OTL logfile created on: 2/2/2012 6:14:38 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Nicky\Documents\OTL
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.75 Gb Total Physical Memory | 0.88 Gb Available Physical Memory | 31.97% Memory free
5.50 Gb Paging File | 2.77 Gb Available in Paging File | 50.32% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 290.22 Gb Total Space | 193.61 Gb Free Space | 66.71% Space Free | Partition Type: NTFS
Drive D: | 290.22 Gb Total Space | 290.05 Gb Free Space | 99.94% Space Free | Partition Type: NTFS
Drive I: | 465.76 Gb Total Space | 433.68 Gb Free Space | 93.11% Space Free | Partition Type: NTFS
Computer Name: NICKY-PC | User Name: Nicky | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/02/02 17:46:20 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Nicky\My Documents\OTL\OTL.exe
PRC - [2012/01/13 14:53:18 | 000,652,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/01/13 14:53:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/01/03 13:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/11/05 09:22:11 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2011/10/24 16:51:19 | 000,801,792 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
PRC - [2011/08/19 09:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/08/10 20:52:54 | 000,138,760 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Norton Internet Security\Engine\19.2.0.10\ccsvchst.exe
PRC - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2009/08/12 22:04:44 | 000,062,208 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
PRC - [2009/08/12 21:58:28 | 000,261,888 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
PRC - [2009/08/10 05:36:04 | 000,629,280 | ---- | M] () -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
PRC - [2009/08/06 17:18:54 | 000,311,592 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
PRC - [2009/08/06 17:18:42 | 000,349,480 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
PRC - [2009/08/04 05:09:34 | 000,199,464 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
PRC - [2009/07/08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files (x86)\Common Files\McAfee\McProxy\McProxy.exe
PRC - [2009/07/04 01:47:12 | 000,240,160 | ---- | M] (Acer) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2009/06/04 13:04:50 | 001,150,496 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
PRC - [2009/05/08 10:35:50 | 002,780,432 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
PRC - [2009/05/08 10:34:08 | 000,559,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2009/04/30 16:01:12 | 000,125,464 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
PRC - [2008/11/09 20:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/05/26 15:14:56 | 000,143,360 | ---- | M] (Affinegy, Inc.) -- C:\Program Files (x86)\Virgin Broadband Wireless\AffinegyService.exe
PRC - [2007/07/03 16:48:02 | 000,064,000 | ---- | M] (ArcSoft) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2006/11/03 11:01:16 | 000,319,488 | -H-- | M] (PixArt Imaging Incorporation) -- C:\Windows\PixArt\Pac7302\Monitor.exe
========== Modules (No Company Name) ==========
MOD - [2011/08/07 14:54:16 | 000,004,096 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\Detour32.dll
MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/04/11 13:58:21 | 000,390,656 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\lame_enc.dll
MOD - [2011/04/11 13:58:17 | 000,370,688 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\libsndfile.dll
MOD - [2010/04/29 15:59:12 | 000,929,792 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
MOD - [2009/08/10 05:36:04 | 000,629,280 | ---- | M] () -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
MOD - [2009/08/10 02:49:40 | 000,019,968 | ---- | M] () -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll
MOD - [2009/05/08 10:35:50 | 002,780,432 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
MOD - [2009/05/08 10:34:08 | 000,559,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
MOD - [2009/02/03 00:33:56 | 000,460,199 | ---- | M] () -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/11/04 16:47:32 | 000,155,456 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield)
SRV:64bit: - [2009/10/28 11:50:32 | 000,696,848 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/04 01:47:12 | 000,240,160 | ---- | M] (Acer) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Updater Service)
SRV:64bit: - [2009/04/30 16:01:00 | 000,190,488 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64)
SRV:64bit: - [2009/04/19 15:34:48 | 000,625,184 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM))
SRV:64bit: - [2009/04/19 15:34:48 | 000,207,904 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV - [2012/01/13 14:53:18 | 000,652,360 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/01/03 13:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/08/19 09:26:50 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/08/10 20:52:54 | 000,138,760 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton Internet Security\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe -- (NIS)
SRV - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/11/04 15:59:50 | 000,606,736 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee\VirusScan\mcsysmon.exe -- (McSysmon)
SRV - [2009/08/12 22:04:44 | 000,062,208 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2009/08/06 17:18:54 | 000,311,592 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe -- (MWLService)
SRV - [2009/07/28 19:25:34 | 000,935,208 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/07/08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 13:04:50 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe -- (Greg_Service)
SRV - [2008/11/09 20:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/05/26 15:14:56 | 000,143,360 | ---- | M] (Affinegy, Inc.) [Auto | Running] -- C:\Program Files (x86)\Virgin Broadband Wireless\AffinegyService.exe -- (AffinegyService)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011/12/30 18:47:04 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2011/12/10 15:24:08 | 000,023,152 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011/12/02 22:28:56 | 000,004,608 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bbcap.sys -- (bbcap)
DRV:64bit: - [2011/09/27 00:38:11 | 001,084,024 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\symefa64.sys -- (SymEFA)
DRV:64bit: - [2011/08/19 09:27:30 | 004,869,024 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) Logitech Webcam 250(UVC)
DRV:64bit: - [2011/08/19 09:27:30 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2011/08/08 23:38:05 | 000,167,048 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\ccsetx64.sys -- (ccSet_NIS)
DRV:64bit: - [2011/08/03 02:22:10 | 000,729,720 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2011/08/03 02:22:10 | 000,037,496 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2011/07/26 02:18:39 | 000,401,016 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\symnets.sys -- (SymNetS)
DRV:64bit: - [2011/07/26 02:18:35 | 000,451,192 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\symds64.sys -- (SymDS)
