOblivion.ini
[2010/12/06 14:59:16 | 000,815,104 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/12/06 14:59:15 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/11/11 15:26:25 | 006,580,224 | ---- | C] () -- C:\Windows\System32\PSP MicroWarmer.dll
[2010/11/11 15:26:24 | 006,618,624 | ---- | C] () -- C:\Windows\System32\PSP VintageWarmer2.dll
[2010/11/11 15:26:23 | 006,611,456 | ---- | C] () -- C:\Windows\System32\PSP VintageWarmer.dll
[2010/07/09 09:53:34 | 000,001,456 | ---- | C] () -- C:\Users\Nolan\AppData\Local\Adobe Save for Web 12.0 Prefs
[2010/07/09 01:27:25 | 000,000,132 | ---- | C] () -- C:\Users\Nolan\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2010/06/14 19:43:57 | 000,110,592 | ---- | C] () -- C:\Windows\System32\pywintypes26.dll
[2010/06/14 19:43:47 | 000,354,304 | ---- | C] () -- C:\Windows\System32\pythoncom26.dll
[2010/06/11 13:52:33 | 000,000,034 | ---- | C] () -- C:\Windows\Caligari.ini
[2010/04/18 22:47:18 | 000,114,688 | ---- | C] () -- C:\Windows\System32\pywintypes25.dll
[2010/04/18 22:47:17 | 000,339,968 | ---- | C] () -- C:\Windows\System32\pythoncom25.dll
[2010/04/03 03:02:44 | 000,062,464 | ---- | C] () -- C:\Users\Nolan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/04/03 02:47:00 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/04/02 23:52:45 | 000,001,356 | ---- | C] () -- C:\Users\Nolan\AppData\Local\d3d9caps.dat
[2007/05/06 15:53:31 | 000,103,521 | ---- | C] () -- C:\Windows\hpqins13.dat
[2007/05/06 15:32:44 | 000,061,440 | ---- | C] () -- C:\Windows\System32\OsdRemove.exe
[2007/05/06 15:29:51 | 000,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2007/05/06 15:29:51 | 000,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2007/01/12 09:07:48 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2007/01/12 09:07:48 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006/11/02 07:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:47:37 | 003,910,720 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 05:33:01 | 000,618,410 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 05:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 05:33:01 | 000,103,818 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 05:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 05:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 03:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 03:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 02:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 02:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 02:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin

< End of report >


Second:

OTL Extras logfile created on: 8/31/2011 7:38:32 PM - Run 2
OTL by OldTimer - Version 3.2.26.7 Folder = K:\Nolan PC\Downloads
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.87 Gb Available Physical Memory | 43.65% Memory free
4.22 Gb Paging File | 2.49 Gb Available in Paging File | 58.98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 177.55 Gb Total Space | 13.12 Gb Free Space | 7.39% Space Free | Partition Type: NTFS
Drive D: | 8.76 Gb Total Space | 1.00 Gb Free Space | 11.45% Space Free | Partition Type: NTFS
Drive K: | 1397.26 Gb Total Space | 1255.38 Gb Free Space | 89.85% Space Free | Partition Type: NTFS

Computer Name: NOLAN-PC | User Name: Nolan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\System32\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
.js [@ = JSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Users\Nolan\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\system32\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
InternetShortcut [print] -- rundll32.exe C:\Windows\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0CAF2727-3F92-40FD-B273-2F4D31785BD7}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{2AFB5EDA-6526-4082-A1BC-E45E65FA197A}" = lport=49167 | protocol=6 | dir=in | name=akamai netsession interface |
"{376E982A-4536-4DA5-93F1-5BA0F9F7BA21}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{8F4C46F3-5F3D-4653-8A61-302E4143DC67}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{B350DCBF-3A57-4A88-9993-26AC9A3A7181}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{F2FCD1E1-B04C-42BB-ABA3-CD6355233AD3}" = lport=49601 | protocol=6 | dir=in | name=akamai netsession interface |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{12B69885-05F4-40D9-BED0-B1335366077A}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daupdatersvc.service.exe |
"{138DCCE5-6F97-497C-8D66-B505064F5AB2}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\beat hazard\beathazard.exe |
"{17B17A4E-495C-4236-8F33-B3513108D2FF}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 12\programs\studio.exe |
"{25713A3E-0A12-4C25-B8B7-85B460A5782B}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\docs\ea help\electronic_arts_technical_support.htm |
"{2662B89D-2583-4237-A39A-D3D9BDFD78BA}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 12\programs\umi.exe |
"{351F1021-853E-48FD-9E26-746506C1E141}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{39519770-AB95-45D2-937F-BD405B9BDCEE}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead\left4dead.exe |
"{3AAB61DA-82AD-4911-A9AB-23FAA8E87612}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\borderlands\binaries\borderlands.exe |
"{40F2E66E-4A32-493E-835D-CFEA62AA1814}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\borderlands\binaries\borderlands.exe |
"{4384BE36-E48D-4192-B26E-4BA62A299ECB}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{53565E74-ACA0-4880-B651-7834A84297FF}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\borderlands\binaries\borderlands.exe |
"{59F2D171-82AE-4740-AEAE-52B15526DB7B}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{5F7C21A1-5E14-474F-B381-B71BCAF548AC}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead\left4dead.exe |
"{69ACAA33-CF6B-4658-A326-2F48BC80B48B}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 12\programs\rm.exe |
"{6F086771-0208-4031-8DBF-94FF9C50833C}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{6F52FA88-2C5A-4E3C-A981-CB16D0CC9C9D}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\borderlands\binaries\borderlands.exe |
"{76E38F76-5D2E-4FF4-8B83-FE2EB468C692}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{770E6D62-A573-412B-886D-532ACFFEA94D}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{8023B0A9-0077-4423-B10B-944114C8BEA6}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\b1g57uph\garrysmod\hl2.exe |
"{8336E42D-957B-4F7A-B12C-19F2F5F0A3C5}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{8E6DD10E-9348-4E95-8545-ACBD542EDC7C}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 12\programs\studio.exe |
"{922C6CD9-EDB6-44F5-B919-FFB9F503220F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{92D97DFF-A18F-4AA8-A7EE-48BDA3EFF7DC}" = dir=in | app=c:\program files\avg\avg9\avgnsx.exe |
"{9DDCE10A-EFBA-4E05-AA69-E99DA093F9C8}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{9FF0F873-A216-4F39-8763-587D264722E7}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead\left4dead.exe |
"{A156D5E3-A872-4BC8-A2FD-FA486ECDACBF}" = dir=in | app=c:\program files\avg\avg9\avgupd.exe |
"{A27EF596-CE3A-4E54-9393-2B31C09EAD37}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\docs\ea help\electronic_arts_technical_support.htm |
"{A79C0B29-8A0A-4C6C-8551-F9DBE917FC4B}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{AA0D346C-3155-480C-A56C-DE96AB8EEDE8}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\b1g57uph\garrysmod\hl2.exe |
"{AED3373A-0F6A-4424-B739-53C204946610}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 12\programs\umi.exe |
"{B5DD6B37-1D5B-4056-8AE3-ADB5CB4F715F}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 12\programs\rm.exe |
"{B63C0B7A-0502-470C-A2B1-FD44CCF8AAC2}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{BC36CF09-4D2C-479C-9573-8E664E503716}" = dir=in | app=c:\program files\avg\avg9\avgemc.exe |
"{C22F4475-DC49-450C-95FB-5B1E2345E896}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\daoriginslauncher.exe |
"{C5875F9F-34AF-40B2-8F28-D7DAB2DDDED8}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\torchlight\torchlight.exe |
"{D0C70F4D-E8BB-4E9C-BD1F-1815A86F95B7}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\beat hazard\beathazard.exe |
