bios are shadowed
when certain drivers are installed get an error message that update failed
because the memory could not be written to
things i have done
about 3 months ago i was playing game on my comp from one of my old back up disks
there was a pop and a smell and immediate shut down
rebooted computer and it came up in safe mode at this point i yanked the comp out from
under the desk and discovered my power supply fan had failed cleaned and lubed it and
ordered a replacement
well i thought i got it (wrong)
comp didnt have its old zing was slower than the seven year itch
i figured that the power supply on its demise took something out on the mother board
found a reman because comp comes from back in 2004 (early Pleistocene in comp years)
replaced the mother board and since it had newer bios i thought great
yeah had all the stuff i needed and more first boot bios not shadowed
second boot bios shadowed and immediate slow down
replaced the ram next nope, still haven't got it
last shot replaced the hard drive cloned it from the old one
what dont work cool and quiet
memory controller
any driver update for the processor or video card
any driver up date window explorer exits with mem cant be written to error
and also have a hidden fax window with same error (dont even have a fax on board)
print spool er has a headache as well
virus soft ware
micro soft essentials
and immunet let both do full scans and swatted results
defraged hard drive and did boot time defrag to defragment page file
virus list
m32 trojan C:\\ program files\mirosoft shared\temp\ mso service.exe
dialer tpd C:\\ program files\ online services\people pc\dialer\dialer.exe
w32 suspicious C:\\program files\ online services\people pc\system\ ras wait.exe
OTL logfile created on: 3/21/2012 12:33:16 AM - Run 3
OTL by OldTimer - Version 3.2.39.1 Folder = C:\Documents and Settings\Compaq_Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 0.96 Gb Available Physical Memory | 47.81% Memory free
4.85 Gb Paging File | 3.94 Gb Available in Paging File | 81.26% Paging File free
Paging file location(s): C:\pagefile.sys 3072 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.63 Gb Total Space | 44.81 Gb Free Space | 40.14% Space Free | Partition Type: NTFS
Drive D: | 5.25 Gb Total Space | 0.76 Gb Free Space | 14.55% Space Free | Partition Type: FAT32
Drive K: | 74.53 Gb Total Space | 48.11 Gb Free Space | 64.56% Space Free | Partition Type: NTFS
Drive P: | 115.99 Gb Total Space | 79.26 Gb Free Space | 68.33% Space Free | Partition Type: NTFS
Computer Name: YOUR-4F1261A8E5 | User Name: Compaq_Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/03/20 00:59:15 | 000,594,432 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL(1).exe
PRC - [2012/03/17 07:24:51 | 002,637,088 | ---- | M] (Immunet) -- C:\Program Files\Immunet\3.0.5\iptray.exe
PRC - [2012/03/17 07:24:51 | 000,797,096 | ---- | M] (Sourcefire, Inc.) -- C:\Program Files\Immunet\3.0.5\agent.exe
PRC - [2012/03/10 19:01:49 | 003,246,040 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2011/06/16 07:33:43 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2011/02/01 20:53:32 | 000,390,720 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2011/02/01 20:53:26 | 000,804,528 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2011/02/01 20:52:40 | 005,546,376 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2010/11/16 04:52:28 | 002,536,448 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
PRC - [2010/10/14 00:59:19 | 000,009,216 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\agrsmsvc.exe
PRC - [2010/10/01 23:55:40 | 001,733,968 | ---- | M] (Diskeeper Corporation) -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
PRC - [2010/05/25 19:53:46 | 002,139,400 | ---- | M] () -- C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/08/24 16:08:46 | 000,385,024 | ---- | M] (Askarya Technologies) -- C:\Program Files\Askarya\Taskbar Manager\TaskbarManager.exe
PRC - [2003/08/11 13:02:06 | 000,449,536 | ---- | M] () -- C:\Program Files\1st Evidence Remover\erasrv.exe
========== Modules (No Company Name) ==========
MOD - [2012/03/17 07:24:53 | 000,357,664 | ---- | M] () -- C:\Program Files\Immunet\3.0.5\dhr.dll
MOD - [2012/03/17 07:24:53 | 000,302,368 | ---- | M] () -- C:\Program Files\Immunet\3.0.5\dsp.dll
MOD - [2012/02/23 23:11:49 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2012/02/13 12:07:30 | 000,085,288 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko11.dll
MOD - [2012/02/13 12:07:30 | 000,079,872 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko10.dll
MOD - [2012/02/13 12:07:30 | 000,077,312 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko6.dll
MOD - [2012/02/13 12:07:30 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko9.dll
MOD - [2012/02/13 12:07:30 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko8.dll
MOD - [2012/02/13 12:07:30 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko7.dll
MOD - [2012/02/13 12:07:30 | 000,076,288 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}\components\RadioWMPCoreGecko5.dll
MOD - [2011/11/03 10:28:36 | 001,292,288 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2011/06/16 07:33:44 | 001,874,904 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010/11/08 10:15:40 | 000,296,448 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_04.dll
MOD - [2010/06/03 00:48:08 | 000,555,624 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll
MOD - [2010/06/03 00:48:04 | 002,308,200 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nView.dll
MOD - [2010/05/25 19:53:46 | 002,139,400 | ---- | M] () -- C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
MOD - [2006/05/17 06:33:42 | 000,077,824 | ---- | M] () -- C:\Program Files\Askarya\Taskbar Manager\SHLoader.dll
MOD - [2005/10/07 16:05:32 | 000,125,440 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2004/10/03 22:06:00 | 000,049,152 | ---- | M] () -- C:\Program Files\Askarya\Taskbar Manager\keyhandler.dll
MOD - [2003/08/11 13:02:06 | 000,449,536 | ---- | M] () -- C:\Program Files\1st Evidence Remover\erasrv.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe -- (SymSnapService)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\iolo\common\lib\ioloServiceManager.exe -- (ioloSystemService)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\iolo\common\lib\ioloServiceManager.exe -- (ioloFileInfoList)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe -- (GenericMount Helper Service)
SRV - [2012/03/17 07:24:56 | 000,327,680 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\Immunet\tetra\scan.dll -- (scan)
SRV - [2012/03/17 07:24:51 | 000,797,096 | ---- | M] (Sourcefire, Inc.) [Auto | Running] -- C:\Program Files\Immunet\3.0.5\agent.exe -- (ImmunetProtect)
SRV - [2012/03/10 19:01:49 | 003,246,040 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2011/09/27 14:03:28 | 000,295,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/02/01 20:53:26 | 000,804,528 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2011/01/19 00:40:00 | 004,225,592 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\system32\GameMon.des -- (npggsvc)
SRV - [2010/10/14 00:59:19 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2010/10/01 23:55:40 | 001,733,968 | ---- | M] (Diskeeper Corporation) [Auto | Running] -- C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper)
SRV - [2010/05/25 19:53:46 | 002,139,400 | ---- | M] () [Auto | Running] -- C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (OS Selector)
SRV - [2003/08/11 13:02:06 | 000,449,536 | ---- | M] () [Auto | Running] -- C:\Program Files\1st Evidence Remover\erasrv.exe -- (EraserThread)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\GenericMount.sys -- (GenericMount)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\Program Files\Anti Trojan Elite\ATEPMon.sys -- (ATE_PROCMON)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a91c0k06)
DRV - [2012/03/17 07:24:55 | 000,304,712 | ---- | M] (BitDefender S.R.L.) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Trufos.sys -- (Trufos)
DRV - [2012/03/17 07:24:55 | 000,051,104 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\ImmunetProtect.sys -- (ImmunetProtectDriver)
DRV - [2012/03/17 07:24:55 | 000,034,080 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\ImmunetSelfProtect.sys -- (ImmunetSelfProtectDriver)
DRV - [2012/03/10 19:01:57 | 000,167,968 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afcdp.sys -- (afcdp)
DRV - [2012/03/10 19:01:27 | 000,752,128 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpm273.sys -- (tdrpman273) Acronis Try&Decide and Restore Points filter (build 273)
DRV - [2012/03/10 19:01:22 | 000,600,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2012/03/10 19:00:55 | 000,170,528 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
DRV - [2011/09/02 01:31:28 | 000,039,192 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2011/09/02 01:31:28 | 000,030,360 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2011/09/02 01:31:20 | 000,041,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2011/09/02 01:30:58 | 000,012,184 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2011/08/10 19:58:02 | 000,212,528 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2011/08/09 17:33:58 | 000,003,840 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\BANTExt.sys -- (BANTExt)
DRV - [2011/06/06 23:30:58 | 000,044,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (USB)
DRV - [2011/02/19 16:45:45 | 000,431,672 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010/09/22 12:10:18 | 000,044,368 | ---- | M] (Diskeeper Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DKRtWrt.sys -- (DKRtWrt)
DRV - [2009/12/20 18:40:34 | 000,027,064 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009/08/13 15:07:12 | 001,163,328 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2008/10/09 15:42:42 | 000,017,408 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2006/11/10 08:08:50 | 000,024,064 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\SysTool.sys -- (SysTool)
DRV - [2006/07/07 16:41:48 | 000,014,848 | ---- | M] (Webroot Software Inc (www.webroot.com)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sskbfd.sys -- (SSKBFD)
DRV - [2006/07/01 22:56:04 | 000,042,496 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006/04/23 11:52:38 | 000,000,000 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\Ultra.dll -- (ultra)
DRV - [2006/04/17 16:57:33 | 000,002,368 | ---- | M] (AntiCracking) [Kernel | Auto | Running] -- C:\WINDOWS\system32\SVKP.sys -- (SVKP)
DRV - [2006/02/14 16:02:56 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnicxp.sys -- (SISNICXP)
DRV - [2006/01/12 09:01:52 | 000,072,032 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\TPkd.sys -- (TPkd)
DRV - [2005/12/11 12:41:24 | 000,020,608 | ---- | M] (Jacal Consulting) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\maplom.sys -- (Maplom)
DRV - [2005/08/29 15:11:00 | 003,644,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005/05/06 17:14:24 | 000,048,128 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SiSRaid.sys -- (SiSRaid)
DRV - [2005/04/12 12:42:16 | 000,011,904 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2005/04/12 12:08:44 | 000,247,296 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2004/08/04 06:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2004/03/05 18:09:02 | 000,003,904 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\CheckIt\Diagnostics\MAPMEM.SYS -- (MAPMEM)
DRV - [2004/03/05 18:09:00 | 000,003,744 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\CheckIt\Diagnostics\BCMNTIO.SYS -- (BCMNTIO)
DRV - [2003/07/18 18:58:20 | 000,036,992 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SISAGPX.SYS -- (SISAGP)
DRV - [2003/07/12 00:28:56 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2002/07/29 23:43:50 | 000,023,808 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)
DRV - [2001/08/17 13:57:26 | 000,012,160 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fsvga.sys -- (FsVga)
DRV - [2001/06/22 05:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\sentinel.sys -- (Sentinel)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.h...ario&pf=desktop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.c...rch/search.html
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...ario&pf=desktop
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.h...ario&pf=desktop
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = about:blank
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\Search Toolbar\tbhelper.dll ()
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\SearchScopes\{112A7E09-6595-D1C3-2C4E-CDFD9E56B66C}: "URL" = http://www.skip-sear...cfg=2-82-0-icDH
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...pr&d=2012-03-16 06:51:17&v=8.0.0.34&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local
IE - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 127.0.0.1:8080
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@anti-leech.com/Anti-Leech Plugin,version=1.0.2.3: File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2321: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2379: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1483: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Program Files\Siber Systems\AI RoboForm\Firefox [2011/06/16 07:24:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/16 07:33:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/11 20:08:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.10\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011/06/12 22:24:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.10\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2012/01/11 20:08:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\AVG\AVG2012\Thunderbird\
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\WINDOWS\vf_hip\ [2008/07/09 00:41:48 | 000,000,000 | ---D | M]
[2010/09/14 00:57:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions
[2010/09/14 00:57:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012/03/17 06:30:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions
[2011/12/16 01:13:07 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2012/02/14 03:57:26 | 000,000,000 | ---D | M] (ArchiBar Community Toolbar) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{24cc1362-11c6-4918-a2c0-b9ee5a563185}
[2011/02/05 09:18:33 | 000,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2010/03/30 07:51:02 | 000,000,000 | ---D | M] (Aluminium Kai 2) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{a45e6b3a-725d-4b20-afde-e7486bfe317c}
[2012/03/03 05:54:14 | 000,000,000 | ---D | M] (HP Detect) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
[2011/06/16 07:29:23 | 000,000,000 | ---D | M] (FoxLingo) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}
[2010/07/21 02:49:02 | 000,000,000 | ---D | M] (FoxLingo) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}(2)
[2010/09/08 01:41:34 | 000,000,000 | ---D | M] (Redirect Remover) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\{fe0258ab-4f74-43a1-8781-bcdf340f9ee9}
[2012/03/03 05:46:04 | 000,000,000 | ---D | M] (TheBflix) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\[email protected]
[2011/03/13 01:39:53 | 000,000,000 | ---D | M] (Personas) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\lumkxaj6.default\extensions\[email protected]
[2012/02/18 23:20:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/05/05 23:32:44 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/06 01:09:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/10/13 08:20:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/01/06 01:49:44 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/06 02:10:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/08/06 01:10:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2012/02/18 23:20:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\LOLIFOX\EXTENSIONS\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
File not found (No name found) -- C:\PROGRAM FILES\LOLIFOX\EXTENSIONS\{EF62E1CE-D2A4-4CDD-B7EC-92B120366B66}
File not found (No name found) -- C:\PROGRAM FILES\LOLIFOX\EXTENSIONS\{F0B6E3F9-ECD1-40B6-A25F-5C3FF68FB079}
File not found (No name found) -- C:\PROGRAM FILES\LOLIFOX\EXTENSIONS\{FCE36C1E-58D8-498A-B2A5-66AD1CEDEBBB}
[2011/06/16 07:33:42 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007/02/17 04:55:00 | 000,061,440 | ---- | M] (Speedbit Ltd.) -- C:\Program Files\mozilla firefox\components\DAPFireFox.dll
[2006/05/31 18:28:48 | 000,249,856 | ---- | M] (Icenet LLC) -- C:\Program Files\mozilla firefox\plugins\npalnn.dll
[2012/02/18 23:19:50 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2006/06/16 12:16:04 | 000,205,312 | ---- | M] (NETDIMENSION CORPORATION) -- C:\Program Files\mozilla firefox\plugins\NPMXENG.DLL
[2011/06/16 07:33:46 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
O1 HOSTS File: ([2012/03/19 00:35:13 | 000,000,000 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Anonymizer Proxy) - {0DB66BA8-5E1F-4963-93D1-E1D6B78FE9A2} - C:\Program Files\NetConeal\Anonymity Shield\ProxyNew.dll (Anonymizer Software)
O2 - BHO: (TheBflix Class) - {253797F5-9A48-4BE8-A22F-86A8A799F780} - C:\Documents and Settings\All Users\Application Data\TheBflix\bhoclass.dll (Injector)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch_1.dll (www.flashget.com)
O2 - BHO: (no name) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - No CLSID value found.