DRV:64bit: - [2011/07/26 02:15:52 | 000,189,560 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1302000.00A\ironx64.sys -- (SymIRON)
DRV:64bit: - [2010/09/28 15:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/08/12 12:07:50 | 000,350,952 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2009/11/04 16:54:06 | 000,308,296 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2009/11/04 16:54:06 | 000,102,472 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2009/11/04 16:54:06 | 000,049,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfesmfk.sys -- (mfesmfk)
DRV:64bit: - [2009/11/04 16:47:38 | 000,040,904 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mferkdk.sys -- (mferkdk)
DRV:64bit: - [2009/08/13 22:10:18 | 000,073,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009/07/14 01:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 01:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 01:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/26 07:55:10 | 000,083,488 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2009/06/10 20:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/02 11:15:30 | 000,060,464 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:64bit: - [2009/06/02 11:15:30 | 000,022,576 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:64bit: - [2009/06/02 11:15:30 | 000,020,016 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:64bit: - [2009/05/18 12:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/05/05 23:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2009/05/05 23:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV:64bit: - [2009/04/30 22:59:24 | 000,271,640 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvpopf64.sys -- (lvpopf64)
DRV:64bit: - [2009/04/30 15:59:48 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2009/04/30 15:59:48 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2009/04/09 21:23:02 | 000,176,144 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\Mpfp.sys -- (MPFP)
DRV:64bit: - [2008/07/23 14:18:42 | 000,118,272 | ---- | M] (AMOI Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\S2usbser.sys -- (S2usbser)
DRV:64bit: - [2007/06/14 15:28:52 | 000,526,848 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PAC7302.SYS -- (PAC7302)
DRV:64bit: - [2007/04/23 14:44:12 | 001,533,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\camdrv42.sys -- (camdrv42)
DRV - [2012/02/02 17:22:05 | 002,048,632 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120202.002\ex64.sys -- (NAVEX15)
DRV - [2012/02/02 17:22:05 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120202.002\eng64.sys -- (NAVENG)
DRV - [2012/01/23 19:10:12 | 000,138,360 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/12/31 00:08:29 | 000,482,936 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2011/12/15 23:33:20 | 000,488,568 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120201.002\IDSviA64.sys -- (IDSVia64)
DRV - [2011/12/01 02:25:03 | 001,157,240 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120121.002\BHDrvx64.sys -- (BHDrvx64)
DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer...180s25by7012y1o
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer...180s25by7012y1o
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer...180s25by7012y1o
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer...180s25by7012y1o
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer...180s25by7012y1o
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.669: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.669: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.669: c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Nicky\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\BYOND: C:\Program Files\BYOND\bin\npbyond.dll (BYOND)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/07/12 20:26:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/11/05 09:23:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn\ [2012/02/02 07:58:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\ [2012/02/02 07:58:25 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/07/12 20:26:30 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\16.0.912.77\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.270.7 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java Platform SE 6 U27 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: RealNetworks RealPlayer Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\16.0.912.77\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\16.0.912.77\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.5.0.8013_0\npSkypeChromePlugin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Nicky\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Google Search = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Click to call with Skype = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.5.0.8013_0\
CHR - Extension: Norton Identity Protection = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.2.1.6_0\
CHR - Extension: Gmail = C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009/06/10 21:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg64.dll (Google Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Norton Internet Security\Engine\19.2.0.10\coieplg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Norton Internet Security\Engine\19.2.0.10\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Norton Internet Security\Engine\19.2.0.10\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Norton Internet Security\Engine\19.2.0.10\coieplg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe (Egis Technology Inc.)
O4:64bit: - HKLM..\Run: [PAC7302_Monitor] C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [EgisTecLiveUpdate] C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe ()
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [TkBellExe] c:\program files (x86)\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Wireless Manager] C:\Program Files (x86)\Virgin Broadband Wireless\Wireless Manager.exe (Affinegy, Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe File not found
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe File not found
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000017 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000018 - C:\Windows\SysNative\nvLsp64.dll (NVIDIA)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\SysWOW64\nvLsp.dll (NVIDIA)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {26522409-8BBF-4C5B-A4D3-CF4B1D6F255B} http://www.umediaser...diaControl5.cab (UMediaPlayer Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg...l_v1-0-29-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} http://download.mcaf...067/mcfscan.cab (McFreeScan Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5B159DBA-C247-46A2-A731-21B5A9298F13}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\gopher - No CLSID value found
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/02/15 04:53:50 | 000,000,027 | ---- | M] () - I:\Autorun.inf -- [ NTFS ]
O33 - MountPoints2\{35c50ded-5878-11db-8afa-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Start.exe
O33 - MountPoints2\{35c50ded-5878-11db-8afa-806e6f6e6963}\Shell\Install\Command - "" = E:\Start.exe