"{D1BAB551-86B7-4725-AD6E-17C3B439CB93}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{E2AA857C-99D1-4B53-A95B-AD235565D89C}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{E55F1AA3-4A88-4E22-AA79-34F77C8E2882}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\daoriginslauncher.exe |
"{EB177009-BD23-4F20-81B1-8D36E284A8BA}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\torchlight\torchlight.exe |
"{ECD37EA9-00A5-4AC1-9837-D215857F3B5C}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead\left4dead.exe |
"{FCC7B213-6619-4C70-8D7D-8F4044016F04}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daupdatersvc.service.exe |
"TCP Query User{0F09FA00-4CFE-42DA-9817-28BF7E6BB371}C:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe |
"TCP Query User{3C84C14C-81C3-4A0A-AEB1-7AFA31C090B4}C:\users\nolan\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\nolan\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{92B4391A-9B13-4A43-9C55-B1F475619E6D}C:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe |
"TCP Query User{DC890280-C4B7-421F-A096-2F64337C7433}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{FFFE4672-DCC0-482F-BF46-03169BA2668B}C:\program files\acoustica mixcraft 5\mixcraft5.exe" = protocol=6 | dir=in | app=c:\program files\acoustica mixcraft 5\mixcraft5.exe |
"UDP Query User{628FB96D-0120-43A8-9823-768CFB7CC541}C:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe |
"UDP Query User{65DABE70-D3B8-41AE-A8F6-F287B6A7DEBE}C:\users\nolan\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\nolan\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{762F0B10-87BD-4F30-A1A3-B500707C877F}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{A82C2524-6919-4FA7-9CDE-B91010E5C1B3}C:\program files\acoustica mixcraft 5\mixcraft5.exe" = protocol=17 | dir=in | app=c:\program files\acoustica mixcraft 5\mixcraft5.exe |
"UDP Query User{E15D19E2-0925-4FF5-BE69-E266A7D51F46}C:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{09DF00E6-520C-49D5-B7E0-9612165CACA8}" = OpenOffice.org 3.2
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0CFD3BAF-9F4D-4D70-BD0B-638EA2504C25}" = PSSWCORE
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DBEC4D5-2CCA-45CB-A529-75CD83E698AB}" = Oblivion Face Exchange Lite
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}" = Roxio Creator EasyArchive
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.6.2
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23D683DD-93C6-48E6-B84E-78B57778F126}" = Oblivion - Construction Set
"{23F79416-CAD1-41BF-99A3-040F6C814AAA}" = NVIDIA Photoshop Plug-ins
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java™ 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java™ 6 Update 24
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2990BC81-3B19-4E53-A53E-30DE3F1BFFA8}" = HP Total Care Advisor
"{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}" = SymNet
"{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}" = Rhapsody Player Engine
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Roxio Activation Module
"{3672B097-EA69-4bfe-B92F-29AE6D9D2B34}" = Norton Internet Security
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}" = ccCommon
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{40F7AED3-0C7D-4582-99F6-484A515C73F2}" = HP Easy Setup - Frontend
"{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}Nolan_is1" = WinDS PRO 2010.6.21 (Nolan)
"{43E7798A-248E-4A3D-9969-FEA63543A462}" = Native Instruments Kontakt 4
"{4723f199-fa64-4233-8e6e-9fccc95a18ee}" = Python 2.6.5
"{48185814-A224-447A-81DA-71BD20580E1B}" = Norton Internet Security
"{4843B611-8FCB-4428-8C23-31D0A5EAE164}" = Norton Confidential Browser Component
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1" = Crayon Physics Deluxe version 55
"{4EF6FDB0-3B11-4820-9860-8E08E9965195}" = Snapfish Media Detector
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5EB90C06-964F-4195-B83E-BD7E55C88415}" = Pinnacle Video Driver
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B976ADF-8AE8-434E-B282-A06C7F624D2F}" = Python 2.5.2
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75E71ADD-042C-4F30-BFAC-A9EC42351313}" = Python 2.4.3
"{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC 32bit
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{830D8CBD-C668-49e2-A969-C2C2106332E0}" = Norton AntiVirus
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{8CEA85DE-955B-4BF4-87F2-0BAA62821633}" = HP Photosmart Essential2.5
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{938B1CD7-7C60-491E-AA90-1F1888168240}" = Roxio MyDVD Basic v9
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9870C7AE-7C6A-478D-9A75-35827382220F}" = Pinnacle Systems USB-2 Device Drivers
"{9A129ABC-A53A-4209-A21E-D5DEDFB7CCA8}" = Norton Protection Center
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A89DEBCA-F743-3412-97F6-B2E489194551}" = Google Talk Plugin
"{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
"{AC76BA86-7AD7-1033-7B44-A80000000002}" = Adobe Reader 8
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7C61755-DB48-4003-948F-3D34DB8EAF69}" = MSRedist
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
"{C2425F91-1F7B-4037-9A05-9F290184798D}" = NETGEAR WNA3100 wireless USB 2.0 adapter
"{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C615B4A6-DDE8-4325-BCF8-E53E913D95E9}_is1" = AMR to MP3 Converter 1.4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe 1.4.142.1
"{CF7B20C3-C08E-422B-B6A1-225A9A0F13AC}" = NETGEAR WNA3100 wireless USB 2.0 driver
"{D041EB9E-890A-4098-8F94-51DA194AC72A}" = Pinnacle Studio 12
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D353CC51-430D-4C6F-9B7E-52003DA1E05A}" = Norton Confidential Web Protection Component
"{D6E6FA4A-5445-4850-8365-CF216C1CBB7A}" = Symantec Real Time Storage Protection Component
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}" = Vegas Pro 9.0
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}" = Norton Internet Security
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E5EE9939-259F-4DE2-8023-5C49E16A4F43}" = Norton Internet Security
"{E6607F5B-50E7-4B54-81B7-F0600E3C8CF4}" = Belkin F5D8053 N Wireless USB Adapter
"{e7394a0f-3f80-45b1-87fc-abcd51893246}" = Python 2.6.4
"{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}" = AppCore
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4DB525F-A986-4249-B98B-42A8066251CA}" = AV
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"7-Zip" = 7-Zip 4.65
"Acoustica Effects Pack" = Acoustica Effects Pack
"Acoustica Mixcraft 5" = Acoustica Mixcraft 5
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"Akamai" = Akamai NetSession Interface
"Alarm Clock_is1" = Alarm Clock v1.0
"ARIA Engine_is1" = ARIA Engine v1.1.1.1
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"AVG9Uninstall" = AVG Free 9.0
"BlenderNIFScripts" = Blender NIF Scripts (remove only)
"CCleaner" = CCleaner
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cogs" = Cogs
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"comtypes-py2.5" = Python 2.5 comtypes-0.5.2
"comtypes-py2.6" = Python 2.6 comtypes-0.6.2
"CoolSpeech" = CoolSpeech
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.58
"DDS Converter 2.1" = DDS Converter 2.1
"Defraggler" = Defraggler
"DivX Setup.divx.com" = DivX Setup
"EADM" = EA Download Manager
"eMusic Download Manager" = eMusic Download Manager 4.1.4
"Everything" = Everything 1.2.1.371
"foobar2000" = foobar2000 v1.0.1
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Photosmart Essential" = HP Photosmart Essential 2.0
"InstallShield_{E6607F5B-50E7-4B54-81B7-F0600E3C8CF4}" = Belkin F5D8053 N Wireless USB Adapter
"LAME for Audacity_is1" = LAME v3.98.2 for Audacity
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mixxx (1.8.1)" = Mixxx 1.8.1
"Mozilla Firefox 5.0.1 (x86 en-US)" = Mozilla Firefox 5.0.1 (x86 en-US)
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"Native Instruments Kontakt 4" = Native Instruments Kontakt 4
"Native Instruments Service Center" = Native Instruments Service Center
"NifSkope" = NifSkope (remove only)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"ObjectDock" = ObjectDock
"OsdMaestro" = HP On-Screen Cap/Num/Scroll Lock Indicator
"PC-Doctor 5 for Windows" = Hardware Diagnostic Tools
"Pen Tablet Driver" = Bamboo
"PIL-py2.5" = Python 2.5 PIL-1.1.6
"PROR" = Microsoft Office Professional 2007 Trial
"psyco-py2.5" = Python 2.5 psyco-1.6
"psyco-py2.6" = Python 2.6 psyco-1.6
"PyFFI" = PyFFI 2.1.4
"PyFFI-py2.5" = Python 2.5 PyFFI-2.1.4
"PyFFI-py2.6" = Python 2.6 PyFFI-2.1.4
"pywin32-py2.5" = Python 2.5 pywin32-212
"pywin32-py2.6" = Python 2.6 pywin32-214
"RADVideo" = RAD Video Tools
"RealPlayer 6.0" = RealPlayer
"ReaPlugs" = ReaPlugs
"Revo Uninstaller" = Revo Uninstaller 1.92
"rgc:audio sfz VSTi_is1" = rgc:audio sfz VSTi v1.96
"Rhapsody" = Rhapsody
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Speccy" = Speccy
"Steam App 211" = Source SDK
"Steam App 215" = Source SDK Base 2006
"Steam App 218" = Source SDK Base 2007
"Steam App 400" = Portal
"Steam App 41500" = Torchlight
"Steam App 47810" = Dragon Age: Origins - Ultimate Edition
"Steam App 49600" = Beat Hazard
"Steam App 500" = Left 4 Dead
"Steam App 8980" = Borderlands
"Sylenth1Demo_is1" = Sylenth1 Demo v2.20
"SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security (Symantec Corporation)
"SystemRequirementsLab" = System Requirements Lab
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"TweakOblivion_is1" = Oblivion - TweakOblivion 5.10 (Build:370)
"VLC media player" = VLC media player 1.0.1
"Wacom WebTabletPlugin for IE" = WebTablet IE Plugin
"Wacom WebTabletPlugin for Netscape" = WebTablet Netscape Plugin
"Winamp" = Winamp
"WinGimp-2.0_is1" = Gimp 2.6.2 Debug
"WinRAR archiver" = WinRAR archiver
"Wrye Bash" = Wrye Bash
"wxPython2.8-ansi-py25_is1" = wxPython 2.8.7.1 (ansi) for Python 2.5
"wxPython2.8-ansi-py26_is1" = wxPython 2.8.11.0 (ansi) for Python 2.6
"Xvid_is1" = Xvid 1.2.1 final uninstall

