Memory violation error while using Firefox [Closed]

While running Firefox I intermittently get the error that

The memory could not be "written"

and I can select ok to stop the process or cancel to allow it to continue

____________________________________________________________________________________________________

OTL logfile created on: 2/10/2012 11:00:34 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Downloads
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.08 Gb Available Physical Memory | 54.14% Memory free
3.84 Gb Paging File | 2.30 Gb Available in Paging File | 59.72% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 294.00 Gb Total Space | 179.16 Gb Free Space | 60.94% Space Free | Partition Type: NTFS
Drive E: | 2.35 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive Z: | 4.07 Gb Total Space | 1.20 Gb Free Space | 29.50% Space Free | Partition Type: FAT32

Computer Name: SANDRA | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/10 10:59:54 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Downloads\OTL.exe
PRC - [2012/02/10 10:48:42 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Downloads\HiJackThis.exe
PRC - [2012/02/01 09:46:31 | 001,605,632 | ---- | M] (Don HO [email protected]) -- C:\Program Files\Notepad++\notepad++.exe
PRC - [2011/12/29 19:17:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/11/22 17:18:26 | 001,318,816 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2011/11/10 01:17:04 | 003,514,176 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011/10/18 14:32:30 | 000,150,856 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\mfevtps.exe
PRC - [2011/10/18 14:28:34 | 000,160,608 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe
PRC - [2011/10/18 14:28:18 | 000,166,288 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.exe
PRC - [2011/09/30 08:11:18 | 001,195,488 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\MSC\mcupdmgr.exe
PRC - [2011/09/30 08:11:18 | 000,794,824 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcupdate.exe
PRC - [2011/08/22 14:40:28 | 001,253,376 | ---- | M] (The Scripps Research Institute and IBM Corporation) -- C:\Program Files\BOINC\Data\projects\www.worldcommunitygrid.org\wcg_hfcc_autodock_6.40_windows_intelx86
PRC - [2011/07/28 15:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/07/21 10:05:28 | 063,270,912 | ---- | M] () -- C:\Program Files\BOINC\Data\projects\www.worldcommunitygrid.org\wcgrid_cep2_qchem_6.40_windows_intelx86
PRC - [2011/07/21 10:04:42 | 000,494,080 | ---- | M] () -- C:\Program Files\BOINC\Data\projects\www.worldcommunitygrid.org\wcgrid_cep2_6.40_windows_intelx86
PRC - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
PRC - [2010/12/10 18:29:30 | 029,293,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\DAODB\MSSQL.1\MSSQL\Binn\sqlservr.exe
PRC - [2010/09/23 17:59:44 | 004,543,232 | ---- | M] (World Community Grid) -- C:\Program Files\BOINC\boincmgr.exe
PRC - [2010/09/23 17:59:42 | 000,058,112 | ---- | M] (Space Sciences Laboratory) -- C:\Program Files\BOINC\boinctray.exe
PRC - [2010/09/23 17:59:40 | 000,537,344 | ---- | M] (World Community Grid) -- C:\Program Files\BOINC\boinc.exe
PRC - [2009/10/07 07:38:05 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2009/09/11 23:34:12 | 001,488,128 | ---- | M] (O&O Software GmbH) -- C:\Program Files\OO Software\Defrag\oodag.exe
PRC - [2009/09/11 23:34:00 | 002,524,416 | ---- | M] (O&O Software GmbH) -- C:\Program Files\OO Software\Defrag\oodtray.exe
PRC - [2008/04/28 05:14:00 | 000,073,728 | ---- | M] (Software 2000 Limited) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1006MC.EXE
PRC - [2008/04/13 16:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2008/04/13 16:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/03/18 16:31:20 | 004,742,184 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
PRC - [2005/12/09 17:44:40 | 000,139,264 | ---- | M] (Alcor Micro, Corp.) -- C:\Program Files\Digital Media Reader\readericon45G.exe
PRC - [2005/09/26 07:07:00 | 000,090,112 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe

========== Modules (No Company Name) ==========

MOD - [2012/01/13 11:49:30 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2012/01/11 11:11:08 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\62e34cfb5a8b233667c7c5a47a32ad93\System.Web.ni.dll
MOD - [2012/01/11 11:05:00 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2012/01/08 05:41:12 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2011/12/29 19:17:04 | 002,124,760 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/11/03 07:28:36 | 001,292,288 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2011/10/12 22:19:41 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
MOD - [2011/10/12 22:18:49 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
MOD - [2011/10/12 22:12:11 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011/10/12 22:12:05 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
MOD - [2011/10/12 22:11:48 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011/10/12 22:10:13 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011/10/12 22:10:03 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011/10/12 15:57:06 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2011/09/21 12:46:28 | 001,673,728 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppFTP.dll
MOD - [2011/07/28 15:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/28 15:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011/07/21 10:05:28 | 063,270,912 | ---- | M] () -- C:\Program Files\BOINC\Data\projects\www.worldcommunitygrid.org\wcgrid_cep2_qchem_6.40_windows_intelx86
MOD - [2011/07/21 10:04:42 | 000,494,080 | ---- | M] () -- C:\Program Files\BOINC\Data\projects\www.worldcommunitygrid.org\wcgrid_cep2_6.40_windows_intelx86
MOD - [2011/07/18 13:07:28 | 000,014,336 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppExport.dll
MOD - [2011/07/18 13:04:08 | 000,296,448 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_04.dll
MOD - [2011/02/04 17:48:30 | 000,291,840 | ---- | M] () -- C:\WINDOWS\system32\sbe.dll
MOD - [2010/08/15 10:34:24 | 000,204,800 | ---- | M] () -- C:\Program Files\Notepad++\plugins\ComparePlugin.dll
MOD - [2010/07/19 19:19:18 | 000,153,600 | ---- | M] () -- C:\WINDOWS\system32\IS_ContextMenu.dll
MOD - [2010/07/04 13:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
MOD - [2010/05/24 10:31:12 | 000,675,840 | ---- | M] () -- C:\WINDOWS\system32\ac3filter.ax
MOD - [2010/03/16 12:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
MOD - [2010/02/02 10:00:00 | 003,565,056 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\ffdshow\ffdshow.ax
MOD - [2009/09/23 22:45:16 | 000,473,704 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll
MOD - [2009/08/18 11:02:42 | 000,061,952 | ---- | M] () -- C:\Program Files\BOINC\zlib1.dll
MOD - [2008/11/11 09:48:42 | 000,074,240 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppNetNote.dll
MOD - [2008/04/13 16:11:59 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/13 16:11:51 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008/03/18 16:21:48 | 000,094,208 | ---- | M] () -- C:\Program Files\Yahoo!\Widgets\jsd.dll
MOD - [2008/03/18 16:21:20 | 000,512,000 | ---- | M] () -- C:\Program Files\Yahoo!\Widgets\js32.dll
MOD - [2008/01/08 14:50:10 | 000,349,147 | ---- | M] () -- C:\Program Files\Yahoo!\Widgets\sqlite3.dll
MOD - [2007/08/04 17:10:52 | 000,250,368 | ---- | M] () -- C:\Program Files\Notepad++\plugins\Config\tidy\libTidy.dll
MOD - [2007/01/17 08:36:38 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll

========== Win32 Services (SafeList) ==========

SRV - [2011/12/11 09:57:34 | 000,131,912 | ---- | M] (Desura Pty Ltd) [On_Demand | Stopped] -- C:\Program Files\Common Files\Desura\desura_service.exe -- (Desura Install Service)
SRV - [2011/10/18 14:32:30 | 000,150,856 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\WINDOWS\system32\mfevtps.exe -- (mfevtp)
SRV - [2011/10/18 14:28:34 | 000,160,608 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV - [2011/10/18 14:28:18 | 000,166,288 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2011/06/23 14:22:58 | 000,361,712 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2011/03/16 09:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2011/01/27 17:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV - [2010/12/10 18:29:30 | 029,293,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\DAODB\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$BWDATOOLSET) SQL Server (BWDATOOLSET)
SRV - [2010/07/31 20:29:13 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/10/07 07:38:05 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2009/09/11 23:34:12 | 001,488,128 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\Defrag\oodag.exe -- (O&O Defrag)
SRV - [2008/04/13 16:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008/04/13 16:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transfer Protocol (SMTP)
SRV - [2008/04/13 16:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)

========== Driver Services (SafeList) ==========

DRV - [2011/12/13 19:43:38 | 000,428,088 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011/10/15 13:16:16 | 000,464,176 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2011/10/15 13:16:16 | 000,338,176 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2011/10/15 13:16:16 | 000,180,816 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2011/10/15 13:16:16 | 000,121,256 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2011/10/15 13:16:16 | 000,089,792 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2011/10/15 13:16:16 | 000,087,656 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\WINDOWS\system32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2011/10/15 13:16:16 | 000,083,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2011/10/15 13:16:16 | 000,083,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2011/10/15 13:16:16 | 000,059,456 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2011/10/15 13:16:16 | 000,057,600 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2011/10/12 12:53:08 | 007,206,400 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010/07/09 11:18:56 | 000,020,328 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Program Files\CPUID\PC Wizard 2010\pcwiz_x32.sys -- (cpuz134)
DRV - [2010/01/28 05:12:02 | 000,095,232 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009/04/28 12:20:06 | 000,009,200 | ---- | M] (Sonic Solutions) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2009/04/28 12:20:06 | 000,009,072 | ---- | M] (Sonic Solutions) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2009/03/18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008/08/01 17:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/08/01 17:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2007/10/08 12:38:48 | 000,174,530 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ov519vid.sys -- (ovt519)
DRV - [2007/06/29 13:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2005/09/26 07:07:00 | 003,644,800 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005/03/09 14:53:00 | 000,036,352 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2003/01/10 13:13:04 | 000,033,588 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2001/08/17 12:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.gateway.c...ys=DTP&M=GT5082
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: [email protected]:4.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.93
FF - prefs.js..extensions.enabledItems: [email protected]:5.0.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.0.900
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.0.900
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170633FE}:0.4.5.15
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: [email protected]:1.1.4
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.9
FF - prefs.js..extensions.enabledItems: [email protected]:1.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsn~1.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2011/12/23 14:09:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore [2012/02/09 18:38:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/01/11 08:53:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/01/22 13:12:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/22 13:15:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.18\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012/02/04 23:55:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.18\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2012/01/22 13:14:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.4.1\extensions\\Components: C:\Program Files\SeaMonkey\components [2012/01/22 13:12:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.4.1\extensions\\Plugins: C:\Program Files\SeaMonkey\plugins [2012/01/22 13:14:28 | 000,000,000 | ---D | M]

[2011/05/25 23:43:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Extensions
[2011/05/25 23:43:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012/02/09 19:53:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions
[2010/04/29 14:13:51 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/01/19 17:14:53 | 000,000,000 | ---D | M] (4chan) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170633FE}
[2012/01/28 07:54:02 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2011/10/13 16:43:08 | 000,000,000 | ---D | M] (Canadian English Dictionary) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions\[email protected]
[2010/03/24 23:44:25 | 000,000,000 | ---D | M] (SpellBound) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions\[email protected]
[2011/05/22 20:48:01 | 000,000,000 | ---D | M] (YouTube Video Download Wizard) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\extensions\[email protected]
[2011/08/19 11:58:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\SeaMonkey\Profiles\wlv6g882.default\extensions
[2010/06/30 10:42:56 | 000,002,565 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\Firefox\Profiles\bsbtoyp8.default\searchplugins\askcom.xml
[2011/12/29 19:17:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/13 21:33:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
() (No name found) -- C:\DOCUMENTS AND SETTINGS\OWNER.SANDRA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\BSBTOYP8.DEFAULT\EXTENSIONS\{66E978CD-981F-47DF-AC42-E3CF417C1467}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\OWNER.SANDRA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\BSBTOYP8.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011/12/29 19:17:05 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/12/02 07:58:06 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2007/03/09 15:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\mozilla firefox\plugins\npyaxmpb.dll
[2010/01/01 00:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/11/08 18:17:45 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = http://www.google.co...8&oe=utf-8&aq=t
CHR - default_search_provider: suggest_url = http://suggestquerie...q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\Application\16.0.912.77\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\Application\16.0.912.77\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\Application\16.0.912.77\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.31.137.7_1\McChPlg.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Documents and Settings\Owner.Sandra\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~1\mcafee\msc\npmcsn~1.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: Google Search = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: SiteAdvisor = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.2_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2011/06/29 03:19:57 | 000,435,616 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 14993 more lines...
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\Mcafee\SystemCore\ScriptSn.20111224223009.dll (McAfee, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (no name) - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [boincmgr] C:\Program Files\BOINC\boincmgr.exe (World Community Grid)
O4 - HKLM..\Run: [boinctray] C:\Program Files\BOINC\boinctray.exe (Space Sciences Laboratory)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\imekrmig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [readericon] C:\Program Files\Digital Media Reader\readericon45G.exe (Alcor Micro, Corp.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - Startup: C:\Documents and Settings\Owner.Sandra\Start Menu\Programs\Startup\Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (Yahoo! Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Open with XmlPad - Reg Error: Value error. File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} http://download.mcaf...076/mcfscan.cab (McFreeScan Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0E0D069C-7C96-4A1B-97C7-DF2765CED43D}: NameServer = 64.59.160.13,64.59.161.68
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B77261AF-19B3-4F72-B648-6ADF616D7E6B}: NameServer = 64.59.160.15,64.59.161.68
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/01/09 17:13:09 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/07/14 01:26:40 | 000,000,043 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2004/09/13 19:15:24 | 000,000,053 | -HS- | M] () - Z:\Autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{23a9f440-fe59-11e0-921c-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{23a9f440-fe59-11e0-921c-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{23a9f440-fe59-11e0-921c-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- [2009/07/14 01:26:40 | 000,111,880 | R--- | M] (Microsoft Corporation)
O33 - MountPoints2\{3ad0981e-ee1c-11de-8b93-001558589468}\Shell - "" = AutoRun
O33 - MountPoints2\{3ad0981e-ee1c-11de-8b93-001558589468}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{3ad0981e-ee1c-11de-8b93-001558589468}\Shell\AutoRun\command - "" = X:\AutoRun.exe
O33 - MountPoints2\{3ad0981e-ee1c-11de-8b93-001558589468}\Shell\menubox\command - "" = X:\AutoRun.exe
O33 - MountPoints2\{3ad0981e-ee1c-11de-8b93-001558589468}\Shell\player\command - "" = X:\Private\Windows\Player\RPHost.exe
O33 - MountPoints2\{4f1ae610-b449-11de-8b74-001558589468}\Shell - "" = AutoRun
O33 - MountPoints2\{4f1ae610-b449-11de-8b74-001558589468}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{4f1ae610-b449-11de-8b74-001558589468}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (OODBS)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/10 09:56:24 | 000,000,000 | -H-D | C] -- C:\Sandi
[2012/02/09 18:39:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2012/02/09 13:57:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Two Tribes
[2012/02/09 13:49:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Installer Clean Up
[2012/02/09 13:49:45 | 000,000,000 | ---D | C] -- C:\Program Files\MSECACHE
[2012/02/05 01:41:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Owner.Sandra\Recent
[2012/02/01 12:10:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\My Documents\Osmos
[2012/02/01 12:08:42 | 000,444,952 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2012/02/01 12:08:42 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2012/02/01 09:47:55 | 000,000,000 | ---D | C] -- C:\place
[2012/01/30 07:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\WinHTTrack
[2012/01/29 17:32:57 | 000,000,000 | ---D | C] -- C:\Program Files\ASCII Animator
[2012/01/27 15:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\My Documents\Hero Lab
[2012/01/27 15:20:31 | 000,000,000 | ---D | C] -- C:\Program Files\Hero Lab
[2012/01/27 15:20:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hero Lab
[2012/01/27 10:40:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RPGXplorer
[2012/01/27 10:37:15 | 000,000,000 | ---D | C] -- C:\Program Files\RPGXplorer
[2012/01/22 19:27:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\Application Data\AAA Software Enterprises
[2012/01/22 19:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Andy Adamczak
[2012/01/22 13:11:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
[2012/01/21 17:48:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\Application Data\Wise Disk Cleaner
[2012/01/21 17:25:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\Application Data\Wise Registry Cleaner
[2012/01/21 17:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\Wise Registry Cleaner
[2012/01/21 17:21:29 | 000,000,000 | ---D | C] -- C:\Program Files\Wise Disk Cleaner
[2012/01/21 11:27:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\Application Data\Combat Manager
[2012/01/21 11:25:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Combat Manager
[2012/01/21 11:25:42 | 000,000,000 | ---D | C] -- C:\Program Files\Kyle Olson
[2012/01/20 10:48:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner.Sandra\Desktop\D&D
[2012/01/19 22:04:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ImgBurn
[2012/01/11 21:19:32 | 000,000,000 | ---D | C] -- C:\Wii
[2012/01/11 11:38:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012/01/11 11:37:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/01/11 11:30:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Foxit Reader 5.1
[2011/10/19 10:03:49 | 001,382,304 | ---- | C] (DownVision ) -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\setup.exe
[2010/09/29 15:21:30 | 000,129,024 | ---- | C] (Fp6t7DQi84YsPx2m1S0) -- C:\Program Files\Common Files\Uninstall.exe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/02/10 10:49:00 | 000,000,992 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117957869-1796344048-3958848850-1006UA.job
[2012/02/10 05:49:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117957869-1796344048-3958848850-1006Core.job
[2012/02/09 18:34:24 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/02/09 18:34:21 | 2145,964,032 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/09 18:34:16 | 000,335,588 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor
[2012/02/09 18:32:40 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2012/02/05 03:57:00 | 000,000,454 | ---- | M] () -- C:\WINDOWS\tasks\Driver Robot.job
[2012/02/05 01:59:31 | 000,236,544 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/04 22:07:45 | 000,056,584 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Zynga_From_Rain_2.gif
[2012/02/04 22:03:21 | 000,066,196 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Zynga_From_Rain.gif
[2012/02/04 07:04:00 | 000,002,187 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2012/02/02 19:08:49 | 000,011,433 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\My Documents\Truth.jpg
[2012/02/01 12:08:42 | 000,444,952 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2012/02/01 12:08:42 | 000,000,562 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Osmos.lnk
[2012/01/30 07:44:02 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\HTTrack Website Copier.lnk
[2012/01/29 17:33:00 | 000,000,749 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\ASCII Animator.lnk
[2012/01/27 15:21:02 | 000,000,675 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Hero Lab.lnk