O33 - MountPoints2\{8ff7f1b5-a0b5-11df-9d0a-001f16fc9529}\Shell - "" = AutoRun
O33 - MountPoints2\{8ff7f1b5-a0b5-11df-9d0a-001f16fc9529}\Shell\AutoRun\command - "" = H:\AutoInstall.exe
O33 - MountPoints2\{8ff7f1c6-a0b5-11df-9d0a-001f16fc9529}\Shell - "" = AutoRun
O33 - MountPoints2\{8ff7f1c6-a0b5-11df-9d0a-001f16fc9529}\Shell\AutoRun\command - "" = H:\AutoInstall.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012/02/02 17:46:13 | 000,000,000 | ---D | C] -- C:\Users\Nicky\Documents\OTL
[2012/02/02 08:09:20 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A56EDE06-F945-4390-930A-0CEAB95C845B}
[2012/02/02 08:09:08 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{010315DE-5D12-4496-9358-DA1DB1282577}
[2012/02/01 20:08:40 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{0C19F869-58E0-42F6-B28E-45B1127EE106}
[2012/02/01 20:08:28 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{DD4108DB-D5B7-47AC-93E7-810F270BD0DB}
[2012/02/01 08:07:58 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{8571A02F-364D-40E9-A215-091F18A37F3D}
[2012/02/01 08:07:45 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{0A26793F-174D-4C87-8B8C-516DA203969E}
[2012/01/31 10:25:47 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{C10BDBC0-9261-43EB-8577-46E912087E36}
[2012/01/31 10:25:35 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{D46797B1-CCE4-4F65-B012-CF7D20443028}
[2012/01/31 09:20:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012/01/31 09:20:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012/01/31 09:20:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012/01/30 22:25:05 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{B5AF97C4-8241-4A88-94E4-CC5F8F2B1CFA}
[2012/01/30 10:24:34 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{2BA65594-AD1F-408C-B155-A544D273034E}
[2012/01/30 10:24:20 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{5063C59D-A628-4B1E-98EE-229D684EB3FF}
[2012/01/29 22:23:47 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{4D0AAB26-6871-42EB-B835-0C815A9647FD}
[2012/01/29 22:23:34 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{9374EA2E-1ABB-49B4-A339-31C1E0A14F4F}
[2012/01/29 12:35:07 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Roaming\Malwarebytes
[2012/01/29 12:34:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/01/29 12:34:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/01/29 12:34:46 | 000,023,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/01/29 12:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/01/29 10:23:05 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{8056A58C-2419-4D06-A487-7D6BF171005B}
[2012/01/29 10:22:54 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{387E5446-E4EA-48DE-B33F-D6CFDB6E6C0C}
[2012/01/28 22:22:14 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{55315423-61C4-4B1D-A0FF-11FD06EE2720}
[2012/01/28 10:21:47 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{F6693C25-9B3E-4980-9E00-91F6ACC3A902}
[2012/01/28 10:21:35 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{EC7EE414-2DA2-4B49-B4DE-CDCF73711FDF}
[2012/01/27 20:23:01 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{B0B794E3-23EE-4F5F-AE8B-9A5C3B0306B7}
[2012/01/27 08:22:34 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{6AEC30CC-994F-4F94-A08D-1C8DA92DD7F9}
[2012/01/27 08:22:22 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{3979976B-9DE8-414B-940C-54651DCD02AB}
[2012/01/26 20:19:02 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{2B1ACE76-3A10-4BCE-8DF0-C15746548339}
[2012/01/26 08:18:34 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{9703706B-7223-4DFB-9892-AE535C54019A}
[2012/01/26 08:18:22 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{71F5DB69-C190-4395-8855-1598CB353388}
[2012/01/25 20:03:54 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A9E58ECA-538C-4AD2-9D0A-7E367848C3AE}
[2012/01/25 20:03:42 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{392B7B64-4460-4D86-90DD-008501E27BCF}
[2012/01/25 08:03:08 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{036D4141-A769-40E0-BCC1-8BA461944AE9}
[2012/01/25 08:02:53 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{31289393-B698-4441-B739-735EE8581B34}
[2012/01/24 10:59:36 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{EE7F66C8-F3F5-4364-B463-89774679670F}
[2012/01/24 10:59:24 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{0F5727FC-18F8-4B8C-9870-087D2DB67D6C}
[2012/01/23 22:58:55 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A79B9564-E262-4070-BE37-6683C3BDEAAF}
[2012/01/23 10:58:27 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{F6838556-6F0A-43F0-BCC8-39FB70823B3A}
[2012/01/23 10:58:16 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{ACDD3146-1B99-42F2-9A80-24B75E648574}
[2012/01/22 22:57:47 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{AC21F737-1B52-4073-A76D-71F8525B942F}
[2012/01/22 22:57:34 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{0FECF01B-666C-49A9-A6CE-DAFB0DC7A1DA}
[2012/01/22 10:57:04 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{6644856E-05CC-4872-B935-78923CF6A6F2}
[2012/01/22 10:56:52 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{9ADCA69B-F049-4669-A599-A58DCD6D3E07}
[2012/01/21 10:21:29 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{4E2DA6A9-1866-4CC7-95FC-C2C92D9B3801}
[2012/01/21 10:21:16 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A9ACD323-DF0A-43A3-A961-47D3203FDC8B}
[2012/01/20 20:33:24 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{52936200-FDDA-4CF6-B262-7D5E1B526BF9}
[2012/01/20 20:33:10 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{71EEEBDC-7B0A-446B-8CD0-7C4B23664661}
[2012/01/20 08:32:56 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{623AF009-8AD2-462F-B79A-24E66251436F}
[2012/01/20 08:32:44 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{7F6004D1-B0A0-42E8-B5A1-BADDE3AE45CE}
[2012/01/19 20:32:17 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{5B0E74B3-0A4F-4D4E-BC89-8966B4779035}
[2012/01/19 08:31:50 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{FF38C1F2-ABE1-4990-81B6-4A06A7CF4CE6}
[2012/01/19 08:31:38 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{17209A93-405E-464C-A80E-755794C525C4}
[2012/01/18 20:31:10 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{61121460-E53E-4258-A281-E35B2C6BA41F}
[2012/01/18 08:30:43 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{184FC1DF-6FA1-497C-8395-49D708D7BF89}
[2012/01/18 08:30:31 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{F0888F4A-F4B0-433F-B069-AE51D846CDCB}
[2012/01/17 20:30:03 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{B1971A34-A393-4F2B-BE22-8AEC2FEA57E8}
[2012/01/17 08:29:36 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{0BB9D917-3F71-4AEF-B184-2FB261B061CD}
[2012/01/17 08:29:25 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{4E2D87E4-5AFA-49CB-8FE6-AE67AC621E1B}
[2012/01/16 20:12:37 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{2197CC0C-5B1F-41AE-A922-E2A24ED5B2F7}
[2012/01/16 20:12:22 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{32FB777B-F73A-4B15-9D1A-11D645A87136}
[2012/01/16 08:11:52 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{692E7D41-76E8-47AC-99B8-D820918A2D47}
[2012/01/16 08:11:40 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A77CFFFA-EFE5-48B3-A08B-A68C8CC19F52}
[2012/01/15 11:06:40 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{965EC31E-2C85-4455-95CC-5C1FF727714D}
[2012/01/15 11:06:29 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{8CBD33ED-5DD7-4D04-B418-C667B84DE954}
[2012/01/14 23:05:49 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A942FD11-77CB-4B2D-9C46-3A86A17D674D}
[2012/01/14 11:05:22 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{747B1845-B276-492C-BC7F-28BB92949DBD}
[2012/01/14 11:05:09 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{B0002C78-2D2F-415D-B10F-4587045DDBC7}
[2012/01/13 20:30:52 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{50947D8C-3676-4E1C-B1CC-42857CCB7A62}
[2012/01/13 08:30:25 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{7C75D122-181D-47F0-8DB4-73E3CB579138}
[2012/01/13 08:30:13 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{FED8F461-446D-4DC6-9D93-EF2F13D90029}
[2012/01/12 20:29:45 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{3891B9AB-DE0D-45B2-950A-FC728E2F6412}
[2012/01/12 09:59:04 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Roaming\AMPSoft
[2012/01/12 09:56:51 | 000,000,000 | ---D | C] -- C:\Users\Nicky\Desktop\Font Viewer
[2012/01/12 08:29:19 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{570046CB-2E7D-4ED9-B924-4659C97AE6E6}
[2012/01/12 08:29:08 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{FAD87E31-4877-45EC-9462-58646FEEF902}
[2012/01/11 20:28:40 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{40B036C7-1B3F-4527-B5F2-6B161809BEBA}
[2012/01/11 08:28:13 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{D29F1CFE-222C-4305-A07F-372CD6685DAA}
[2012/01/11 08:28:01 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{3099D621-1581-4DDE-AD89-FC0E400A8B00}
[2012/01/10 20:17:15 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{F374FAB0-74DA-43A7-A601-E381A0B17AD0}
[2012/01/10 08:16:48 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{8C2B29A6-91A5-4E67-8731-FFF1726403FA}
[2012/01/10 08:16:36 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{B6ED033C-62AC-473D-AA27-7C841CBE3014}
[2012/01/09 20:16:09 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{4858AB86-D296-490A-886B-F3B311B2E61A}
[2012/01/09 08:15:40 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{EC1DAD02-EC48-49D8-ADCD-ABC4E7962D95}
[2012/01/09 08:15:28 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{706ADE0D-44E4-4406-AD26-F73B8E6F8D80}
[2012/01/08 10:42:00 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{3F730B9E-9973-411C-BFDD-98CFD58F79F3}
[2012/01/08 10:41:48 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{859A0A24-CDE0-4D71-BDC4-AB4B78C66C69}
[2012/01/07 22:41:10 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{E347EB03-3149-4553-AEBF-0DBDFE46D209}
[2012/01/07 22:40:58 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{24C974CB-BA1F-4E66-A350-390144F527CE}
[2012/01/07 14:58:24 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\House of 1000 Doors - Family Secrets Collector's Edition
[2012/01/07 14:58:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\House of 1000 Doors - Family Secrets Collector's Edition
[2012/01/07 14:58:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\House of 1000 Doors - Family Secrets Collector's Edition
[2012/01/07 10:40:30 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{45540253-7CF1-4807-9EF7-C45577742593}
[2012/01/07 10:40:18 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{1B1B77E9-28D0-4789-9AC9-B1FEE89E5225}
[2012/01/06 11:12:34 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{421B5EDD-B44C-4430-B7EC-60ED3702FF7A}
[2012/01/06 11:12:22 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{BE18B506-67FA-478B-A8BA-1EB880D01EFB}
[2012/01/05 23:11:53 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{A662AC82-DD2E-426B-A095-851EE29898BB}
[2012/01/05 11:11:26 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{699C4A6C-0CFC-4FE1-97FB-94462049B850}
[2012/01/05 11:11:14 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{6EDE7EAD-49D7-4D38-9E4E-4458FAE1030C}
[2012/01/04 23:10:46 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{912133B3-F3B2-4F07-939C-B119056C04AA}
[2012/01/04 23:10:35 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{DDD704C7-ECF0-47C4-97C2-2BF0A36C9C11}
[2012/01/04 11:10:07 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{0D6BAD2A-24B8-49E3-B469-209E17190CD4}
[2012/01/04 11:09:55 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{7773C070-A929-4B74-99C8-165B3DC459B6}
[2012/01/03 23:09:26 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{B36BD4A7-8635-4552-B7D3-9F7EF7A30864}
[2012/01/03 23:09:12 | 000,000,000 | ---D | C] -- C:\Users\Nicky\AppData\Local\{3B59AE18-7D30-4A79-8E35-ED9F4279CA7B}
[2009/08/14 17:54:53 | 000,036,136 | ---- | C] (Oberon Media) -- C:\ProgramData\FullRemove.exe
========== Files - Modified Within 30 Days ==========
[2012/02/02 18:01:02 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/02/02 17:51:37 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/02 17:51:37 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/02 16:35:38 | 000,000,452 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Nicky.job
[2012/02/02 08:00:29 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/02/02 07:57:37 | 000,000,031 | ---- | M] () -- C:\Windows\SysNative\bbcap.err
[2012/02/02 07:57:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/02 07:57:35 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs
[2012/02/02 07:57:30 | 2213,449,728 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/01 08:13:18 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/31 20:12:42 | 000,000,134 | ---- | M] () -- C:\Users\Nicky\Desktop\Internet Explorer Troubleshooting.url
[2012/01/29 14:44:16 | 000,007,626 | ---- | M] () -- C:\Users\Nicky\AppData\Local\resmon.resmoncfg
[2012/01/25 15:57:28 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/01/25 15:57:28 | 000,628,024 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/01/25 15:57:28 | 000,110,208 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/01/24 13:57:16 | 000,002,344 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/01/07 14:58:59 | 000,008,320 | -H-- | M] () -- C:\Windows\wininit.ini
[2012/01/07 14:58:58 | 000,002,379 | ---- | M] () -- C:\Users\Public\Desktop\Play House of 1000 Doors - Family Secrets Collector's Edition.lnk
[2012/01/07 14:58:58 | 000,001,342 | ---- | M] () -- C:\Users\Public\Desktop\More Great Games.lnk
[2012/01/04 10:10:58 | 000,000,592 | ---- | M] () -- C:\Windows\MRU.ini
[2012/01/04 09:51:27 | 001,899,003 | ---- | M] () -- C:\Users\Nicky\Documents\Messier List PDF.pdf
========== Files Created - No Company Name ==========
[2012/01/29 12:36:10 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/07 14:58:58 | 000,001,342 | ---- | C] () -- C:\Users\Public\Desktop\More Great Games.lnk
[2012/01/07 14:58:57 | 000,002,379 | ---- | C] () -- C:\Users\Public\Desktop\Play House of 1000 Doors - Family Secrets Collector's Edition.lnk
