Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

msi.dll is either not designed to run on Windows or it contains an err

Started by gvnaz , Aug 05 2012 06:05 PM

  • This topic is locked This topic is locked

#1
gvnaz
Posted 05 August 2012 - 06:05 PM

gvnaz

    Member

  • Member
  • PipPip
  • 66 posts
*edit - due to time constraints i am just going to reload Windows. i would appreciate a quick look so i know if this was in fact some virus/malware related problem or if it was a Windows problem. thanks!


the error that i'm consistently getting is

C:\Windows\system32\msi.dll is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support.


any time i try to open any Office 2010 product i get that error and occasionally it just shows up with other programs. just got the above error message associated with "GoogleUpdate.exe - bad image" along the top of the error window. from what i have read this error might be fixed by reloading Office but i can't open the Add/Remove programs to uninstall. i have also tried Revo uninstaller but it comes up with the above error message. i have also tried another Office uninstaller and it resulted in the same error.

also, getting random crashes of Firefox and occasionally when it opens instead of being on my start page it is on a page called gadgetbox.

OTL.txt
OTL logfile created on: 8/5/2012 4:34:12 PM - Run 1
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Taylor\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.01 Gb Available Physical Memory | 50.53% Memory free
3.98 Gb Paging File | 2.86 Gb Available in Paging File | 71.89% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298.09 Gb Total Space | 172.08 Gb Free Space | 57.73% Space Free | Partition Type: NTFS

Computer Name: TAYLOR-PC | User Name: Taylor | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/08/05 16:33:35 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Taylor\Desktop\OTL.exe
PRC - [2012/07/19 08:52:38 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\[]TOOLS[]\Mozilla Firefox\firefox.exe
PRC - [2012/07/03 09:21:30 | 004,273,976 | ---- | M] (AVAST Software) -- C:\Program Files\[]TOOLS[]\Avast\AvastUI.exe
PRC - [2012/07/03 09:21:29 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\[]TOOLS[]\Avast\AvastSvc.exe
PRC - [2012/01/03 18:52:00 | 001,659,152 | ---- | M] (InternetSafety.com, Inc.) -- C:\Program Files\Internet Content Filter\X3WatchPRO.exe
PRC - [2012/01/03 18:51:54 | 000,242,448 | ---- | M] (InternetSafety.com, Inc.) -- C:\Program Files\Internet Content Filter\UpdateService.exe
PRC - [2011/05/27 16:23:00 | 001,300,264 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe
PRC - [2011/04/01 05:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 05:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/03/23 07:17:43 | 000,417,280 | ---- | M] (Stardock Corporation) -- C:\Program Files\[]TOOLS[]\CursorFX\CursorFX.exe
PRC - [2009/07/13 18:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe


========== Modules (No Company Name) ==========

MOD - [2012/07/19 08:52:36 | 002,003,424 | ---- | M] () -- C:\Program Files\[]TOOLS[]\Mozilla Firefox\mozjs.dll
MOD - [2012/07/17 13:02:20 | 000,970,240 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll
MOD - [2012/03/06 17:25:14 | 008,527,520 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/05/28 22:04:56 | 000,140,288 | ---- | M] () -- C:\Program Files\[]TOOLS[]\WinRAR\RarExt.dll
MOD - [2010/03/23 07:17:43 | 000,059,904 | ---- | M] () -- C:\Program Files\[]TOOLS[]\CursorFX\zlib1.dll
MOD - [2009/07/13 23:50:04 | 000,325,120 | ---- | M] () -- C:\Program Files\[]TOOLS[]\TeraCopy\TeraCopy.dll
MOD - [2009/06/22 02:26:00 | 000,305,664 | ---- | M] () -- C:\Program Files\[]TOOLS[]\TeraCopy\TeraCopyExt.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/07/19 08:52:37 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/07/03 09:21:29 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\[]TOOLS[]\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012/01/03 18:51:54 | 000,242,448 | ---- | M] (InternetSafety.com, Inc.) [Auto | Running] -- C:\Program Files\Internet Content Filter\UpdateService.exe -- (x3UpdateSvc)
SRV - [2011/09/04 12:31:17 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/05/27 16:23:00 | 001,300,264 | ---- | M] (Synaptics, Inc.) [Auto | Running] -- C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe -- (ScrybeUpdater)
SRV - [2011/04/01 05:11:52 | 000,428,640 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 18:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2012/07/03 09:21:54 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012/07/03 09:21:53 | 000,721,000 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012/07/03 09:21:53 | 000,353,688 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012/07/03 09:21:53 | 000,057,656 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012/07/03 09:21:53 | 000,044,784 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2012/07/03 09:21:53 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012/05/28 07:09:04 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dc3d.sys -- (dc3d)
DRV - [2011/04/01 05:11:10 | 004,333,280 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC)
DRV - [2011/04/01 05:09:48 | 000,291,424 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/11/20 03:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/03/31 03:13:28 | 000,379,904 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2009/07/13 15:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009/07/13 15:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009/06/24 15:08:30 | 000,275,536 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2007/11/09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
IE - HKLM\..\SearchScopes,DefaultScope = {AA74FE59-BC4C-4172-9AC4-73315F71CFFE}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{AA74FE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxap...q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B3 0D 68 96 17 6B CC 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...00000164492cd6e
IE - HKCU\..\SearchScopes\{AA74FE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxap...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "GadgetBox"
FF - prefs.js..browser.search.order.1: "GadgetBox"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.gboxapp.com/"
FF - prefs.js..keyword.URL: "http://www.google.co...ient&gfns=1&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\[]TOOLS[]\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\[]TOOLS[]\PDF-XChange\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\__TOOL~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\__TOOL~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\[]TOOLS[]\PDF-XChange\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\[]TOOLS[]\PDF-XChange\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Taylor\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Taylor\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Taylor\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Taylor\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\[]TOOLS[]\Avast\WebRep\FF [2012/07/04 01:34:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/11/08 01:29:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/05/11 16:46:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\[]TOOLS[]\Mozilla Firefox\components [2012/07/19 08:52:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\[]TOOLS[]\Mozilla Firefox\plugins [2011/11/08 01:30:52 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/11/08 01:29:54 | 000,000,000 | ---D | M]

[2011/09/04 14:20:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Extensions
[2012/08/02 19:02:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions
[2012/06/30 16:34:49 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2012/03/30 16:48:33 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/07/07 13:12:55 | 000,000,000 | ---D | M] (PitchDark) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\{c1dffba0-628e-11d9-9669-0800200c9a66}
[2012/06/21 01:12:14 | 000,000,000 | ---D | M] (LavaFox V2-Blue) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]
[2012/06/01 01:22:27 | 000,000,000 | ---D | M] (Fast Dial) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]
[2012/06/21 01:12:17 | 000,000,000 | ---D | M] (LavaFox V2) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]
[2012/07/25 17:18:56 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]
[2012/06/21 01:12:15 | 000,000,000 | ---D | M] (LavaFox V2-Green) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]
[2012/06/21 01:12:12 | 000,000,000 | ---D | M] (LavaFox V2-Purple) -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\extensions\[email protected]
[2012/07/30 21:54:44 | 000,002,293 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\a-z-lyrics---google.xml
[2012/07/30 21:54:44 | 000,002,325 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\babylon-online.xml
[2012/08/05 16:32:54 | 000,006,184 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\bible-gateway.xml
[2012/07/30 21:54:45 | 000,002,529 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\halfcom.xml
[2012/07/30 21:54:44 | 000,002,537 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\imdb.xml
[2012/07/30 21:54:43 | 000,001,942 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\mycroft-project.xml
[2012/07/30 21:54:45 | 000,000,966 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\swagbuckscom.xml
[2012/07/30 21:54:45 | 000,002,385 | ---- | M] () -- C:\Users\Taylor\AppData\Roaming\Mozilla\Firefox\Profiles\la3j9our.default\searchplugins\youtube.xml
[2012/07/04 01:34:04 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\[]TOOLS[]\AVAST\WEBREP\FF
[2012/05/11 16:46:11 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2011/09/09 17:59:38 | 000,079,135 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{1A2D0EC4-75F5-4C91-89C4-3656F6E44B68}.XPI
[2011/09/09 18:23:26 | 000,018,589 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{1CED4832-F06E-413F-AA14-9EB63AD40ACE}.XPI
[2011/09/09 17:38:05 | 000,097,169 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{3D7EB24F-2740-49DF-8937-200B1CC08F8A}.XPI
[2011/09/17 19:39:10 | 000,254,273 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{CE6E6E3B-84DD-4CAC-9F63-8D2AE4F30A4B}.XPI
[2012/01/25 13:36:39 | 000,138,614 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{D40F5E7B-D2CF-4856-B441-CC613EEFFBE3}.XPI
[2011/10/30 02:45:40 | 000,434,392 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{D4DD63FA-01E4-46A7-B6B1-EDAB7D6AD389}.XPI
[2011/09/09 17:59:38 | 000,048,903 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\{E10A6337-382E-4FE6-96DE-936ADC34DD04}.XPI
[2011/09/09 17:13:40 | 000,025,781 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\[email protected]
[2012/08/02 19:02:06 | 000,265,523 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\[email protected]
[2011/12/01 17:38:40 | 000,021,360 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\[email protected]
[2012/03/26 01:16:44 | 000,032,381 | ---- | M] () (No name found) -- C:\USERS\TAYLOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LA3J9OUR.DEFAULT\EXTENSIONS\[email protected]

O1 HOSTS File: ([2009/06/10 14:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\[]TOOLS[]\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\[]TOOLS[]\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast] C:\Program Files\[]TOOLS[]\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ICF] C:\Program Files\Internet Content Filter\X3watchPRO.exe (InternetSafety.com, Inc.)
O4 - HKCU..\Run: [CursorFX] C:\Program Files\[]TOOLS[]\CursorFX\CursorFX.exe (Stardock Corporation)
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThumbnailCache = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableThumbnailsOnNetworkFolders = 1
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000037 - C:\Windows\System32\icf.dll (InternetSafety.com, Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1510DDEF-8758-4E0E-9D14-4404850B2E15}: DhcpNameServer = 128.95.120.1 128.95.112.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DA8E7F00-BBF4-48F7-B291-D7031A998CD4}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F07032F5-B206-4881-9BC1-E5D7B6B6F471}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/08/05 16:33:27 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Taylor\Desktop\OTL.exe
[2012/08/02 19:35:25 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2012/07/27 19:57:07 | 000,000,000 | ---D | C] -- C:\Users\Taylor\Desktop\The Classic Crime - We All Look Elsewhere EP (2004)
[2012/07/22 19:23:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/07/18 22:15:04 | 000,000,000 | ---D | C] -- C:\Users\Taylor\AppData\Local\Spotify
[2012/07/18 22:11:16 | 000,000,000 | ---D | C] -- C:\Users\Taylor\AppData\Roaming\Spotify
[4 C:\Users\Taylor\Desktop\*.tmp files -> C:\Users\Taylor\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/08/05 16:35:23 | 000,022,784 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/05 16:35:23 | 000,022,784 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/05 16:33:35 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Taylor\Desktop\OTL.exe
[2012/08/05 16:25:14 | 000,000,768 | ---- | M] () -- C:\Users\Taylor\Desktop\Settings.ini
[2012/08/05 16:15:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/05 16:15:43 | 1603,084,288 | -HS- | M] () -- C:\hiberfil.sys
[2012/08/02 21:08:50 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2413749180-1777660233-3457748707-1001UA.job
[2012/08/02 19:11:37 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_NuidFltr_01009.Wdf
[2012/08/02 19:08:51 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_dc3d_01009.Wdf
[2012/08/02 18:51:16 | 000,021,710 | ---- | M] () -- C:\Users\Taylor\Desktop\error.jpg
[2012/07/30 14:31:35 | 000,000,017 | ---- | M] () -- C:\Users\Taylor\AppData\Local\resmon.resmoncfg
[2012/07/30 14:03:00 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2413749180-1777660233-3457748707-1001Core.job
[2012/07/25 17:49:25 | 000,002,018 | -H-- | M] () -- C:\Users\Taylor\Documents\Default.rdp
[2012/07/22 23:25:40 | 000,624,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/07/22 23:25:40 | 000,106,522 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/07/22 23:20:02 | 000,772,608 | ---- | M] () -- C:\Users\Taylor\Desktop\SDM_EN.msi
[2012/07/22 19:23:21 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2012/07/20 21:10:04 | 000,150,249 | ---- | M] () -- C:\Users\Taylor\Documents\Taylor Hoffard Resume.pdf
[2012/07/14 14:58:23 | 000,084,743 | ---- | M] () -- C:\crash.dmp
[2012/07/14 07:31:04 | 000,409,152 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/07/14 01:49:48 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012/07/14 01:49:48 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012/07/09 09:18:15 | 000,215,210 | ---- | M] () -- C:\Users\Taylor\Desktop\business plan for established business 2011.pdf
[2012/07/09 09:18:09 | 000,274,395 | ---- | M] () -- C:\Users\Taylor\Desktop\Business Plan for a Startup Business 2011.pdf
[4 C:\Users\Taylor\Desktop\*.tmp files -> C:\Users\Taylor\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/08/05 16:25:14 | 000,000,768 | ---- | C] () -- C:\Users\Taylor\Desktop\Settings.ini
[2012/08/05 16:24:58 | 026,835,456 | ---- | C] () -- C:\Users\Taylor\Desktop\Microsoft Toolkit.exe
[2012/08/02 19:11:37 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_NuidFltr_01009.Wdf
[2012/08/02 19:08:51 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_dc3d_01009.Wdf
[2012/08/02 18:51:16 | 000,021,710 | ---- | C] () -- C:\Users\Taylor\Desktop\error.jpg
[2012/07/30 14:31:35 | 000,000,017 | ---- | C] () -- C:\Users\Taylor\AppData\Local\resmon.resmoncfg
[2012/07/22 23:19:58 | 000,772,608 | ---- | C] () -- C:\Users\Taylor\Desktop\SDM_EN.msi
[2012/07/20 21:10:02 | 000,150,249 | ---- | C] () -- C:\Users\Taylor\Documents\Taylor Hoffard Resume.pdf
[2012/07/18 22:15:02 | 000,001,797 | ---- | C] () -- C:\Users\Taylor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2012/07/15 18:02:33 | 000,000,912 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2413749180-1777660233-3457748707-1001UA.job
[2012/07/15 18:02:31 | 000,000,860 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2413749180-1777660233-3457748707-1001Core.job
[2012/07/14 01:49:48 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012/07/14 01:49:48 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012/07/09 09:18:14 | 000,215,210 | ---- | C] () -- C:\Users\Taylor\Desktop\business plan for established business 2011.pdf
[2012/07/09 09:18:07 | 000,274,395 | ---- | C] () -- C:\Users\Taylor\Desktop\Business Plan for a Startup Business 2011.pdf
[2012/06/12 18:03:07 | 000,000,000 | ---- | C] () -- C:\Windows\System32\msi.dll
[2011/11/08 01:20:46 | 000,207,027 | ---- | C] () -- C:\Windows\hpoins46.dat
[2011/09/11 05:03:18 | 000,186,460 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/09/09 02:11:30 | 000,003,183 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Windows Media Audio 10 Codec.dat
[2011/09/09 02:09:23 | 000,003,225 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp m4a Codec.dat
[2011/09/09 01:36:59 | 000,001,843 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Mp2 and BwfMp2 codec.dat
[2011/09/09 01:36:57 | 000,001,223 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Wave64 Codec.dat
[2011/09/09 01:36:56 | 000,002,227 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBPoweramp tooLame MP2 codec.dat
[2011/09/09 01:36:55 | 000,011,472 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Real Audio (Helix) Encoder.dat
[2011/09/09 01:36:47 | 000,001,205 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Dalet Codec.dat
[2011/09/09 01:36:45 | 000,003,007 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp WavPack Codec.dat
[2011/09/09 01:36:39 | 000,003,029 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Ogg Vorbis Codec.dat
[2011/09/09 01:36:31 | 000,003,151 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp mp3 (Fraunhofer IIS) Codec.dat
[2011/09/09 01:36:25 | 000,003,106 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Monkeys Audio Codec.dat
[2011/09/09 01:36:18 | 000,002,950 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp FLAC Codec.dat
[2011/09/09 01:36:11 | 000,002,842 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp [Calculate Audio CRC] Codec.dat
[2011/09/09 01:34:03 | 005,096,824 | R--- | C] () -- C:\Windows\System32\SpoonUninstall.exe
[2011/09/09 01:34:03 | 000,013,854 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Music Converter.dat
[2011/09/05 21:40:47 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2011/09/04 08:26:36 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2011/04/01 05:07:02 | 010,877,272 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2011/04/01 05:07:02 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2011/04/01 05:06:56 | 000,331,608 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2011/04/01 04:56:00 | 000,027,872 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2011/03/22 23:58:22 | 000,014,168 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll

========== LOP Check ==========

[2012/07/22 22:59:55 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Auslogics
[2012/04/25 12:39:01 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Babylon
[2012/06/12 23:00:30 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\dBpoweramp
[2012/03/17 01:24:36 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\IrfanView
[2011/09/12 17:51:58 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Leadertech
[2011/09/07 21:42:34 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Outertech
[2012/07/22 21:46:05 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Spotify
[2011/09/09 00:50:27 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Synaptics
[2012/08/05 16:24:46 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\TeraCopy
[2011/09/08 09:26:46 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\Tracker Software
[2011/09/05 21:39:15 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\WinBatch
[2011/09/11 22:53:22 | 000,000,000 | ---D | M] -- C:\Users\Taylor\AppData\Roaming\x3watch
[2012/07/22 09:39:35 | 000,032,598 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 149 bytes -> C:\ProgramData\TEMP:07BF512B

< End of report >


Extras.txt
OTL Extras logfile created on: 8/5/2012 4:34:12 PM - Run 1
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Taylor\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.01 Gb Available Physical Memory | 50.53% Memory free
3.98 Gb Paging File | 2.86 Gb Available in Paging File | 71.89% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298.09 Gb Total Space | 172.08 Gb Free Space | 57.73% Space Free | Partition Type: NTFS

Computer Name: TAYLOR-PC | User Name: Taylor | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
.ini [@ = GetDiz.IniFile] -- C:\Program Files\[]TOOLS[]\GetDiz\GetDiz.exe (Outertech - http://outertech.com)
.txt [@ = GetDiz.TextFile] -- C:\Program Files\[]TOOLS[]\GetDiz\GetDiz.exe (Outertech - http://outertech.com)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\[]TOOLS[]\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\[]TOOLS[]\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{031EC3E9-5123-418B-B8AD-7EFA1B74AED6}" = lport=445 | protocol=6 | dir=in | app=system |
"{1B4F3FF2-CED4-4F08-BC56-8FD2D122AA29}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{1DAF418A-772E-4318-9369-304B928AB7FA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{39F76922-FAEE-4997-8A4F-06BE2B0FF232}" = rport=445 | protocol=6 | dir=out | app=system |
"{3B5EB11F-5D2B-4B6C-B14A-E3062B7735EF}" = rport=138 | protocol=17 | dir=out | app=system |
"{3BF4B573-C104-433A-99EF-77B1939B77D2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{419CDA47-B19F-47D0-929D-D3747938E921}" = lport=139 | protocol=6 | dir=in | app=system |
"{4E292E81-D262-46D6-8A8F-69E4530DF77E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5F4FFC81-9544-44BA-A5EC-2698E81E8595}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{764222C4-A1CB-41AF-9B3B-758C468877D2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{771D5C8C-770F-48A1-845F-1052BED9D971}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8D858DE7-4AC7-472F-9F9E-ABFAF22A54B1}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A0435403-834C-41C0-8C25-C3713C846DAF}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BA1CE6BA-D7D0-47D7-9EEB-F0296B58A6B7}" = rport=137 | protocol=17 | dir=out | app=system |
"{D4CCEA10-CB37-4AF6-97D4-D4EEB72B132D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D66FA8DA-B55D-47C2-945F-C3683625BE53}" = rport=139 | protocol=6 | dir=out | app=system |
"{D75CF55D-0113-40BC-ACFB-5E25C167C851}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D86EADB2-48A8-45BA-9C60-586C48A84039}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DA3A99D3-E881-4E6C-8856-ADA3E1396C4D}" = lport=138 | protocol=17 | dir=in | app=system |
"{E25E307B-9915-44F2-BA27-B71475F70677}" = lport=137 | protocol=17 | dir=in | app=system |
"{E62A9008-139F-4C52-910B-6A723202BDDD}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6AA72AE-65A6-4AF2-8FE3-8050F727255F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{EF9CA183-DDF6-469D-A2F9-1E39364B32CA}" = rport=10243 | protocol=6 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03521B00-5D17-4622-AAE9-A9E262992CF4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{092294FF-BCC9-4353-A36C-0522290605A4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1878B32D-97C2-4A79-8793-9D35C22F1ECD}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe |
"{23ACE46E-11E7-497F-8E5A-FBFA1DAAB821}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{27E2931B-2D4B-42AF-9D37-22485FAF48F9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2F39204D-BE77-4635-9EA8-9B2A94B7E409}" = protocol=58 | dir=in | [email protected],-28545 |
"{3498664E-79B4-46FA-BDC9-0CA962B4651F}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe |
"{3544FB00-AD52-4002-9BBA-4A88154AFC2F}" = protocol=17 | dir=in | app=c:\users\taylor\appdata\roaming\spotify\spotify.exe |
"{35CCB982-B1DC-4A51-9A15-6BA0F6F96591}" = protocol=17 | dir=in | app=c:\users\taylor\appdata\roaming\spotify\spotify.exe |
"{36A849A0-7C1B-426B-990E-67097611AE99}" = protocol=6 | dir=in | app=c:\users\taylor\appdata\roaming\spotify\spotify.exe |
"{37DA5369-54F2-47C6-97E4-B1ED7E8ACFE7}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe |
"{3BF8BEE6-F56D-43D9-8785-82706AD470E1}" = protocol=17 | dir=in | app=c:\program files\[]tools[]\microsoft office\office14\onenote.exe |
"{3C383BC5-B9BA-4A91-ADA3-3C53D59A975B}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe |
"{4022682C-D8B3-451E-88D9-43163DB3C9C9}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe |
"{41C7580D-B887-4AB8-A6FE-18EA734FCEF2}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{4E188BD3-2DEF-497F-8286-AD5807B89486}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe |
"{5D63BDFE-0D83-441F-B9C8-D8B0CABFC1C8}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{606D1FF3-12EB-46B0-A670-D64DEAF7CB49}" = dir=in | app=c:\program files\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{6106AD13-CFC3-4BCA-AF47-91BBB89B29B9}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe |
"{65338E05-0DE2-4256-80BA-E9EF81794C04}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6D668372-3CF3-4472-BE05-04D4742D0906}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{717B38DE-1137-415F-995F-2792724DB8E9}" = protocol=17 | dir=in | app=c:\users\taylor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{769F98D6-EA5C-4AF6-BD23-D85CF3452ED5}" = protocol=17 | dir=in | app=c:\users\taylor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{76D5ACFF-6DB0-4061-B6FD-E10B89196E26}" = dir=in | app=c:\program files\[]tools[]\itunes\itunes.exe |
"{7D9AE6FC-2C6C-40BE-98FD-F9935C28C625}" = protocol=6 | dir=in | app=c:\users\taylor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{897D8A78-0FF6-495B-8C00-CF8A44AA2CA7}" = protocol=6 | dir=in | app=c:\users\taylor\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{8D77E8B4-7FF8-47A9-B963-5238EE6966A5}" = protocol=1 | dir=out | [email protected],-28544 |
"{934AA127-BA43-487C-BF86-E11B338A2127}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9A8EFCF2-49A9-499D-973D-08FE266B2137}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A76B3842-34B2-481E-9AE4-65ACC51EFD66}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{ACBCF56D-545C-4812-8453-16276D747055}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe |
"{B4F8EEB9-086E-4503-AD52-3268C30D552D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B5EC967A-F7A2-40F5-AA87-68E5ADFCD011}" = protocol=6 | dir=out | app=system |
"{B75A56FC-CEB6-43B4-A016-10BD9396D2E0}" = protocol=1 | dir=in | [email protected],-28543 |
"{BC29DF01-B6D6-439E-AA04-FA8C06594569}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe |
"{D3312974-B2AD-46DD-AF9B-652F584CE9A6}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe |
"{D416129D-5015-4167-B9B5-F2707E8AB7BF}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe |
"{D757F7D6-74A9-4216-87E3-504333273509}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe |
"{DC81EED8-ACB9-4F9A-8D64-1368543171DB}" = protocol=6 | dir=in | app=c:\program files\[]tools[]\microsoft office\office14\onenote.exe |
"{DE534266-A0B3-47B0-863F-176887D9CB4D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F53B2FEC-EDF0-4157-852B-C8DFBA02E1ED}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F57252A8-2DA3-4D73-A31A-0774DDC87A42}" = protocol=6 | dir=in | app=c:\users\taylor\appdata\roaming\spotify\spotify.exe |
"{F69A559C-FBF0-4A1F-8EE0-BDB512A975D5}" = protocol=58 | dir=out | [email protected],-28546 |
"{FB97CF48-5FDC-4ECC-9E7A-BC10684F273C}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{7D764AEE-D80E-4778-9213-8E46BBC1654B}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{EBA0743A-92E1-49FD-A455-2F160B2275E5}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0360D8F0-626A-4E87-8A16-938BD0BEBCC5}" = 32 Bit HP CIO Components Installer
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{097CDB1E-07C9-40F1-9972-F0F9F3A287E4}" = Network
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}" = DeviceDiscovery
"{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}" = Synaptics Gesture Suite featuring SYNAPTICS | Scrybe
"{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}" = HPProductAssistant
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox
"{29ED20C9-5E15-4969-9279-25BF3727A3DA}" = iTunes
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3F15E203-BC3E-3597-84CD-EDF99546C917}" = Google Talk Plugin
"{42BBA4CC-EFB6-4653-A2CC-F305D4B399C3}" = PS_AIO_07_D110_SW_Min
"{565E7B0E-B76B-4EAD-9753-F1E72A5CF12E}" = HPAppStudio
"{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}" = Status
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
"{74DC0593-6BC6-4001-AD5F-D810AFB68D86}" = HP Update
"{76423878-BF55-4C2F-AC25-2A82CE9AFB7A}" = Windows 7 Logon Background Changer
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EE94FD8-5F52-4463-A340-185D16328158}" = WebReg
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{90140000-0012-0000-0000-0000000FF1CE}" = Microsoft Office Standard 2010
"{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.STANDARD_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.STANDARD_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.STANDARD_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.STANDARD_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.STANDARD_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.STANDARD_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.STANDARD_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.STANDARD_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.STANDARD_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.STANDARD_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.STANDARD_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.STANDARD_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91D3AD6F-09CD-4695-9FA3-8FB15429BE97}" = D110
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95140000-0052-0409-0000-0000000FF1CE}" = Microsoft Visio Viewer 2010
"{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{A00B9A50-3090-4CFF-9CDA-82DA0BEDAA21}" = Apple Mobile Device Support
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}" = HPSSupply
"{B7B3E9B3-FB14-4927-894B-E9124509AF5A}" = Adobe Flash Player 10 ActiveX
"{BB3447F6-9553-4AA9-960E-0DB5310C5779}" = GPBaseService2
"{BC5DD87B-0143-4D14-AAE6-97109614DC6B}" = SolutionCenter
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CD31E63D-47FD-491C-8117-CF201D0AFAB5}" = TrayApp
"{D360FA88-17C8-4F14-B67F-13AAF9607B12}" = MarketResearch
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{DBC1DE57-B55A-4D57-9769-1DB9BE506AF7}" = HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7
"{E517094C-06B6-419F-8FFD-EF4F57972130}" = QuickTransfer
"{E8625250-6F20-4A37-B5D2-9058AFAF7719}" = X3WatchPRO
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FA0FF682-CC70-4C57-93CD-E276F3E7537E}" = BufferChm
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Auslogics BoostSpeed_is1" = Auslogics BoostSpeed 5.1
"avast" = avast! Free Antivirus
"CCleaner" = CCleaner
"CDisplay_is1" = CDisplay 1.8
"Coupon Printer for Windows5.0.0.0" = Coupon Printer for Windows
"CursorFX" = CursorFX
"dBpoweramp [Calculate Audio CRC] Codec" = dBpoweramp [Calculate Audio CRC] Codec
"dBpoweramp Dalet Codec" = dBpoweramp Dalet Codec
"dBpoweramp FLAC Codec" = dBpoweramp FLAC Codec
"dBpoweramp m4a Codec" = dBpoweramp m4a Codec
"dBpoweramp Monkeys Audio Codec" = dBpoweramp Monkeys Audio Codec
"dBpoweramp Mp2 and BwfMp2 codec" = dBpoweramp Mp2 and BwfMp2 codec
"dBpoweramp mp3 (Fraunhofer IIS) Codec" = dBpoweramp mp3 (Fraunhofer IIS) Codec
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"dBpoweramp Ogg Vorbis Codec" = dBpoweramp Ogg Vorbis Codec
"dBpoweramp Real Audio (Helix) Encoder" = dBpoweramp Real Audio (Helix) Encoder
"dBPoweramp tooLame MP2 codec" = dBPoweramp tooLame MP2 codec
"dBpoweramp Wave64 Codec" = dBpoweramp Wave64 Codec
"dBpoweramp WavPack Codec" = dBpoweramp WavPack Codec
"dBpoweramp Windows Media Audio 10 Codec" = dBpoweramp Windows Media Audio 10 Codec
"DivX Setup" = DivX Setup
"FLV to AVI MPEG WMV 3GP MP4 iPod Converter_is1" = FLV to AVI MPEG WMV 3GP MP4 iPod Converter 5.2.0603
"GadgetBox" = GadgetBox
"GetDiz" = GetDiz
"HDMI" = Intel® Graphics Media Accelerator Driver
"HP Imaging Device Functions" = HP Imaging Device Functions 14.0
"HP Photo Creations" = HP Photo Creations
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 14.0
"HPExtendedCapabilities" = HP Customer Participation Program 14.0
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.62.0.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 14.0.1 (x86 en-US)" = Mozilla Firefox 14.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.STANDARD" = Microsoft Office Standard 2010
"Revo Uninstaller" = Revo Uninstaller 1.93
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeraCopy_is1" = TeraCopy 2.2
"The KMPlayer" = The KMPlayer (remove only)
"TVWiz" = Intel® TV Wizard
"WinRAR archiver" = WinRAR 4.01 (32-bit)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Spotify" = Spotify

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 7/19/2012 1:01:07 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1014

Error - 7/19/2012 1:01:07 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1014

Error - 7/19/2012 1:01:08 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 7/19/2012 1:01:08 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2028

Error - 7/19/2012 1:01:08 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2028

Error - 7/19/2012 1:01:09 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 7/19/2012 1:01:09 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3120

Error - 7/19/2012 1:01:09 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3120

Error - 7/19/2012 1:07:08 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 7/19/2012 1:07:08 PM | Computer Name = Taylor-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 361563

[ Media Center Events ]
Error - 2/4/2012 2:09:32 AM | Computer Name = Taylor-PC | Source = MCUpdate | ID = 0
Description = 10:09:32 PM - Error connecting to the internet. 10:09:32 PM - Unable
to contact server..

Error - 2/4/2012 2:09:42 AM | Computer Name = Taylor-PC | Source = MCUpdate | ID = 0
Description = 10:09:37 PM - Error connecting to the internet. 10:09:37 PM - Unable
to contact server..

Error - 2/10/2012 3:01:09 AM | Computer Name = Taylor-PC | Source = MCUpdate | ID = 0
Description = 11:01:08 PM - Error connecting to the internet. 11:01:08 PM - Unable
to contact server..

Error - 2/10/2012 4:01:16 AM | Computer Name = Taylor-PC | Source = MCUpdate | ID = 0
Description = 12:01:15 AM - Error connecting to the internet. 12:01:16 AM - Unable
to contact server..

[ System Events ]
Error - 5/21/2012 6:45:05 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 6:57:07 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 7:09:05 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 7:21:04 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 7:45:01 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 9:21:01 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 9:33:03 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 10:21:02 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 10:33:03 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =

Error - 5/21/2012 10:45:04 PM | Computer Name = Taylor-PC | Source = bowser | ID = 8003
Description =


< End of report >

Edited by gvnaz, 07 August 2012 - 01:07 PM.

  • 0

Advertisements

#2
Gammo
Posted 10 August 2012 - 07:03 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP