OTL Log file..having major computer issues/hard drive

My computer has been having slow down/freezing issues for about a week. For the past three days the HD keeps running/buzzing constantly (or sounds like its running) and everything else is VERY VERY slow. I have tried various malware and rootkit removal tools with no success, they find nothing. I have also run Chkdsk with no errors found and a few other HD diag. tools with no errors on my drives. I have Kaspersky Internet Security 2012 running on my machine.
Thanks for any assistance.

OTL logfile created on: 12/7/2011 4:39:51 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = F:\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.18 Gb Total Physical Memory | 1.40 Gb Available Physical Memory | 44.07% Memory free
9.39 Gb Paging File | 7.56 Gb Available in Paging File | 80.54% Paging File free
Paging file location(s): C:\pagefile.sys 0 0F:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698.63 Gb Total Space | 637.54 Gb Free Space | 91.26% Space Free | Partition Type: NTFS
Drive F: | 698.64 Gb Total Space | 217.41 Gb Free Space | 31.12% Space Free | Partition Type: NTFS
Drive G: | 167.69 Gb Total Space | 119.17 Gb Free Space | 71.07% Space Free | Partition Type: NTFS
Drive I: | 966.99 Mb Total Space | 135.32 Mb Free Space | 13.99% Space Free | Partition Type: FAT32
Drive P: | 968.38 Mb Total Space | 262.58 Mb Free Space | 27.12% Space Free | Partition Type: FAT
Drive Q: | 465.76 Gb Total Space | 73.03 Gb Free Space | 15.68% Space Free | Partition Type: NTFS

Computer Name: GRAHAM-DBC226BA | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/12/07 16:19:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- F:\My Documents\Downloads\OTL.exe
PRC - [2011/12/07 10:11:30 | 000,506,752 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\Administrator\Local Settings\Temp\HJSSLXA.exe
PRC - [2011/11/27 15:15:30 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/11/17 06:58:04 | 003,303,000 | ---- | M] (Akamai Technologies, Inc) -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Akamai\netsession_win.exe
PRC - [2011/10/29 18:04:48 | 004,419,728 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
PRC - [2011/10/29 18:04:48 | 001,063,056 | R--- | M] (Carbonite, Inc.) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
PRC - [2011/10/18 16:39:44 | 000,179,152 | ---- | M] (Zecter Inc.) -- C:\Program Files\Zecter\ZumoCast\ZumoCast.exe
PRC - [2011/10/18 16:39:42 | 000,237,544 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\gst-thumbnailer.exe
PRC - [2011/09/16 09:58:04 | 002,036,224 | ---- | M] (Carbonite) -- C:\Program Files\Carbonite\Carbonite Mirror Image\CarboniteMirrorImage.exe
PRC - [2011/08/01 09:11:38 | 001,091,984 | ---- | M] (Western Digital ) -- C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe
PRC - [2011/08/01 09:11:36 | 001,592,208 | ---- | M] (Western Digital ) -- C:\Program Files\Western Digital\WD SmartWare\WDFME.exe
PRC - [2011/08/01 09:11:34 | 003,983,760 | ---- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe
PRC - [2011/08/01 09:11:32 | 000,263,056 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe
PRC - [2011/04/24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
PRC - [2010/12/17 09:33:10 | 000,439,632 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe
PRC - [2010/12/17 09:33:06 | 001,103,184 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe
PRC - [2010/12/01 11:54:48 | 021,806,592 | ---- | M] (CompanionLink Software, Inc.) -- C:\Program Files\CompanionLink\CompanionLink.exe
PRC - [2010/09/06 02:19:58 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/06/25 10:19:30 | 000,421,888 | ---- | M] (Realsil Microelectronics Inc.) -- C:\Program Files\Sony\Drive Letter Recognition Software\RIconMan.exe
PRC - [2010/05/05 18:56:42 | 000,025,600 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\Ctxfihlp.exe
PRC - [2010/05/05 18:51:56 | 001,212,928 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTxfispi.exe
PRC - [2010/03/25 13:39:22 | 000,490,280 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2009/11/09 10:57:54 | 000,099,896 | ---- | M] (HP) -- C:\WINDOWS\system32\HPSIsvc.exe
PRC - [2009/10/09 09:12:16 | 000,741,376 | ---- | M] () -- C:\Program Files\Marvell\raid\tray\MarvellTray.exe
PRC - [2009/10/05 10:01:30 | 000,151,552 | ---- | M] () -- C:\Program Files\Marvell\raid\svc\mvraidsvc.exe
PRC - [2009/09/25 06:59:18 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009/08/04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009/08/04 17:29:52 | 000,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009/06/26 14:56:58 | 000,102,400 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
PRC - [2009/06/26 14:56:20 | 000,450,560 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
PRC - [2009/06/24 09:57:04 | 000,136,704 | ---- | M] (HP) -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
PRC - [2009/04/08 16:38:52 | 000,024,635 | ---- | M] (Apache Software Foundation) -- C:\Program Files\Marvell\raid\Apache2\bin\httpd.exe
PRC - [2009/02/23 10:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/05/07 14:28:32 | 000,591,696 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
PRC - [2008/04/13 16:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/11/01 13:07:06 | 000,334,720 | ---- | M] (Sysinternals - www.sysinternals.com) -- F:\My Documents\Downloads\RootkitRevealer.exe
PRC - [2003/07/29 15:33:00 | 000,040,960 | ---- | M] (Standard Microsystems Corp.) -- C:\Program Files\WDC\CR\SetIcon.exe

========== Modules (No Company Name) ==========

MOD - [2011/12/07 01:28:06 | 000,160,256 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Temp\ZumoLocalGateway.dll6102442735386895095.lib
MOD - [2011/12/07 01:27:56 | 000,296,448 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Temp\WindowsFolderWatcher.dll5717137524133959183.lib
MOD - [2011/12/07 01:25:44 | 000,379,904 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Temp\libsqlitejdbc-7322067889196722311.lib
MOD - [2011/12/07 01:25:03 | 000,200,704 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Temp\WindowsAPI.dll8774615610253839260.lib
MOD - [2011/12/01 16:46:28 | 003,313,752 | ---- | M] () -- c:\Program Files\Common Files\Akamai\netsession_win_d768ebc.dll
MOD - [2011/11/27 15:15:20 | 001,989,592 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/11/15 10:28:44 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011/10/18 16:39:44 | 000,150,528 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmpegdemux.dll
MOD - [2011/10/18 16:39:44 | 000,149,504 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstqtdemux.dll
MOD - [2011/10/18 16:39:44 | 000,126,976 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstogg.dll
MOD - [2011/10/18 16:39:44 | 000,114,688 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstqtmux.dll
MOD - [2011/10/18 16:39:44 | 000,071,680 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstvideoscale.dll
MOD - [2011/10/18 16:39:44 | 000,059,904 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstvideobox.dll
MOD - [2011/10/18 16:39:44 | 000,059,904 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgsttypefindfunctions.dll
MOD - [2011/10/18 16:39:44 | 000,054,784 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstsmpte.dll
MOD - [2011/10/18 16:39:44 | 000,053,248 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstvorbis.dll
MOD - [2011/10/18 16:39:44 | 000,051,712 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstsubparse.dll
MOD - [2011/10/18 16:39:44 | 000,050,688 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstwavpack.dll
MOD - [2011/10/18 16:39:44 | 000,047,616 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmpegaudioparse.dll
MOD - [2011/10/18 16:39:44 | 000,041,984 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstwavparse.dll
MOD - [2011/10/18 16:39:44 | 000,039,424 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmpegtsmux.dll
MOD - [2011/10/18 16:39:44 | 000,035,840 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstselector.dll
MOD - [2011/10/18 16:39:44 | 000,035,328 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstreplaygain.dll
MOD - [2011/10/18 16:39:44 | 000,034,304 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstvolume.dll
MOD - [2011/10/18 16:39:44 | 000,032,768 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstvideocrop.dll
MOD - [2011/10/18 16:39:44 | 000,028,672 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstpng.dll
MOD - [2011/10/18 16:39:44 | 000,025,600 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmpegvideoparse.dll
MOD - [2011/10/18 16:39:44 | 000,025,088 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmultipart.dll
MOD - [2011/10/18 16:39:44 | 000,024,576 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstvideorate.dll
MOD - [2011/10/18 16:39:44 | 000,020,480 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmultifile.dll
MOD - [2011/10/18 16:39:44 | 000,015,360 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmulaw.dll
MOD - [2011/10/18 16:39:44 | 000,013,312 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgsty4menc.dll
MOD - [2011/10/18 16:39:44 | 000,011,264 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libshift.dll
MOD - [2011/10/18 16:39:42 | 002,009,600 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstfluh264dec.dll
MOD - [2011/10/18 16:39:42 | 001,694,208 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstfluaacdec.dll
MOD - [2011/10/18 16:39:42 | 001,563,136 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflump3enc.dll
MOD - [2011/10/18 16:39:42 | 001,520,128 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libvorbisenc-2.dll
MOD - [2011/10/18 16:39:42 | 001,396,736 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libxml2-2.dll
MOD - [2011/10/18 16:39:42 | 001,376,256 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflump3dec.dll
MOD - [2011/10/18 16:39:42 | 000,682,496 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstreamer-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,563,712 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\liborc-0.4-0.dll
MOD - [2011/10/18 16:39:42 | 000,531,968 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflumpeg4video.dll
MOD - [2011/10/18 16:39:42 | 000,363,008 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflumpeg2video.dll
MOD - [2011/10/18 16:39:42 | 000,331,264 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libFLAC-8.dll
MOD - [2011/10/18 16:39:42 | 000,276,992 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libjpeg-8.dll
MOD - [2011/10/18 16:39:42 | 000,248,352 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libopencore-amrnb.0.1.1.dll
MOD - [2011/10/18 16:39:42 | 000,237,544 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\gst-thumbnailer.exe
MOD - [2011/10/18 16:39:42 | 000,199,168 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstbase-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,196,608 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libwavpack-1.dll
MOD - [2011/10/18 16:39:42 | 000,190,976 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libpng14-14.dll
MOD - [2011/10/18 16:39:42 | 000,187,904 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstffmpegcolorspace.dll
MOD - [2011/10/18 16:39:42 | 000,179,712 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstcoreelements.dll
MOD - [2011/10/18 16:39:42 | 000,163,328 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstmatroska.dll
MOD - [2011/10/18 16:39:42 | 000,162,304 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libvorbis-0.dll
MOD - [2011/10/18 16:39:42 | 000,126,976 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstcontroller-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,125,440 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgsttag-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,123,947 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libopencore-amrwb.0.1.1.dll
MOD - [2011/10/18 16:39:42 | 000,122,880 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstfluasfdemux.dll
MOD - [2011/10/18 16:39:42 | 000,122,368 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstavi.dll
MOD - [2011/10/18 16:39:42 | 000,119,296 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflumpegdemux.dll
MOD - [2011/10/18 16:39:42 | 000,108,544 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstaudio-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,091,136 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstdshowdecwrapper.dll
MOD - [2011/10/18 16:39:42 | 000,088,064 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflummssrc.dll
MOD - [2011/10/18 16:39:42 | 000,085,504 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\z.dll
MOD - [2011/10/18 16:39:42 | 000,083,968 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstdecodebin2.dll
MOD - [2011/10/18 16:39:42 | 000,079,872 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstpbutils-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,078,336 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstaudioconvert.dll
MOD - [2011/10/18 16:39:42 | 000,074,240 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflv.dll
MOD - [2011/10/18 16:39:42 | 000,073,728 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstdshowsrcwrapper.dll
MOD - [2011/10/18 16:39:42 | 000,070,144 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstrtp-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,067,584 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflac.dll
MOD - [2011/10/18 16:39:42 | 000,061,952 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstjpeg.dll
MOD - [2011/10/18 16:39:42 | 000,053,760 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstinterfaces-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,050,688 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstaudioresample.dll
MOD - [2011/10/18 16:39:42 | 000,048,640 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstalpha.dll
MOD - [2011/10/18 16:39:42 | 000,041,984 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstriff-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,038,912 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstaiff.dll
MOD - [2011/10/18 16:39:42 | 000,038,400 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstapp-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,037,888 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstgio.dll
MOD - [2011/10/18 16:39:42 | 000,037,376 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstvideo-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,036,864 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflumch264enc.dll
MOD - [2011/10/18 16:39:42 | 000,035,840 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstinterleave.dll
MOD - [2011/10/18 16:39:42 | 000,034,304 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstid3tag.dll
MOD - [2011/10/18 16:39:42 | 000,033,280 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstflumcaacenc.dll
MOD - [2011/10/18 16:39:42 | 000,032,256 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstid3demux.dll
MOD - [2011/10/18 16:39:42 | 000,030,208 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstadder.dll
MOD - [2011/10/18 16:39:42 | 000,029,696 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstgdp.dll
MOD - [2011/10/18 16:39:42 | 000,029,184 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstautodetect.dll
MOD - [2011/10/18 16:39:42 | 000,029,184 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstautoconvert.dll
MOD - [2011/10/18 16:39:42 | 000,026,624 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstequalizer.dll
MOD - [2011/10/18 16:39:42 | 000,023,552 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libogg-0.dll
MOD - [2011/10/18 16:39:42 | 000,020,480 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstamrnb.dll
MOD - [2011/10/18 16:39:42 | 000,019,968 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstaudiorate.dll
MOD - [2011/10/18 16:39:42 | 000,019,456 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstlevel.dll
MOD - [2011/10/18 16:39:42 | 000,019,456 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstauparse.dll
MOD - [2011/10/18 16:39:42 | 000,018,944 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\libgstdataprotocol-0.10.dll
MOD - [2011/10/18 16:39:42 | 000,018,944 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstalaw.dll
MOD - [2011/10/18 16:39:42 | 000,017,920 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstalphacolor.dll
MOD - [2011/10/18 16:39:42 | 000,016,896 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstcutter.dll
MOD - [2011/10/18 16:39:42 | 000,015,360 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstapetag.dll
MOD - [2011/10/18 16:39:42 | 000,014,848 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstamrwbdec.dll
MOD - [2011/10/18 16:39:42 | 000,014,848 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstadpcmdec.dll
MOD - [2011/10/18 16:39:42 | 000,011,776 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstcoreindexers.dll
MOD - [2011/10/18 16:39:42 | 000,008,192 | ---- | M] () -- C:\Program Files\Zecter\ZumoCast\bin\plugins\libgstapp.dll
MOD - [2011/10/13 07:00:28 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2011/10/13 07:00:16 | 000,005,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.dll
MOD - [2011/10/13 07:00:11 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2011/10/13 07:00:08 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2011/10/07 20:50:00 | 000,355,432 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nview\nvShell.dll
MOD - [2011/08/26 10:19:14 | 002,248,704 | ---- | M] () -- C:\Program Files\Carbonite\Carbonite Mirror Image\QtCore4.dll
MOD - [2011/08/26 10:19:14 | 000,969,728 | ---- | M] () -- C:\Program Files\Carbonite\Carbonite Mirror Image\QtNetwork4.dll
MOD - [2011/08/26 10:19:14 | 000,611,328 | ---- | M] () -- C:\Program Files\Carbonite\Carbonite Mirror Image\QtSql4.dll
MOD - [2011/08/01 06:34:44 | 000,064,000 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\WDCollections.dll
MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/05/22 23:46:31 | 000,645,632 | ---- | M] () -- C:\WINDOWS\system32\xvidcore.dll
MOD - [2011/04/24 23:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\qtgui4.dll
MOD - [2011/04/24 23:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\qtsql4.dll
MOD - [2011/04/24 23:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\qtscript4.dll
MOD - [2011/04/24 23:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\qtnetwork4.dll
MOD - [2011/04/24 23:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\qtcore4.dll
MOD - [2011/04/24 23:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\qtdeclarative4.dll
MOD - [2011/04/20 19:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\imageformats\qgif4.dll
MOD - [2010/11/02 07:33:58 | 000,886,272 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\System.Data.SQLite.dll
MOD - [2010/09/09 09:04:30 | 000,062,976 | ---- | M] () -- c:\Program Files\CompanionLink\ClxGoogleCalendar.dll
MOD - [2010/08/24 19:06:46 | 000,085,840 | ---- | M] () -- C:\Program Files\Trend Micro\RUBotted\hc_help.dll
MOD - [2010/05/05 18:56:46 | 000,002,560 | ---- | M] () -- C:\WINDOWS\CTXFIRES.DLL
MOD - [2010/03/27 14:29:26 | 011,796,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\5cea03cfb008f2eac1439a9905467f37\System.Web.ni.dll
MOD - [2010/03/27 14:29:20 | 000,627,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\408e637346ef628a3f54fb1b9b83ac9f\System.Transactions.ni.dll
MOD - [2010/03/27 14:29:20 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\1f61bccb700d687775cf778dd77752e9\System.ServiceProcess.ni.dll
MOD - [2010/03/27 14:29:13 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\2c208e4c5521f31057ea7d6e93c6a567\System.Management.ni.dll
MOD - [2010/03/27 14:29:13 | 000,311,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\9bc34a79af9c3ed2cf17a0226c769b4c\System.Runtime.Serialization.Formatters.Soap.ni.dll
MOD - [2010/03/27 14:29:11 | 000,627,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\8a7d0bd0057a8ed38291d5662248f7a1\System.EnterpriseServices.ni.dll
MOD - [2010/03/27 12:29:42 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\7c743462baccf29b3567b0e3ec9ac134\System.Configuration.ni.dll
MOD - [2010/03/27 12:24:58 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\5913d3f81e77194ec833991b1047a532\System.Xml.ni.dll
MOD - [2010/03/27 12:24:33 | 006,616,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\694c07365e0fd6bba0bc304d4d2404a7\System.Data.ni.dll
MOD - [2010/03/27 12:23:30 | 007,868,416 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\3de5bd01124463d7862bd173af90bc83\System.ni.dll
MOD - [2010/03/27 12:23:24 | 011,486,720 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7124a40b9998f7b63c86bd1a2125ce26\mscorlib.ni.dll
MOD - [2010/03/15 10:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009/10/25 23:01:40 | 000,081,920 | ---- | M] () -- C:\WINDOWS\system32\mvusbews.dll
MOD - [2009/10/23 10:18:50 | 002,256,896 | ---- | M] () -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hp1100su.dll
MOD - [2009/10/23 10:18:38 | 000,151,552 | ---- | M] () -- C:\WINDOWS\system32\HP1100LM.DLL
MOD - [2009/10/23 10:18:14 | 000,794,624 | ---- | M] () -- C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1100GC.DLL
MOD - [2009/10/23 10:18:14 | 000,069,632 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\HP1100PP.dll
MOD - [2009/10/09 09:12:16 | 000,741,376 | ---- | M] () -- C:\Program Files\Marvell\raid\tray\MarvellTray.exe
MOD - [2009/10/05 10:01:30 | 000,151,552 | ---- | M] () -- C:\Program Files\Marvell\raid\svc\mvraidsvc.exe
MOD - [2009/07/30 18:15:32 | 000,503,202 | ---- | M] () -- C:\Program Files\DeviceVM\Browser Configuration Utility\sqlite3.dll
MOD - [2009/04/08 16:38:52 | 000,073,782 | ---- | M] () -- C:\Program Files\Marvell\raid\Apache2\bin\zlib1.dll
MOD - [2008/04/13 16:11:59 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll

========== Win32 Services (SafeList) ==========

SRV - [2011/12/07 10:11:30 | 000,506,752 | ---- | M] (Sysinternals - www.sysinternals.com) [On_Demand | Running] -- C:\Documents and Settings\Administrator\Local Settings\Temp\HJSSLXA.exe -- (HJSSLXA)
SRV - [2011/12/06 10:21:13 | 000,347,008 | ---- | M] (Sysinternals - www.sysinternals.com) [On_Demand | Stopped] -- C:\Documents and Settings\Administrator\Local Settings\Temp\JMNP.exe -- (JMNP)
SRV - [2011/12/01 16:46:28 | 003,313,752 | ---- | M] () [Auto | Running] -- c:\program files\common files\akamai/netsession_win_d768ebc.dll -- (Akamai)
SRV - [2011/10/29 18:04:48 | 004,419,728 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) [Auto | Running] -- C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe -- (CarboniteService)
SRV - [2011/09/16 09:58:04 | 002,036,224 | ---- | M] (Carbonite) [Auto | Running] -- C:\Program Files\Carbonite\Carbonite Mirror Image\CarboniteMirrorImage.exe -- (Carbonite-Mirror-Image-Svc)
SRV - [2011/08/01 09:11:38 | 001,091,984 | ---- | M] (Western Digital ) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe -- (WDRulesService)
SRV - [2011/08/01 09:11:36 | 001,592,208 | ---- | M] (Western Digital ) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WDFME.exe -- (WDFMEService)
SRV - [2011/08/01 09:11:32 | 000,263,056 | ---- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe -- (WDDMService)
SRV - [2011/04/24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe -- (AVP)
SRV - [2010/12/17 09:33:10 | 000,439,632 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe -- (RUBotSrv)
SRV - [2010/09/06 02:19:58 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2010/06/25 10:19:30 | 000,421,888 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files\Sony\Drive Letter Recognition Software\RIconMan.exe -- (IconMan_R)
SRV - [2010/03/25 13:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010/03/24 07:17:55 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2009/11/09 10:57:54 | 000,099,896 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPSIsvc.exe -- (HPSIService)
SRV - [2009/10/20 10:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009/10/05 10:01:30 | 000,151,552 | ---- | M] () [Auto | Running] -- C:\Program Files\Marvell\raid\svc\mvraidsvc.exe -- (Marvell RAID)
SRV - [2009/08/04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009/06/26 14:56:58 | 000,102,400 | ---- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe -- (WDBtnMgrSvc.exe)
SRV - [2009/06/24 09:57:04 | 000,136,704 | ---- | M] (HP) [Auto | Running] -- C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe -- (HP LaserJet Service)
SRV - [2009/04/08 16:38:52 | 000,024,635 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\Marvell\raid\Apache2\bin\httpd.exe -- (MRUWebService)
SRV - [2009/02/23 10:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)

========== Driver Services (SafeList) ==========

DRV - [2011/12/07 00:38:36 | 000,565,552 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2011/12/07 00:29:36 | 000,083,064 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\SMR210.SYS -- (SMR210)
DRV - [2011/03/10 18:34:46 | 000,034,608 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2011/03/04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2011/03/04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2011/02/16 16:52:46 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2010/12/23 21:46:06 | 000,023,920 | ---- | M] (MediaMall Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\povrtdev.sys -- (msvad_simple)
DRV - [2010/11/09 14:35:30 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz135_x32.sys -- (cpuz135)
DRV - [2010/05/05 20:29:18 | 001,178,200 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha20x2k.sys -- (ha20x2k)
DRV - [2010/05/05 20:29:10 | 000,095,832 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\emupia2k.sys -- (emupia)
DRV - [2010/05/05 20:29:02 | 000,158,808 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2010/05/05 20:28:54 | 000,014,424 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV - [2010/05/05 20:24:44 | 000,130,136 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2010/05/05 20:24:34 | 000,347,144 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctdvda2k.sys -- (ctdvda2k)
DRV - [2010/05/05 20:24:24 | 000,526,296 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2010/05/05 20:24:14 | 000,511,064 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctac32k.sys -- (ctac32k)
DRV - [2010/05/05 20:24:04 | 001,324,120 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CTEXFIFX.SYS -- (CTEXFIFX.SYS)
DRV - [2010/05/05 20:24:04 | 001,324,120 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTEXFIFX.sys -- (CTEXFIFX)
DRV - [2010/05/05 20:23:52 | 000,072,792 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CTHWIUT.SYS -- (CTHWIUT.SYS)
DRV - [2010/05/05 20:23:52 | 000,072,792 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTHWIUT.sys -- (CTHWIUT)
DRV - [2010/05/05 20:23:46 | 000,171,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CT20XUT.SYS -- (CT20XUT.SYS)
DRV - [2010/05/05 20:23:46 | 000,171,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CT20XUT.sys -- (CT20XUT)
DRV - [2009/11/02 20:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/10/25 23:01:40 | 000,017,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mvusbews.sys -- (mvusbews)
DRV - [2009/10/20 10:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2009/10/09 14:55:54 | 000,020,008 | ---- | M] (Marvell Semiconductor Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\mv91cons.sys -- (mv91cons)
DRV - [2009/09/25 06:57:40 | 000,138,240 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV - [2009/09/25 06:57:36 | 000,056,576 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nusb3hub.sys -- (nusb3hub)
DRV - [2009/07/28 00:55:00 | 000,143,360 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 192.168.*.*;*.local

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\[email protected] [2011/12/07 02:09:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\[email protected] [2011/12/07 02:09:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\[email protected] [2011/12/07 02:09:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/12/07 00:49:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/12/07 00:50:56 | 000,000,000 | ---D | M]

[2011/01/18 21:02:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2011/01/18 21:02:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions\[email protected]
[2011/12/03 10:41:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1xv0e87j.default\extensions
[2010/05/02 08:59:52 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1xv0e87j.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/02/23 17:29:25 | 000,000,000 | ---D | M] (Opanda IExif) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1xv0e87j.default\extensions\{6FF4E2E4-FB2E-4f50-8F65-CFF2777413D5}
[2010/03/27 12:22:56 | 000,000,000 | ---D | M] () -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1xv0e87j.default\extensions\{DCBD1271-D228-4082-9FBC-36D9B7660B03}
[2011/10/15 09:50:41 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1xv0e87j.default\extensions\[email protected]
[2011/11/27 15:16:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/03/06 14:48:22 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/02/08 09:02:08 | 000,000,000 | ---D | M] (Anti-Banner) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]_bak
[2010/10/25 18:14:15 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]_bak
[2011/11/27 15:15:31 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/01/22 08:06:55 | 000,289,592 | ---- | M] (Cisco WebEx LLC) -- C:\Program Files\mozilla firefox\plugins\ieatgpc.dll
[2011/01/22 08:06:39 | 000,171,832 | ---- | M] (Cisco WebEx LLC) -- C:\Program Files\mozilla firefox\plugins\npatgpc.dll
[2011/09/29 06:51:40 | 000,466,944 | ---- | M] (Catalina Marketing Corporation) -- C:\Program Files\mozilla firefox\plugins\NPcol400.dll
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/30 08:28:37 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/11/27 15:15:31 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2011/11/25 23:58:49 | 000,436,335 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15020 more lines...
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [CTxfiHlp] C:\WINDOWS\System32\Ctxfihlp.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [MRUTray] C:\Program Files\Marvell\raid\tray\MarvellTray.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SetIcon] \Program Files\WDC\CR\SetIcon.exe File not found
O4 - HKLM..\Run: [Trend Micro RUBotted V2.0 Beta] C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [WD Button Manager] WDBtnMgr.exe File not found
O4 - HKLM..\Run: [WD Drive Manager] C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (WDC)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Documents and Settings\Administrator\Local Settings\Application Data\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKCU..\Run: [CompanionLink] c:\program files\companionlink\companionlink.exe (CompanionLink Software, Inc.)
O4 - HKCU..\Run: [ZumoCast] C:\Program Files\Zecter\ZumoCast\ZumoLauncher.lnk ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WD Quick View.lnk = C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe (Western Digital Technologies, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm ()
O8 - Extra context menu item: Locate Spot on Map by GPS - C:\Program Files\Opanda\IExif 2.3\IExifMap.htm ()
O8 - Extra context menu item: View Exif/GPS/IPTC with IExif - C:\Program Files\Opanda\IExif 2.3\IExifCom.htm ()
O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: cleverreach.com ([novastor] http in Trusted sites)
O15 - HKCU\..Trusted Domains: google-analytics.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: localhost ([]* in Local intranet)
O15 - HKCU\..Trusted Domains: novastor.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: novastor.com ([]https in Trusted sites)
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Trusted sites)
O15 - HKCU\..Trusted Ranges: Range1 ([https] in Trusted sites)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1269526192781 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1269526232500 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creat...015/CTSUEng.cab (Creative Software AutoUpdate 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...10926/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 68.238.64.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24F95F4A-4394-42E1-9512-BF032D09C8C7}: DhcpNameServer = 192.168.1.1 68.238.64.12
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper3.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper3.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/22 08:04:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/08/17 20:55:47 | 000,000,000 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{3af1bc95-f5d5-11e0-bea9-6cf04902ed2c}\Shell - "" = AutoRun
O33 - MountPoints2\{3af1bc95-f5d5-11e0-bea9-6cf04902ed2c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{3af1bc95-f5d5-11e0-bea9-6cf04902ed2c}\Shell\AutoRun\command - "" = "H:\WD SmartWare.exe" autoplay=true
O33 - MountPoints2\{654fdff1-eaeb-11e0-a554-6cf04902ed2c}\Shell - "" = AutoRun
O33 - MountPoints2\{654fdff1-eaeb-11e0-a554-6cf04902ed2c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{654fdff1-eaeb-11e0-a554-6cf04902ed2c}\Shell\AutoRun\command - "" = H:\setup.exe -a
O33 - MountPoints2\{8da0339d-f9a8-11df-8ec1-6cf04902ed2c}\Shell - "" = AutoRun
O33 - MountPoints2\{8da0339d-f9a8-11df-8ec1-6cf04902ed2c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8da0339d-f9a8-11df-8ec1-6cf04902ed2c}\Shell\AutoRun\command - "" = H:\setup.exe -a
O33 - MountPoints2\{f659a6ef-3946-11df-8e7a-6cf04902ed2c}\Shell\AutoRun\command - "" = H:\slacker.synclauncher.exe
O33 - MountPoints2\{f659a6ef-3946-11df-8e7a-6cf04902ed2c}\Shell\slacker\command - "" = H:\slacker.synclauncher.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\SISetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/12/07 09:35:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\F-Secure
[2011/12/07 00:49:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Kaspersky Internet Security 2012
[2011/12/07 00:41:38 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2011/12/07 00:41:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
[2011/12/07 00:38:36 | 000,565,552 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011/12/07 00:29:36 | 000,083,064 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SMR210.SYS
[2011/12/07 00:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\NPE
[2011/12/06 10:52:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2011/12/06 10:18:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinPcap
[2011/12/06 10:18:48 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap
[2011/12/06 10:18:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Trend Micro RUBotted
[2011/12/06 10:05:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Trend Micro
[2011/12/06 10:03:21 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011/12/06 07:13:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Sophos
[2011/12/06 07:13:24 | 000,000,000 | ---D | C] -- C:\Program Files\Sophos
[2011/12/04 18:02:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2011/12/04 18:02:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Security Task Manager
[2011/12/04 18:01:45 | 000,000,000 | ---D | C] -- C:\Program Files\Security Task Manager
[2011/11/28 10:22:04 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2011/11/26 14:33:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/11/26 14:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/11/25 23:27:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2011/11/25 23:25:24 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy 2
[2011/11/25 15:10:52 | 000,000,000 | ---D | C] -- C:\Western Digital
[2011/11/24 13:32:15 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011/11/24 10:59:39 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011/11/24 10:59:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2011/11/24 10:56:08 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2011/11/19 14:21:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\eSupport.com
[2011/11/19 11:08:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Carbonite
[2011/11/19 11:06:43 | 000,000,000 | ---D | C] -- C:\Program Files\Carbonite
[2011/11/19 11:06:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Carbonite
[2011/11/09 19:38:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Akamai
[2009/06/04 00:57:38 | 000,060,928 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[2009/06/04 00:32:54 | 000,012,800 | ---- | C] ( ) -- C:\WINDOWS\System32\killapps.exe
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Administrator\Local Settings\Application Data\*.tmp files -> C:\Documents and Settings\Administrator\Local Settings\Application Data\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/12/07 16:04:35 | 000,000,900 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/12/07 15:40:54 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Office Outlook 2007.lnk
[2011/12/07 11:23:15 | 000,000,438 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{D198CA8E-CF8B-4F20-844B-6799DCB6FDB7}.job
[2011/12/07 09:22:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011/12/07 09:04:46 | 000,000,896 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/12/07 02:07:11 | 000,115,369 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011/12/07 02:07:08 | 000,097,961 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011/12/07 02:00:20 | 000,000,358 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-GRAHAM-DBC226BA-Administrator.job
[2011/12/07 01:23:56 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-515967899-1647877149-725345543-500.job
[2011/12/07 01:23:49 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-515967899-1647877149-725345543-500.job
[2011/12/07 01:23:42 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/12/07 01:22:43 | 000,000,096 | ---- | M] () -- C:\WINDOWS\za_mv_seqnum.ev
[2011/12/07 01:22:42 | 000,045,440 | ---- | M] () -- C:\WINDOWS\za_mv_raid.ev
[2011/12/07 01:22:37 | 000,000,008 | ---- | M] () -- C:\WINDOWS\mvraidver.dat
[2011/12/07 01:21:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/12/07 01:21:17 | 3417,821,184 | -HS- | M] () -- C:\hiberfil.sys
[2011/12/07 01:17:45 | 000,000,788 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000005-00000000-00000004-00001102-00000005-00211102}.rfx
[2011/12/07 01:17:44 | 000,055,468 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000004-00001102-00000005-00211102}.rfx
[2011/12/07 01:17:44 | 000,055,468 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000005-00000000-00000004-00001102-00000005-00211102}.rfx
[2011/12/07 01:00:39 | 000,017,408 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\WebpageIcons.db
[2011/12/07 00:38:36 | 000,565,552 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2011/12/07 00:29:36 | 000,083,064 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SMR210.SYS
[2011/12/07 00:24:02 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/12/06 10:18:52 | 000,000,073 | ---- | M] () -- C:\WINDOWS\System32\-1
[2011/12/05 17:31:44 | 000,000,878 | ---- | M] () -- C:\WINDOWS\DCEBOOT.RST
[2011/12/05 17:27:37 | 000,022,032 | ---- | M] () -- C:\WINDOWS\DCEBoot.exe
[2011/12/04 17:25:26 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\housecall.guid.cache
[2011/12/04 15:04:42 | 000,110,080 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/04 14:42:53 | 000,005,655 | ---- | M] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2011/12/03 09:47:11 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/11/26 16:06:20 | 000,035,562 | ---- | M] () -- F:\My Documents\cc_20111126_160613.reg
[2011/11/26 14:33:23 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/11/25 23:58:49 | 000,436,335 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/11/25 23:52:14 | 000,000,080 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2011/11/25 23:08:45 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/11/24 14:49:14 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{362C1CDB-AB4F-4E83-ACA7-32C4EBA13E83}
[2011/11/24 13:33:31 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011/11/24 13:33:31 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/11/24 13:33:21 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/11/24 13:33:21 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011/11/24 10:59:52 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/11/24 10:59:45 | 000,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011/11/19 11:08:53 | 000,001,873 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Carbonite InfoCenter.lnk
[2011/11/18 20:27:59 | 000,000,053 | RHS- | M] () -- C:\Documents and Settings\All Users\Application Data\1.12.5.lic
[2011/11/13 15:57:55 | 000,002,533 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2011/11/07 20:55:01 | 000,457,070 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/11/07 20:55:01 | 000,075,850 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Administrator\Local Settings\Application Data\*.tmp files -> C:\Documents and Settings\Administrator\Local Settings\Application Data\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/12/07 01:00:32 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\WebpageIcons.db
[2011/12/07 00:50:06 | 000,115,369 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2011/12/07 00:50:05 | 000,097,961 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2011/12/07 00:24:02 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/12/07 00:14:05 | 3417,821,184 | -HS- | C] () -- C:\hiberfil.sys
[2011/12/06 10:18:52 | 000,000,073 | ---- | C] () -- C:\WINDOWS\System32\-1
[2011/12/05 17:47:13 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-515967899-1647877149-725345543-500.job
[2011/12/05 17:31:42 | 000,000,878 | ---- | C] () -- C:\WINDOWS\DCEBOOT.RST
[2011/12/05 17:26:23 | 000,022,032 | ---- | C] () -- C:\WINDOWS\DCEBoot.exe
[2011/12/04 17:25:26 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\housecall.guid.cache
[2011/11/26 16:06:17 | 000,035,562 | ---- | C] () -- F:\My Documents\cc_20111126_160613.reg
[2011/11/26 14:33:23 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/11/25 23:52:14 | 000,000,080 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011/11/24 14:49:14 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\{362C1CDB-AB4F-4E83-ACA7-32C4EBA13E83}
[2011/11/24 13:33:22 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011/11/24 13:33:21 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011/11/24 13:33:21 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011/11/24 13:33:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011/11/24 13:32:10 | 002,130,002 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011/11/24 10:59:45 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011/11/24 10:59:29 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/11/19 11:08:53 | 000,001,873 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Carbonite InfoCenter.lnk
[2011/11/18 20:27:59 | 000,000,053 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\1.12.5.lic
[2011/10/16 19:46:40 | 000,206,848 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011/09/15 16:45:43 | 000,000,053 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\1.12.2.lic
[2011/08/28 20:54:01 | 000,645,632 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011/08/28 20:54:01 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011/06/12 08:43:58 | 000,000,053 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\1.12.1.lic
[2011/05/05 16:16:54 | 000,000,012 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\00000000004545514672
[2011/05/05 16:16:52 | 000,000,003 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\rrn.dat
[2011/03/11 12:43:54 | 000,029,763 | ---- | C] () -- C:\WINDOWS\System32\drivers\klopp.dat
[2011/03/06 14:49:53 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/02/09 19:06:40 | 000,000,097 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\1.12.0.lic
[2010/11/30 16:51:08 | 000,012,987 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Comma Separated Values (Windows).CAL
[2010/05/25 19:34:08 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/05/05 19:37:52 | 000,021,204 | ---- | C] () -- C:\WINDOWS\System32\instwdm.ini
[2010/05/05 19:37:50 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2010/05/05 18:56:46 | 000,002,560 | ---- | C] () -- C:\WINDOWS\CTXFIRES.DLL
[2010/03/29 15:16:16 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2010/03/28 19:57:05 | 000,062,516 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/03/27 16:18:34 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\HP1100SM.EXE
[2010/03/27 16:18:34 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\HP1100LM.DLL
[2010/03/27 16:16:59 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\mvusbews.dll
[2010/03/27 16:16:55 | 000,046,592 | R--- | C] () -- C:\WINDOWS\System32\HP1100SMs.dll
[2010/03/27 15:48:50 | 000,284,160 | ---- | C] () -- C:\WINDOWS\System32\mvhlewsi.DLL
[2010/03/26 18:13:41 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2010/03/26 18:11:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EEventManager.INI
[2010/03/26 16:48:33 | 000,073,220 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2010/03/26 16:48:33 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2010/03/26 16:48:33 | 000,029,114 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2010/03/26 16:48:33 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2010/03/26 16:48:33 | 000,021,021 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2010/03/26 16:48:33 | 000,015,670 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2010/03/26 16:48:33 | 000,013,280 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2010/03/26 16:48:33 | 000,010,673 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2010/03/26 16:48:33 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2010/03/26 16:48:33 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2010/03/26 16:48:33 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2010/03/26 16:48:33 | 000,001,137 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2010/03/26 16:48:33 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2010/03/26 16:48:33 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2010/03/26 16:48:33 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2010/03/26 16:48:33 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2010/03/26 16:45:19 | 000,000,044 | ---- | C] () -- C:\WINDOWS\EPART800.ini
[2010/03/26 14:14:55 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010/03/26 13:58:36 | 000,110,080 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/26 13:52:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/03/23 04:57:57 | 000,000,008 | ---- | C] () -- C:\WINDOWS\mvraidver.dat
[2010/03/23 04:34:55 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2010/03/23 04:27:34 | 000,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini
[2010/03/23 04:27:33 | 000,207,400 | R--- | C] () -- C:\WINDOWS\GSetup.exe
[2010/03/22 08:06:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/03/22 08:02:20 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/03/21 22:48:21 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/03/21 22:47:25 | 003,595,224 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/10/20 10:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009/09/30 09:18:26 | 000,050,360 | ---- | C] () -- C:\WINDOWS\php.ini
[2009/09/29 13:16:26 | 000,000,127 | ---- | C] () -- C:\WINDOWS\zraidtray.ini
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 14:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/06/04 00:55:20 | 000,002,560 | ---- | C] () -- C:\WINDOWS\System32\CtxfiRes.dll
[2009/06/04 00:40:44 | 000,321,512 | ---- | C] () -- C:\WINDOWS\System32\ctdlang.dat
[2009/06/04 00:40:44 | 000,056,509 | ---- | C] () -- C:\WINDOWS\System32\ctdnlstr.dat
[2009/06/04 00:36:30 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\regplib.exe
[2009/06/04 00:33:04 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\enlocstr.exe
[2009/05/27 09:49:00 | 000,000,285 | ---- | C] () -- C:\WINDOWS\System32\kill.ini
[2009/04/01 09:48:16 | 000,053,478 | ---- | C] () -- C:\WINDOWS\mvtcpui.ini
[2008/05/26 20:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 20:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/02/18 22:33:34 | 000,446,352 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2007/09/27 09:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 09:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 09:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2004/08/04 04:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/04 04:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/04 04:00:00 | 000,457,070 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/04 04:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/04 04:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 04:00:00 | 000,075,850 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/04 04:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/04 04:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/04 04:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/04 04:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/04 04:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/04 04:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003/12/15 15:22:50 | 000,000,853 | ---- | C] () -- C:\WINDOWS\System32\WD.ini
[2003/12/15 13:42:52 | 000,000,232 | ---- | C] () -- C:\WINDOWS\SwapDrvrSP3.ini
[2003/12/15 13:42:36 | 000,000,233 | ---- | C] () -- C:\WINDOWS\SwapDrvrSP2.ini

