OTL Extras logfile created on: 21/06/2013 10:39:21 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\sharon\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16580)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
3.89 Gb Total Physical Memory | 1.22 Gb Available Physical Memory | 31.49% Memory free
7.89 Gb Paging File | 4.37 Gb Available in Paging File | 55.43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.24 Gb Total Space | 23.16 Gb Free Space | 19.42% Space Free | Partition Type: NTFS
Drive D: | 157.55 Gb Total Space | 157.43 Gb Free Space | 99.92% Space Free | Partition Type: NTFS
Drive E: | 4.09 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Computer Name: SHARON | User Name: sharon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04666741-1E02-49E0-8530-6B8DC12E562C}" = lport=139 | protocol=6 | dir=in | app=system |
"{11A24EC0-7D09-4864-9062-99CF5EB13511}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{26A5FC48-B0E9-4517-BEA2-903444B74CBB}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{27563606-84DE-4BF5-AAB3-F06FEC95E799}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2F334C12-4031-49D5-94EC-D97A90546AD2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3A1AAAC5-5CD9-4A63-A6C2-07A6DBD2FD18}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{40156223-7414-4B03-9A54-19C5845B12E5}" = lport=137 | protocol=17 | dir=in | app=system |
"{48657768-7DB0-4FBB-B1DE-47DB47B3B67D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4AA4DFCF-3F3E-4CB2-8354-3293B6E76FC5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{50D8C83F-5786-47CC-97C8-CC93AC1E1817}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{5358880C-D187-48A3-BF7C-991D521E70DA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5949745D-40AA-4CFD-A017-C612671D38F8}" = lport=445 | protocol=6 | dir=in | app=system |
"{5F7B7C5D-E2FE-414C-BFB2-B861F7CBFEFD}" = lport=138 | protocol=17 | dir=in | app=system |
"{6BE150A2-14B0-4504-8AF3-1AD6FD4EE76E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7230AFDC-0881-453A-A45F-1560B203DFEB}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7957A712-6A17-4555-A40E-18A9C7C2A9CF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7EB423AB-0AF9-4B3D-91C0-575826A8069B}" = rport=10243 | protocol=6 | dir=out | app=system |
"{82A3E4EE-1589-40A6-B6AC-472414D951E9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{84C43D83-9D46-4C22-9ADC-904BC7A96B46}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{86334D11-A883-4D81-AAB1-ACF9A20B7990}" = lport=10243 | protocol=6 | dir=in | app=system |
"{928DCB88-50FC-4D0C-9F7D-D25F5386BBCB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9DC736A5-8490-4E30-A714-8DD6CB600EB4}" = rport=138 | protocol=17 | dir=out | app=system |
"{AA890EFD-5F73-4289-A6A9-12BA773628F5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{B0E1AE3D-0EE5-4A81-947D-9073A0E2EEAB}" = rport=2869 | protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B7038AEA-FE9F-417A-9FD5-B793F7731A3E}" = rport=445 | protocol=6 | dir=out | app=system |
"{B73BEB82-FDE6-4BC1-9B38-ACF89BF47A60}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B9CE6E4D-93C8-4A2D-8AD0-6180C3DEA149}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C0C78327-A459-443D-82C7-2CFEAD8338EF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D686F83D-2A80-435D-9801-5DF9E1E37BBE}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{DCE8F125-3469-4204-BB4F-3369BA5AE47A}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\dashost.exe |
"{EC3A6B13-4600-4657-A531-FA7DB9823CC0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F2CA48A0-3F09-4372-AE17-B50093B79BD8}" = rport=139 | protocol=6 | dir=out | app=system |
"{F91ECB06-0BEE-4B47-928B-34DB0157F56F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FF954F20-3D08-4349-917C-FD619CEC2CDB}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00EA935E-1ED2-4FB0-A135-03D4AEE845D3}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{065B39C2-3730-4A09-9BCB-E3F16670814B}" = dir=out | name=microsoft solitaire collection |
"{0BA65547-D03E-4F8C-86B6-2EE633437A24}" = dir=out | name=@{microsoft.xboxlivegames_1.2.143.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{107FC2E9-3DBD-4058-8A86-2C11978C621B}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{13FE1132-07DD-484A-8EA8-CC838FA19A6F}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{16DD2EDC-BCC0-443F-94F8-B0F04F78185C}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{1744BF80-AA0E-451E-B025-ACEB4DC17538}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{1BAB08C6-9EAC-4E47-B542-45F62E2BC860}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{1E5EB3B8-A509-4314-B678-55CC681B85AE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{1F9CF79A-DE70-4296-A8CC-0835D23E7A0F}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{227332B4-CE1B-4B9D-B5A0-E114454C4836}" = protocol=1 | dir=in | [email protected],-28543 |
"{23332D9D-B287-42FB-A85F-DB5FFB063BF0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{25FDCEE4-E939-4975-AB79-0965669273A3}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{303F349F-ECD3-4177-9E8D-49AAD7487F72}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{31079A18-9D7A-416C-BA14-D6237A8C47B9}" = dir=in | app=c:\program files (x86)\leapfrog\leapfrog connect\leapfrogconnect.exe |
"{3287572B-0D64-48D5-872E-E909BEF2F285}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{338EAB1C-501F-4FEC-B3E7-A65A7233A665}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{34FF3EA3-8B49-4337-9933-0E249F4053DD}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{3D21413C-C79E-48CB-AF2C-BBE3FB495A01}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{45FF4E4E-4B07-490D-A2E5-537510935B3E}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{53C0F5B1-2021-451F-93EB-5B6C9350F51B}" = dir=out | name=@{microsoft.bingweather_1.7.0.26_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{5CEC3BAB-15CC-4152-BE0C-AA5449CD6AD3}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{61B74A66-4D05-4DBD-96BC-103EF0F0A768}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6328B439-6BBE-45E5-A204-59EB88106C97}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6536A8F4-845C-4AB7-9C79-61FC50BCB7C5}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{6A110E4D-2062-4754-A230-40ACF7B9A107}" = dir=out | name=taptiles |
"{6B480A70-8192-44A4-8CF6-F72D3BB20720}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6BB741E0-6E71-4C8E-A07D-4565F32CE009}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{704E7988-FA98-49B5-96E9-06EF08F59201}" = dir=out | name=@{microsoft.zunemusic_1.2.150.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{724BB12A-E1BA-4BBF-889F-3DF7E8672C46}" = dir=out | name=@{microsoft.bingsports_1.8.0.51_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{72DBE66B-1A42-4B72-9AB3-230706FE9C9A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7872AA7D-09E5-41E9-ACD1-CE0A77B84CA2}" = dir=in | name=@{microsoft.xboxcompanion_1.2.160.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxcompanion/resources/33279} |
"{7E3A8890-3FBC-4399-B496-370D204F91B1}" = protocol=6 | dir=out | app=system |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{829F469C-A4CF-461F-9947-21B47CBB1DC2}" = protocol=1 | dir=out | [email protected],-28544 |
"{8794327A-B86C-43B7-BB5F-E1B8A51D9F64}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8AC3EB4F-A60A-467A-BC43-E3DB40A5FF9D}" = dir=out | name=fresh paint |
"{8E11ACBA-85CD-48CF-8838-1FBF01A3F26E}" = dir=out | name=@{microsoft.skypeapp_1.6.0.115_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
"{8F9FB893-EB25-4135-86FF-F578FD3EA81E}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{92CF8BB2-BC9C-46DF-9BEC-AD02098C8E7C}" = protocol=58 | dir=in | [email protected],-28545 |
"{93DAF4D4-7B18-4786-9885-9E07C21247CB}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9C355CD2-6FF9-4EDA-9DB4-C68ED41D5F85}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{A0BEB4B6-6138-4E07-BE57-BFE0E95B8169}" = dir=out | name=windows_ie_ac_001 |
"{A60C517B-B392-4EBC-ABF4-3BCFAB10AACD}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{A756F5B5-1C8D-47C9-A2EB-E52373F96F74}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{AD18FABF-5649-4C84-844D-D047B01B3864}" = dir=out | name=@{microsoft.bingmaps_1.5.1.240_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{AFE2D6A4-F596-470F-9BE2-F7D2E21082B7}" = dir=out | name=wordament |
"{B8C3EE27-538E-4B54-9A31-475B85F3AD37}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BA5602FD-06A7-4554-A2E3-21AA1931E93D}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd10.exe |
"{BFF806F8-90F4-4A5B-9AF5-4840CD8CBACF}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{C3FC91DA-D8AA-47B4-9178-7F35BCFC2196}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C42CE270-3E93-4E9B-8CCF-2A85FFA1D651}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{C783CBC4-964A-480D-A231-3896D7EBEBE2}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{CAD20C9C-473E-4348-A3FE-E506C3228A5C}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{D3D77022-A211-4024-8842-E51881686B6C}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd cinema\powerdvdcinema10.exe |
"{D5C3019B-7445-4B48-ABCA-3258BFC06D09}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{D7E89D3A-4AAD-4931-B64D-66A149FE6386}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{DC499EF6-EDF4-4DA0-A9C8-A8E1F02DE250}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DEE509F5-9201-498B-B6B4-4BA351F2640F}" = protocol=58 | dir=out | [email protected],-28546 |
"{DF354443-0A8E-486C-9FE8-557AB4FF3406}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E39829DC-CF54-4F58-80FB-AB6591A2EF05}" = dir=in | name=@{microsoft.skypeapp_1.6.0.115_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
"{E4321BC5-0BE5-4E77-9538-A80445AA8FBB}" = dir=out | name=@{microsoft.xboxcompanion_1.2.160.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxcompanion/resources/33279} |
"{E58A0C66-4097-40D0-8A5B-AB2237439AC6}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E5A4C5E2-F2BD-4752-9087-F87328A590DA}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E78EC7F0-287C-487D-90B8-D571B1C66610}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E83D0105-0D21-4BCD-918C-873AE2856661}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{F33A69D4-644D-4004-A935-AA61F3D42DAB}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{F48E1CFB-D697-45A4-984E-F9336388B4E3}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{FD322A0B-2B77-433A-8B22-3C4D9A0C1B31}" = dir=out | name=adera |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09350823-BE9F-4CC1-B621-C8F113F714D5}" = AVG 2013
"{119EEB4B-F32F-4D71-B9C0-E42403F91C9A}" = AVG 2013
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D" = Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012)
"AVG" = AVG 2013
"C01F56FBD9B141017E63E2A1A141E59934D4DC67" = Windows Driver Package - ASUS (ATP) Mouse (10/29/2012 1.0.0.148)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros Client Installation Program
"{35827710-D042-428B-A1E5-E20E12D2FEB9}" = SparkTrust PC Cleaner Plus
"{4D3286A6-F6AB-498A-82A4-E4F040529F3D}" = ASUS Smart Gesture
"{5491D57A-F7CA-4A4F-99A5-989647A0AB77}" = LeapFrog Connect
"{58172D66-2F69-4215-9AEC-ED8196023736}" = ASUS Tutor
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{749F674B-2674-47E8-879C-5626A06B2A91}" = ASUS InstantOn
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}" = ASUS Instant Connect
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DDC435C-29CA-483C-A396-98BE8D4EFC2C}" = LeapFrog Leapster Explorer Plugin
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0116-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{95140000-007C-0409-0000-0000000FF1CE}" = Microsoft Outlook Social Connector Provider for Facebook 32-bit
"{989FB5FD-9B00-4B32-8663-849CB1370DD1}" = Google Drive
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}" = ASUS USB Charger Plus
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X MUI
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{DC06C90B-C5BE-42F6-B74D-A9503170998C}" = ASUS Product Demo Movie
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = ASUSDVD
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}" = ASUS Live Update
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel® SDK for OpenCL - CPU Only Runtime Package
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"ASUS WebStorage" = ASUS WebStorage Sync Agent
"avast" = avast! Free Antivirus
"FastFox" = FastFox
"Google Chrome" = Google Chrome
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = ASUSDVD
"LeapsterExplorerPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster Explorer Plugin)
"Mobile Broadband HL Service" = Mobile Broadband HL Service
"MSC" = McAfee Internet Security
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"Scribe" = Express Scribe
"SpyAlert" = Spy Alert
"Switch" = Switch Sound File Converter
"UPCShell" = LeapFrog Connect
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Amazon Kindle" = Amazon Kindle
"DSite" = Update for Zip Opener
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 14/06/2013 14:30:06 | Computer Name = sharon | Source = Application Hang | ID = 1002
Description = The program wwahost.exe version 6.2.9200.16420 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1b2c Start
Time: 01ce692d0c8266d8 Termination Time: 4294967295 Application Path: C:\Windows\system32\wwahost.exe
Report
Id: 594880f8-d520-11e2-bea5-08606e15f9a0 Faulting package full name: microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe
Faulting
package-relative application ID: Microsoft.WindowsLive.ModernPhotos
Error - 14/06/2013 16:22:02 | Computer Name = sharon | Source = Application Error | ID = 1000
Description = Faulting application name: wwahost.exe, version: 6.2.9200.16420, time
stamp: 0x505a9152 Faulting module name: KERNELBASE.dll, version: 6.2.9200.16451,
time stamp: 0x50988aa6 Exception code: 0x00000004 Fault offset: 0x000000000003811c
Faulting
process ID: 0x191c Faulting application start time: 0x01ce692d2828cc6d Faulting application
path: C:\Windows\system32\wwahost.exe Faulting module path: C:\Windows\system32\KERNELBASE.dll
Report
ID: 11eb6671-d530-11e2-bea5-08606e15f9a0 Faulting package full name: microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe
Faulting
package-relative application ID: Microsoft.WindowsLive.ModernPhotos
Error - 15/06/2013 15:16:49 | Computer Name = sharon | Source = .NET Runtime | ID = 1026
Description =
Error - 15/06/2013 15:16:55 | Computer Name = sharon | Source = Application Error | ID = 1000
Description = Faulting application name: LiveUpdate.exe, version: 3.1.9.0, time
stamp: 0x503433d7 Faulting module name: ntdll.dll, version: 6.2.9200.16578, time
stamp: 0x515fac6e Exception code: 0xc0000008 Fault offset: 0x0007bac5 Faulting process
ID: 0x14c4 Faulting application start time: 0x01ce69fc15a61f30 Faulting application
path: C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe Faulting module
path: C:\Windows\SYSTEM32\ntdll.dll Report ID: 23ac2c67-d5f0-11e2-bea7-08606e15f9a0
Faulting
package full name: Faulting package-relative application ID:
Error - 15/06/2013 15:17:17 | Computer Name = sharon | Source = Application Hang | ID = 1002
Description = The program glcnd.exe version 6.2.8516.0 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1838 Start
Time: 01ce69fcdd69d994 Termination Time: 82 Application Path: C:\Program Files\WindowsApps\Microsoft.Reader_6.2.8516.0_x64__8wekyb3d8bbwe\glcnd.exe
Report
Id: 292bd247-d5f0-11e2-bea7-08606e15f9a0 Faulting package full name: Microsoft.Reader_6.2.8516.0_x64__8wekyb3d8bbwe
Faulting
package-relative application ID: Microsoft.Reader
Error - 15/06/2013 15:17:20 | Computer Name = sharon | Source = Microsoft-Windows-Immersive-Shell | ID = 2486
Description = App Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader did not launch
within its allotted time.
Error - 16/06/2013 18:28:43 | Computer Name = sharon | Source = Application Hang | ID = 1002
Description = The program Explorer.EXE version 6.2.9200.16433 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: b14 Start
Time: 01ce69fbf5e39f10 Termination Time: 256 Application Path: C:\Windows\Explorer.EXE
Report
Id: 05f43a57-d6d4-11e2-bea7-08606e15f9a0 Faulting package full name: Faulting package-relative
application ID:
Error - 17/06/2013 05:13:08 | Computer Name = sharon | Source = Microsoft-Windows-Immersive-Shell | ID = 2484
Description = Package microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe
was terminated because it took too long to suspend.
Error - 17/06/2013 05:13:35 | Computer Name = sharon | Source = Application Hang | ID = 1002
Description = The program wwahost.exe version 6.2.9200.16420 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1dac Start
Time: 01ce6ae084eea575 Termination Time: 4294967295 Application Path: C:\Windows\system32\wwahost.exe
Report
Id: 202a2e10-d72e-11e2-bea7-08606e15f9a0 Faulting package full name: microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe
Faulting
package-relative application ID: Microsoft.WindowsLive.Chat
Error - 17/06/2013 05:31:37 | Computer Name = sharon | Source = Customer Experience Improvement Program | ID = 1008
Description =
[ System Events ]
Error - 07/06/2013 20:05:30 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 08/06/2013 02:19:08 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 08/06/2013 04:06:16 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 08/06/2013 05:22:33 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 08/06/2013 18:47:15 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 08/06/2013 19:11:15 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 09/06/2013 07:25:42 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 09/06/2013 14:14:05 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 09/06/2013 14:25:29 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
Error - 09/06/2013 14:34:32 | Computer Name = sharon | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =
< End of report >