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"comtypes-py2.6" = Python 2.6 comtypes-0.6.2
"Flux" = F.lux
"FoxTab Audio Converter" = FoxTab Audio Converter
"Google Chrome" = Google Chrome
"psyco-py2.6" = Python 2.6 psyco-1.6
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 8/26/2011 4:01:54 PM | Computer Name = Nolan-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/29/2011 3:34:40 PM | Computer Name = Nolan-PC | Source = Application Error | ID = 1000
Description = Faulting application mixcraft5.exe, version 5.0.2.152, time stamp
0x4d51d0ab, faulting module kernel32.dll, version 6.0.6000.16386, time stamp 0x4549bd80,
exception code 0xc0000005, fault offset 0x0004fcac, process id 0x38560, application
start time 0x01cc668262dd248e.

Error - 8/30/2011 1:19:57 AM | Computer Name = Nolan-PC | Source = Application Error | ID = 1000
Description = Faulting application mixcraft5.exe, version 5.0.2.152, time stamp
0x4d51d0ab, faulting module acufutls.dll, version 0.0.0.0, time stamp 0x4d41e5db,
exception code 0xc000000d, fault offset 0x00008cda, process id 0x17274, application
start time 0x01cc651feff1530e.

Error - 8/31/2011 5:18:24 PM | Computer Name = Nolan-PC | Source = Application Error | ID = 1000
Description = Faulting application Oblivion.exe, version 1.2.0.416, time stamp 0x462392c7,
faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code
0xc0000005, fault offset 0x00000008, process id 0x5e4bc, application start time
0x01cc6822ea7b631e.