========== LOP Check ==========

[2011/01/06 16:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Avery
[2011/05/05 16:16:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Backup Tickets
[2011/09/29 06:51:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Catalina Marketing Corp
[2010/11/22 17:52:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/03/27 13:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/12/04 15:56:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\CompanionLink
[2011/06/27 08:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Configuration
[2011/11/24 12:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Dropbox
[2010/03/29 15:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Epson
[2011/01/18 21:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Flickr
[2011/02/13 16:35:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Flip Video
[2011/05/05 16:16:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\fotoQuote Pro 6
[2011/05/05 16:13:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\InsideScan_2
[2010/03/26 16:50:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Leadertech
[2011/03/19 09:28:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\LifeStyleMedia
[2010/03/26 13:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\MSNInstaller
[2011/04/28 19:28:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\PictureCode
[2010/10/17 06:54:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\start
[2011/11/24 10:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2011/05/05 16:16:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Temp
[2011/02/13 08:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1
[2010/03/26 17:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2010/04/28 16:19:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Windows Search
[2011/12/07 01:29:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ZumoCast
[2011/12/04 13:50:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Carbonite
[2011/06/27 08:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Configuration
[2010/03/26 16:50:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EPSON
[2010/09/19 16:45:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
[2011/12/07 09:35:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\F-Secure
[2011/02/09 18:32:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flip Video
[2010/06/27 15:08:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
[2011/09/25 09:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MediaMall
[2010/05/16 13:33:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MiK
[2011/12/04 14:49:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NovaStor
[2011/11/10 18:57:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/03/26 18:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Retrospect
[2011/12/04 18:10:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2011/06/27 08:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ticket
[2011/10/15 21:26:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Western Digital
[2010/04/01 15:05:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/03/27 14:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2011/12/07 11:23:15 | 000,000,438 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{D198CA8E-CF8B-4F20-844B-6799DCB6FDB7}.job