O2 - BHO: (ATLAS Toolbar) - {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files\ATLAS V13\ATLIECP.DLL (FUJITSU LIMITED)
O2 - BHO: (Reg Error: Value error.) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\ROBOFORM.dll (Siber Systems Inc.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O2 - BHO: (TBSB05974 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Search Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Search Toolbar) - {0C8413C1-FAD1-446C-8584-BE50576F863E} - C:\Program Files\Search Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (ATLAS Toolbar) - {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files\ATLAS V13\ATLIECP.DLL (FUJITSU LIMITED)
O3 - HKLM\..\Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\ROBOFORM.dll (Siber Systems Inc.)
O3 - HKLM\..\Toolbar: (FlashGet Bar) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)
O3 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\Toolbar\WebBrowser: (Search Toolbar) - {0C8413C1-FAD1-446C-8584-BE50576F863E} - C:\Program Files\Search Toolbar\tbcore3.dll ()
O3 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\..\Toolbar\WebBrowser: (&RoboForm) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\ROBOFORM.dll (Siber Systems Inc.)
O4 - HKLM..\Run: [00ERSRRRNKY] C:\Program Files\1st Evidence Remover\eraser.exe ()
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [Immunet Protect] C:\Program Files\Immunet\3.0.5\iptray.exe (Immunet)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [PC Booster] C:\Program Files\inKline Global\PC Booster\PCBooster.exe (inKline Global Inc.)
O4 - HKLM..\Run: [SAOB Monitor] C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [SiSRaid] C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\Sraid.exe (Silicon Integrated Systems Corp.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Taskbar Manager.lnk = C:\Program Files\Askarya\Taskbar Manager\TaskbarManager.exe (Askarya Technologies)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Xfire.lnk = C:\Program Files\Xfire\Xfire.exe (Xfire Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 219
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 219
O7 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Mn@iboddPubswLfov = 0
O7 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: Mn@mlrf = 0
O7 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MnOndNeg = 0
O7 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MnQtm = 0
O7 - HKU\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: Ghp`amfUbrhLds = 0
O8 - Extra context menu item: &FlashGetでダウンロード - C:\Program Files\FlashGet\jc_link.htm ()
O8 - Extra context menu item: &FlashGetで全てダウンロード - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: &Translate with ATLAS - C:\Program Files\ATLAS V13\atlscript.html ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: ATLAS Translation &Editor - C:\Program Files\ATLAS V13\AtlscriptEdit.html ()
O8 - Extra context menu item: Customize Menu - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
O8 - Extra context menu item: Download Link Using Mega Manager... - Reg Error: Value error. File not found
O8 - Extra context menu item: Download with &FileFactory Turbo - Reg Error: Value error. File not found
O8 - Extra context menu item: Download with GetRight Pro - Reg Error: Value error. File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - File not found
O8 - Extra context menu item: Fill Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O8 - Extra context menu item: Open with GetRight Pro Browser - Reg Error: Value error. File not found
O8 - Extra context menu item: RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O8 - Extra context menu item: Save Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9 - Extra 'Tools' menuitem : RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9 - Extra Button: ATLAS Translation - {B7707A72-4355-11D4-82BD-00000EBBEF8D} - C:\Program Files\ATLAS V13\atlscript.html ()
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.micr...922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1196729615484 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1145191418640 (MUWebControl Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.co...iaSmartScan.cab (NVIDIA Smart Scan)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C} http://disteng.neffi...ffyLauncher.cab (NeffyLauncherCtl Class)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4F3F795-7712-4D92-91DF-AEB055D8AC73} http://online.invoke...iveCompTest.ocx (Reg Error: Key error.)
O16 - DPF: {D8AA889B-2C65-47C3-8C16-3DCD4EF76A47} http://online.invoke...7207/MILive.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5C76EFFC-52BF-410A-8A3A-8E4C314FB5B6}: DhcpNameServer = 172.16.0.1
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O20 - Winlogon\Notify\WRNotifier: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/01/16 10:27:15 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/07/27 14:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2004/04/30 06:01:14 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{946850c5-1e27-11d9-baf0-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{946850c5-1e27-11d9-baf0-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{c7eaf834-7138-11d9-a02f-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{c7eaf834-7138-11d9-a02f-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{c7eaf834-7138-11d9-a02f-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (autocheck SsiEfr.e)
O34 - HKLM BootExecute: (autocheck SsiEfr.e)
O34 - HKLM BootExecute: (autocheck SsiEfr.e)
O34 - HKLM BootExecute: (autocheck SsiEfr.e)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012/03/20 00:59:03 | 000,594,432 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL(1).exe
[2012/03/19 11:48:49 | 000,016,400 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys
[2012/03/18 08:45:26 | 000,042,496 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2012/03/18 07:15:12 | 000,012,184 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LBeepKE.sys
[2012/03/18 07:14:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\LogiShrd
[2012/03/18 07:14:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Logitech
[2012/03/18 07:13:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Logishrd
[2012/03/18 07:13:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd
[2012/03/18 07:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Logitech
[2012/03/18 07:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Logishrd
[2012/03/18 07:11:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Mouse
[2012/03/18 07:11:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2012/03/18 06:18:52 | 000,064,000 | ---- | C] (LSI Corporation) -- C:\WINDOWS\System32\agrsmdel.exe
[2012/03/18 06:18:43 | 000,000,000 | ---D | C] -- C:\Program Files\LSI SoftModem
[2012/03/18 06:18:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Options
[2012/03/18 06:17:05 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2012/03/18 06:16:51 | 000,090,112 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
[2012/03/18 06:16:49 | 010,458,112 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2012/03/18 06:16:46 | 000,307,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2012/03/18 06:16:46 | 000,212,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcrmv.exe
[2012/03/18 06:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012/03/18 06:13:56 | 000,017,408 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\WINDOWS\System32\drivers\KMWDFILTER.sys
[2012/03/18 05:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Easeware
[2012/03/18 05:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\DriverNavigator
[2012/03/18 05:30:39 | 000,000,000 | ---D | C] -- C:\Program Files\Easeware
[2012/03/18 04:14:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SiS RAID Utility
[2012/03/18 04:14:33 | 000,000,000 | ---D | C] -- C:\Program Files\Silicon Integrated Systems
[2012/03/18 03:29:42 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2012/03/18 03:29:07 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012/03/18 03:29:03 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/03/18 02:37:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Device Doctor
[2012/03/18 02:37:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Device Doctor
[2012/03/18 02:37:42 | 000,000,000 | ---D | C] -- C:\Program Files\Device Doctor
[2012/03/18 01:58:42 | 000,000,000 | ---D | C] -- C:\Program Files\Belarc
[2012/03/18 01:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SlimComputer
[2012/03/18 01:31:13 | 000,000,000 | ---D | C] -- C:\Program Files\SlimComputer
[2012/03/18 01:13:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SlimCleaner
[2012/03/18 01:13:42 | 000,000,000 | ---D | C] -- C:\Program Files\SlimCleaner
[2012/03/18 00:57:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\SlimWare Utilities Inc
[2012/03/18 00:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Downloaded Installers
[2012/03/18 00:13:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\e frontier
[2012/03/17 07:25:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Immunet
[2012/03/17 07:25:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Immunet
[2012/03/17 07:25:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Immunet 3.0
[2012/03/17 07:25:04 | 000,034,080 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\ImmunetSelfProtect.sys
[2012/03/17 07:25:03 | 000,051,104 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\ImmunetProtect.sys
[2012/03/17 07:24:57 | 000,304,712 | ---- | C] (BitDefender S.R.L.) -- C:\WINDOWS\System32\drivers\Trufos.sys
[2012/03/17 07:24:51 | 000,000,000 | ---D | C] -- C:\Program Files\Immunet
[2012/03/17 06:50:38 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2012/03/17 06:43:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/03/16 21:31:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Acronis
[2012/03/16 08:19:41 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/03/16 07:28:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\AVG
[2012/03/16 06:50:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2012/03/16 05:18:39 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012/03/16 05:18:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2012/03/10 20:04:09 | 002,073,440 | ---- | C] (Acronis) -- C:\WINDOWS\System32\AutoPartNt.exe
[2012/03/10 19:01:57 | 000,167,968 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\afcdp.sys
[2012/03/10 19:01:27 | 000,752,128 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\tdrpm273.sys
[2012/03/10 19:01:16 | 000,600,928 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\timntr.sys
[2012/03/10 19:00:55 | 000,170,528 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\snapman.sys
[2012/03/10 18:59:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Acronis
[2012/03/10 18:50:26 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis
[2012/03/10 18:50:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Acronis
[2012/03/10 18:38:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Acronis
[2012/03/10 18:38:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2012/03/10 10:22:23 | 000,000,000 | ---D | C] -- C:\VProRecovery
[2012/03/06 05:20:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\DOSBox
[2012/03/06 05:19:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\DOSBox-0.74
[2012/03/06 05:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\DOSBox-0.74
[2012/03/06 05:18:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer
[2012/03/05 20:05:42 | 000,000,000 | ---D | C] -- C:\SWTOOLS
[2012/03/05 04:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CleanMyPC Registry Cleaner
[2012/03/05 04:37:11 | 000,000,000 | ---D | C] -- C:\Program Files\CleanMyPC
[2012/03/03 05:55:51 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012/03/03 02:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\PackageAware
[2012/03/03 01:55:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\TheBflix
[2012/03/03 01:55:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TheBflix
[2012/03/03 01:55:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Premium
[2012/03/03 01:55:06 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2012/03/03 01:54:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2012/02/23 07:58:31 | 000,543,232 | ---- | C] (Thoughtman Software) -- C:\Documents and Settings\Compaq_Owner\Desktop\ftoblack.exe
[2012/02/23 07:55:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ffdshow
[2012/02/23 07:55:51 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2012/02/23 07:31:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\FadeToBlack
[2012/02/23 07:31:39 | 000,000,000 | ---D | C] -- C:\Program Files\FadeToBlack
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/03/21 00:22:51 | 000,000,000 | -HS- | M] () -- C:\DkHyperbootSync
[2012/03/20 01:53:57 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/03/20 01:51:16 | 000,000,069 | ---- | M] () -- C:\WINDOWS\TaskbarManager.INI
[2012/03/20 01:48:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/03/20 00:59:15 | 000,594,432 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL(1).exe
[2012/03/19 20:12:45 | 000,005,679 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\My Documents\My Favorite Theme.theme
[2012/03/19 11:48:49 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys
[2012/03/19 02:08:47 | 000,001,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Poser Pro 2010.lnk
[2012/03/19 02:08:47 | 000,001,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Poser Pro 2010 (x86).lnk
[2012/03/19 01:00:31 | 000,473,728 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/03/19 01:00:30 | 000,085,018 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/03/19 00:35:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/03/19 00:30:43 | 000,002,235 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SlimCleaner.lnk
[2012/03/18 21:19:35 | 000,001,682 | -HS- | M] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2012/03/18 13:00:14 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\Immunet Scan 3374359.job
[2012/03/18 12:00:05 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\Immunet Scan 2233828.job
[2012/03/18 08:55:18 | 000,002,249 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SlimComputer.lnk
[2012/03/18 08:53:17 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/03/18 07:45:21 | 000,217,180 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/03/18 07:45:21 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/03/18 07:45:10 | 000,217,180 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/03/18 07:44:15 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/03/18 07:41:28 | 000,295,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/03/18 07:38:56 | 000,005,030 | ---- | M] () -- C:\config.xml
[2012/03/18 07:38:15 | 000,000,304 | ---- | M] () -- C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job
[2012/03/18 06:00:00 | 000,000,450 | ---- | M] () -- C:\WINDOWS\tasks\DriverNavigator Scheduled Scan.job
[2012/03/18 05:30:52 | 000,000,895 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DriverNavigator.lnk
[2012/03/18 04:37:28 | 000,000,099 | ---- | M] () -- C:\WINDOWS\System32\VGAunistlog.ini
[2012/03/18 04:15:47 | 000,073,010 | ---- | M] () -- C:\WINDOWS\System32\RW_AppData.dat
[2012/03/18 04:15:47 | 000,056,704 | ---- | M] () -- C:\WINDOWS\System32\RW_FileType.dat
[2012/03/18 04:15:47 | 000,024,248 | ---- | M] () -- C:\WINDOWS\System32\RW_{FE91971D-2521-11DC-A3D5-0011D8D02BFE}.dat
[2012/03/18 04:15:47 | 000,000,444 | ---- | M] () -- C:\WINDOWS\System32\RW_FileFlag.dat
[2012/03/18 04:15:47 | 000,000,056 | ---- | M] () -- C:\WINDOWS\System32\RW_{60CA5B1F-CD34-11DA-9388-806D6172696F}.dat
[2012/03/18 04:15:47 | 000,000,056 | ---- | M] () -- C:\WINDOWS\System32\RW_{2230C340-6FDA-11E1-B998-0015F200843B}.dat
[2012/03/18 04:02:07 | 000,000,001 | ---- | M] () -- C:\WINDOWS\~sisRslt
[2012/03/18 02:37:59 | 000,001,694 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Speed Up This PC.lnk
[2012/03/18 02:37:59 | 000,000,753 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Device Doctor.lnk
[2012/03/18 01:58:55 | 000,001,735 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Belarc Advisor.lnk
[2012/03/18 01:58:55 | 000,001,717 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Belarc Advisor.lnk
[2012/03/18 00:19:34 | 000,001,667 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Poser 7.lnk
[2012/03/17 23:22:16 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012/03/17 23:22:16 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2012/03/17 07:25:45 | 000,000,753 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Immunet 3.0.lnk
[2012/03/17 07:24:55 | 000,304,712 | ---- | M] (BitDefender S.R.L.) -- C:\WINDOWS\System32\drivers\Trufos.sys
[2012/03/17 07:24:55 | 000,051,104 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\ImmunetProtect.sys
[2012/03/17 07:24:55 | 000,034,080 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\WINDOWS\System32\drivers\ImmunetSelfProtect.sys
[2012/03/17 06:44:33 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012/03/17 06:19:21 | 000,004,216 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20120317-062021.backup
[2012/03/17 05:56:19 | 000,006,867 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm
[2012/03/16 22:18:50 | 092,030,579 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012/03/16 21:31:54 | 000,000,155 | ---- | M] () -- C:\WINDOWS\System32\autopart.opt
[2012/03/16 21:21:08 | 000,001,501 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Explorer.lnk
[2012/03/16 18:48:15 | 000,001,024 | ---- | M] () -- C:\WINDOWS\System32\AutoPartNt.let
[2012/03/16 18:43:53 | 002,073,440 | ---- | M] (Acronis) -- C:\WINDOWS\System32\AutoPartNt.exe
[2012/03/16 03:06:55 | 000,000,154 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to Revo Uninstaller Pro.lnk
[2012/03/10 19:33:38 | 000,037,905 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\LUUnInstall.LiveUpdate
[2012/03/10 19:06:35 | 000,000,056 | ---- | M] () -- C:\WINDOWS\System32\RW_{D5B228C5-6AAB-11E1-B7AF-806D6172696F}.dat
[2012/03/10 19:06:35 | 000,000,056 | ---- | M] () -- C:\WINDOWS\System32\RW_{AB1B9C46-6ABA-11E1-837F-0015F200843B}.dat
[2012/03/10 19:01:57 | 000,167,968 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\afcdp.sys
[2012/03/10 19:01:27 | 000,752,128 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\tdrpm273.sys
[2012/03/10 19:01:22 | 000,600,928 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\timntr.sys
[2012/03/10 19:00:55 | 000,170,528 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\snapman.sys
[2012/03/10 18:59:50 | 000,001,252 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Acronis Online Backup.lnk
[2012/03/10 18:59:50 | 000,000,884 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Acronis True Image Home 2011.lnk
[2012/03/10 07:23:45 | 000,002,147 | -H-- | M] () -- C:\WINDOWS\EPMBatch.ept
[2012/03/09 00:03:35 | 000,287,927 | ---- | M] () -- C:\WINDOWS\System32\drivers\fwdrv.err
[2012/03/06 05:19:39 | 000,001,589 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DOSBox 0.74.lnk
[2012/03/05 21:01:51 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/03/05 21:01:51 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012/03/05 04:37:12 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\CleanMyPC - Registry Cleaner.lnk
[2012/03/04 01:58:39 | 000,001,071 | ---- | M] () -- C:\WINDOWS\AWMODEM.INF
[2012/02/24 03:20:48 | 000,000,934 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\config.ftb
[2012/02/23 23:11:49 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/03/21 00:22:51 | 000,000,000 | -HS- | C] () -- C:\DkHyperbootSync
[2012/03/19 02:08:47 | 000,001,766 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Poser Pro 2010.lnk
[2012/03/19 02:08:47 | 000,001,766 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Poser Pro 2010 (x86).lnk
[2012/03/18 07:12:07 | 000,000,304 | ---- | C] () -- C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job
[2012/03/18 07:02:08 | 000,000,298 | ---- | C] () -- C:\WINDOWS\tasks\Immunet Scan 2233828.job
[2012/03/18 06:16:51 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2012/03/18 06:16:50 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012/03/18 06:16:48 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav
[2012/03/18 05:30:58 | 000,000,450 | ---- | C] () -- C:\WINDOWS\tasks\DriverNavigator Scheduled Scan.job
[2012/03/18 05:30:52 | 000,000,895 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\DriverNavigator.lnk
[2012/03/18 03:31:19 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\RW_{60CA5B1F-CD34-11DA-9388-806D6172696F}.dat
[2012/03/18 03:31:19 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\RW_{2230C340-6FDA-11E1-B998-0015F200843B}.dat
[2012/03/18 02:37:59 | 000,001,694 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Speed Up This PC.lnk
[2012/03/18 02:37:58 | 000,000,753 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Device Doctor.lnk
[2012/03/18 01:58:55 | 000,001,735 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Belarc Advisor.lnk
[2012/03/18 01:58:55 | 000,001,723 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Belarc Advisor.lnk
[2012/03/18 01:58:55 | 000,001,717 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Belarc Advisor.lnk
[2012/03/18 01:58:42 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
[2012/03/18 01:31:15 | 000,002,249 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SlimComputer.lnk
[2012/03/18 01:13:45 | 000,002,235 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SlimCleaner.lnk
[2012/03/17 23:22:16 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2012/03/17 23:22:16 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2012/03/17 07:32:51 | 000,000,298 | ---- | C] () -- C:\WINDOWS\tasks\Immunet Scan 3374359.job
[2012/03/17 07:25:44 | 000,000,753 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Immunet 3.0.lnk
[2012/03/17 06:49:03 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/03/17 06:43:53 | 000,001,704 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/03/17 06:09:13 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2012/03/17 05:56:19 | 000,006,867 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm
[2012/03/16 22:18:50 | 092,030,579 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012/03/16 21:31:54 | 000,000,155 | ---- | C] () -- C:\WINDOWS\System32\autopart.opt
[2012/03/16 03:06:55 | 000,000,154 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to Revo Uninstaller Pro.lnk
[2012/03/10 20:04:10 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\AutoPartNt.let
[2012/03/10 19:22:02 | 000,037,905 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LUUnInstall.LiveUpdate
[2012/03/10 19:06:35 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\RW_{D5B228C5-6AAB-11E1-B7AF-806D6172696F}.dat
[2012/03/10 19:06:35 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\RW_{AB1B9C46-6ABA-11E1-837F-0015F200843B}.dat
[2012/03/10 18:59:50 | 000,001,252 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Acronis Online Backup.lnk
[2012/03/10 18:59:50 | 000,000,884 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Acronis True Image Home 2011.lnk
[2012/03/10 01:12:19 | 000,002,147 | -H-- | C] () -- C:\WINDOWS\EPMBatch.ept
[2012/03/06 05:19:39 | 000,001,589 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\DOSBox 0.74.lnk
[2012/03/05 04:37:12 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\CleanMyPC - Registry Cleaner.lnk
[2012/03/04 01:58:39 | 000,001,071 | ---- | C] () -- C:\WINDOWS\AWMODEM.INF
[2012/02/23 08:19:47 | 000,000,934 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\config.ftb
[2012/02/23 07:55:52 | 000,079,872 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2012/02/15 05:07:55 | 000,073,010 | ---- | C] () -- C:\WINDOWS\System32\RW_AppData.dat
[2012/02/15 05:07:55 | 000,056,704 | ---- | C] () -- C:\WINDOWS\System32\RW_FileType.dat
[2012/02/15 05:07:55 | 000,000,444 | ---- | C] () -- C:\WINDOWS\System32\RW_FileFlag.dat
[2012/02/15 05:07:54 | 000,024,248 | ---- | C] () -- C:\WINDOWS\System32\RW_{FE91971D-2521-11DC-A3D5-0011D8D02BFE}.dat
[2012/02/15 04:48:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/02/14 06:35:09 | 000,215,144 | R--- | C] () -- C:\WINDOWS\patchw32.dll
[2012/02/14 06:33:35 | 000,215,144 | R--- | C] () -- C:\WINDOWS\pw32a.dll
[2011/07/18 15:43:12 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ReminderNextRun
[2011/03/21 19:56:22 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011/02/03 03:34:57 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Application Data\E70A770EF2.sys
[2011/02/03 03:34:56 | 000,001,890 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
[2010/10/14 04:21:00 | 000,165,072 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/08/22 01:47:02 | 000,057,344 | ---- | C] () -- C:\WINDOWS\UNINSTCP.EXE
[2010/08/21 02:28:01 | 000,001,280 | ---- | C] () -- C:\WINDOWS\HYAKKA.DAT
[2010/07/19 00:57:25 | 000,217,180 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010/07/19 00:57:17 | 000,217,180 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010/07/19 00:57:17 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010/07/09 14:04:40 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010/05/04 03:40:03 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2010/05/04 03:40:03 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2010/05/04 03:40:03 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2010/05/04 03:40:03 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2010/04/21 05:01:50 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/04/20 23:54:30 | 000,286,208 | ---- | C] () -- C:\WINDOWS\System32\binkw32.dll
[2010/04/20 21:15:47 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/04/20 21:15:45 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010/04/13 17:31:11 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\nvRegDev.dll
[2010/04/09 10:17:28 | 000,000,099 | ---- | C] () -- C:\WINDOWS\System32\VGAunistlog.ini
========== Files - Unicode (All) ==========
[2012/03/16 04:22:13 | 000,000,979 | ---- | M] ()(C:\Documents and Settings\All Users\Desktop\Acronis?Disk?Director?Home.lnk) -- C:\Documents and Settings\All Users\Desktop\Acronis Disk Director Home.lnk
[2012/03/16 04:22:13 | 000,000,979 | ---- | C] ()(C:\Documents and Settings\All Users\Desktop\Acronis?Disk?Director?Home.lnk) -- C:\Documents and Settings\All Users\Desktop\Acronis Disk Director Home.lnk
========== Alternate Data Streams ==========
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\AUTOEXEC.BAT:SummaryInformation
@Alternate Data Stream - 210 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CB0AACC9
@Alternate Data Stream - 153 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:77423EAD
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E6F9610D
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C8B8CEBD
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FB6501C
< End of report >
OTL Extras logfile created on: 3/21/2012 12:33:16 AM - Run 3
OTL by OldTimer - Version 3.2.39.1 Folder = C:\Documents and Settings\Compaq_Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 0.96 Gb Available Physical Memory | 47.81% Memory free
4.85 Gb Paging File | 3.94 Gb Available in Paging File | 81.26% Paging File free
Paging file location(s): C:\pagefile.sys 3072 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.63 Gb Total Space | 44.81 Gb Free Space | 40.14% Space Free | Partition Type: NTFS
Drive D: | 5.25 Gb Total Space | 0.76 Gb Free Space | 14.55% Space Free | Partition Type: FAT32
Drive K: | 74.53 Gb Total Space | 48.11 Gb Free Space | 64.56% Space Free | Partition Type: NTFS
Drive P: | 115.99 Gb Total Space | 79.26 Gb Free Space | 68.33% Space Free | Partition Type: NTFS
Computer Name: YOUR-4F1261A8E5 | User Name: Compaq_Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"20636:TCP" = 20636:TCP:*:Enabled:BitComet 20636 TCP
"20636:UDP" = 20636:UDP:*:Enabled:BitComet 20636 UDP
"6881:TCP" = 6881:TCP:*:Enabled:BitComet 6881 TCP
"6881:UDP" = 6881:UDP:*:Enabled:BitComet 6881 UDP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe" = C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe:*:Enabled:BackWeb for Presario
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink
"C:\Program Files\LightWave [8]\Programs\hub.exe" = C:\Program Files\LightWave [8]\Programs\hub.exe:*:Enabled:hub -- ()
"C:\Program Files\LightWave [8]\Programs\modeler.exe" = C:\Program Files\LightWave [8]\Programs\modeler.exe:*:Enabled:modeler
"C:\Program Files\GameHouse\BounceOut\BounceOut.exe" = C:\Program Files\GameHouse\BounceOut\BounceOut.exe:*:Enabled:Super Bounce Out!
"C:\Program Files\GameHouse\Collapse II\Relapse.exe" = C:\Program Files\GameHouse\Collapse II\Relapse.exe:*:Enabled:Super Collapse! II
"C:\Program Files\GameHouse\PopDrop\PopNDrop.exe" = C:\Program Files\GameHouse\PopDrop\PopNDrop.exe:*:Enabled:Super Pop & Drop
"C:\Program Files\HP DVD\Umbrella\MyDrive.exe" = C:\Program Files\HP DVD\Umbrella\MyDrive.exe:*:Enabled:MyDrive Application -- (Hewlett-Packard Company)
"C:\Program Files\Curious Labs\Poser 6\Poser.exe" = C:\Program Files\Curious Labs\Poser 6\Poser.exe:*:Enabled:Poser executable file -- (e frontier America, Inc)
"C:\Program Files\Poser 5.0\poser.exe" = C:\Program Files\Poser 5.0\poser.exe:*:Enabled:Poser executable file -- (Curious Labs, Inc.)
"C:\Program Files\Autodesk\backburner\monitor.exe" = C:\Program Files\Autodesk\backburner\monitor.exe:*:Enabled:backburner 2.3 monitor
"C:\Program Files\Autodesk\backburner\manager.exe" = C:\Program Files\Autodesk\backburner\manager.exe:*:Enabled:backburner 2.3 manager
"C:\Program Files\Autodesk\backburner\server.exe" = C:\Program Files\Autodesk\backburner\server.exe:*:Enabled:backburner 2.3 server
"C:\Program Files\LightWave [8]\Programs\lightwav.exe" = C:\Program Files\LightWave [8]\Programs\lightwav.exe:*:Enabled:lightwav -- ()
"C:\Program Files\Invisible Browsing\InvisibleBrowsing.exe" = C:\Program Files\Invisible Browsing\InvisibleBrowsing.exe:*:Enabled:Invisible Browsing -- (Amplusnet)
"C:\Program Files\DAZ\Bryce Lightning 2.0\Lightning.exe" = C:\Program Files\DAZ\Bryce Lightning 2.0\Lightning.exe:*:Enabled:Lightning
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:μTorrent
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger
"C:\Program Files\Yahoo!\Messenger\YServer.exe" = C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server
"C:\Program Files\SmartFTP Client 2.0\SmartFTP.exe" = C:\Program Files\SmartFTP Client 2.0\SmartFTP.exe:*:Enabled:SmartFTP Client 2.0 -- (SmartSoft Ltd.)
"C:\Program Files\FlashGet\flashget.exe" = C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- (FlashGet.com)
"C:\3dsmax7\3dsmax.exe" = C:\3dsmax7\3dsmax.exe:*:Enabled:3ds max 7
"C:\Program Files\backburner 2\monitor.exe" = C:\Program Files\backburner 2\monitor.exe:*:Enabled:backburner 2.3 monitor
"C:\Program Files\backburner 2\manager.exe" = C:\Program Files\backburner 2\manager.exe:*:Enabled:backburner 2.3 manager
"C:\Program Files\backburner 2\server.exe" = C:\Program Files\backburner 2\server.exe:*:Enabled:backburner 2.3 server
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour
"C:\Program Files\e frontier\Poser 7\Poser.exe" = C:\Program Files\e frontier\Poser 7\Poser.exe:*:Enabled:Poser executable file -- (Smith Micro Software, Inc)
"C:\WINDOWS\system32\fxsclnt.exe" = C:\WINDOWS\system32\fxsclnt.exe:*:Disabled:Microsoft Fax Console -- (Microsoft Corporation)
"C:\Program Files\Smith Micro\Poser Pro 2010\PoserPro.exe" = C:\Program Files\Smith Micro\Poser Pro 2010\PoserPro.exe:*:Enabled:Poser Pro executable file -- (Smith Micro Software, Inc)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{040F8F72-65AC-4EDF-80EC-2FADE3DC8827}" = Monopoly
"{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis True Image Home 2011
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA}" = PC-Doctor for Windows
"{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
"{13D41D72-0284-4931-A261-F86F6565D4B4}" = SiSRaidPackage
"{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20c31435-2a0a-4580-be8b-ac06fc243ca4}" = Python 2.7
"{26A24AE4-039D-4CA4-87B4-2F83216021F0}" = Java 6 Update 21
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java 6 Update 31
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2CA032FD-09D9-4B52-BA1D-4932216885FE}" = InterLok Driver Kit
"{312DFE8A-7B3A-41D4-AB00-52ACDB05ABE2}" = Ten Thumbs 4.3
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37476589-E48E-439E-A706-56189E2ED4C4}" = TheBflix
"{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}" = Mega Manager
"{3DBC8C6C-59CC-4EA3-9AB6-6BDE5B6E85DD}" = modo Support Videos
"{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}" = Microsoft Works
"{433C2951-F34C-460A-A6DA-C0ACA0A90B97}" = ATLAS Translation Double Pack V13.0 Trial Version
"{4723f199-fa64-4233-8e6e-9fccc95a18ee}" = Python 2.6.5
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}" = Microsoft Games for Windows - LIVE
"{4C8123F8-0002-6FD5-48B1-F6413E6E1DBF}" = Catalyst Control Center InstallProxy
"{51203E62-4DE3-49F5-86BC-357CE193891D}" = TransPoser
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{59C4F14F-7590-45FC-BE9F-A67AB3590709}" = iTunes
"{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}" = RGSS-RTP Standard
"{5DC0DF76-3B2F-4C38-BE34-58627949BC1A}" = Mega Manager
"{64963F0E-03F2-4B59-8D1B-1806545E7092}" = NVIDIA DDS Utilities
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.0.2
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}" = Microsoft Plus! Digital Media Edition Installer
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.0.0
"{70AB1576-7883-2313-C650-7A71270B1033}" = Nero 7 Demo
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{791CAF6C-90A3-11D4-8306-00D0B72E1DB9}" = Sentinel System Driver
"{7958FD50-F724-4A8A-B7B7-F90F6DAF56C2}" = Sim Brothel
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83A34773-F701-46E1-9414-657F35391413}" = SlimComputer
"{8B2C1E97-E7EC-4CB9-91B9-2B1C0C1F4840}" = SlimCleaner
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD Player
"{92C9D8BD-D305-4205-95E1-67F65F4944AD}_is1" = ZIP Password Unlocker 3.0
"{942E5031-2BD6-4C1B-918C-C8A1CBAE7B8C}" = Microsoft IntelliPoint 8.2
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = Sonic RecordNow!
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B34CAC6-738F-4A20-B428-A115C3E3474C}" = RPGXP
"{9B8FCF12-9922-46AF-A394-703E7F38E9E5}" = modo 202
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CCC78EF-027E-40E0-9B61-39932C65E3FE}" = Acronis Disk Director Home
"{9E1BAB75-EB78-440D-94C0-A3857BE2E733}" = System Requirements Lab
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A436F67F-687E-4736-BD2B-537121A804CF}" = HP Product Detection
"{A5CC2A09-E9D3-49EC-923D-03874BBD4C2C}" = Windows Defender Signatures
"{A6EE99EA-420C-4FA6-8A7C-FDB60D278855}" = VS10RuntimeWin32
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.4
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.0
"{B343B0E3-212A-40B9-8207-1BD299228F5D}" = Fallout 3 - The Garden of Eden Creation Kit
"{B43357AA-3A6D-4D94-B56E-43C44D09E548}" = Microsoft .NET Framework (English)
"{B95F3D27-F1B3-E680-F73C-29D2F8C78AF0}" = ATI Catalyst Install Manager
"{BA0601E1-B65C-11D5-80A9-0000B494D9A6}" = PC Booster
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C169D3BB-9A27-43F5-9979-09A0D65FE95C}" = SmartFTP Client 2.0
"{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}" = QuickTime
"{C73A3AB4-99A4-45E5-B77F-09A3065E0D6A}" = Microsoft IntelliType Pro 6.1
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFF49146-C6EC-44E8-9B07-1B98AD7611AD}" = FileUploader
"{D3490D20-3AE0-459D-AAD6-59195140EAC2}_is1" = Sothink SWF Quicker
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{E0879DDC-F053-4068-80C1-DBC358AC5917}" = LS_HSI
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FC122DB2-338C-49CF-BBB6-9AB78B23234D}" = Diskeeper 2010 Pro Premier
"{FD052FB9-FE90-4438-B355-15EDC89D8FB1}" = Microsoft Games for Windows - LIVE Redistributable
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"1Click DVD Copy_is1" = 1Click DVD Copy 4.2.9.11
"1st Evidence Remover_is1" = 1st Evidence Remover
"3DWin and Rheingold 3D" = 3DWin and Rheingold 3D
"7-Zip" = 7-Zip 9.19 beta
"ABC Amber CHM Converter" = ABC Amber CHM Converter
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"AFPL Ghostscript 8.54" = AFPL Ghostscript 8.54
"AFPL Ghostscript Fonts" = AFPL Ghostscript Fonts
"AI RoboForm" = RoboForm 7-3-2 (All Users)
"Alligator Flash Designer 5" = Alligator Flash Designer 5 (5.0.30.2)
"Anti Tracks_is1" = Anti Tracks 6.4.1
"Applian FLV Player2.0.24" = Applian FLV Player
"Avatar Lab" = Avatar Lab
"Babylon" = Babylon
"Blender" = Blender (remove only)
"BlenderNIFScripts" = Blender NIF Scripts (remove only)
"CCleaner" = CCleaner
"CheckIt Diagnostics" = CheckIt Diagnostics
"CHM To PDF PRO_is1" = CHM To PDF Converter PRO
"CleanMyPC - Registry Cleaner_is1" = CleanMyPC - Registry Cleaner
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"CopyToDVD_is1" = CopyToDVD
"DAZ Studio 3 3.0.1.135" = DAZ Studio 3
"DAZ|Mimic" = DAZ|Mimic 3.1
"Device Doctor_is1" = Device Doctor v2.1
"Draw3D" = Draw3D v4.1.2
"DriverNavigator_is1" = DriverNavigator 2.1.0
"DSL Speed V6.2_is1" = DSL Speed V6.2
"DVD Shrink_is1" = DVD Shrink 3.2
"DVD43_is1" = DVD43 v3.9.0
"EE1DC957B9D5CFE4087AED74D34CA1D9BA0C218F" = Windows Driver Package - KME Inc. (KMWDFILTER) HIDClass (09/16/2008 6.0.6000.0)
"FadeToBlack" = FadeToBlack
"Fallout 3 - Mothership Zeta Addon_is1" = Fallout 3 - Mothership Zeta Addon
"Fallout Mod Manager_is1" = Fallout Mod Manager 0.12.6
"Fallout New Vegas_is1" = Fallout New Vegas
"ffdshow_is1" = ffdshow v1.1.4096 [2011-11-29]
"File Chopper" = File Chopper
"Flash Decompiler_is1" = Flash Decompiler
"FlashDiggerPlus" = FlashDigger Plus
"FlashGet" = FlashGet 1.9.6.1073
"FlashGet(JetCar)" = FlashGet(JetCar)
"Fraps" = Fraps (remove only)
"Game Maker 6 Resource Pack 1" = Game Maker 6 Resource Pack 1
"Game Maker 6 Resource Pack 2" = Game Maker 6 Resource Pack 2
"Game Maker 6 Resource Pack 3" = Game Maker 6 Resource Pack 3
"Game Maker 6 Resource Pack 4" = Game Maker 6 Resource Pack 4
"Game Maker 6.1" = Game Maker 6.1
"Generic Mod Manager_is1" = Fallout Mod Manager 0.13.21
"getPlus®_dll" = getPlus®_dll
"Gmask 1.70 English" = Gmask 1.70 English
"Help and Support Additions" = Help and Support Additions
"Hex Workshop v4.20" = Hex Workshop v4.23
"Hexagon2.1" = Hexagon
"HP DVD" = HP DVD Writer
"IconCool Studio 1.92" = IconCool Studio 1.92
"i-Fun Viewer_is1" = i-Fun Viewer
"Immunet Protect" = Immunet 3.0
"InstallShield_{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA}" = PC-Doctor for Windows
"InstallShield_{59C4F14F-7590-45FC-BE9F-A67AB3590709}" = iTunes
"InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}" = QuickTime
"IrfanView" = IrfanView (remove only)
"LSI Soft Modem" = LSI PCI Soft Modem
"Magic Memory Optimizer_is1" = Magic Memory Optimizer v8.2.1.652
"Manga Studio EX 3.0" = Manga Studio EX 3.0
"MatrixEngine 1.0" = MatrixEngine
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework Full v1.0.3705 (1033)" = Microsoft .NET Framework (English) v1.0.3705
"Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2
"Microsoft Security Client" = Microsoft Security Essentials
"Morph Loader " = Morph Loader
"Morph Loader DS3 1.4.5.119" = Morph Loader DS3
"Mozilla Firefox 4.0.1 (x86 en-US)" = Mozilla Firefox 4.0.1 (x86 en-US)
"Mozilla Thunderbird (3.1.10)" = Mozilla Thunderbird (3.1.10)
"NetConceal Anonymity Shield" = NetConceal Anonymity Shield
"NifSkope" = NifSkope (remove only)
"Notepad++" = Notepad++
"NoteTab Light 5_is1" = NoteTab Light 5 (Remove only)
"NTREGOPT_is1" = NTREGOPT 1.1f
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Office8.0" = Microsoft Office 97, Professional Edition
"P3dO Explorer" = P3dO Explorer (remove only)
"Parameters Organizer " = Parameters Organizer
"Parameters Organizer DS3 1.1.5.119" = Parameters Organizer DS3
"Picasa 3" = Picasa 3
"Poser 6" = Poser 6
"Poser 7" = Poser 7
"Poser 7_is1" = Poser 7.0.4 Service Release
"Poser Pro 2010_is1" = Poser Pro 2010 Content
"Privacy Shield_is1" = Privacy Shield
"PrtScr_is1" = PrtScr 1.5
"PS2" = PS2
"PyFFI" = PyFFI 2.1.6
"PyFFI-py2.6" = Python 2.6 PyFFI-2.1.6
"Python 2.2.3" = Python 2.2.3
"pywin32-py2.2" = Python 2.2 pywin32 extensions (build 203)
"RADVideo" = RAD Video Tools
"RealPlayer 6.0" = RealPlayer
"RegClean Pro_is1" = RegClean Pro
"Rhinoceros 3.0 Evaluation" = Rhinoceros 3.0 Evaluation
"Robbox_is1" = Robbox
"RPG Maker VX RTP_is1" = RPG Maker VX RTP
"RPG Maker VX_is1" = RPG Maker VX
"Saint Paint Studio" = Saint Paint Studio
"Silo" = Silo 1.42
"SimpleMU MUD Client" = SimpleMU MUD Client
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"SmartFTP Client 2.0 Setup Files" = SmartFTP Client 2.0 Setup Files (remove only)
"SolSuite Graphics Pack Volume 1" = SolSuite Graphics Pack Volume 1
"SolSuite Graphics Pack Volume 2" = SolSuite Graphics Pack Volume 2
"SolSuite_is1" = SolSuite 2007 v7.2
"sp6" = Logitech SetPoint 6.32
"SWF, Lock & Load_is1" = SWF, Lock & Load 1.206
"SWFKit Pro_is1" = SWFKit Pro 3
"SystemRequirementsLab" = System Requirements Lab
"Tank Wars" = Tank Wars
"Taskbar Manager 3.1 Evaluation_is1" = Taskbar Manager 3.1 Evaluation
"The Tailor" = The Tailor
"Trickster Online" = Trickster Online
"Trojan Remover_is1" = Trojan Remover 6.8.2
"Victoria 4.2 Base DAZ Studio Content ps_pe069_Victoria4DS" = Victoria 4.2 Base DAZ Studio Content
"Victoria 4.2 Base ps_pe069_Victoria4" = Victoria 4.2 Base
"Viewpoint Manager" = Viewpoint Manager (Remove Only)
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VLC media player 0.9.2
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinZip" = WinZip
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 4 Professional V4.93
"Xfire" = Xfire (remove only)
"xp-AntiSpy" = xp-AntiSpy 3.95-2
"黒と黒と黒の祭壇" = 黒と黒と黒の祭壇
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3135469109-2156850678-1911169484-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"That Store Grid" = CiD Help
"The CrossDresser 2.4.0" = The CrossDresser 2.4.0
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 3/19/2012 1:49:47 AM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 1:49:48 AM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 1:49:48 AM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 1:49:48 AM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 4:32:08 AM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 4:32:10 AM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 3:12:39 PM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 3:12:39 PM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 3:12:43 PM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
Error - 3/19/2012 3:12:43 PM | Computer Name = YOUR-4F1261A8E5 | Source = Application Error | ID = 1000
Description = Faulting application , version 0.0.0.0, faulting module unknown, version
0.0.0.0, fault address 0x00000000.
[ System Events ]
Error - 3/18/2012 12:30:10 AM | Computer Name = YOUR-4F1261A8E5 | Source = Cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom1.
Error - 3/18/2012 1:20:31 AM | Computer Name = YOUR-4F1261A8E5 | Source = Cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom1.
Error - 3/18/2012 2:06:33 AM | Computer Name = YOUR-4F1261A8E5 | Source = Service Control Manager | ID = 7000
Description = The iolo FileInfoList Service service failed to start due to the following
error: %%2
Error - 3/18/2012 2:06:33 AM | Computer Name = YOUR-4F1261A8E5 | Source = Service Control Manager | ID = 7000
Description = The iolo System Service service failed to start due to the following
error: %%2
Error - 3/18/2012 8:51:48 AM | Computer Name = YOUR-4F1261A8E5 | Source = SRService | ID = 104
Description = The System Restore initialization process failed.
Error - 3/18/2012 8:52:00 AM | Computer Name = YOUR-4F1261A8E5 | Source = Service Control Manager | ID = 7023
Description = The System Restore Service service terminated with the following error:
%%32
Error - 3/19/2012 1:48:39 AM | Computer Name = YOUR-4F1261A8E5 | Source = Microsoft Antimalware | ID = 1005
Description = %%860 scan has encountered an error and terminated. Scan ID: {16650B7E-4680-41BC-A52D-9443FA20EEF5}
Scan
Type: %%802 Scan Parameters: %%805 User: NT AUTHORITY\NETWORK SERVICE Error Code:
0x8050800d Error description: Some history items could not be displayed. Please wait
a few minutes and try again. If that doesn't work, clear the history and then try
again.
Error - 3/19/2012 2:09:33 AM | Computer Name = YOUR-4F1261A8E5 | Source = Cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom1.
Error - 3/20/2012 4:30:57 AM | Computer Name = YOUR-4F1261A8E5 | Source = Cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom1.
Error - 3/20/2012 4:31:02 AM | Computer Name = YOUR-4F1261A8E5 | Source = Cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom1.
< End of report >
thanks in advance hope you can help me
its looking pretty dire from this end