Error - 8/31/2011 5:32:30 PM | Computer Name = Nolan-PC | Source = Perflib | ID = 1000
Description =

Error - 8/31/2011 8:39:41 PM | Computer Name = Nolan-PC | Source = Perflib | ID = 1008
Description =

Error - 8/31/2011 8:39:41 PM | Computer Name = Nolan-PC | Source = Perflib | ID = 1010
Description =

Error - 8/31/2011 8:39:43 PM | Computer Name = Nolan-PC | Source = Perflib | ID = 1005
Description =

Error - 8/31/2011 8:39:43 PM | Computer Name = Nolan-PC | Source = Perflib | ID = 1017
Description =

Error - 8/31/2011 8:39:54 PM | Computer Name = Nolan-PC | Source = usbperf | ID = 2004
Description = Usbperf data collection failed. Collect function called with usupported
Query Type.

[ Media Center Events ]
Error - 11/1/2010 8:07:05 PM | Computer Name = Nolan-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

[ System Events ]
Error - 8/11/2011 7:02:38 AM | Computer Name = Nolan-PC | Source = volsnap | ID = 393252
Description = The shadow copies of volume C: were aborted because the shadow copy
storage could not grow due to a user imposed limit.

Error - 8/18/2011 7:03:58 AM | Computer Name = Nolan-PC | Source = volsnap | ID = 393252
Description = The shadow copies of volume C: were aborted because the shadow copy
storage could not grow due to a user imposed limit.

Error - 8/25/2011 6:50:39 AM | Computer Name = Nolan-PC | Source = volsnap | ID = 393252
Description = The shadow copies of volume C: were aborted because the shadow copy
storage could not grow due to a user imposed limit.

Error - 8/26/2011 3:56:00 PM | Computer Name = Nolan-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
9, function 0. Please contact your system vendor for technical assistance.

Error - 8/26/2011 3:56:00 PM | Computer Name = Nolan-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
11, function 0. Please contact your system vendor for technical assistance.

Error - 8/26/2011 3:58:03 PM | Computer Name = Nolan-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/26/2011 3:58:03 PM | Computer Name = Nolan-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 8/31/2011 5:28:22 PM | Computer Name = Nolan-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 4:14:03 PM on 8/31/2011 was unexpected.

Error - 8/31/2011 5:29:39 PM | Computer Name = Nolan-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/31/2011 5:29:39 PM | Computer Name = Nolan-PC | Source = Service Control Manager | ID = 7026
Description =


< End of report >


  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
CPU too hot? (Not sure what a GPU is) Can cause shutdowns as the CPU will pull the plug to save itself from overheating. A happy desktop like mine runs at 35 C whereas notebooks tend to run about 50 C.

You do have the dreaded resource hog Norton Antivirus running along with AVG. Two anti-virus programs will fight each other and load things down which will add to your heat load. I would suggest uninstalling all Norton/Symantec programs (your uninstall list shows several copies under different names) then download, save and run the norton removal tool.

Also uninstall obsolete Java programs:
Clear the Java Cache by following the instructions on
http://www.java.com/...lugin_cache.xml

You do not have the latest Java.
First go into Control Panel, Add/Remove Software and remove any old versions (which may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE)
I see:
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java™ 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java™ 6 Update 24
Get the latest Java at:
http://www.java.com/en/

Save it to your PC then close all browsers and install it. Do not let it install the yahoo toolbar or other foistware.



Then reboot.