========== Purity Check ==========

< End of report >

OTL Extras logfile created on: 12/7/2011 4:39:51 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = F:\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.18 Gb Total Physical Memory | 1.40 Gb Available Physical Memory | 44.07% Memory free
9.39 Gb Paging File | 7.56 Gb Available in Paging File | 80.54% Paging File free
Paging file location(s): C:\pagefile.sys 0 0F:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 698.63 Gb Total Space | 637.54 Gb Free Space | 91.26% Space Free | Partition Type: NTFS
Drive F: | 698.64 Gb Total Space | 217.41 Gb Free Space | 31.12% Space Free | Partition Type: NTFS
Drive G: | 167.69 Gb Total Space | 119.17 Gb Free Space | 71.07% Space Free | Partition Type: NTFS
Drive I: | 966.99 Mb Total Space | 135.32 Mb Free Space | 13.99% Space Free | Partition Type: FAT32
Drive P: | 968.38 Mb Total Space | 262.58 Mb Free Space | 27.12% Space Free | Partition Type: FAT
Drive Q: | 465.76 Gb Total Space | 73.03 Gb Free Space | 15.68% Space Free | Partition Type: NTFS

Computer Name: GRAHAM-DBC226BA | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\SmartFTP Client\SmartFTP.exe" = C:\Program Files\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 4.0 -- (SmartSoft Ltd.)
"C:\Program Files\Zecter\ZumoCast\zumocast.exe" = C:\Program Files\Zecter\ZumoCast\zumocast.exe:*:Enabled:ZumoCast -- (Zecter Inc.)
"C:\Program Files\Zecter\ZumoCast\bin\gst-thumbnailer.exe" = C:\Program Files\Zecter\ZumoCast\bin\gst-thumbnailer.exe:*:Enabled:gst-thumbnailer -- ()
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Documents and Settings\Administrator\Application Data\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\Administrator\Application Data\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Documents and Settings\Administrator\Local Settings\Application Data\Akamai\netsession_win.exe" = C:\Documents and Settings\Administrator\Local Settings\Application Data\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface -- (Akamai Technologies, Inc)
"C:\Documents and Settings\Administrator\Local Settings\Temp\nswC.tmp\setup.exe" = C:\Documents and Settings\Administrator\Local Settings\Temp\nswC.tmp\setup.exe:*:Enabled:Kaspersky Internet Security 2012 [12.0.0.374.0.732.0]
"C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon
"C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service
"C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater
"C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{007F778D-F15C-4EAB-AE92-071D21FAF632}" = Adobe Photoshop Elements 9
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}" = hppP1100P1560P1600SeriesLaserJetService
"{10F5D9BB-E2F2-4B18-A65D-928B73D22E6F}" = USB 2.0 IrDA Bridge
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP
"{1D76A52C-87A6-4AB0-A7B0-08C8D5DF1D75}" = Motorola Mobile Drivers Installation 5.2.0
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java™ 6 Update 23
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{3127F76D-5335-4AC7-BD1E-2F5247A23C24}" = iTunes
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F70FB44-FD00-4ED2-9154-661AA9DB0B28}" = WD Media Center Driver
"{433EACD8-4747-4A6A-826A-FFA9F39B0D40}" = Elements 9 Organizer
"{45E557D6-2271-4F13-8101-C620B4285AB0}" = Kaspersky Internet Security 2012
"{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C5C0C8D-EE74-4C4C-A098-9FF21055E6A9}" = Drive Letter Recognition Software
"{51B055DD-A5F8-4D0C-A09C-66E58AD56F20}" = WD SmartWare
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{54D4EAF5-4C80-4878-B4AC-5AE454A02E3C}_is1" = Trend Micro RUBotted 2.0 Beta
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{5B363E1D-8C36-4458-BAE4-D5081999E094}" = Browser Configuration Utility
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}" = VoiceOver Kit
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6F3D2F66-F050-45E3-BEB1-6523FE6D6690}" = MotoHelper MergeModules
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7266294D-EB84-4FE8-AF2B-3BDE2439EFFD}" = Oakley THUMP Pro
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7902E313-FF0F-4493-ACB1-A8147B78DCD0}" = HPSSupply
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{813EE1F0-D251-4F98-AC91-9B98CF22717E}" = WD Drive Manager (x86)
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{81B109ED-6ECA-49FF-9238-8E31FA5DB1A9}_is1" = RescuePRO 3.5
"{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{853F464A-B2B8-404E-BA3E-B98FF6862C41}" = hppusgP1100P1560P1600Series
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_SMALLBUSINESSR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_SMALLBUSINESSR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_SMALLBUSINESSR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-00CA-0000-0000-0000000FF1CE}" = Microsoft Office Small Business 2007
"{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9ACDAF5E-318F-4761-ABC3-DDC58089E818}" = fotoQuote Pro 6
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9B97EC91-B3FD-4BFF-88FC-5345A26AC2E7}" = Adobe Illustrator CS5
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A127C3C0-055E-38CF-B38F-1E85F8BBBFFE}" = Adobe Community Help
"{A29549FD-65F3-440C-A552-6B8114CF319D}" = Skype Toolbars
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A8D92C2C-BF13-4D38-B9C9-1744AF379573}" = Carbonite Mirror Image: Carbonite Mirror Image
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.1)
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.95
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B5001568-0518-4AAA-9192-B48C33A49880}" = Pandora Icon Installer™
"{BD75E671-8693-44CC-A9FF-B6C211C93F38}" = SmartFTP Client
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C05B5E9B-FE9D-48C7-9D7C-35DA238A9DE8}" = WD Software Upgrader
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFA9C1EE-8D76-477E-9E26-D24C26F11F47}" = WD Media Center Driver
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D371F551-0DB9-4CEC-844B-4C90CE91EA0B}" = hppLaserJetService
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DF7DBA84-0A55-11D6-A0A6-6A7573736972}" = Polar ProTrainer
"{E071691D-20E6-4C2B-9A04-FE41C0FDC367}" = Adobe Photoshop Lightroom 3.5
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E2AE009D-37E5-4724-A6B8-0ED6A6BA4F68}" = Elements STI Installer
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E670B584-4496-4086-B85B-DA63001AC096}" = Digimarc Plug-ins for Adobe® Photoshop®
"{EC8282AB-48DD-91D2-7387-01CD6E100A5D}" = Adobe Photoshop.com Inspiration Browser
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EE18E4CF-6732-470B-A526-3FE205AC69D5}" = CompanionLink
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F8131A35-47FD-27AD-116D-0E79AF5DE5EE}" = Acrobat.com
"{F97272B4-82C4-46B2-BCF1-C4D6E8CAB3E6}" = Avery Wizard 4.0
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3ivx MPEG-4 5.0.3" = 3ivx MPEG-4 5.0.3 (remove only)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Photoshop Elements 9" = Adobe Photoshop Elements 9
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Akamai" = Akamai NetSession Interface Service
"AudioCS" = Creative Audio Control Panel
"Belarc Advisor" = Belarc Advisor 8.1
"BookSmart® 3.0.3 3.0.3" = BookSmart® 3.0.3 3.0.3
"Carbonite Backup" = Carbonite
"CCleaner" = CCleaner
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Console Launcher" = Creative Console Launcher
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.57.1
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"EndItAll_is1" = EndItAll 2.0
"EPSON Artisan 800 Series" = EPSON Artisan 800 Series Printer Uninstall
"EPSON Scanner" = EPSON Scan
"HP LaserJet Professional P1100-P1560-P1600 Series" = HP LaserJet Professional P1100-P1560-P1600 Series
"ie8" = Windows Internet Explorer 8
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"InstallWIX_{45E557D6-2271-4F13-8101-C620B4285AB0}" = Kaspersky Internet Security 2012
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 8.0.1 (x86 en-US)" = Mozilla Firefox 8.0.1 (x86 en-US)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"mv61xxMRU" = Marvell MRU V4
"Noise Ninja (Standalone Version)_is1" = Noise Ninja 2 (Standalone Version)
"Opanda IExif_is1" = Opanda IExif 2.3
"OpenAL" = OpenAL
"PhotoshopdotcomInspirationBrowser.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1" = Adobe Photoshop.com Inspiration Browser
"Security Task Manager" = Security Task Manager 1.8d
"SMALLBUSINESSR" = Microsoft Office Small Business 2007
"SmartFTP Client 4.0 Setup Files" = SmartFTP Client 4.0 Setup Files (remove only)
"Sophos-AntiRootkit" = Sophos Anti-Rootkit 1.5.20
"SystemRequirementsLab" = System Requirements Lab
"VLC media player" = VLC media player 1.1.11
"WaveStudio 7" = Creative WaveStudio 7
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xvid Video Codec 1.3.1" = Xvid Video Codec
"ZumoCast" = ZumoCast