[2012/01/27 10:40:37 | 000,001,911 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RPGXplorer.lnk
[2012/01/25 19:46:27 | 000,002,339 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Google Chrome.lnk
[2012/01/24 11:39:42 | 000,000,596 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\New Features of Heroes III In the Wake of Gods.lnk
[2012/01/24 11:39:42 | 000,000,557 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Heroes III In the Wake of Gods.lnk
[2012/01/24 11:08:06 | 000,001,737 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Heroes of Might and Magic 3 Complete.lnk
[2012/01/22 12:59:08 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012/01/21 17:38:34 | 017,301,504 | -H-- | M] () -- C:\Documents and Settings\Owner.Sandra\NTUSER.bak
[2012/01/19 23:16:57 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2012/01/19 23:16:57 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2012/01/19 22:04:57 | 000,001,528 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImgBurn.lnk
[2012/01/17 12:24:50 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\Desktop\DDO.lnk
[2012/01/16 21:18:57 | 000,138,652 | ---- | M] () -- C:\Documents and Settings\Owner.Sandra\My Documents\Ladies.jpg
[2012/01/11 11:37:52 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2012/01/11 11:30:55 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Foxit Reader 5.1.lnk
[2012/01/11 11:13:53 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/02/09 13:49:57 | 000,002,341 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Start Menu\Programs\Windows Install Clean Up.lnk
[2012/02/04 22:07:43 | 000,056,584 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Zynga_From_Rain_2.gif
[2012/02/04 22:03:18 | 000,066,196 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Zynga_From_Rain.gif
[2012/02/02 19:08:46 | 000,011,433 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\My Documents\Truth.jpg
[2012/02/01 12:08:42 | 000,000,562 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Osmos.lnk
[2012/01/30 07:44:02 | 000,000,650 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\HTTrack Website Copier.lnk
[2012/01/29 17:33:00 | 000,000,749 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\ASCII Animator.lnk
[2012/01/27 15:21:02 | 000,000,675 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Hero Lab.lnk
[2012/01/27 10:40:37 | 000,001,911 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RPGXplorer.lnk
[2012/01/24 11:31:08 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\New Features of Heroes III In the Wake of Gods.lnk
[2012/01/24 11:31:08 | 000,000,557 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\Heroes III In the Wake of Gods.lnk
[2012/01/24 11:08:06 | 000,001,737 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Heroes of Might and Magic 3 Complete.lnk
[2012/01/19 22:04:57 | 000,001,528 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ImgBurn.lnk
[2012/01/17 12:24:50 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Desktop\DDO.lnk
[2012/01/16 21:14:44 | 000,138,652 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\My Documents\Ladies.jpg
[2012/01/11 11:37:52 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2012/01/11 11:37:52 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2012/01/11 11:30:55 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Foxit Reader 5.1.lnk
[2011/12/15 22:56:44 | 000,055,664 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/11/26 01:36:09 | 000,002,100 | ---- | C] () -- C:\WINDOWS\ladydata.dat
[2011/10/08 20:01:15 | 000,000,029 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2011/10/02 10:07:45 | 000,000,082 | ---- | C] () -- C:\WINDOWS\SOLITUDE.INI
[2011/09/21 20:55:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\census.cache
[2011/09/21 20:55:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\ars.cache
[2011/08/12 19:52:16 | 000,135,163 | ---- | C] () -- C:\WINDOWS\hpoins37.dat
[2011/08/12 19:52:16 | 000,000,558 | ---- | C] () -- C:\WINDOWS\hpomdl37.dat
[2011/07/27 11:22:32 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2011/07/13 02:07:14 | 000,137,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011/06/16 12:21:54 | 000,964,634 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-117957869-1796344048-3958848850-1006-0.dat
[2011/06/16 12:21:46 | 000,283,422 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011/06/16 08:37:42 | 000,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2011/06/16 08:37:41 | 000,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2011/06/16 08:36:51 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2011/06/16 08:36:50 | 000,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2011/06/16 08:36:46 | 000,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2011/06/11 09:09:59 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\PUTTY.RND
[2011/05/23 11:41:23 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Application Data\winscp.rnd
[2011/05/03 22:07:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QTW.ini
[2011/05/03 22:06:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PowerReg.dat
[2010/12/06 23:57:55 | 000,000,072 | ---- | C] () -- C:\WINDOWS\MediaManager.INI
[2010/11/22 12:08:00 | 000,153,600 | ---- | C] () -- C:\WINDOWS\System32\IS_ContextMenu.dll
[2010/11/03 18:13:41 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/08/02 09:33:10 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\housecall.guid.cache
[2010/04/11 06:21:12 | 000,040,960 | R--- | C] () -- C:\WINDOWS\CleanDev.exe
[2010/04/09 12:08:26 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\zmbv.dll
[2010/04/05 02:05:47 | 000,200,704 | ---- | C] () -- C:\WINDOWS\sel3110.exe
[2010/04/05 02:05:47 | 000,032,528 | ---- | C] () -- C:\WINDOWS\amcap.exe
[2010/04/03 16:10:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010/04/03 16:10:15 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010/04/03 16:10:05 | 000,239,869 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010/04/03 16:10:05 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010/02/07 09:31:11 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/02/07 09:31:07 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/02/07 09:31:07 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/02/07 09:31:05 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/01/02 12:53:55 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2009/11/23 00:31:40 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009/11/14 23:18:49 | 000,000,012 | ---- | C] () -- C:\WINDOWS\bthservsdp.dat
[2009/10/23 18:14:36 | 000,000,272 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009/10/11 23:54:16 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\fusioncache.dat
[2009/10/09 20:44:09 | 000,003,350 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Application Data\glide_wrapper.zbag.ini
[2009/10/09 17:23:22 | 000,099,457 | ---- | C] () -- C:\WINDOWS\DIIUnin.dat
[2009/10/09 15:38:28 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\HPPLVS.dll
[2009/10/08 12:23:58 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/10/08 10:32:52 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009/10/07 10:31:26 | 000,236,544 | ---- | C] () -- C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/07 09:06:52 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2009/10/07 08:17:54 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/10/07 08:17:52 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2009/10/07 08:01:46 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2009/10/07 07:38:14 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\jesterss.dll
[2009/10/07 07:35:34 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/10/07 07:35:08 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009/10/07 07:34:40 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2009/10/07 07:34:37 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009/10/07 07:34:22 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix11.dat
[2009/10/07 06:16:22 | 000,000,060 | ---- | C] () -- C:\WINDOWS\System32\SYSDRV.DAT
[2009/09/27 15:12:22 | 001,604,482 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2009/08/02 23:21:54 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/02 23:21:54 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/02 23:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/02 23:21:52 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/02/07 09:05:18 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\hppatusg01.dll
[2006/03/18 05:16:04 | 000,540,178 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2005/08/05 21:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005/06/19 08:45:22 | 000,258,048 | ---- | C] () -- C:\WINDOWS\glide3x.dll
[2005/06/19 08:45:18 | 000,262,144 | ---- | C] () -- C:\WINDOWS\glide2x.dll
[2005/01/12 09:38:00 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2005/01/12 08:51:23 | 000,352,256 | ---- | C] () -- C:\WINDOWS\System32\HotlineClient.exe
[2005/01/09 17:17:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/01/09 17:07:25 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/01/09 15:49:16 | 000,001,220 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005/01/09 15:49:16 | 000,000,491 | ---- | C] () -- C:\WINDOWS\System32\emver.ini
[2005/01/09 15:48:24 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/01/09 15:48:21 | 000,602,212 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2005/01/09 15:48:21 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005/01/09 15:48:21 | 000,125,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2005/01/09 15:48:21 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005/01/09 15:48:20 | 000,005,151 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/01/09 15:48:18 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/01/09 15:48:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/01/09 15:48:07 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005/01/09 15:48:07 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005/01/09 15:48:01 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005/01/09 15:47:52 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2005/01/09 09:00:34 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/01/09 08:59:39 | 000,260,640 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