[2012/01/04 09:51:26 | 001,899,003 | ---- | C] () -- C:\Users\Nicky\Documents\Messier List PDF.pdf
[2011/09/18 16:10:22 | 000,005,632 | ---- | C] () -- C:\Users\Nicky\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/19 09:26:20 | 010,898,456 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2011/08/19 09:26:20 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2011/08/19 09:26:20 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/06/11 14:46:50 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2011/06/05 14:11:11 | 000,000,391 | ---- | C] () -- C:\Users\Nicky\AppData\Roaming\prefsdb.dat
[2010/11/06 19:37:39 | 000,000,592 | ---- | C] () -- C:\Windows\MRU.ini
[2010/10/17 09:15:52 | 000,007,626 | ---- | C] () -- C:\Users\Nicky\AppData\Local\resmon.resmoncfg
[2010/08/29 18:12:48 | 000,001,456 | ---- | C] () -- C:\Users\Nicky\AppData\Local\Adobe Save for Web 12.0 Prefs
[2010/08/05 18:53:08 | 000,000,023 | ---- | C] () -- C:\Windows\SysWow64\PCSuiteConfigFile.ini
[2010/08/05 18:53:08 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\PCSuiteShareFile.ini
[2010/08/05 18:53:08 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\PCSuiteParamFile.ini
[2010/07/12 20:26:05 | 000,023,142 | ---- | C] () -- C:\Windows\hpqins15.dat.temp
[2010/07/12 13:18:11 | 000,023,142 | ---- | C] () -- C:\Windows\hpqins15.dat
[2010/07/06 18:37:47 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/07/05 09:40:19 | 000,163,514 | ---- | C] () -- C:\Windows\hphins33.dat
[2010/02/01 18:11:19 | 000,008,320 | -H-- | C] () -- C:\Windows\wininit.ini
[2010/01/02 16:38:32 | 000,069,632 | R--- | C] () -- C:\Windows\SysWow64\xmltok.dll
[2010/01/02 16:38:32 | 000,036,864 | R--- | C] () -- C:\Windows\SysWow64\xmlparse.dll
[2009/12/21 21:52:41 | 000,000,566 | ---- | C] () -- C:\Windows\SysWow64\SP7302.INI
[2009/07/14 05:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 02:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 02:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 00:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 21:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/11 10:17:52 | 000,000,586 | ---- | C] () -- C:\Windows\hphmdl33.dat
[2009/06/10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
========== LOP Check ==========
[2009/12/24 10:28:03 | 000,000,000 | -HSD | M] -- C:\Users\Nicky\AppData\Roaming\.#
[2012/01/04 20:01:44 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\.minecraft
[2011/04/20 13:39:25 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\A Gypsy's Tale - The Tower of Secrets
[2011/05/31 14:18:15 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Aerohills
[2010/04/13 18:43:20 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Alawar Entertainment
[2012/01/12 09:59:04 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\AMPSoft
[2010/04/08 18:55:27 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Artogon
[2011/06/11 13:22:10 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Big Finish
[2011/12/29 22:40:24 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Big Fish Games
[2010/03/10 13:15:24 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\BloodTies
[2011/03/31 13:20:17 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Blue Tea Games
[2011/12/04 10:24:32 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Blueberry
[2011/10/29 19:41:16 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Boomzap
[2011/03/20 16:04:48 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\CursedOnboard
[2011/06/29 20:09:22 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\DailyMagic
[2011/01/28 15:16:18 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Dekovir
[2010/02/03 19:58:23 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Dragon Altar Games
[2010/12/28 17:12:36 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\EleFun Games
[2011/04/28 10:30:06 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Elephant Games
[2010/08/11 21:05:44 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Enlightenus2_BFG
[2011/01/19 22:14:40 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\ERS G-Studio
[2011/10/09 18:14:18 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\ERS Game Studios
[2011/10/08 14:08:14 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Fenomen Games
[2011/05/21 15:58:24 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\FlyWheelGames
[2009/12/25 15:54:42 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Friday's games
[2009/12/23 19:01:38 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\GameConsole
[2011/03/20 12:59:43 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\GameMill Entertainment
[2010/01/14 18:07:58 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\GamersDigital
[2011/05/15 13:46:14 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\GAMGO
[2010/02/05 22:14:59 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Gestalt Games
[2010/05/16 12:56:05 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\HdO Adventure
[2011/05/02 14:09:52 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Lazy Turtle Games
[2010/01/13 18:36:25 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Leadertech
[2011/12/02 22:29:36 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\LogSys
[2011/04/20 13:44:01 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\MA2
[2011/05/04 14:08:40 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Maximize Games
[2011/10/08 15:29:30 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\MediaArt
[2010/05/15 12:08:27 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Merscom
[2011/04/15 11:37:40 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Mystery of Mortlake Mansion
[2009/12/25 14:47:53 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\MysteryStudio
[2010/04/09 19:59:40 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Oberon 3 Days Zoo Mystery
[2011/06/05 14:11:39 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\perfect future studio
[2011/06/11 10:16:36 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\PlayFirst
[2010/02/11 18:04:00 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\PoBros
[2010/05/10 20:02:09 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Poser
[2011/12/03 13:32:58 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Poser 7
[2010/03/17 19:13:57 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Roaming
[2011/05/21 13:54:46 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Silverback Productions
[2010/04/05 17:47:58 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Specialbit
[2010/11/04 15:59:03 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Stellarium
[2010/08/07 13:42:07 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\TikisLab
[2010/04/04 20:49:03 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Top Evidence
[2011/07/02 13:44:58 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\VampireSaga
[2010/08/08 22:17:56 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Vast Studios
[2011/05/08 17:38:36 | 000,000,000 | ---D | M] -- C:\Users\Nicky\AppData\Roaming\Windows Live Writer
[2011/12/25 11:24:59 | 000,032,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 240 bytes -> C:\ProgramData\TEMP:A02025CE
@Alternate Data Stream - 235 bytes -> C:\ProgramData\TEMP:E6C6EB3B
@Alternate Data Stream - 234 bytes -> C:\ProgramData\TEMP:B54E4B5A
@Alternate Data Stream - 234 bytes -> C:\ProgramData\TEMP:9BAC4211
@Alternate Data Stream - 233 bytes -> C:\ProgramData\TEMP:F5B51004
@Alternate Data Stream - 229 bytes -> C:\ProgramData\TEMP:4DDE401B
@Alternate Data Stream - 227 bytes -> C:\ProgramData\TEMP:737160C1
@Alternate Data Stream - 226 bytes -> C:\ProgramData\TEMP:834DD57E
@Alternate Data Stream - 225 bytes -> C:\ProgramData\TEMP:27F44544
@Alternate Data Stream - 221 bytes -> C:\ProgramData\TEMP:CBAF0C30
@Alternate Data Stream - 216 bytes -> C:\ProgramData\TEMP:BE40C8A2
@Alternate Data Stream - 212 bytes -> C:\ProgramData\TEMP:AFB24B00
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:D3FFFBA9
@Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:94BD36A2
@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:A5930D84
@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:8BBD1F9A
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:9E9A3410
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:8E5EA40F
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:378824DE
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:B8EB1B99
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:79875988
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:5A27D490
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:526B3022
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:4E9307D7
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:1E3397DC
@Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:491270B8
@Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:29F0CA7D
@Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:207C4C79
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:F84F494D
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:4E79C4F8
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:C2F24DB5
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:88A44CC1
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:3EC5BC08
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:C40E212B
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:6B709AD7
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:A5584049
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:762408BA
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:4C8FA829
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:373C6DC2
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:2AE74FF9
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:E411AA0D
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:8AEF2555
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:71612023
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:EF0C5444
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:D9656460
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:9B721CFF
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:D4558A0B
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:BEE39E9B
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:B0456F0C
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:AAA06E15
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:7DC5D762
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:62B9E014
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:48529647
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:DD04902E
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:726A7C8D
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:AED33A42
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:94B46CA2
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:2BFCDF84
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:206470A5
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:CA23BCFD
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:D5BF78B4
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:4CF61E54
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:24C072FF
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:AE8D8202
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:2B9555D8
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:EF4B1DA9
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:B38BEEEE
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:12258D63
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:7ADB695A
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:774A0E14
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:63CFD724
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:29861223
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:03A039A3
@Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:3595B780
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:F9E10A82
@Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:4F8B72C9
< End of report >
OTL Extras logfile created on: 2/2/2012 6:14:38 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Nicky\Documents\OTL
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.75 Gb Total Physical Memory | 0.88 Gb Available Physical Memory | 31.97% Memory free
5.50 Gb Paging File | 2.77 Gb Available in Paging File | 50.32% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 290.22 Gb Total Space | 193.61 Gb Free Space | 66.71% Space Free | Partition Type: NTFS
Drive D: | 290.22 Gb Total Space | 290.05 Gb Free Space | 99.94% Space Free | Partition Type: NTFS
Drive I: | 465.76 Gb Total Space | 433.68 Gb Free Space | 93.11% Space Free | Partition Type: NTFS
Computer Name: NICKY-PC | User Name: Nicky | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1FB31F44-D4D0-4D76-944A-A1A5D79FD321}" = Windows Live Family Safety
"{26A24AE4-039D-4CA4-87B4-2F86416029FF}" = Java 6 Update 29 (64-bit)
"{2CD0168D-FBBC-4667-8810-105CB6EC6348}" = HP Deskjet D1600 Printer Driver Software 13.0 Rel .6
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{41BC9E31-0D39-462E-8E4C-767B21A3B1C3}" = MobileMe Control Panel
"{55D55008-E5F6-47D6-B16F-B2A40D4D145F}" = 64 Bit HP CIO Components Installer
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}" = Windows Live Family Safety
"{D1829BE5-F305-4576-9593-C66FC7E0B008}" = iCloud
"{D4DF3FD3-4467-47EF-8D4A-AF1E691E34F5}" = Logitech Webcam Software
"{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}" = iTunes
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Print Projects" = HP Print Projects 1.0
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"lvdrivers_12.0" = Logitech Webcam Software Driver Package
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"Shop for HP Supplies" = Shop for HP Supplies
"WinRAR archiver" = WinRAR archiver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{07FB17D8-7DB6-4F06-80C4-8BE1719CB6A1}" = hpWLPGInstaller
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{18435829-4E75-4CD1-9796-A62DBBAE2ED7}" = DeepSkyStacker
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20400dbd-e6db-45b8-9b6b-1dd7033818ec}" = Nero InfoTool Help
"{21A2F5EE-1DC5-488A-BE7E-E526F8C61488}" = DeviceDiscovery
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2348b586-c9ae-46ce-936c-a68e9426e214}" = Nero StartSmart Help
"{244E21B9-164C-4EC1-AED8-9BD64161E66D}" = ArcSoft VideoImpression 2
"{26A24AE4-039D-4CA4-87B4-2F83216027FF}" = Java 6 Update 29
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{30075A70-B5D2-440B-AFA3-FB2021740121}" = Backup Manager Advance
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33cf58f5-48d8-4575-83d6-96f574e4d83a}" = Nero DriveSpeed
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5727583F-3530-45FD-B09E-7E1CB6C135AD}" = DJ_SF_06_D1600_SW_Min
"{576CA494-F771-4B10-9AF0-8ED4A7AFB0CC}_is1" = Amnesia - The Dark Descent Demo
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68301905-2DEA-41CE-A4D4-E8B443B099BA}" = MyWinLocker
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7814358B-1284-4305-AE5A-6667DBDF4771}" = ArcSoft WebCam Companion 2
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7C977DE7-EC85-46E1-A7D9-52C04EB52AE6}" = S2 Mobile Modem
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}" = Chicken Invaders 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}" = Granny In Paradise
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}" = Merriam Websters Spell Jam
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}" = Amazonia
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}" = Alice Greenfingers
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}" = Heroes of Hellas
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}" = Dream Day First Home
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114326367}" = Blood Ties
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114774927}" = Dream Chronicles 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114803710}" = Star Defender 4
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}" = Farm Frenzy 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118203740}" = Mirror Mysteries
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118295220}" = Born into Darkness
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118451570}" = 3 Days Zoo Mystery
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118716773}" = Deadtime Stories
"{83202942-84b3-4c50-8622-b8c0aa2d2885}" = Nero Express Help
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{869200db-287a-4dc0-b02b-2b6787fbcd4c}" = Nero DiscSpeed
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ed9688e-4f79-4308-91ca-f1c37ca142b4}_is1" = Acer GameZone Console
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{919955B0-50EB-45DD-9165-C3BCFBF6B2D1}" = S2 PCSync
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AAF89271-2594-468D-B578-96B2E30C41C4}" = eBay Worldwide
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.2)
"{ADE33365-CB20-4147-A962-2ADC4EF0EF78}" = Locomotion Demo
"{AE8705FB-E13C-40A9-8A2D-68D6733FBFC2}" = Status
"{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}" = HP Update
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Click to Call with Skype
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BE3A3BDB-93B0-4F19-ABB1-D63575210C6C}_is1" = Dig-N-Rig version 1.0
"{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Norton Online Backup
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C75CDBA2-3C86-481e-BD10-BDDA758F9DFF}" = hpPrintProjects
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{cc019e3f-59d2-4486-8d4b-878105b62a71}" = Nero DiscSpeed Help
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D22002ED-EE2A-4CB1-A63D-430E62A2E8D8}" = Google SketchUp 8
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{dba84796-8503-4ff0-af57-1747dd9a166d}" = Nero Online Upgrade
"{DC0A5F99-FD66-433F-9D3A-05DCBA64BE42}" = TrayApp
"{dcecd67a-83b9-491f-93bd-059cab7dff56}" = Nero 9 Essentials
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{e5c7d048-f9b4-4219-b323-8bdb01a2563d}" = Nero DriveSpeed Help
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EA57EFB9-A257-4DD0-BC6D-0FA5625F3421}" = ArcSoft PhotoImpression 5
"{EAE8CF06-28CA-4213-839C-A32817A47E00}" = D1600
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2AF3E5D-9697-485C-A5AC-E2B9468C446A}" = Safari
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{fbcdfd61-7dcf-4e71-9226-873ba0053139}" = Nero InfoTool
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"2B0D8F3C-18AD-4D8E-879A-74A867C5C3CB_is1" = Wireless Manager
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"BB FlashBack Express" = BB FlashBack Express
"BFG-A Gypsy's Tale - The Tower of Secrets" = A Gypsy's Tale: The Tower of Secrets
"BFG-Antique Road Trip 2 - Homecoming" = Antique Road Trip 2: Homecoming
"BFG-Awakening - Moonfell Wood" = Awakening: Moonfell Wood
"BFG-Awakening - The Dreamless Castle" = Awakening: The Dreamless Castle
"BFG-Awakening - The Goblin Kingdom" = Awakening: The Goblin Kingdom
"BFG-Big City Adventure - Vancouver Collector's Edition" = Big City Adventure: Vancouver Collector's Edition
"BFGC" = Big Fish Games: Game Manager
"BFG-Dark Dimensions - City of Fog" = Dark Dimensions: City of Fog
"BFG-Dark Parables - The Exiled Prince Collector's Edition" = Dark Parables: The Exiled Prince Collector's Edition
"BFG-Dark Tales - Edgar Allan Poe`s Murders in the Rue Morgue" = Dark Tales: Edgar Allan Poe`s Murders in the Rue Morgue
"BFG-Detective Agency 2 - The Banker's wife" = Detective Agency 2: Banker's wife
"BFG-Dream Chronicles - The Book of Air" = Dream Chronicles: The Book of Air
"BFG-Enlightenus II - The Timeless Tower Collector's Edition" = Enlightenus II: The Timeless Tower Collector's Edition
"BFG-Epic Adventures - Cursed Onboard" = Epic Adventures: Cursed Onboard
"BFG-Escape from Thunder Island" = Escape from Thunder Island
"BFG-Fear For Sale - Mystery of McInroy Manor" = Fear For Sale: Mystery of McInroy Manor
"BFG-Hallowed Legends - Samhain" = Hallowed Legends: Samhain
"BFG-Haunted Halls - Green Hills Sanitarium" = Haunted Halls: Green Hills Sanitarium
"BFG-Haunted Manor - Lord of Mirrors Collector's Edition" = Haunted Manor: Lord of Mirrors Collector's Edition
"BFG-Hidden Mysteries - Salem Secrets" = Hidden Mysteries®: Salem Secrets
"BFG-Hidden Mysteries - Vampire Secrets" = Hidden Mysteries: Vampire Secrets
"BFG-Hidden Object Crosswords" = Hidden Object Crosswords
"BFG-House of 1000 Doors - Family Secrets Collector's Edition" = House of 1000 Doors: Family Secrets Collector's Edition
"BFG-Island - The Lost Medallion" = Island: The Lost Medallion
"BFG-Lost Lagoon - The Trail of Destiny" = Lost Lagoon: The Trail of Destiny
"BFG-Lost Souls - Enchanted Paintings" = Lost Souls: Enchanted Paintings
"BFG-Love Story - The Beach Cottage" = Love Story: The Beach Cottage
"BFG-Murder Island - Secret of Tantalus" = Murder Island: Secret of Tantalus
"BFG-Mysteries of Magic Island" = Mysteries of Magic Island
"BFG-Mystery Age - The Dark Priests" = Mystery Age: The Dark Priests
"BFG-Mystery Case Files - 13th Skull" = Mystery Case Files ®: 13th Skull ™
"BFG-Mystery Case Files - 13th Skull Collector's Edition" = Mystery Case Files ®: 13th Skull ™ Collector's Edition
"BFG-Mystery Case Files - Dire Grove" = Mystery Case Files®: Dire Grove™
"BFG-Mystery Case Files - Escape from Ravenhearst" = Mystery Case Files®: Escape from Ravenhearst™
"BFG-Mystery Chronicles - Betrayals of Love" = Mystery Chronicles: Betrayals of Love
"BFG-Mystery of the Earl" = Mystery of the Earl
"BFG-Nick Chase and the Deadly Diamond" = Nick Chase and the Deadly Diamond
"BFG-Nightfall Mysteries - Asylum Conspiracy" = Nightfall Mysteries: Asylum Conspiracy
"BFG-Penny Dreadfuls - Sweeney Todd Collector's Edition" = Penny Dreadfuls: Sweeney Todd Collector`s Edition
"BFG-Pirate Mysteries - A Tale of Monkeys, Masks, and Hidden Objects" = Pirate Mysteries: A Tale of Monkeys, Masks, and Hidden Objects
"BFG-Private Eye - Greatest Unsolved Mysteries" = Private Eye: Greatest Unsolved Mysteries
"BFG-PuppetShow - Mystery of Joyville" = PuppetShow: Mystery of Joyville ™
"BFG-PuppetShow - Souls of the Innocent" = PuppetShow: Souls of the Innocent
"BFG-PuppetShow - Souls of the Innocent Collectors Edition" = PuppetShow: Souls of the Innocent Collector's Edition
"BFG-Rasputin's Curse" = Rasputin's Curse
"BFG-Redemption Cemetery - Curse of the Raven" = Redemption Cemetery: Curse of the Raven
"BFG-Romancing the Seven Wonders - Great Pyramids" = Romancing the Seven Wonders: Great Pyramids
"BFG-Rooms - The Main Building" = Rooms: The Main Building
"BFG-Serpent of Isis - Your Journey Continues" = The Serpent of Isis: Your Journey Continues
"BFG-Shutter Island" = Shutter Island
"BFG-Silent Scream - The Dancer" = Silent Scream: The Dancer
"BFG-Spirits of Mystery - Amber Maiden" = Spirits of Mystery: Amber Maiden
"BFG-Spirits of Mystery - Amber Maiden Collector's Edition" = Spirits of Mystery: Amber Maiden Collector's Edition
"BFG-The Curse of the Ring" = The Curse of the Ring
"BFG-The Mystery of the Crystal Portal - Beyond the Horizon" = The Mystery of the Crystal Portal: Beyond the Horizon
"BFG-Time Dreamer" = Time Dreamer
"BFG-Vampireville" = Vampireville
"BFG-Veronica Rivers - The Order Of Conspiracy" = Veronica Rivers: The Order Of Conspiracy
"BFG-Virtual Villagers - The Tree of Life" = Virtual Villagers: The Tree of Life
"Build Your Own Net Dream" = Build Your Own Net Dream (remove only)
"Cheat Engine 6.1_is1" = Cheat Engine 6.1
"Flotilla Demo_is1" = Flotilla Demo v2.333
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Hotkey Utility" = Hotkey Utility
"Identity Card" = Identity Card
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}" = Acer Backup Manager
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"Jewel Quest Mysteries Curse of the Emerald Tear" = Jewel Quest Mysteries Curse of the Emerald Tear (remove only)
"Logitech Vid" = Logitech Vid HD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.1.1000
"Messenger Plus!" = Messenger Plus! 5
"Midnight Mysteries - The Edgar Allan Poe Conspiracy" = Midnight Mysteries - The Edgar Allan Poe Conspiracy
"NIS" = Norton Internet Security
"NSS" = Norton Security Scan
"OpenAL" = OpenAL
"Pivot Stickfigure Animator_is1" = Pivot Stickfigure Animator version 2.2.6
"Poser 7_is1" = Poser 7.0.2
"Poser 8_is1" = Poser 8 (8.0.0.10157)
"RealPlayer 12.0" = RealPlayer
"Rigs of Rods 0.38.67" = Rigs of Rods 0.38.67
"Scratch" = Scratch
"Stellarium_is1" = Stellarium 0.10.6.1
"TescoDownloader" = Tesco Download Manager
"Vampire Saga - Pandora's Box" = Vampire Saga - Pandora's Box
"Vehicle Simulator_is1" = Vehicle Simulator
"Victoria 4.2 Morphs++ DAZ Studio Content ps_pe070_V4MorphsDS" = Victoria 4.2 Morphs++ DAZ Studio Content
"Victoria 4.2 Morphs++ ps_pe070_V4Morphs" = Victoria 4.2 Morphs++
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite" = Windows Live Essentials
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{373B1718-8CC5-4567-8EE2-9033AD08A680}" = Roblox for Nicky
"RegiStax 5.1" = RegiStax 5.1
"UnityWebPlayer" = Unity Web Player
"Wurm Online 3.0.1a" = Wurm Online 3.0.1a
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 2/1/2012 4:14:35 AM | Computer Name = Nicky-PC | Source = McLogEvent | ID = 5046
Description = The McShield scanning service cannot find any configuration in the
registry
Error - 2/1/2012 4:32:04 AM | Computer Name = Nicky-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 2/1/2012 6:38:04 AM | Computer Name = Nicky-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.
Error - 2/1/2012 1:12:52 PM | Computer Name = Nicky-PC | Source = McLogEvent | ID = 5046
Description = The McShield scanning service cannot find any configuration in the
registry
Error - 2/2/2012 3:56:37 AM | Computer Name = Nicky-PC | Source = McLogEvent | ID = 5046
Description = The McShield scanning service cannot find any configuration in the
registry
Error - 2/2/2012 3:57:43 AM | Computer Name = Nicky-PC | Source = McLogEvent | ID = 5046
Description = The McShield scanning service cannot find any configuration in the
registry
Error - 2/2/2012 4:31:07 AM | Computer Name = Nicky-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.
Error - 2/2/2012 5:08:30 AM | Computer Name = Nicky-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.
Error - 2/2/2012 7:23:33 AM | Computer Name = Nicky-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.
Error - 2/2/2012 1:30:09 PM | Computer Name = Nicky-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
[ Media Center Events ]
Error - 10/19/2011 7:10:05 AM | Computer Name = Nicky-PC | Source = MCUpdate | ID = 0
Description = 12:10:05 - Error connecting to the internet. 12:10:05 - Unable
to contact server..
Error - 10/19/2011 7:10:16 AM | Computer Name = Nicky-PC | Source = MCUpdate | ID = 0
Description = 12:10:11 - Error connecting to the internet. 12:10:11 - Unable
to contact server..
[ System Events ]
Error - 2/1/2012 4:49:50 PM | Computer Name = Nicky-PC | Source = nvstor64 | ID = 14548995
Description = Data error on device. Device: \Device\RaidPort0 Model: WDC WD6400AAKS-22A7B2
Firmware
Version: 01.0 Serial Number: WD-WCASY6492677 Port: 1
Error - 2/1/2012 6:07:01 PM | Computer Name = Nicky-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 2/1/2012 6:07:30 PM | Computer Name = Nicky-PC | Source = DCOM | ID = 10010
Description =
Error - 2/2/2012 3:56:38 AM | Computer Name = Nicky-PC | Source = Service Control Manager | ID = 7024
Description = The McAfee Real-time Scanner service terminated with service-specific
error %%5046.
Error - 2/2/2012 3:57:44 AM | Computer Name = Nicky-PC | Source = Service Control Manager | ID = 7024
Description = The McAfee Real-time Scanner service terminated with service-specific
error %%5046.
Error - 2/2/2012 4:01:40 AM | Computer Name = Nicky-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x800f0826: Update for Windows 7 for x64-based Systems (KB2632503).
Error - 2/2/2012 4:01:40 AM | Computer Name = Nicky-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070005: Update for Windows 7 for x64-based Systems (KB2529073).
Error - 2/2/2012 6:14:13 AM | Computer Name = Nicky-PC | Source = nvstor64 | ID = 14548995
Description = Data error on device. Device: \Device\RaidPort0 Model: WDC WD6400AAKS-22A7B2
Firmware
Version: 01.0 Serial Number: WD-WCASY6492677 Port: 1
Error - 2/2/2012 6:14:13 AM | Computer Name = Nicky-PC | Source = nvstor64 | ID = 14548995
Description = Data error on device. Device: \Device\RaidPort0 Model: WDC WD6400AAKS-22A7B2
Firmware
Version: 01.0 Serial Number: WD-WCASY6492677 Port: 1
Error - 2/2/2012 6:14:13 AM | Computer Name = Nicky-PC | Source = nvstor64 | ID = 14548995
Description = Data error on device. Device: \Device\RaidPort0 Model: WDC WD6400AAKS-22A7B2
Firmware
Version: 01.0 Serial Number: WD-WCASY6492677 Port: 1
< End of report >
Oh my lots of errors in that last LOG