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Dropbox" = Dropbox

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/5/2011 9:20:01 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Hang | ID = 1002
Description = Hanging application OUTLOOK.EXE, version 12.0.6562.5003, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/5/2011 9:20:01 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Hang | ID = 1002
Description = Hanging application OUTLOOK.EXE, version 12.0.6562.5003, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/6/2011 2:06:12 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Error | ID = 1000
Description = Faulting application servicesetup.exe, version 0.0.0.0, faulting module
, version 0.0.0.0, fault address 0x00000000.

Error - 12/6/2011 3:24:44 PM | Computer Name = GRAHAM-DBC226BA | Source = MsiInstaller | ID = 11705
Description = Application: Kaspersky Internet Security 2012 -- Error 1705.Previous
installation of this application is in progress. You must undo the changes made
by previous installation to continue. Do you wish to undo the changes?

Error - 12/6/2011 3:35:40 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Error | ID = 1000
Description = Faulting application kavremover.exe, version 1.0.179.0, faulting module
kavremover.exe, version 1.0.179.0, fault address 0x000491ae.

Error - 12/6/2011 3:43:33 PM | Computer Name = GRAHAM-DBC226BA | Source = MsiInstaller | ID = 11316
Description = Application: Kaspersky Internet Security 2012 -- Error 1316.A network
error occurred while attempting to read from the file C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nsg9.tmp\kavkis.msi

Error - 12/7/2011 1:27:44 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Error | ID = 1000
Description = Faulting application 45sj7le0.exe, version 1.0.15.15641, faulting
module 45sj7le0.exe, version 1.0.15.15641, fault address 0x0000c676.

Error - 12/7/2011 1:39:14 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Hang | ID = 1002
Description = Hanging application fsonlinescanner.exe, version 4.2.16010.0, hang
module hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/7/2011 2:08:46 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Error | ID = 1000
Description = Faulting application 45sj7le0.exe, version 1.0.15.15641, faulting
module 45sj7le0.exe, version 1.0.15.15641, fault address 0x0000c676.

Error - 12/7/2011 3:26:11 PM | Computer Name = GRAHAM-DBC226BA | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 8.0.1.4341, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 12/6/2011 2:53:18 PM | Computer Name = GRAHAM-DBC226BA | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service CarboniteService
with arguments "" in order to run the server: {36471C67-6A93-4434-92CC-4C614CD06666}

Error - 12/6/2011 2:53:18 PM | Computer Name = GRAHAM-DBC226BA | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service CarboniteService
with arguments "" in order to run the server: {36471C67-6A93-4434-92CC-4C614CD06666}

Error - 12/6/2011 3:04:52 PM | Computer Name = GRAHAM-DBC226BA | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service MSIServer with
arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

Error - 12/6/2011 3:06:05 PM | Computer Name = GRAHAM-DBC226BA | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service CarboniteService
with arguments "" in order to run the server: {36471C67-6A93-4434-92CC-4C614CD06666}

Error - 12/7/2011 4:40:19 AM | Computer Name = GRAHAM-DBC226BA | Source = Service Control Manager | ID = 7034
Description = The HP LaserJet Service service terminated unexpectedly. It has done
this 1 time(s).

Error - 12/7/2011 10:05:36 AM | Computer Name = GRAHAM-DBC226BA | Source = DCOM | ID = 10005
Description = DCOM got error "%1053" attempting to start the service gupdate with
arguments "/comsvc" in order to run the server: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error - 12/7/2011 10:06:02 AM | Computer Name = GRAHAM-DBC226BA | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the Google Update Service
(gupdate) service to connect.

Error - 12/7/2011 10:06:13 AM | Computer Name = GRAHAM-DBC226BA | Source = Service Control Manager | ID = 7000
Description = The Google Update Service (gupdate) service failed to start due to
the following error: %%1053

Error - 12/7/2011 5:19:53 PM | Computer Name = GRAHAM-DBC226BA | Source = Service Control Manager | ID = 7031
Description = The CarboniteService service terminated unexpectedly. It has done
this 1 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 12/7/2011 5:20:50 PM | Computer Name = GRAHAM-DBC226BA | Source = Service Control Manager | ID = 7032
Description = The Service Control Manager tried to take a corrective action (Restart
the service) after the unexpected termination of the CarboniteService service,
but this action failed with the following error: %%1056

< End of report >

OTL Log file..having major computer issues/hard drive

#1
sergei91

Posted 07 December 2011 - 07:02 PM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

OTL Log file..having major computer issues/hard drive

#1 sergei91 Posted 07 December 2011 - 07:02 PM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Sign In

#1
sergei91

Posted 07 December 2011 - 07:02 PM