Since you are a gamer I am assuming this is a desktop. Shut it down but leave it plugged up. Open it up and look at the dust built up on the heatsink above the CPU. (You may need to remove the fan to clean it - 4 screws and you can usually set it to one side.) A vacuum cleaner hose with a small brush to knock off the dust seems to work best but you can also use compressed air tho it will make a mess of your work space. Don't forget the air intakes and fan of the power supply. Before you replace the cover turn it on and verify that the cpu's fan starts up and runs strongly. (I like to use the eraser end of a pencil to stop the fan momentarily to see if it starts up again quickly.) Ditto for the power supply fan.

Close it up and start it up. What does Speccy say about the temp now?

Ron
  • 0

#5
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
I am taking care of everything you just said (coincidentally I actually was cleaning my fans right before I was posting this).
But GPU = Graphics Processing Unit, or, short: Graphics Card.
  • 0

#6
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
Video cards tend to run hot so that may not be the problem. I've seen temps of 50-60 C quoted as normal range. Problems tend to start at 75 C. Sometimes you need to add an extra fan with some high performance cards.


What kind of temperatures are you seeing? Do they climb when you play a game?

Ron
  • 0

#7
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Yeah I did a google search for average GPU temp and mine well exceeds that average...it was running at 95 C
It has climbed from 60 to 84 since my last post. I haven't watched the temperature when it's actually running a game though.

There was a forum that mentioned from nVidia cards (especially the REALLY high end) run 80 - 100 C. Mine isn't top-of-the-line, though it is still powerful..so I am still a little concerned...
  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
I'd say you have a problem with the card. Either add a fan to it or replace it.

Did you uninstall Norton and run the removal tool? Shouldn't effect your Video card but could help the CPU run cooler. How hot is it running?
Could be that having the Video card so hot might cause it to overheat when the cover is on.
  • 0

#9
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
How did I over look this?
Speaking of replacing fans, I went ahead and took the cover off to look at the fan and the one attached to the GPU isn't running!

As far as the Norton thing, it is giving me issues when uninstalling it. It keeps asking for the CD...which personally, I never remember installing Norton in the first place because I had used it a long time ago and hated it, and since then have used AVG

edit:
I went ahead and took my boxfan I have next to my bed and placed it next to my tower (with the cover off, obviously) and it cooled down my GPU by 30 C!

Edited by mrFlyte, 31 August 2011 - 09:10 PM.

  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
Look like you found the problem. The Norton removal tool should remove all of the Norton junk even if it won't uninstall. Norton is often installed as a 6 month freebie by the PC makers so you may not have a disk. IF it doesn't run OTL again and post the log and I can have OTl remove it with a script.

Ron
  • 0

Advertisements


#11
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Yup the fan is the problem. I pulled up my heaviest hitting game on graphics and ran it for an hour while monitoring the temperature. It after about 10 minutes it rose to 60 - 65 but never moved outside of that range for the rest of the time, and same goes for the CPU.

Is there any methods of troubleshooting why the fan won't start?

As for the Norton thing, it was resolved.
  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
Most likely it's just dead. It's a moving part so we sort of expect them to die. You can measure the voltage on the wires going to the fan and see if there's enough there or you could just change out the fan and see if that fixes it. There may be some part numbers on the fan which will let you find out what voltage it wants.
  • 0

#13
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Cool...
Well I suppose in the mean time I will just use the boxfan...probably would be best if I got some sort of screen to put on the intake side of the fan wouldn't it? Wonder if that is cheaper than buying a new fan for the GPU...
  • 0

#14
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
Fans are usually pretty cheap. Expect they use the same little fans you find in laptops.

When you say box fan are you talking about the kind you get at Wal-mart to cool the whole room or a smaller one that mounts in a chassis?

Did you notice an improvement in boot speed now that you got rid of Norton?

Ron
  • 0

#15
mrFlyte

mrFlyte

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts
Yeah I am talking about just a Walmart fan. I usually have it next to my bed when I go to sleep cause I live in Texas and it's summer, and it's been 105+ F the past week.

As for boot speed, [bleep] yeah, it went tons faster! Thanks for that, I really appreciate the help :)
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP