eyup otl report [Closed]

OTL logfile created on: 2013/05/30 01:18:09 ق.ظ - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18343)
Locale: 00000429 | Country: Iran | Language: FAR | Date Format: yyyy/MM/dd

3.25 Gb Total Physical Memory | 2.23 Gb Available Physical Memory | 68.58% Memory free
5.09 Gb Paging File | 4.18 Gb Available in Paging File | 82.16% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 123.29 Gb Total Space | 59.99 Gb Free Space | 48.66% Space Free | Partition Type: NTFS
Drive D: | 150.15 Gb Total Space | 144.56 Gb Free Space | 96.27% Space Free | Partition Type: NTFS
Drive E: | 224.61 Gb Total Space | 212.86 Gb Free Space | 94.77% Space Free | Partition Type: NTFS
Drive F: | 224.61 Gb Total Space | 213.80 Gb Free Space | 95.19% Space Free | Partition Type: NTFS
Drive G: | 208.85 Gb Total Space | 155.10 Gb Free Space | 74.27% Space Free | Partition Type: NTFS

Computer Name: BF6154C3A605476 | User Name: ayoub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/05/30 01:17:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\OTL.exe
PRC - [2013/05/27 22:48:02 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/05/17 02:02:02 | 000,601,408 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\IBUpdaterService\ibsvc.exe
PRC - [2013/05/14 01:46:13 | 000,181,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012/11/30 18:23:58 | 000,088,696 | R--- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\KaraokeSer.exe
PRC - [2012/07/24 05:46:35 | 001,437,544 | ---- | M] (RockMelt, Inc.) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Application\rockmelt.exe
PRC - [2012/04/23 16:53:38 | 003,487,128 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2011/01/13 04:11:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2011/01/13 04:11:24 | 002,219,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010/10/14 22:48:26 | 004,249,872 | ---- | M] () -- C:\Program Files\HDD Regenerator\HDD Regenerator.exe
PRC - [2010/07/20 06:28:52 | 004,910,904 | ---- | M] (COMODO.) -- C:\Program Files\COMODO\Time Machine\CTMTRAY.exe
PRC - [2010/07/20 06:28:52 | 000,280,888 | ---- | M] (COMODO.) -- C:\Program Files\COMODO\Time Machine\ClientService.exe
PRC - [2010/07/05 00:21:26 | 000,017,408 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
PRC - [2010/05/25 16:58:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2009/12/24 02:04:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2008/04/14 08:12:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/05/11 07:23:26 | 000,061,440 | ---- | M] ( ) -- C:\WINDOWS\system32\slmdmsr.exe
PRC - [2001/08/04 01:52:10 | 000,367,104 | ---- | M] (istgah) -- C:\istgah_dic\dic_istgah.exe

========== Modules (No Company Name) ==========

MOD - [2013/05/27 22:47:52 | 003,128,728 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/05/17 02:02:02 | 000,601,408 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\IBUpdaterService\ibsvc.exe
MOD - [2013/01/24 15:46:54 | 001,050,112 | ---- | M] () -- c:\Program Files\BrowseToSave\sprotector.dll
MOD - [2012/07/24 05:46:35 | 000,499,048 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Application\0.16.91.483\ppgooglenaclpluginchrome.dll
MOD - [2012/07/24 05:46:28 | 000,122,744 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Application\0.16.91.483\avutil-51.dll
MOD - [2012/07/24 05:46:27 | 001,099,128 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Application\0.16.91.483\avcodec-53.dll
MOD - [2012/07/24 05:46:27 | 000,190,328 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Application\0.16.91.483\avformat-53.dll
MOD - [2012/07/24 05:46:26 | 009,465,032 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Application\0.16.91.483\plugins\npswf32.dll
MOD - [2012/05/26 01:08:18 | 008,517,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2012/02/17 21:25:35 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011/10/26 18:41:20 | 000,325,120 | ---- | M] () -- C:\Program Files\TeraCopy\TeraCopy.dll
MOD - [2011/10/26 18:41:20 | 000,305,664 | ---- | M] () -- C:\Program Files\TeraCopy\TeraCopyExt.dll
MOD - [2011/08/12 16:41:50 | 000,245,248 | ---- | M] () -- \\?\globalroot\systemroot\system32\mswsock.dll
MOD - [2011/08/12 16:41:50 | 000,245,248 | ---- | M] () -- \\.\globalroot\systemroot\system32\mswsock.dll
MOD - [2011/05/01 01:32:08 | 000,054,000 | ---- | M] () -- C:\WINDOWS\system32\PrxerNsp.dll
MOD - [2010/10/14 22:48:26 | 004,249,872 | ---- | M] () -- C:\Program Files\HDD Regenerator\HDD Regenerator.exe
MOD - [2010/07/16 05:18:30 | 000,476,160 | ---- | M] () -- C:\Program Files\COMODO\Time Machine\Styles\comodo.theme
MOD - [2010/07/05 02:02:36 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
MOD - [2010/07/05 00:21:26 | 000,017,408 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
MOD - [2008/04/14 08:12:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007/05/07 19:36:02 | 000,128,000 | ---- | M] () -- C:\Program Files\ImageBadger\extib.dll

========== Services (SafeList) ==========

SRV - [2013/05/27 22:47:56 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/05/17 02:02:02 | 000,601,408 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Application Data\IBUpdaterService\ibsvc.exe -- (IBUpdaterService)
SRV - [2013/05/14 01:46:13 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012/11/30 18:23:58 | 000,088,696 | R--- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\WINDOWS\system32\KaraokeSer.exe -- (KaraokeService)
SRV - [2012/01/05 20:12:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2011/12/15 21:59:42 | 000,014,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2011/01/13 04:14:02 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2011/01/13 04:11:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2010/07/20 06:28:52 | 000,280,888 | ---- | M] (COMODO.) [Auto | Running] -- C:\Program Files\COMODO\Time Machine\ClientService.exe -- (ClientService)
SRV - [2010/04/06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\system32\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2009/12/24 02:04:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2005/05/11 07:23:26 | 000,061,440 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\slmdmsr.exe -- (SLService)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\ckldrv.sys -- (NetworkX)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\TEMP\cpuz135\cpuz135_x32.sys -- (cpuz135)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a1v5ex5a)
DRV - [2013/03/31 22:04:46 | 000,466,008 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2013/03/21 18:29:12 | 000,009,088 | ---- | M] (Greenway Information & Communication Technology) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\HDCS.SYS -- (HDCS)
DRV - [2013/03/05 14:16:10 | 000,036,912 | ---- | M] (Kerio Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\kvnet.sys -- (kvnet)
DRV - [2012/11/30 18:24:10 | 002,558,712 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2012/05/14 10:42:12 | 000,103,040 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2012/04/23 15:56:26 | 000,108,448 | ---- | M] (Tonec Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idmtdi.sys -- (IDMTDI)
DRV - [2012/01/18 15:56:16 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pwdrvio.sys -- (pwdrvio)
DRV - [2012/01/18 15:56:14 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pwdspio.sys -- (pwdspio)
DRV - [2011/07/21 13:31:37 | 000,013,616 | ---- | M] (Marvell Semiconductor Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\mvxxmm.sys -- (mvxxmm)
DRV - [2011/07/21 13:31:36 | 000,005,632 | ---- | M] (Marvell Semiconductor Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\mv64xxmm.sys -- (mv64xxmm)
DRV - [2011/07/21 13:31:35 | 000,013,616 | ---- | M] (Marvell Semiconductor Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\mv61xxmm.sys -- (mv61xxmm)
DRV - [2011/03/22 12:28:42 | 000,065,136 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
DRV - [2011/01/27 04:04:30 | 006,406,656 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2011/01/10 18:16:16 | 000,018,544 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AppleCharger.sys -- (AppleCharger)
DRV - [2010/12/22 02:34:06 | 000,141,264 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2010/12/22 02:34:06 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010/12/22 01:17:38 | 000,134,000 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2010/12/22 01:17:38 | 000,033,120 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010/08/03 23:58:36 | 000,055,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010/07/19 09:36:36 | 002,097,152 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\CTMSHD.sys -- (CTMSHD)
DRV - [2010/07/19 09:36:32 | 002,097,152 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\CTMMOUNT.sys -- (CTMMOUNT)
DRV - [2010/07/19 09:36:28 | 002,097,152 | ---- | M] () [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\CTMFLT.sys -- (CTMFLT)
DRV - [2010/07/05 00:21:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2010/01/29 12:40:02 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2009/11/20 15:26:50 | 000,025,984 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2009/03/18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2005/05/11 07:01:42 | 000,698,848 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slntamr.sys -- (Slntamr)
DRV - [2005/05/11 06:58:18 | 000,014,680 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SLDRV\RecAgent.sys -- (RecAgent)
DRV - [2005/05/11 06:55:50 | 000,237,616 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\mtlmnt5.sys -- (Mtlmnt5)
DRV - [2005/05/11 06:50:58 | 000,101,328 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\slnthal.sys -- (SlNtHal)
DRV - [2005/05/11 06:49:14 | 001,464,848 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\mtlstrm.sys -- (Mtlstrm)
DRV - [2005/05/11 06:39:50 | 000,013,248 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slwdmsup.sys -- (SlWdmSup)
DRV - [2002/07/17 09:53:02 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\ASPI32.SYS -- (Aspi32)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.b1.org...or&chid=c162341
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page Before = http://search.b1.org...or&chid=c162341
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.b1.org...or&chid=c162341
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Before = http://search.b1.org...or&chid=c162341
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\go, = http://gorsel.yandex...1806008&text=%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\ha, = http://haber.yandex....=clutop&text=%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\vi, = http://video.yandex....1806008&text=%s
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\y, = http://yandex.com.tr...1806008&text=%s
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.my-online...=2&affID=119292
IE - HKCU\..\SearchScopes\{3150E303-942F-411E-891E-CB9D95119698}: "URL" = http://www.mysearchr...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultenginename,S: S", ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.order.1,S: S", ""
FF - prefs.js..browser.search.selectedEngine: "My Online Search"
FF - prefs.js..browser.search.selectedEngine,S: S", ""
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..browser.startup.homepage: "http://search.b1.org...r&chid=c162341"
FF - prefs.js..extensions.enabledAddons: proxylist%40proxylists.me:2.2
FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3
FF - prefs.js..extensions.enabledAddons: %7Bf36c6cd1-da73-491d-b290-8fc9115bfa55%7D:2.2.1
FF - prefs.js..extensions.enabledAddons: %7B7585C31E-1E94-4498-ACEC-CB913A05FC52%7D:3.0.0
FF - prefs.js..extensions.enabledAddons: info%40freeneti.com:4.3
FF - prefs.js..extensions.enabledAddons: yasearch%40yandex.ru:7.4.2
FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.16
FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:3.8.7
FF - prefs.js..extensions.enabledAddons: toolbar%40proxylists.me:1.0
FF - prefs.js..extensions.enabledAddons: ich%40maltegoetz.de:1.4.8
FF - prefs.js..extensions.enabledAddons: addon%40defaulttab.com:2.0
FF - prefs.js..extensions.enabledAddons: speedanalysis02%40SpeedAnalysis.com:1.0.0.0
FF - prefs.js..extensions.enabledAddons: pluswinks%40PlusWinks:1.0.0.0
FF - prefs.js..extensions.enabledAddons: %7B1018e4d6-728f-4b20-ad56-37578a4de76b%7D:4.2.9
FF - prefs.js..extensions.enabledAddons: https-everywhere%40eff.org:3.2.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - prefs.js..keyword.URL: "http://search.babylo...c6f65c66991&q="
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 80
FF - prefs.js..network.proxy.no_proxies_on: ""
FF - prefs.js..network.proxy.type: 0
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@us-w1.rockmelt.com/RockMelt Update;version=8: C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\RockMelt\Update\1.2.189.1\npRockMeltOneClick8.dll (RockMelt Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012/05/26 03:09:19 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\IDM\idmmzcc5 [2013/05/26 22:50:19 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\IDM\idmmzcc5 [2013/05/26 22:50:19 | 000,000,000 | ---D | M]

[2012/06/21 01:17:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Extensions
[2012/06/21 00:51:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Extensions\{a463f10c-3994-11da-9945-000d60ca027b}
[2012/09/18 02:25:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\extensions
[2012/09/18 02:25:48 | 000,000,000 | ---D | M] (uTorrentControl_v2) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
[2013/05/30 00:43:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions
[2013/05/21 02:28:57 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2013/05/30 00:43:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{ad708c09-d51b-45b3-9d28-4eba2681febf}
[2013/04/27 00:30:04 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2013/05/10 00:59:53 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/05/26 00:40:15 | 000,000,000 | ---D | M] (HTTPS-Everywhere) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/05/02 15:36:20 | 000,000,000 | ---D | M] (ProxTube - Unblock YouTube) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/05/17 02:03:51 | 000,000,000 | ---D | M] (Smiley Bar for Facebook) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\pluswinks@PlusWinks
[2013/05/17 02:03:09 | 000,000,000 | ---D | M] (Speed Analysis 2) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/05 23:06:18 | 000,000,000 | ---D | M] (ذ’ر–ذ·رƒذ°ذ»رŒذ½ر‹رڈ ذ·ذ°ذ؛ذ»ذ°ذ´ذ؛ر–) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/04/03 18:58:37 | 000,000,000 | ---D | M] (ذڑذ°ذ¼ذ؟ذ°ذ½ذµذ½ر‚ "ذذ»ذµذ¼ذµذ½ر‚ر‹ ذ¯ذ½ذ´ذµذ؛رپذ°") -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/01/23 16:24:52 | 000,005,958 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\4sharedCopyLinks.xpi
[2013/05/10 15:42:04 | 000,027,737 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/04/17 23:24:07 | 000,275,665 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/10/30 23:22:41 | 000,053,803 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/10/30 23:33:45 | 000,015,824 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/05/25 23:49:25 | 000,304,615 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/10/30 23:37:26 | 000,007,654 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/18 00:45:28 | 000,008,849 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/18 00:40:47 | 000,018,908 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/18 00:37:41 | 000,160,158 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/04/06 20:50:25 | 000,195,270 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/04/04 21:21:30 | 000,392,806 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/05/19 23:16:56 | 000,374,078 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/18 00:45:28 | 000,548,607 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/10/30 23:39:37 | 000,060,811 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/10/30 23:22:41 | 000,348,761 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/18 00:45:28 | 000,185,839 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/10/31 00:16:40 | 000,014,954 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/04/18 00:01:16 | 000,030,288 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2012/11/23 17:00:05 | 000,060,290 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\[email protected]
[2013/03/18 00:45:28 | 000,073,384 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{6bdc61ae-7b80-44a3-9476-e1d121ec2238}.xpi
[2013/03/18 00:45:28 | 000,035,347 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{7585C31E-1E94-4498-ACEC-CB913A05FC52}.xpi
[2013/04/17 23:34:31 | 000,014,214 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi
[2013/04/05 12:37:19 | 000,714,654 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
[2013/05/25 23:48:00 | 000,269,448 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013/02/28 00:47:27 | 000,745,166 | ---- | M] () (No name found) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\extensions\{f36c6cd1-da73-491d-b290-8fc9115bfa55}.xpi
[2013/05/24 14:57:43 | 000,002,373 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\babylon.xml
[2013/04/17 23:11:37 | 000,001,286 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\balatarin.xml
[2012/11/01 23:45:41 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\crack-serial-keygen.xml
[2013/03/03 23:49:19 | 000,002,193 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\gorsel.yandex.com.tr-224919.xml
[2013/03/03 23:49:19 | 000,002,183 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\haber.yandex.com.tr-224919.xml
[2013/03/03 23:49:19 | 000,002,183 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\video.yandex.com.tr-224919.xml
[2013/03/03 23:49:19 | 000,002,171 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\yandex.com.tr-224919.xml
[2013/03/05 23:08:27 | 000,002,328 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\yqs-barff-yagorsel.xml
[2013/03/05 23:08:27 | 000,002,027 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\yqs-barff-yahaber.xml
[2013/03/05 23:08:27 | 000,002,129 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\yqs-barff-yandex.xml
[2013/03/05 23:08:27 | 000,002,151 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Mozilla\Firefox\Profiles\f70m5whm.default-1351622449838\searchplugins\yqs-barff-yavideo.xml
[2013/05/27 22:46:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/05/27 22:48:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/05/27 22:48:09 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/03/24 03:49:18 | 000,002,313 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml

========== Chrome ==========

CHR - homepage: http://search.b1.org...or&chid=c162341
CHR - homepage: http://search.b1.org...or&chid=c162341
CHR - Extension: No name found = C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf\1.0.0.0\
CHR - Extension: No name found = C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hahpjplbmicfkmoccokbjejahjjpnena\1.2_0\
CHR - Extension: No name found = C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mocblcnaofikinigmceddfghppkkjbog\1.0.0.0\

Hosts file not found
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Smiley Bar for Facebook) - {4723AAA8-B2F9-4CC1-9E60-190976DB1FA4} - C:\Program Files\Smiley Bar for Facebook\ScriptHost.dll (Plus Winks)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (DefaultTab Browser Helper) - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
O2 - BHO: (Download Energy Toolbar) - {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\prxtbDown.dll (Conduit Ltd.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Download Energy Toolbar) - {ad708c09-d51b-45b3-9d28-4eba2681febf} - C:\Program Files\Download_Energy\prxtbDown.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Download Energy Toolbar) - {AD708C09-D51B-45B3-9D28-4EBA2681FEBF} - C:\Program Files\Download_Energy\prxtbDown.dll (Conduit Ltd.)
O4 - HKLM..\Run: [COMODO_TimeMachine] c:\program files\comodo\time machine\ctmtray.exe (COMODO.)
O4 - HKLM..\Run: [egui] c:\program files\eset\eset smart security\egui.exe (ESET)
O4 - HKLM..\Run: [HDD Regenerator] C:\Program Files\HDD Regenerator\HDD Regenerator.exe ()
O4 - HKLM..\Run: [UnlockerAssistant] C:\program files\unlocker\unlockerassistant.exe ()
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 253
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Main present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\PrxerNsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\PrxerDrv.dll (Initex)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\PrxerDrv.dll (Initex)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\iavlsp.dll (iolo technologies, LLC)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\iavlsp.dll (iolo technologies, LLC)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\System32\iavlsp.dll (iolo technologies, LLC)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\PrxerDrv.dll (Initex)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - %SystemRoot%\system32\PrxerNsp.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - %SystemRoot%\system32\PrxerNsp.dll File not found
O13 - gopher Prefix: missing
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1352130476921 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1347646918375 (MUWebControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B7BD77F4-D952-4920-BECA-03D1C4CC987A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B7BD77F4-D952-4920-BECA-03D1C4CC987A}: NameServer = 208.67.222.222,208.67.220.220
O20 - AppInit_DLLs: (c:\progra~1\browse~1\sprote~1.dll) - c:\Program Files\BrowseToSave\sprotector.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/05/26 01:06:56 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2012/10/18 13:32:52 | 002,432,406 | ---- | M] () - E:\auto-hide-ip-5-1-1-6.exe -- [ NTFS ]
O32 - AutoRun File - [2012/09/16 13:57:48 | 008,754,269 | ---- | M] () - E:\AutoCad Survey2000i.zip -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk /r \??\C:)
O34 - HKLM BootExecute: (autocheck autochk /r \??\I:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/30 01:17:16 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\OTL.exe
[2013/05/30 00:21:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\aproposfix
[2013/05/29 22:11:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Recent
[2013/05/27 23:46:13 | 000,000,000 | ---D | C] -- C:\Program Files\RealWorld Change Cursor
[2013/05/27 23:46:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Start Menu\Programs\RealWorld
[2013/05/27 22:46:32 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/05/26 00:24:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\XWindows Dock
[2013/05/26 00:24:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\XWindows Dock
[2013/05/26 00:24:01 | 000,000,000 | ---D | C] -- C:\Program Files\XWindows Dock
[2013/05/24 14:37:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\gdpcomputing
[2013/05/24 14:36:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\PureBasic
[2013/05/24 01:41:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\URSoft
[2013/05/24 01:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Your Uninstaller! 7
[2013/05/24 01:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\Your Uninstaller! 7
[2013/05/24 01:22:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\HDD Regenerator
[2013/05/24 01:22:48 | 000,000,000 | ---D | C] -- C:\Program Files\HDD Regenerator
[2013/05/24 01:22:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Downloaded Installations
[2013/05/22 01:31:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\websayfa
[2013/05/18 22:51:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2013/05/17 13:05:03 | 000,000,000 | ---D | C] -- C:\backup
[2013/05/17 12:43:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\SpeedyPC Software
[2013/05/17 12:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SpeedyPC Software
[2013/05/17 02:10:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Start Menu\Programs\Haali Media Splitter
[2013/05/17 02:10:56 | 000,000,000 | ---D | C] -- C:\Program Files\Haali
[2013/05/17 02:03:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\PlusWinks
[2013/05/17 02:03:49 | 000,000,000 | ---D | C] -- C:\Program Files\Smiley Bar for Facebook
[2013/05/17 02:03:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\SpeedAnalysis2
[2013/05/16 10:25:35 | 000,000,000 | R--D | C] -- C:\Program Files\PHOTOMOD GeoCalculator
[2013/05/16 02:02:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Start Menu\Programs\Ace Ping
[2013/05/16 02:02:12 | 000,000,000 | ---D | C] -- C:\Program Files\Ace Ping
[2013/05/16 01:32:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\آموزشی-ریاضی
[2013/05/15 12:55:18 | 000,000,000 | R--D | C] -- C:\UberIcon
[2013/05/14 01:46:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/05/14 01:46:24 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013/05/14 01:46:23 | 000,263,584 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013/05/14 01:46:19 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013/05/14 01:46:19 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013/05/14 01:46:19 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/05/14 00:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\COMODO
[2013/05/14 00:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2013/05/12 00:01:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\3340-3347
[2013/05/10 00:55:15 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\مقالات رایانه
[2013/05/06 19:47:08 | 000,000,000 | ---D | C] -- C:\Samsung
[2013/05/06 01:20:13 | 000,935,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Vb40016.dll
[2013/05/06 01:20:13 | 000,722,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Vb40032.dll
[2013/05/06 01:20:13 | 000,445,016 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2013/05/06 01:20:13 | 000,398,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Vbrun300.dll
[2013/05/06 01:20:13 | 000,356,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbrun200.dll
[2013/05/06 01:20:13 | 000,265,216 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\WINDOWS\System32\ssleay32.dll
[2013/05/06 01:20:13 | 000,109,144 | ---- | C] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2013/05/06 01:20:12 | 001,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCOMCTL32.OCX
[2013/05/06 01:20:11 | 001,178,112 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\WINDOWS\System32\libeay32.dll
[2013/05/06 01:20:11 | 000,265,216 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\WINDOWS\System32\libssl32.dll
[2013/05/06 01:19:11 | 004,636,672 | ---- | C] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticaldd.dll
[2013/05/06 01:19:11 | 000,057,344 | ---- | C] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalrt.dll
[2013/05/06 01:19:11 | 000,053,248 | ---- | C] (Advanced Micro Devices Inc.) -- C:\WINDOWS\System32\aticalcl.dll
[2013/05/06 01:05:59 | 000,000,000 | ---D | C] -- C:\SysInfo
[2013/05/06 01:05:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\SysInfo
[2013/05/04 23:50:30 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\EasyBoot 6.5.2.695 Portable [www.Downloadha.Com]
[2013/05/03 22:59:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NCH Software
[2013/05/03 22:59:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\NCH Software
[2013/05/02 16:56:45 | 000,000,000 | R--D | C] -- C:\New Folder
[2013/05/02 16:48:20 | 000,000,000 | R--D | C] -- C:\segma
[2013/05/02 16:30:35 | 000,000,000 | R--D | C] -- C:\asra
[2013/05/02 02:19:20 | 000,000,000 | ---D | C] -- D:\es document\What are the system requirements for Java_files
[2013/05/02 02:18:34 | 000,000,000 | ---D | C] -- D:\es document\How do I install Java online for Internet Explorer_files
[2013/05/02 00:51:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Hide IP NG
[2013/04/30 22:28:26 | 000,000,000 | ---D | C] -- C:\Program Files\FarsightCalc
[1998/04/26 23:00:00 | 000,570,128 | R--- | C] (Microsoft Corporation) -- C:\Program Files\Common Files\DAO350.DLL

========== Files - Modified Within 30 Days ==========

[2013/05/30 01:17:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\OTL.exe
[2013/05/30 00:13:39 | 000,496,094 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/05/30 00:13:39 | 000,084,578 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/05/30 00:09:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/05/30 00:09:29 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\GoforFilesUpdate.job
[2013/05/30 00:09:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/05/29 22:11:25 | 000,000,468 | ---- | M] () -- D:\es document\cc_20130529_221123.reg
[2013/05/29 21:52:55 | 000,060,416 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/05/29 00:49:40 | 000,000,047 | ---- | M] () -- C:\chid
[2013/05/28 23:34:31 | 000,004,664 | ---- | M] () -- D:\es document\cc_20130528_233429.reg
[2013/05/28 23:32:42 | 000,006,574 | ---- | M] () -- D:\es document\cc_20130528_233240.reg
[2013/05/28 22:33:01 | 000,000,420 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2013/05/27 23:18:08 | 000,139,148 | ---- | M] () -- D:\es document\Bazf41WtZ7EZ07AGVsGHtquzpU8iH7h3xvpbKG2ILmazM+73lc0539LnBnII=&b=6
[2013/05/27 20:13:36 | 000,002,199 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\Roshd Training Softwares.lnk
[2013/05/26 20:31:34 | 000,002,772 | ---- | M] () -- D:\es document\cc_20130526_203131.reg
[2013/05/26 20:29:05 | 000,000,493 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\fg.ini
[2013/05/26 19:37:43 | 000,000,752 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Microsoft\Internet Explorer\Quick Launch\COMODO Time Machine.lnk
[2013/05/24 23:12:36 | 000,000,362 | ---- | M] () -- D:\es document\cc_20130524_231235.reg
[2013/05/24 23:12:25 | 000,000,242 | ---- | M] () -- D:\es document\cc_20130524_231223.reg
[2013/05/24 23:12:14 | 000,013,684 | ---- | M] () -- D:\es document\cc_20130524_231212.reg
[2013/05/24 23:10:45 | 000,001,722 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Microsoft\Internet Explorer\Quick Launch\HDD Regenerator.lnk
[2013/05/24 23:10:29 | 000,000,747 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Microsoft\Internet Explorer\Quick Launch\Your Uninstaller!.lnk
[2013/05/24 04:07:55 | 000,107,760 | ---- | M] () -- D:\es document\RPF-22.jpg
[2013/05/24 01:00:18 | 000,001,450 | ---- | M] () -- D:\es document\cc_20130524_010016.reg
[2013/05/23 02:13:37 | 000,018,606 | ---- | M] () -- D:\es document\smileys 48.gif
[2013/05/22 00:18:57 | 000,001,210 | ---- | M] () -- D:\es document\cc_20130522_001851.reg
[2013/05/21 22:39:06 | 000,001,156 | ---- | M] () -- D:\es document\cc_20130521_223903.reg
[2013/05/21 19:20:21 | 000,005,874 | ---- | M] () -- D:\es document\cc_20130521_192019.reg
[2013/05/21 18:53:54 | 000,000,168 | ---- | M] () -- D:\es document\cc_20130521_185350.reg
[2013/05/21 00:41:29 | 000,030,208 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\akremu.dgn
[2013/05/20 22:32:14 | 000,001,074 | ---- | M] () -- D:\es document\cc_20130520_223212.reg
[2013/05/19 02:17:45 | 000,003,370 | ---- | M] () -- D:\es document\cc_20130519_021744.reg
[2013/05/17 12:52:15 | 000,004,810 | ---- | M] () -- D:\es document\cc_20130517_125213.reg
[2013/05/17 12:38:05 | 000,000,877 | ---- | M] () -- C:\0
[2013/05/16 18:19:26 | 000,000,785 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\Shortcut to PhGeoCalc.lnk
[2013/05/16 02:02:20 | 000,000,016 | -HS- | M] () -- C:\WINDOWS\hemljjji.sys
[2013/05/15 23:45:34 | 000,004,636 | ---- | M] () -- D:\es document\cc_20130515_234532.reg
[2013/05/15 23:26:28 | 000,011,894 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\Ramin VPN.pbk
[2013/05/15 01:25:08 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013/05/15 01:04:25 | 000,000,168 | ---- | M] () -- D:\es document\cc_20130515_010422.reg
[2013/05/15 00:09:24 | 000,008,298 | ---- | M] () -- D:\es document\cc_20130515_000921.reg
[2013/05/14 01:46:14 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013/05/14 01:46:11 | 000,263,584 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013/05/14 01:46:11 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013/05/14 01:46:11 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013/05/14 01:46:11 | 000,144,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2013/05/14 01:46:10 | 000,866,720 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2013/05/14 01:46:10 | 000,788,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2013/05/13 09:08:38 | 000,000,464 | ---- | M] () -- D:\es document\cc_20130513_090836.reg
[2013/05/11 19:00:03 | 000,000,104 | ---- | M] () -- C:\WINDOWS\System32\_WKERNEL.SYL
[2013/05/11 18:49:58 | 000,000,992 | ---- | M] () -- D:\es document\cc_20130511_184955.reg
[2013/05/10 01:57:18 | 000,000,168 | ---- | M] () -- D:\es document\cc_20130510_015716.reg
[2013/05/08 23:31:02 | 000,001,422 | ---- | M] () -- D:\es document\cc_20130508_233100.reg
[2013/05/08 23:30:50 | 000,010,148 | ---- | M] () -- D:\es document\cc_20130508_233048.reg
[2013/05/05 23:59:58 | 000,000,124 | ---- | M] () -- D:\es document\ax_files.xml
[2013/05/05 22:29:59 | 000,010,102 | ---- | M] () -- D:\es document\cc_20130505_222957.reg
[2013/05/05 22:26:31 | 000,046,847 | ---- | M] () -- D:\es document\regerrors2013-05-05.htm
[2013/05/03 13:43:55 | 000,000,549 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\toonel.ini
[2013/05/02 14:10:10 | 000,000,620 | ---- | M] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\Shortcut (2) to My Documents.lnk
[2013/05/02 02:24:29 | 001,252,242 | ---- | M] () -- D:\es document\BCL For Java SE.mht
[2013/05/02 02:19:28 | 000,009,705 | ---- | M] () -- D:\es document\What are the system requirements for Java.htm
[2013/05/02 02:18:35 | 000,012,937 | ---- | M] () -- D:\es document\How do I install Java online for Internet Explorer.htm
[2013/05/01 02:20:04 | 000,006,252 | ---- | M] () -- D:\es document\cc_20130501_022002.reg

========== Files Created - No Company Name ==========

[2013/05/29 22:11:24 | 000,000,468 | ---- | C] () -- D:\es document\cc_20130529_221123.reg
[2013/05/28 23:34:30 | 000,004,664 | ---- | C] () -- D:\es document\cc_20130528_233429.reg
[2013/05/28 23:32:41 | 000,006,574 | ---- | C] () -- D:\es document\cc_20130528_233240.reg
[2013/05/27 23:17:35 | 000,139,148 | ---- | C] () -- D:\es document\Bazf41WtZ7EZ07AGVsGHtquzpU8iH7h3xvpbKG2ILmazM+73lc0539LnBnII=&b=6
[2013/05/26 20:31:33 | 000,002,772 | ---- | C] () -- D:\es document\cc_20130526_203131.reg
[2013/05/26 19:37:43 | 000,000,752 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Microsoft\Internet Explorer\Quick Launch\COMODO Time Machine.lnk
[2013/05/24 23:12:35 | 000,000,362 | ---- | C] () -- D:\es document\cc_20130524_231235.reg
[2013/05/24 23:12:24 | 000,000,242 | ---- | C] () -- D:\es document\cc_20130524_231223.reg
[2013/05/24 23:12:13 | 000,013,684 | ---- | C] () -- D:\es document\cc_20130524_231212.reg
[2013/05/24 23:10:45 | 000,001,722 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Microsoft\Internet Explorer\Quick Launch\HDD Regenerator.lnk
[2013/05/24 23:10:29 | 000,000,747 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\Microsoft\Internet Explorer\Quick Launch\Your Uninstaller!.lnk
[2013/05/24 14:57:33 | 000,000,282 | ---- | C] () -- C:\WINDOWS\tasks\GoforFilesUpdate.job
[2013/05/24 04:08:01 | 000,107,760 | ---- | C] () -- D:\es document\RPF-22.jpg
[2013/05/24 01:00:18 | 000,001,450 | ---- | C] () -- D:\es document\cc_20130524_010016.reg
[2013/05/23 02:13:36 | 000,018,606 | ---- | C] () -- D:\es document\smileys 48.gif
[2013/05/22 00:18:56 | 000,001,210 | ---- | C] () -- D:\es document\cc_20130522_001851.reg
[2013/05/21 22:39:05 | 000,001,156 | ---- | C] () -- D:\es document\cc_20130521_223903.reg
[2013/05/21 19:20:20 | 000,005,874 | ---- | C] () -- D:\es document\cc_20130521_192019.reg
[2013/05/21 18:53:52 | 000,000,168 | ---- | C] () -- D:\es document\cc_20130521_185350.reg
[2013/05/20 22:32:13 | 000,001,074 | ---- | C] () -- D:\es document\cc_20130520_223212.reg
[2013/05/19 02:17:44 | 000,003,370 | ---- | C] () -- D:\es document\cc_20130519_021744.reg
[2013/05/17 12:52:14 | 000,004,810 | ---- | C] () -- D:\es document\cc_20130517_125213.reg
[2013/05/17 12:38:05 | 000,000,877 | ---- | C] () -- C:\0
[2013/05/16 18:19:26 | 000,000,785 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\Shortcut to PhGeoCalc.lnk
[2013/05/16 02:02:20 | 000,000,016 | -HS- | C] () -- C:\WINDOWS\hemljjji.sys
[2013/05/15 23:45:33 | 000,004,636 | ---- | C] () -- D:\es document\cc_20130515_234532.reg
[2013/05/15 01:04:24 | 000,000,168 | ---- | C] () -- D:\es document\cc_20130515_010422.reg
[2013/05/15 00:09:23 | 000,008,298 | ---- | C] () -- D:\es document\cc_20130515_000921.reg
[2013/05/14 00:27:08 | 002,097,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\CTMSHD.sys
[2013/05/14 00:27:08 | 002,097,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\CTMMOUNT.sys
[2013/05/14 00:27:08 | 002,097,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\CTMFLT.sys
[2013/05/13 09:08:37 | 000,000,464 | ---- | C] () -- D:\es document\cc_20130513_090836.reg
[2013/05/11 18:49:57 | 000,000,992 | ---- | C] () -- D:\es document\cc_20130511_184955.reg
[2013/05/10 01:57:17 | 000,000,168 | ---- | C] () -- D:\es document\cc_20130510_015716.reg
[2013/05/08 23:31:01 | 000,001,422 | ---- | C] () -- D:\es document\cc_20130508_233100.reg
[2013/05/08 23:30:49 | 000,010,148 | ---- | C] () -- D:\es document\cc_20130508_233048.reg
[2013/05/06 01:20:13 | 000,271,264 | ---- | C] () -- C:\WINDOWS\System32\vbrun100.dll
[2013/05/05 22:29:58 | 000,010,102 | ---- | C] () -- D:\es document\cc_20130505_222957.reg
[2013/05/05 22:26:31 | 000,046,847 | ---- | C] () -- D:\es document\regerrors2013-05-05.htm
[2013/05/03 13:13:20 | 000,000,549 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\toonel.ini
[2013/05/02 22:40:13 | 000,000,493 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\fg.ini
[2013/05/02 14:10:10 | 000,000,620 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\Shortcut (2) to My Documents.lnk
[2013/05/02 02:24:29 | 001,252,242 | ---- | C] () -- D:\es document\BCL For Java SE.mht
[2013/05/02 02:19:20 | 000,009,705 | ---- | C] () -- D:\es document\What are the system requirements for Java.htm
[2013/05/02 02:18:34 | 000,012,937 | ---- | C] () -- D:\es document\How do I install Java online for Internet Explorer.htm
[2013/05/01 02:20:03 | 000,006,252 | ---- | C] () -- D:\es document\cc_20130501_022002.reg
[2013/04/27 00:30:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2013/04/27 00:30:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSPUNIN.EXE
[2013/04/27 00:30:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013/04/27 00:30:05 | 000,000,000 | ---- | C] () -- C:\Program Files\Common Files\dht342126
[2013/03/16 16:07:20 | 000,000,014 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2013/03/11 23:23:20 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2013/03/08 13:44:09 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\PUTTY.RND
[2013/02/07 16:52:00 | 000,050,330 | ---- | C] () -- C:\Program Files\AntiDust.exe
[2013/01/17 00:45:25 | 000,065,552 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\Desktop.lnk
[2013/01/10 02:24:13 | 000,000,024 | ---- | C] () -- C:\WINDOWS\Progs_.ini
[2013/01/03 14:29:17 | 000,000,173 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\msmathematics.qat.ayoub
[2012/11/16 12:45:48 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\PUTTY.RND
[2012/11/11 20:41:57 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2012/11/11 20:41:57 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2012/11/11 20:41:57 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2012/11/11 20:41:57 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2012/10/28 21:16:33 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\HImage.dll
[2012/10/28 21:16:33 | 000,071,168 | ---- | C] () -- C:\WINDOWS\System32\HScript.dll
[2012/10/28 21:16:33 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\HZip.dll
[2012/10/28 21:16:32 | 000,348,160 | ---- | C] () -- C:\WINDOWS\System32\HBarCode.dll
[2012/10/28 21:16:32 | 000,319,488 | ---- | C] () -- C:\WINDOWS\System32\HEdit.dll
[2012/10/28 21:16:32 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\HGUI.dll
[2012/10/28 21:16:32 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\HAdo.dll
[2012/10/28 21:16:32 | 000,028,160 | ---- | C] () -- C:\WINDOWS\System32\HEmail.dll
[2012/10/19 05:25:08 | 000,167,048 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2012/10/19 00:41:37 | 000,000,193 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc
[2012/10/10 22:16:41 | 000,000,211 | ---- | C] () -- C:\WINDOWS\w32dasm8.ini
[2012/09/18 23:02:14 | 000,000,004 | ---- | C] () -- C:\WINDOWS\vx86036.dat
[2012/09/18 23:02:10 | 000,000,009 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2012/09/15 23:06:56 | 000,192,512 | -H-- | C] () -- C:\WINDOWS\System32\kgen.dll
[2012/09/13 23:15:59 | 000,001,400 | RHS- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\ntuser.pol
[2012/09/04 16:05:45 | 000,000,042 | ---- | C] () -- C:\WINDOWS\Narcis.INI
[2012/09/04 15:44:58 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\Sx32w.dll
[2012/09/04 15:44:58 | 000,000,040 | ---- | C] () -- C:\WINDOWS\ND5.ini
[2012/08/30 18:13:00 | 000,922,184 | ---- | C] () -- C:\WINDOWS\System32\pwNative.exe
[2012/08/30 18:12:43 | 000,016,472 | ---- | C] () -- C:\WINDOWS\System32\pwdrvio.sys
[2012/08/30 18:12:43 | 000,011,104 | ---- | C] () -- C:\WINDOWS\System32\pwdspio.sys
[2012/08/17 11:46:01 | 000,000,125 | ---- | C] () -- C:\WINDOWS\FlashDecompiler.INI
[2012/08/05 00:12:37 | 000,000,064 | ---- | C] () -- C:\WINDOWS\GPlrLanc.dat
[2012/08/02 21:58:19 | 000,054,000 | ---- | C] () -- C:\WINDOWS\System32\PrxerNsp.dll
[2012/08/02 21:42:25 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll
[2012/08/02 15:54:19 | 000,000,054 | ---- | C] () -- C:\WINDOWS\ZDic.ini
[2012/07/29 23:10:36 | 000,302,425 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\funmoods-speeddial.crx
[2012/07/29 23:10:36 | 000,031,470 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\funmoods.crx
[2012/07/20 12:06:10 | 000,003,235 | ---- | C] () -- C:\WINDOWS\System32\secushr.dat
[2012/07/20 00:14:06 | 000,000,688 | ---- | C] () -- C:\WINDOWS\System32\secustat.dat
[2012/07/20 00:13:37 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI
[2012/07/19 01:07:01 | 000,005,136 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\client.ovpn
[2012/07/19 01:07:01 | 000,002,818 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\ca.crt
[2012/07/19 01:07:01 | 000,001,419 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\server.crt
[2012/07/19 01:07:01 | 000,001,419 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\client.crt
[2012/07/19 01:07:01 | 000,000,887 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\client.key
[2012/07/17 23:04:52 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2012/07/15 00:01:43 | 000,031,272 | ---- | C] () -- C:\WINDOWS\System32\AppleChargerSrv.exe
[2012/07/15 00:01:43 | 000,018,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\AppleCharger.sys
[2012/06/26 15:10:55 | 000,060,416 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/21 00:42:57 | 000,001,217 | ---- | C] () -- C:\Documents and Settings\ayoub.BF6154C3A605476\ems.cfg
[2012/06/15 23:41:24 | 000,001,577 | ---- | C] () -- C:\WINDOWS\VexploreUltimate.INI
[2012/06/14 12:58:06 | 000,000,307 | ---- | C] () -- C:\WINDOWS\System32\safefox_update_db_temp.dat
[2012/06/13 00:17:01 | 000,000,031 | ---- | C] () -- C:\WINDOWS\IPexpress.ini
[2012/06/09 00:43:10 | 000,000,406 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2012/05/29 12:49:53 | 000,442,368 | R--- | C] () -- C:\WINDOWS\System32\zshp1018.exe
[2012/05/29 12:49:53 | 000,106,496 | R--- | C] () -- C:\WINDOWS\System32\vshp1018.dll
[2012/05/29 02:36:45 | 000,000,081 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2012/05/28 07:37:39 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2012/05/27 10:22:06 | 002,338,304 | ---- | C] () -- C:\WINDOWS\PDFReader.exe
[2012/05/27 10:22:06 | 000,716,122 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2012/05/27 10:22:06 | 000,001,856 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2012/05/26 11:23:04 | 000,003,542 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2012/05/26 02:05:58 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll
[2012/05/26 02:05:58 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\slmh.exe
[2012/05/26 02:05:58 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll
[2012/05/26 02:05:58 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\minirec.exe
[2012/05/26 02:05:58 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\SLMOHServ.dll
[2012/05/26 02:05:58 | 000,086,016 | ---- | C] () -- C:\WINDOWS\SmCfg.exe
[2012/05/26 02:05:58 | 000,015,000 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\winddx.sys
[2012/05/26 02:05:49 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\slmdmsp.dll
[2012/05/26 02:05:49 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\slmdmsr.exe
[2012/05/26 02:05:48 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\slmdmgx.dll
[2012/05/26 02:05:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\slmdmco.dll
[2012/05/26 02:01:26 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/05/26 01:50:41 | 000,254,000 | R--- | C] ( ) -- C:\WINDOWS\System32\Audio3D.dll
[2012/05/26 01:50:41 | 000,254,000 | R--- | C] ( ) -- C:\WINDOWS\System32\A3D.dll
[2012/05/26 01:41:40 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2012/05/26 01:41:40 | 000,227,587 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2012/05/26 01:41:40 | 000,000,003 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2012/05/26 01:25:00 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/05/26 01:24:23 | 000,207,400 | R--- | C] () -- C:\WINDOWS\GSetup.exe
[2012/05/26 01:24:23 | 000,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini
[2012/05/26 01:09:15 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012/05/26 01:04:31 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012/05/25 17:58:16 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012/05/25 17:57:10 | 000,298,848 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/08/12 16:47:24 | 000,210,944 | ---- | C] () -- C:\WINDOWS\System32\msvcrt10.dll
[2011/07/26 16:58:58 | 002,790,400 | ---- | C] () -- C:\WINDOWS\System32\ASocket.dll

========== ZeroAccess Check ==========

[2012/05/26 01:12:23 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011/08/12 16:42:19 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2011/08/12 16:41:00 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 08:12:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Files - Unicode (All) ==========
[2012/11/30 00:41:12 | 000,000,000 | ---D | M](C:\Program Files\KOORDINAT D?NUSUM) -- C:\Program Files\KOORDINAT DÖNÜSÜM
[2012/11/30 00:41:12 | 000,000,000 | ---D | M](C:\Program Files\KOORDINAT D?NUSUM) -- C:\Program Files\KOORDINAT DÖNÜSÜM
[2012/11/24 18:10:12 | 066,945,024 | ---- | C] ()(C:\Genel Virüs C?zümleri 2.exe) -- C:\Genel Virüs Çözümleri 2.exe
[2010/07/27 03:23:21 | 066,945,024 | ---- | M] ()(C:\Genel Virüs C?zümleri 2.exe) -- C:\Genel Virüs Çözümleri 2.exe
(C:\Program Files\KOORDINAT D?NUSUM) -- C:\Program Files\KOORDINAT DÖNÜSÜM

========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\WINDOWS\$NtUninstallKB29969$] -> -> Unknown point type

========== Alternate Data Streams ==========

@Alternate Data Stream - 24 bytes -> C:\WINDOWS:98ECBC1BC613F170
@Alternate Data Stream - 181 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4
@Alternate Data Stream - 16 bytes -> C:\Program Files\Common Files:ht342126
@Alternate Data Stream - 155 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CB0AACC9
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51

< End of report >
OTL Extras logfile created on: 2013/05/30 01:18:09 ق.ظ - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18343)
Locale: 00000429 | Country: Iran | Language: FAR | Date Format: yyyy/MM/dd

3.25 Gb Total Physical Memory | 2.23 Gb Available Physical Memory | 68.58% Memory free
5.09 Gb Paging File | 4.18 Gb Available in Paging File | 82.16% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 123.29 Gb Total Space | 59.99 Gb Free Space | 48.66% Space Free | Partition Type: NTFS
Drive D: | 150.15 Gb Total Space | 144.56 Gb Free Space | 96.27% Space Free | Partition Type: NTFS
Drive E: | 224.61 Gb Total Space | 212.86 Gb Free Space | 94.77% Space Free | Partition Type: NTFS
Drive F: | 224.61 Gb Total Space | 213.80 Gb Free Space | 95.19% Space Free | Partition Type: NTFS
Drive G: | 208.85 Gb Total Space | 155.10 Gb Free Space | 74.27% Space Free | Partition Type: NTFS

Computer Name: BF6154C3A605476 | User Name: ayoub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.scr [@ = MicroStation Resource] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htafile [open] -- "%1" %*
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files\Smart File Advisor\sfa.exe" /unknown "%1" (Filefacts.net)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Torch\Plugins\Torrent\TorchTorrent.exe" = C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Torch\Plugins\Torrent\TorchTorrent.exe:*:Enabled:Torch Torrent -- (Torch Media Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Java\jre7\bin\javaw.exe" = C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java™ Platform SE binary -- (Oracle Corporation)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Internet Explorer\iexplore.exe" = C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer -- (Microsoft Corporation)
"C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\MediaGet2\mediaget.exe" = C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\MediaGet2\mediaget.exe:*:Enabled:MediaGet -- (MediaGet LLC)
"C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\proxfire\proxyfire.exe" = C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\proxfire\proxyfire.exe:*:Enabled:proxyfire -- ()
"C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Torch\Plugins\Torrent\TorchTorrent.exe" = C:\Documents and Settings\ayoub.BF6154C3A605476\Local Settings\Application Data\Torch\Plugins\Torrent\TorchTorrent.exe:*:Enabled:Torch Torrent -- (Torch Media Inc.)
"C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe" = C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe:*:Enabled:freeproxy proxy/web server -- (Hand-Crafted Software)
"C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\fg740p.exe" = C:\Documents and Settings\ayoub.BF6154C3A605476\Desktop\fg740p.exe:*:Enabled:Fast and Secure Gateway to Internet Freedom -- (Dynamic Internet Technology, Inc.)
"C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\PM9-PM9-ProxyDNS-1.0.39\PM9.exe" = C:\Documents and Settings\ayoub.BF6154C3A605476\Application Data\PM9-PM9-ProxyDNS-1.0.39\PM9.exe:*:Enabled:MyProxy Client -- (MyProxy)
"C:\Program Files\GoforFiles\goforfilesdl.exe" = C:\Program Files\GoforFiles\goforfilesdl.exe:*:Enabled:GoforFiles
"C:\Program Files\GoforFiles\GoforFiles.exe" = C:\Program Files\GoforFiles\GoforFiles.exe:*:Enabled:GoforFiles

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07300F01-89CA-4CF8-92BD-2A605EB83C95}" = EasySaver B9.0904.1
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B6023B5-B8C7-0CA9-0503-8B242065BB58}" = Catalyst Control Center InstallProxy
"{0DD3B9C1-6D06-5C71-1B30-E365451194BF}" = ATI AVIVO Codecs
"{12665B01-3F3A-4433-B179-9D8E352D7547}" = Try Corel Snapfire muvee autoProducer add on
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{2D02BEEB-8B96-4536-AC69-3D9BFAA5638F}_is1" = Service Controller version 1.0
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
"{32592E43-E31C-4799-BCE8-65197DD3AB57}" = CBM Egitim - Visual Basic 6.0
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35E41C2E-9111-44AA-B8C4-20D4D59DD990}" = RealWorld Change Cursor
"{37039B8B-2FF5-401F-8E8D-2A47A7994298}" = CCC Help English
"{38D80A4C-D893-4985-BA3F-0B1D9E848CED}" = ESET Smart Security
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.0110.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D090F70-6F08-4B60-9357-A1DFD4458F09}" = Microsoft Mathematics
"{4FFBB818-B13C-11E0-931D-B2664824019B}_is1" = Complitly
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{5FD89EA1-99C2-40EE-BBF5-20F8991ED756}" = Catalyst Control Center - Branding
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{667E0B69-23C8-42AE-A69B-462C162AE258}" = Roshd Training Softwares
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.6195
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1" = Auslogics BoostSpeed
"{7AAA27E4-CDB3-49C0-AA2D-41827C001BA3}" = Microsoft Small Basic v1.0
"{7AF3EE4B-D0BD-B57E-2813-A5BD61116260}" = ccc-core-static
"{82A522AC-9068-85D4-D655-693C17843BDD}" = Catalyst Control Center Graphics Previews Common
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86501894-E722-4385-A792-B7C2F28FAE7B}" = NetSpeedMonitor 2.5.4.0 x86
"{88615CE6-AC0B-43A7-9E5C-60A6DC0E9911}" = COMODO Time Machine
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90F50409-6000-11D3-8CFE-0150048383C9}" = Visual Basic for Applications ® Core
"{90F60409-6000-11D3-8CFE-0150048383C9}" = Visual Basic for Applications ® Core - English
"{928BDF57-B11C-3917-8C21-7948439E49B4}" = Microsoft Visual Basic Power Packs 3.0 Redistributable
"{97A39919-9FEA-48B7-AB2B-4F99212D1E98}" = HDD Regenerator
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C0D947D-A730-4062-8E61-EC82503B87E9}" = SanDing Survey
"{A13D16C5-38A9-4D96-9647-59FCCAB12A85}" = Visual Basic for Applications ® Core - English
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A8DE55D9-B049-4357-A193-366BB1A9B48F}" = Pegasus Imaging's ImagXpress 7.0
"{AC2B5E76-1D1C-4A62-87C2-82AA8925CFC8}_is1" = MiniTool Partition Wizard Professional Edition 7.1
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AC8A37CB-39AD-46C2-9AB5-F6FBE037CC57}" = Bentley MicroStation V8 XM Edition 08.09.04.44
"{B4C9760F-085E-4772-AE2B-2FF303C89D8E}" = Ashiyane NOD32 Key Finder
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C27C20DF-8220-999D-183D-3A80620443FB}" = ccc-utility
"{CD0B1521-D9CB-4099-B5AA-07B8022331CC}_is1" = REAL Studio 2011 Release 1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEAEC0A0-6B82-C9CC-0BBA-D67FDB5C9D0A}" = Catalyst Control Center Localization All
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219.325
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F89EAD44-BBAF-4203-8F35-D93DD5DFB001}" = Inspyder Web2Disk Trial
"{FB97C283-1F3C-42D4-AE01-ADC1DC12F774}" = Visual Basic for Applications ® Core
"4shared Desktop" = 4shared Desktop
"4Sync" = 4Sync
"7-Zip" = 7-Zip 9.20
"A1Click Ultra PC Cleaner (Registered Version)_is1" = A1Click Ultra PC Cleaner 1.01 (Registered Version)
"Ace Ping" = Ace Ping
"Active Ports" = Active Ports
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"aigneslocalwebsitearchive_is1" = Local Website Archive 2012 (12.0)
"AnyToISO_is1" = AnyToISO
"Arp, Osm, Far, Turkce Sozluk 1.69" = Arp, Osm, Far, Turkce Sozluk 1.69
"Ashampoo Burning Studio 2012 CBE_is1" = Ashampoo Burning Studio 2012 CBE v.11.0.4
"CCleaner" = CCleaner
"Connection Manager" = Microsoft Connection Manager
"CursorXP" = CursorXP
"Data Access Objects (DAO) 3.5" = Data Access Objects (DAO) 3.5
"DefaultTab" = DefaultTab
"doPDF 7 printer_is1" = doPDF 7.2 printer
"Download_Energy Toolbar" = Download Energy Toolbar
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FolderHighlight_is1" = FolderHighlight 2.3
"FreeProxy/FreeWeb_is1" = FreeProxy version 3.81
"GMP Calc" = GMP Calc 1.1
"HaaliMkx" = Haali Media Splitter
"HP-LaserJet 1018" = LaserJet 1018
"Img2CAD_is1" = Img2CAD 7.0
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{A8DE55D9-B049-4357-A193-366BB1A9B48F}" = Pegasus Imaging's ImagXpress 7.0
"Internet Download Manager" = Internet Download Manager
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.8.0 (Full)
"MHTML Converter" = MHTML Converter
"Microsoft Visual Basic Professional Step by Step" = Microsoft Visual Basic Professional Step by Step
"Microsoft.Visual Basic_is1" = Microsoft.Visual Basic v6.0sp6
"Mozilla Firefox 20.0.1 (x86 en-US)" = Mozilla Firefox 20.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"novaPDF Standard Desktop 7 printer_is1" = novaPDF Standard Desktop 7.7 printer
"OpenVPN" = OpenVPN 2.2.2
"PNG To Icon Converter_is1" = PNG To Icon Converter 2.0.0.5
"Proxifier_is1" = Proxifier version 3.0
"Proxy Finder Enterprise Edition" = Proxy Finder Enterprise Edition
"SeisSoft Coordinate Transform" = SeisSoft Coordinate Transform
"SLAMRNTV" = Smart Link 56K Voice Modem
"Smart File Advisor_is1" = Smart File Advisor 1.1.1
"Smiley Bar for Facebook" = Smiley Bar for Facebook
"SP_48c708f2" = BrowseToSave 1.74
"ST6UNST #1" = Flow Chart Visual Programming Language
"TeraCopy_is1" = TeraCopy 2.22
"The KMPlayer" = The KMPlayer (remove only)
"ttkCAL_is1" = TatukGIS Calculator 2.3.1.1194
"UltraISO_is1" = UltraISO Premium V9.36
"Unlocker" = Unlocker 1.9.1
"Updater Service" = Updater Service
"WebShot_is1" = WebShot
"WebSite Downloader" = WebSite Downloader 1.1
"WebZIP" = WebZIP
"WinRAR archiver" = WinRAR 4.11 (32-bit)
"XWindows Dock_is1" = XWindows Dock
"YU2010_is1" = Your Uninstaller! 7

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"bec7387fcce257a9" = UTM_Lambert_Grid
"DSite" = Update for PDF Creator
"ImageBadger Image Converter" = ImageBadger Image Converter
"MediaGet" = MediaGet
"PDF Creator Packages" = PDF Creator Packages
"RockMelt" = RockMelt
"Torch" = Torch

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2013/04/12 03:38:10 ب.ظ | Computer Name = BF6154C3A605476 | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft Office Enterprise 2007 -- Error 1706.Setup cannot
find the required files. Check your connection to the network, or CD-ROM drive.
For other potential solutions to this problem, see C:\DOCUME~1\AYOUB~1.BF6\LOCALS~1\Temp\Setup00000658\SETUP.CHM.

Error - 2013/04/12 03:39:00 ب.ظ | Computer Name = BF6154C3A605476 | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft Office Enterprise 2007 -- Error 1706.Setup cannot
find the required files. Check your connection to the network, or CD-ROM drive.
For other potential solutions to this problem, see SETUP.CHM.

Error - 2013/04/12 03:40:39 ب.ظ | Computer Name = BF6154C3A605476 | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft Office Enterprise 2007 -- Error 1706.Setup cannot
find the required files. Check your connection to the network, or CD-ROM drive.
For other potential solutions to this problem, see C:\DOCUME~1\AYOUB~1.BF6\LOCALS~1\Temp\Setup000009fc\SETUP.CHM.

Error - 2013/04/12 03:42:00 ب.ظ | Computer Name = BF6154C3A605476 | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft Office Enterprise 2007 -- Error 1706.Setup cannot
find the required files. Check your connection to the network, or CD-ROM drive.
For other potential solutions to this problem, see SETUP.CHM.

[ System Events ]
Error - 2013/05/29 03:41:17 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 03:41:19 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 03:42:30 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 03:49:45 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 03:58:08 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 04:13:49 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 04:14:29 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 04:15:38 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 04:33:08 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

Error - 2013/05/29 04:45:16 ب.ظ | Computer Name = BF6154C3A605476 | Source = Service Control Manager | ID = 7023
Description = The Network Location Awareness (NLA) service terminated with the following
error: %%127

< End of report >

#1
EyupSems

Posted 29 May 2013 - 03:02 PM

Advertisements

#2
Jasmyne

Posted 30 May 2013 - 06:53 AM

#3
Jasmyne

Posted 30 May 2013 - 07:53 AM

#4
Essexboy

Posted 04 June 2013 - 07:17 AM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us