========== LOP Check ==========

[2011/07/18 12:52:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Big Fish Games
[2011/12/08 13:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BioWare
[2011/10/22 10:13:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess
[2011/10/11 06:18:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cloanto
[2011/12/07 12:06:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/12/11 09:56:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Desura
[2010/11/15 16:04:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2011/11/05 09:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\f-secure
[2009/10/09 08:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fssg
[2011/10/09 05:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GameBlend
[2011/07/13 19:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gmap
[2012/01/27 15:31:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Hero Lab
[2011/08/13 18:00:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HipSoft
[2011/06/22 13:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Karen's Power Tools
[2010/08/08 12:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia
[2011/10/23 21:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2009/10/07 08:04:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2011/08/05 06:18:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2011/11/16 06:06:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment
[2010/08/04 15:02:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Rosetta Stone
[2011/07/05 21:03:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sync App Settings
[2011/08/23 13:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2012/01/14 20:57:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\.minecraft
[2012/01/22 19:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\AAA Software Enterprises
[2010/11/22 12:13:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\AnvSoft
[2011/12/02 12:48:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Ascaron Entertainment
[2010/12/11 13:58:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Atari
[2010/08/07 15:26:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Big Fish Games
[2009/10/07 08:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Blitware
[2011/07/27 11:22:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Broken Rules
[2011/06/22 14:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Codessentials
[2011/09/30 11:38:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\CoffeeCup Software
[2012/01/21 11:45:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Combat Manager
[2011/07/27 10:41:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Crayon Physics Deluxe
[2011/08/13 17:01:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Cubetastic
[2012/02/02 10:24:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\DAEMON Tools Lite
[2012/01/11 08:57:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\DDMSettings
[2010/02/25 00:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\deluge
[2011/01/21 05:45:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Dragon Age Toolset
[2011/07/13 19:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\DrekSoftware
[2012/01/18 08:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Dropbox
[2011/11/12 20:37:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\EA
[2011/07/18 12:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\ERS G-Studio
[2010/04/05 11:56:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\EyeballChatUserData
[2009/10/11 02:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\f-secure
[2012/01/16 23:24:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\FileZilla
[2010/03/22 11:51:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\FOG Downloader
[2011/11/27 22:26:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Foxit Software
[2011/11/12 15:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Gaijin Ent
[2011/10/09 05:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\GameBlend
[2010/03/19 14:12:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Gamelab
[2011/09/22 01:24:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Goodsol
[2010/08/18 13:57:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\gtk-2.0
[2011/05/18 12:21:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Home Sweet Home Christmas
[2009/10/08 20:23:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\ImgBurn
[2010/08/07 20:18:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\iWin
[2010/12/11 13:57:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Leadertech
[2010/08/08 12:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Ludia
[2011/12/22 11:00:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Maxthon3
[2011/06/16 11:46:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\mts
[2010/12/13 18:09:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Notepad++
[2011/06/22 15:07:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Novosoft
[2009/10/07 11:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\OpenOffice.org
[2009/10/17 12:38:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Opera
[2011/09/22 21:29:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\pixelStorm
[2011/08/05 06:18:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\PlayFirst
[2010/08/16 10:54:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\QuickScan
[2009/10/07 07:39:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\SampleView
[2011/10/26 17:38:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Scanahand
[2011/09/21 20:59:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Scrabble Plus
[2011/01/19 18:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\SystemRequirementsLab
[2011/05/25 23:42:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Thunderbird
[2009/10/11 23:54:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Turbine
[2012/01/24 17:52:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\uTorrent
[2010/12/11 22:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\ViiKiiDesktopPlugin.5E22EA0FF243470AB5EDDF282C0A5B52E9909C36.1
[2011/10/31 14:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Voxatron
[2012/01/21 17:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Wise Disk Cleaner
[2012/01/21 17:47:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\Wise Registry Cleaner
[2011/03/13 18:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner.Sandra\Application Data\WMHelp
[2012/02/05 03:57:00 | 000,000,454 | ---- | M] () -- C:\WINDOWS\Tasks\Driver Robot.job
[2011/12/04 11:29:02 | 000,000,288 | ---- | M] () -- C:\WINDOWS\Tasks\photostageShakeIcon.job
[2011/11/17 10:04:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\pixillionShakeIcon.job
[2011/08/17 22:44:08 | 000,000,272 | ---- | M] () -- C:\WINDOWS\Tasks\switchShakeIcon.job

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7EBCAF87
@Alternate Data Stream - 208 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EE323A4
@Alternate Data Stream - 164 bytes -> C:\Documents and Settings\All Users\Documents\yoshis.jpeg:3or4kl4x13tuuug3Byamue2s4b
@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:75EC4D20
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5F1019FF
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BEB15613
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:15752405

< End of report >
__________________________________________________________________________________________________

OTL Extras logfile created on: 2/10/2012 11:00:34 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Downloads
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.08 Gb Available Physical Memory | 54.14% Memory free
3.84 Gb Paging File | 2.30 Gb Available in Paging File | 59.72% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 294.00 Gb Total Space | 179.16 Gb Free Space | 60.94% Space Free | Partition Type: NTFS
Drive E: | 2.35 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive Z: | 4.07 Gb Total Space | 1.20 Gb Free Space | 29.50% Space Free | Partition Type: FAT32

Computer Name: SANDRA | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- C:\Program Files\Maxthon3\Bin\Maxthon.exe (Maxthon International ltd.)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\PROGRA~1\COFFEE~1\COFFEE~1\coffee.exe" "%1" (CoffeeCup Software)
htmlfile [open] -- "C:\Program Files\Maxthon3\Bin\Maxthon.exe" "%1" (Maxthon International ltd.)
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
InternetShortcut [open] -- "C:\Program Files\Maxthon3\Bin\Maxthon.exe" "%1" (Maxthon International ltd.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Toontown] -- "C:\Program Files\Disney\Disney Online\ToontownOnline\ToontownLauncher.exe" (Disney)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10244:TCP" = 10244:TCP:LocalSubNet:Enabled:Zune Network Sharing Service
"10285:UDP" = 10285:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10286:UDP" = 10286:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10287:UDP" = 10287:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10288:UDP" = 10288:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10289:UDP" = 10289:UDP:LocalSubNet:Enabled:Zune Network Sharing Service

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"10244:TCP" = 10244:TCP:LocalSubNet:Enabled:Zune Network Sharing Service
"10285:UDP" = 10285:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10286:UDP" = 10286:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10287:UDP" = 10287:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10288:UDP" = 10288:UDP:LocalSubNet:Enabled:Zune Network Sharing Service
"10289:UDP" = 10289:UDP:LocalSubNet:Enabled:Zune Network Sharing Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\support\bin\win\RosettaStoneLtdServices.exe" = C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\support\bin\win\RosettaStoneLtdServices.exe:*:Enabled:Rosetta Stone Ltd Services -- (Rosetta Stone Ltd. )
"C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\RosettaStoneVersion3.exe" = C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\RosettaStoneVersion3.exe:*:Enabled:Rosetta Stone Version 3 Application -- (Multidmedia Limited )
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe -- (Hewlett-Packard Co.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\support\bin\win\RosettaStoneLtdServices.exe" = C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\support\bin\win\RosettaStoneLtdServices.exe:*:Enabled:Rosetta Stone Ltd Services -- (Rosetta Stone Ltd. )
"C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\RosettaStoneVersion3.exe" = C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\RosettaStoneVersion3.exe:*:Enabled:Rosetta Stone Version 3 Application -- (Multidmedia Limited )
"C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\Owner.Sandra\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Program Files\2K Games\Firaxis Games\Sid Meier's Railroads!\RailRoads.exe" = C:\Program Files\2K Games\Firaxis Games\Sid Meier's Railroads!\RailRoads.exe:*:Enabled:Sid Meier's Railroads! -- (MACiOZO Games, Inc)
"C:\Program Files\Microsoft Games\Rise of Nations\thrones.exe" = C:\Program Files\Microsoft Games\Rise of Nations\thrones.exe:*:Enabled:Rise of Nations -- (Big Huge Games, Inc.)
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe -- (Hewlett-Packard Co.)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\WINDOWS\explorer.exe" = C:\WINDOWS\explorer.exe:*:Enabled:Windows -- (Microsoft Corporation)
"C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe" = C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe:*:Enabled:McAfee Shared Service Host -- (McAfee, Inc.)
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\Maxthon3\Bin\MxUp.exe" = C:\Program Files\Maxthon3\Bin\MxUp.exe:*:Enabled:MxUp -- (Maxthon International ltd.)
"C:\Program Files\Maxthon3\Modules\MxMiniThunder\ThunderMini.exe" = C:\Program Files\Maxthon3\Modules\MxMiniThunder\ThunderMini.exe:*:Enabled:MxMiniThunder -- (深圳市迅雷网络技术有限公司)
"C:\Program Files\Maxthon3\Bin\Maxthon.exe" = C:\Program Files\Maxthon3\Bin\Maxthon.exe:*:Enabled:Maxthon -- (Maxthon International ltd.)
"C:\Program Files\Hero Lab\HeroLab.exe" = C:\Program Files\Hero Lab\HeroLab.exe:*:Enabled:Hero Lab -- ()

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0E3673BA-262D-61D0-3F2F-D6DE0F687F62}" = ATI AVIVO Codecs
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{15377C3E-9655-400F-B441-E69F0A6BEAFE}" = Recovery Software Suite Gateway
"{1632FD86-1BA4-4FC4-8B25-A8C655D63F68}" = Sid Meier's Pirates!
"{19909C6C-96ED-4499-8246-4F53DDDA0179}_is1" = Diamond 10.2 XP Installation
"{19A492A0-888F-44A0-9B21-D91700763F62}" = Catalyst Control Center - Branding
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23CA9123-B1AA-C4B6-6997-7756BBAEC461}" = AMD Catalyst Install Manager
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java™ 6 Update 29
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
"{29748FDD-082A-48F4-97C3-681764CCEE79}" = EOCP Drivers 0.9.311007
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (BWDATOOLSET)
"{2FCB780D-79AF-4CE1-9910-43C7094F959F}" = Amiga Forever
"{31B25CCC-C459-4A7B-8059-0D9913D4FAA1}" = World Community Grid
"{32714287-4234-412A-877B-D33AFABFDE2B}" = EverQuest Titanium
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35B30E03-B947-49C8-9818-5820E249119D}" = MarMike5
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Dragon Age Toolset
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F0B983A-D405-9463-1116-11A251DBA4E5}" = Catalyst Control Center
"{44E1DE63-C8FA-4C70-B4AA-0C49A947ACDE}" = Sid Meier's Railroads!
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AC55A61-BA20-4DF5-ABFF-8F4819E0C875}" = Digital Media Reader
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1" = Amnesia - The Dark Descent
"{58ECE031-9AAD-4011-B34A-BC78E77527E2}" = hppMSRedist
"{5A13987D-55F4-4271-A40E-76AC9B1B38FD}" = OpenOffice.org 3.2
"{5D95AD35-368F-47D5-B63A-A082DDF00111}" = Microsoft Digital Image Starter Edition 2006 Editor
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{691F4068-81BF-49E3-B32E-FE3E16400111}" = Microsoft Digital Image Starter Edition 2006 Library
"{6F42FC6B-947B-9B89-29B0-545F0815AD7F}" = ATI Parental Control & Encoder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{760AA190-82DF-4A80-BE05-B9FEEC88946D}_is1" = Hero Lab 3.9a
"{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client
"{76EFFC7C-17A6-479D-9E47-8E658C1695AE}" = Windows Backup Utility
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7902E313-FF0F-4493-ACB1-A8147B78DCD0}" = HPSSupply
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7D1CE80E-3EAE-441E-BE97-625F9ABD07D9}" = Myst Masterpiece Edition
"{85BF0E64-6ABB-4EA1-A026-A3DEA6554A60}" = Do It Again
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{88655AFC-B4B0-9DB5-FF64-3848600EF8DB}" = CCC Help English
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8DCE550C-CA43-4E82-92DF-FFC4A48F5BE1}" = Napster Burn Engine
"{907B4640-266B-4A21-92FB-CD1A86CD0F63}" = RollerCoaster Tycoon 3 Platinum
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{94F00131-D6ED-FFA5-5F43-256A2C7B8649}" = Catalyst Control Center Graphics Previews Common
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98BAFEF4-7A37-4E48-B66C-BA8D730EFFAF}" = Pocket Tanks Deluxe v1.3 By Argogo
"{99011A6E-5200-11DE-BDB8-7ACD56D89593}" = Rosetta Stone Version 3
"{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
"{9B3475CE-F12E-47EC-A964-2B8A963029BA}" = Flip Words 2
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9E1BAB75-EB78-440D-94C0-A3857BE2E733}" = System Requirements Lab
"{9F7FC79B-3059-4264-9450-39EB368E3225}" = Microsoft Digital Image Library 9 - Blocker
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A182077A-8D6B-4194-B48A-B4DC37C69907}" = RealSpeak Solo for UK English Emily
"{A1AF35F7-2A8B-42D7-B3B0-5E12E1CD41DD}" = RPGXplorer
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5B2D881-F06E-1E48-FBEF-19C6D3B95E48}" = Application Profiles
"{A75E2DA1-21C2-19FC-80E3-BD40A461A7D6}" = Catalyst Control Center InstallProxy
"{A800FCC9-8E1E-4D84-9CED-47870701FDE1}" = HP Deskjet F4400 Printer Driver 14.0 Rel. 5
"{A82D052A-0806-42DF-80CD-1730A1AC0ED3}" = MrvlUsgTracking
"{A835C187-691C-4827-BCEA-1611179C96B9}" = DJ_AIO_05_F4400_Software_Min
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.2)
"{AEB8F226-C238-4636-A289-E540B725B5BB}_is1" = AnyReader
"{B56C27A6-80F0-4DF7-8424-C47DF63C17A3}" = WMap
"{B67DE614-BDB8-4CB1-B3C3-8BD5EED1FDE1}" = System Requirements Lab CYRI
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C325F588-D6B1-4A7F-B6A2-914C75DDA348}" = Morrowind
"{C4095823-CC8E-4548-AEF7-66523D66F2D4}_is1" = Defender of the Crown Heroes Live Forever
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCF13D13-A87B-34E8-B689-1896D0C2DBA2}" = Google Talk Plugin
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D6900D91-35A7-5DC4-07D4-AF3123BB3422}" = ATI Problem Report Wizard
"{D9577427-2D9D-4580-BDB3-FFDDE06A9554}" = Riven
"{D97E19F3-C433-3323-0C84-1774BFE9B93E}" = ccc-utility
"{DB3C800B-081B-4146-B4E3-EFB5B77AA913}" = TES Construction Set
"{E2E7A0E8-77C4-495F-8FA3-63DAEDAA2DB3}" = F-Secure PSC Prerequisites
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E7084B89-69E0-46B3-A118-8F99D06988CD}" = Microsoft SQL Server VSS Writer
"{E8010B32-BB8F-4600-9FB7-FDF16A69F1D8}" = hppusgP1500
"{E8A0BF78-AEC5-449A-A391-1B20535009D6}" = TableSmith
"{ED6C5ECD-5AA4-4054-BF67-8F49526E5765}" = O&O Defrag Professional
"{EE3FBD3C-782E-4A90-9507-0ECFE1FECCE4}" = Sid Meier's Railroads!
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F2AF3E5D-9697-485C-A5AC-E2B9468C446A}" = Safari
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FDE9FAF8-E1EA-4EBC-A10C-A730F45C7258}" = Eyeball Chat
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FED4C6C1-4748-42BF-95FD-55C89C704DBD}" = Minions of Mirth: Undead Wars
"{FF85B39D-4403-4F95-90A0-316DC7F75CD2}" = Asheron's Call
"{FFCDBA81-28F7-444B-97F1-F1071DD7E474}" = Combat Manager
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Alarm Clock_is1" = Alarm Clock v1.0
"AllToAVI" = AllToAVI v4 r5394
"Any Video Converter_is1" = Any Video Converter 3.1.2
"ASCII Animator_is1" = ASCII Animator 1.8
"AutoItv3" = AutoIt v3.3.6.1
"AVIcodec" = AVIcodec (remove only)
"Baldur's Gate" = Baldur's Gate
"Battle for Wesnoth 1.9.9" = Battle for Wesnoth 1.9.9
"Big Kahuna Reef" = GameHouse Games Collection: Big Kahuna Reef
"Blast Pack for Pocket Tanks Deluxe_is1" = Blast Pack for Pocket Tanks Deluxe
"Bulk Rename Utility_is1" = Bulk Rename Utility 2.7.1.2
"CDisplay_is1" = CDisplay 1.8
"Cloanto Software Director" = Software Director
"CoffeeCup Free HTML Editor" = CoffeeCup Free HTML Editor
"D&D 3.5 DM Tools" = D&D 3.5 DM Tools v0.43.2
"DAEMON Tools Lite" = DAEMON Tools Lite
"Daniusoft MP3 WAV Converter_is1" = Daniusoft MP3 WAV Converter(Build 2.3.1.0)
"Defender of the Crown Heroes Live Forever" = Defender of the Crown Heroes Live Forever
"Desura" = Desura
"D-Fend Reloaded" = D-Fend Reloaded 1.1.0 (deinstall)
"Diablo II" = Diablo II
"Disney Toontown Online" = Disney Toontown Online
"DivX Setup" = DivX Setup
"Dungeon Keeper_is1" = Dungeon Keeper
"DVD Flick_is1" = DVD Flick
"EKS Dinner With Moriarty" = EKS Dinner With Moriarty
"EKS Sherlock" = EKS Sherlock
"EKS Solitile 5.1" = EKS Solitile 5.1
"Error Repair Professional_is1" = Error Repair Professional version 4.1.4
"ESET Online Scanner" = ESET Online Scanner v3
"FileZilla Client" = FileZilla Client 3.5.3
"Flower Stand Tycoon 1.00" = Flower Stand Tycoon 1.00
"Foxit Reader_is1" = Foxit Reader 5.1
"GameSpy Arcade" = GameSpy Arcade
"GOM Player" = GOM Player
"Heroes of Might and Magic 3 Complete_is1" = Heroes of Might and Magic 3 Complete
"Holiday Express" = GameHouse Games Collection: Holiday Express
"HP LaserJet P1500 series" = HP LaserJet P1500 series
"Hunting Unlimited 2010_is1" = Hunting Unlimited 2010
"ie8" = Windows Internet Explorer 8
"ImgBurn" = ImgBurn
"Insaniquarium Deluxe 1.0" = Insaniquarium Deluxe 1.0
"InstallShield_{1632FD86-1BA4-4FC4-8B25-A8C655D63F68}" = Sid Meier's Pirates!
"InstallShield_{29748FDD-082A-48F4-97C3-681764CCEE79}" = EOCP Drivers 0.9.311007
"InstallShield_{4AC55A61-BA20-4DF5-ABFF-8F4819E0C875}" = Digital Media Reader
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.7.0 (Full)
"LHTTSENG" = L&H TTS3000 British English
"LHTTSJPJ" = L&H TTS3000 Japanese
"LinuxLive USB Creator" = LinuxLive USB Creator
"Luxor 2_is1" = Luxor 2
"Luxor Adventures 1.00" = Luxor Adventures 1.00
"Mah Jong Adventures" = GameHouse Games Collection: Mah Jong Adventures
"Mah Jong Quest" = GameHouse Games Collection: Mah Jong Quest
"Mahjong Garden To Go" = GameHouse Games Collection: Mahjong Garden To Go
"Mahjong Towers Eternity" = GameHouse Games Collection: Mahjong Towers Eternity
"Master of Orion 1 and 2_is1" = Master of Orion 1 and 2
"Maui Wowee" = GameHouse Games Collection: Maui Wowee
"Maxthon3" = Maxthon 3
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Mozilla Firefox 9.0.1 (x86 en-US)" = Mozilla Firefox 9.0.1 (x86 en-US)
"Mozilla Thunderbird (3.1.18)" = Mozilla Thunderbird (3.1.18)
"MSC" = McAfee SecurityCenter
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"My Life Story 1.00" = My Life Story 1.00
"Neverwinter Nights Diamond Edition_is1" = Neverwinter Nights Diamond Edition
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OJOsoft Total Video Converter2.1.0.0718" = OJOsoft Total Video Converter
"OpenAL" = OpenAL
"Opera 11.61.1250" = Opera 11.61
"Paint Shop Pro 5.01" = Paint Shop Pro 5.01
"Party Pack for Pocket Tanks Deluxe_is1" = Party Pack for Pocket Tanks Deluxe
"PC Wizard 2010_is1" = PC Wizard 2010.1.96
"Phlinx To Go" = GameHouse Games Collection: Phlinx To Go
"PhotoStage" = PhotoStage Slideshow Producer
"PictureItSuiteTrial_v11" = Microsoft Digital Image Starter Edition 2006
"Pixillion" = Pixillion Image Converter
"POP Peeper" = POP Peeper
"Port Royale 2" = Port Royale 2
"Pretty Good Solitaire - Additional Card Sets_is1" = Pretty Good Solitaire - Additional Card Sets 11.0
"Pretty Good Solitaire - Medieval Card Set_is1" = Pretty Good Solitaire - Medieval Card Set
"Pretty Good Solitaire_is1" = Pretty Good Solitaire version 12.0.0
"Puzzle Express" = GameHouse Games Collection: Puzzle Express
"Puzzle Solitaire" = GameHouse Games Collection: Puzzle Solitaire
"RealAlt_is1" = Real Alternative 2.0.2
"RiseOfNationsExpansion 1.0" = Rise of Nations
"Royal Envoy II CE1.0" = Royal Envoy II CE
"SCRABBLE" = GameHouse Games Collection: SCRABBLE
"SeaMonkey (2.4.1)" = SeaMonkey (2.4.1)
"Solitude for Windows" = Solitude for Windows
"Sony Eyetoy SCEH-0004" = Sony Eyetoy SCEH-0004
"Stand O`Food" = Stand O`Food (remove only)
"Steam App 400" = Portal
"Strip Poker Exclusive 3" = Strip Poker Exclusive 3
"Super GameHouse Solitaire Vol. 1" = GameHouse Games Collection: Super GameHouse Solitaire Vol. 1
"Super GameHouse Solitaire Vol. 2" = GameHouse Games Collection: Super GameHouse Solitaire Vol. 2
"Super GameHouse Solitaire Vol. 3" = GameHouse Games Collection: Super GameHouse Solitaire Vol. 3
"Super Mah Jong Solitaire" = GameHouse Games Collection: Super Mah Jong Solitaire
"Switch" = Switch Sound File Converter
"Synergy+" = Synergy+
"SystemRequirementsLab" = System Requirements Lab
"Test My Hardware_is1" = Test My Hardware 3.0
"The KMPlayer" = The KMPlayer (remove only)
"Toontown Keep-Alive" = Toontown Keep-Alive
"Tradewinds 2" = GameHouse Games Collection: Tradewinds 2
"Unlocker" = Unlocker 1.9.1
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.11
"Voxatron" = Voxatron 0.1.3
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WebReaper_is1" = WebReaper v10
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinHTTrack Website Copier_is1" = WinHTTrack Website Copier 3.44-4
"WinRAR" = WinRAR
"winscp3_is1" = WinSCP 4.3.2
"winusb0100" = Microsoft WinUsb 1.0
"Wise Disk Cleaner_is1" = Wise Disk Cleaner 6.31
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 6.21
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WordJong To Go" = GameHouse Games Collection: WordJong To Go
"World of Warcraft" = World of Warcraft
"Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Widget Engine" = Yahoo! Widgets
"YInstHelper" = Yahoo! Install Manager
"ZMBV" = Zip Motion Block Video codec (Remove Only)
"Zuma Deluxe" = GameHouse Games Collection: Zuma Deluxe

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"4kTetrisAttack" = 4kTetrisAttack
"4rkanoid" = 4rkanoid
"Ares" = Ares
"Command and Click 4K" = Command and Click 4K
"Google Chrome" = Google Chrome
"Miners4k" = Miners4k
"Truck" = Truck
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/13/2012 2:52:10 PM | Computer Name = SANDRA | Source = Application Error | ID = 1000
Description = Faulting application McSvHost.exe, version 2.0.230.0, faulting module
unknown, version 0.0.0.0, fault address 0x07ce5f83.

Error - 1/13/2012 2:56:30 PM | Computer Name = SANDRA | Source = Application Error | ID = 1000
Description = Faulting application McSvHost.exe, version 2.0.230.0, faulting module
unknown, version 0.0.0.0, fault address 0x087aa579.

Error - 1/13/2012 4:07:37 PM | Computer Name = SANDRA | Source = Application Error | ID = 1000
Description = Faulting application McSvHost.exe, version 2.0.230.0, faulting module
unknown, version 0.0.0.0, fault address 0x07d0c176.

Error - 1/19/2012 1:27:52 AM | Computer Name = SANDRA | Source = Application Error | ID = 1000
Description = Faulting application McSvHost.exe, version 2.0.230.0, faulting module
unknown, version 0.0.0.0, fault address 0x06266f2d.

Error - 1/21/2012 9:04:16 PM | Computer Name = SANDRA | Source = Application Error | ID = 1000
Description = Faulting application McSvHost.exe, version 2.0.230.0, faulting module
MpfSvc.dll, version 12.0.345.0, fault address 0x000df9a7.

Error - 1/21/2012 9:35:40 PM | Computer Name = SANDRA | Source = McLogEvent | ID = 5051
Description = A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
took longer than 90000 ms to complete a request. The process will be terminated.
Thread
id : 2796 (0xaec) Thread address : 0x7C90E514 Thread message : Build VSCORE.14.4.0.380
/ 5400.1158 Object being scanned = \Device\HarddiskVolume1\WINDOWS\system32\ntmarta.dll

by C:\Program Files\BOINC\Data\projects\www.worldcommunitygrid.org\wcg_c4cw_lmps_6.40_windows_intelx86

7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0) 5003(0)(0) 5002(0)(1)

Error - 1/27/2012 2:36:22 PM | Computer Name = SANDRA | Source = MsiInstaller | ID = 11311
Description = Product: RPGXplorer -- Error 1311.Source file not found(cabinet):
C:\DOCUME~1\OWNER~1.SAN\LOCALS~1\Temp\Rar$DI25.9906\Data1.cab. Verify that the
file exists and that you can access it.

Error - 1/27/2012 2:36:23 PM | Computer Name = SANDRA | Source = MsiInstaller | ID = 11311
Description = Product: RPGXplorer -- Error 1311.Source file not found(cabinet):
C:\DOCUME~1\OWNER~1.SAN\LOCALS~1\Temp\Rar$DI25.9906\Data1.cab. Verify that the
file exists and that you can access it.

Error - 1/27/2012 2:36:23 PM | Computer Name = SANDRA | Source = MsiInstaller | ID = 11311
Description = Product: RPGXplorer -- Error 1311.Source file not found(cabinet):
C:\DOCUME~1\OWNER~1.SAN\LOCALS~1\Temp\Rar$DI25.9906\Data1.cab. Verify that the
file exists and that you can access it.

Error - 2/9/2012 5:51:12 PM | Computer Name = SANDRA | Source = VBRuntime | ID = 1
Description = The VB Application identified by the event source logged this Application
MSICUU: Thread ID: 4188 ,Logged: Success: C:\Program Files\Windows Installer Clean
Up\msizap.exe TW! {196BB40D-1578-3D01-B289-BEFC77A11A1E}

[ System Events ]
Error - 2/10/2012 11:11:32 AM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7031
Description = The McAfee Network Agent service terminated unexpectedly. It has
done this 2 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 2/10/2012 11:11:32 AM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7031
Description = The McAfee Proxy Service service terminated unexpectedly. It has
done this 2 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 2/10/2012 11:11:32 AM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7031
Description = The McAfee Anti-Spam Service service terminated unexpectedly. It
has done this 2 time(s). The following corrective action will be taken in 60000
milliseconds: Restart the service.

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee SiteAdvisor Service service terminated unexpectedly. It
has done this 3 time(s).

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee Personal Firewall Service service terminated unexpectedly.
It has done this 3 time(s).

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee Services service terminated unexpectedly. It has done
this 3 time(s).

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee VirusScan Announcer service terminated unexpectedly. It
has done this 3 time(s).

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee Network Agent service terminated unexpectedly. It has
done this 3 time(s).

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee Proxy Service service terminated unexpectedly. It has
done this 3 time(s).

Error - 2/10/2012 3:04:41 PM | Computer Name = SANDRA | Source = Service Control Manager | ID = 7034
Description = The McAfee Anti-Spam Service service terminated unexpectedly. It
has done this 3 time(s).

< End of report >

Thank you all who take the time to review this and for any help I get.
Joe

Memory violation error while using Firefox [Closed]

#1
Joe125

Posted 10 February 2012 - 01:19 PM

Advertisements

#2
maliprog

Posted 03 March 2012 - 03:07 PM

#3
maliprog

Posted 07 March 2012 - 06:18 AM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Memory violation error while using Firefox [Closed]

#1 Joe125 Posted 10 February 2012 - 01:19 PM

Advertisements

#2 maliprog Posted 03 March 2012 - 03:07 PM

#3 maliprog Posted 07 March 2012 - 06:18 AM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Sign In

#1
Joe125

Posted 10 February 2012 - 01:19 PM

#2
maliprog

Posted 03 March 2012 - 03:07 PM

#3
maliprog

Posted 07 March 2012 - 06:18 AM