Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

my otl log - help with cleaning up? [Closed]


  • This topic is locked This topic is locked

#1
Astoltz

Astoltz

    New Member

  • Member
  • Pip
  • 3 posts

Here is my log can you help?

 

 

Attached Files


  • 0

Advertisements


#2
Astoltz

Astoltz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts

OTL logfile created on: 9/25/2014 5:51:25 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Curt\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17280)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
7.89 Gb Total Physical Memory | 5.58 Gb Available Physical Memory | 70.68% Memory free
15.78 Gb Paging File | 13.25 Gb Available in Paging File | 83.99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 679.00 Gb Total Space | 581.53 Gb Free Space | 85.65% Space Free | Partition Type: NTFS
 
Computer Name: MADMIXERPRO | User Name: Curt | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/09/25 17:49:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Curt\Downloads\OTL.exe
PRC - [2014/09/21 03:59:37 | 000,262,968 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\nav.exe
PRC - [2014/09/04 05:50:02 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/07/30 23:48:25 | 000,130,104 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\NST.exe
PRC - [2014/07/23 08:44:16 | 000,438,616 | ---- | M] (Garmin Ltd or its subsidiaries) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
PRC - [2013/11/27 10:12:02 | 007,393,280 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2013/10/15 13:27:38 | 003,921,880 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
PRC - [2013/09/20 11:57:26 | 001,042,272 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
PRC - [2013/09/13 11:38:30 | 000,171,416 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
PRC - [2013/07/25 12:19:26 | 005,624,784 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2013/01/09 18:07:12 | 000,071,280 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\nlssrv32.exe
PRC - [2011/10/18 11:50:10 | 001,001,808 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2011/10/18 11:50:04 | 001,354,064 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2011/10/18 11:49:52 | 000,936,272 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2011/10/18 11:49:48 | 000,846,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
PRC - [2011/08/11 22:36:46 | 000,109,184 | ---- | M] (Conexant Systems, Inc.) -- C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
PRC - [2011/04/13 10:39:14 | 000,503,942 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2010/12/20 18:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/12/20 18:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/12/17 10:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
PRC - [2010/11/01 23:44:30 | 000,020,480 | ---- | M] (X10) -- C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe
PRC - [2009/05/19 18:11:52 | 000,136,544 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
PRC - [2009/02/10 01:01:49 | 000,116,104 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/08/06 21:20:55 | 000,353,096 | ---- | M] () -- C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppgooglenaclpluginchrome.dll
MOD - [2014/08/06 21:20:54 | 014,669,128 | ---- | M] () -- C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll
MOD - [2014/08/06 21:20:53 | 008,537,928 | ---- | M] () -- C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll
MOD - [2014/08/06 21:20:49 | 000,718,152 | ---- | M] () -- C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
MOD - [2014/08/06 21:20:47 | 000,126,280 | ---- | M] () -- C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\libegl.dll
MOD - [2014/08/06 21:20:46 | 001,732,936 | ---- | M] () -- C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
MOD - [2013/05/16 11:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2013/05/16 11:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
MOD - [2010/12/17 10:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2014/08/18 16:03:37 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/05/26 23:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2011/11/01 13:37:56 | 001,518,352 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011/11/01 13:25:42 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/11/01 13:22:28 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011/10/20 18:33:22 | 000,135,440 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2011/10/19 14:25:00 | 000,661,504 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2011/08/11 22:36:46 | 000,109,184 | ---- | M] (Conexant Systems, Inc.) [On_Demand | Running] -- C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe -- (CxUtilSvc)
SRV:64bit: - [2011/05/12 07:06:38 | 000,200,320 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV:64bit: - [2010/11/29 15:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV - [2014/09/24 15:00:59 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/09/21 03:59:37 | 000,262,968 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\NAV.exe -- (NAV)
SRV - [2014/09/04 05:50:02 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/07/30 23:48:25 | 000,130,104 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\NST.exe -- (NCO)
SRV - [2014/07/23 08:44:16 | 000,438,616 | ---- | M] (Garmin Ltd or its subsidiaries) [Auto | Running] -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2014/03/20 16:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2013/12/17 00:44:32 | 000,226,640 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\LogMeIn\x64\ramaint.exe -- (LMIMaint)
SRV - [2013/12/17 00:44:13 | 000,376,144 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2013/11/27 10:12:02 | 007,393,280 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2013/09/11 22:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2013/08/14 15:53:08 | 000,611,400 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\498\g2ax_service.exe -- (GoToAssist Remote Support Customer)
SRV - [2013/01/09 18:07:12 | 000,071,280 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\nlssrv32.exe -- (nlsX86cc)
SRV - [2011/10/18 11:50:10 | 001,001,808 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2011/10/18 11:50:04 | 001,354,064 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2011/10/18 11:49:52 | 000,936,272 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2011/09/16 14:10:50 | 000,407,424 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe -- (LogMeIn)
SRV - [2010/12/20 18:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/12/20 18:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/11/25 05:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 05:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/11/01 23:44:30 | 000,020,480 | ---- | M] (X10) [Auto | Running] -- C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe -- (x10nets)
SRV - [2010/08/25 20:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2009/02/10 01:01:49 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2014/09/05 23:39:41 | 000,177,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2014/08/25 20:20:22 | 000,876,248 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2014/08/25 20:20:22 | 000,037,592 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2014/08/06 13:48:16 | 000,266,968 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\ironx64.sys -- (SymIRON)
DRV:64bit: - [2014/08/01 11:24:10 | 000,061,584 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}Gw64.sys -- ({55dce8ba-9dec-4013-937e-adbf9317d990}Gw64)
DRV:64bit: - [2014/07/22 23:13:11 | 000,593,112 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symnets.sys -- (SymNetS)
DRV:64bit: - [2014/07/22 23:13:10 | 001,148,120 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symefa64.sys -- (SymEFA)
DRV:64bit: - [2014/07/22 23:13:09 | 000,493,656 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symds64.sys -- (SymDS)
DRV:64bit: - [2014/02/20 17:14:34 | 000,162,392 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\ccsetx64.sys -- (ccSet_NAV)
DRV:64bit: - [2013/12/18 22:28:39 | 000,054,248 | ---- | M] (Cypress Semiconductor) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\EFKusb.sys -- (EFKusb)
DRV:64bit: - [2013/12/17 00:44:18 | 000,107,368 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV:64bit: - [2013/09/27 13:23:26 | 000,162,392 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSTx64\7DE07060.00F\ccSetx64.sys -- (ccSet_NST)
DRV:64bit: - [2013/06/20 19:09:46 | 000,042,184 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2013/06/01 13:56:58 | 000,031,920 | ---- | M] (Wondershare) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Apowersoft_AudioDevice.sys -- (Apowersoft_AudioDevice)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/09/28 22:52:10 | 000,075,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2012/09/28 15:14:58 | 000,040,320 | ---- | M] (Belcarra Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btblan.sys -- (Leapfrog-USBLAN)
DRV:64bit: - [2012/09/28 14:15:08 | 000,024,576 | ---- | M] (LeapFrog) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\FlyUsb.sys -- (FlyUsb)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/03/01 00:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/19 11:26:54 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/01/19 11:26:54 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/12/01 19:57:06 | 008,615,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2011/10/19 14:19:08 | 000,195,072 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2011/10/19 14:19:08 | 000,195,072 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011/10/11 13:08:00 | 000,059,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2011/10/10 16:43:16 | 000,288,768 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2011/09/16 14:10:50 | 000,072,216 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV:64bit: - [2011/09/16 14:10:24 | 000,011,552 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lmimirr.sys -- (lmimirr)
DRV:64bit: - [2011/08/29 16:32:18 | 000,053,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2011/08/01 16:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2011/08/01 16:59:06 | 000,023,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV:64bit: - [2011/06/23 21:19:44 | 001,446,960 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2011/06/10 13:04:38 | 001,591,936 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2011/05/19 01:17:02 | 000,051,712 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmaud.sys -- (btmaudio)
DRV:64bit: - [2011/05/17 09:27:52 | 000,025,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2011/05/17 09:27:50 | 000,034,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2011/04/15 13:08:26 | 012,228,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/04/13 20:30:54 | 000,207,872 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/04/13 20:30:50 | 000,087,552 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/03/23 12:20:58 | 000,077,936 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2011/01/20 11:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011/01/12 19:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/12/13 11:34:14 | 000,027,760 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelern.sys -- (Acceler)
DRV:64bit: - [2010/12/08 22:29:58 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MCfilt64.sys -- (MCfilt)
DRV:64bit: - [2010/12/02 02:12:06 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/11/29 15:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/20 21:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 21:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 21:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/10/19 18:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 03:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/08/20 13:05:12 | 000,021,616 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stdcfltn.sys -- (stdcfltn)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/02/26 18:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/07/13 19:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 19:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 19:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 14:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 14:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 14:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 14:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/13 13:47:44 | 000,032,792 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\x10ufx2.sys -- (XUIF)
DRV:64bit: - [2009/05/13 13:26:14 | 000,015,896 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\x10hid.sys -- (X10Hid)
DRV:64bit: - [2006/11/01 12:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2014/09/15 19:37:15 | 000,487,216 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2014/09/15 19:37:15 | 000,142,640 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2014/09/12 16:11:19 | 001,586,904 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Norton AntiVirus\NortonData\21.5.0.19\Definitions\BASHDefs\20140912.003\BHDrvx64.sys -- (BHDrvx64)
DRV - [2014/09/05 16:23:04 | 000,633,560 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Norton AntiVirus\NortonData\21.5.0.19\Definitions\IPSDefs\20140925.001\IDSviA64.sys -- (IDSVia64)
DRV - [2014/08/11 03:41:57 | 002,137,304 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Norton AntiVirus\NortonData\21.5.0.19\Definitions\VirusDefs\20140924.019\ex64.sys -- (NAVEX15)
DRV - [2014/08/11 03:41:55 | 000,129,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Norton AntiVirus\NortonData\21.5.0.19\Definitions\VirusDefs\20140924.019\eng64.sys -- (NAVENG)
DRV - [2013/05/30 07:23:36 | 000,016,056 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\rainfo.sys -- (LMIInfo)
DRV - [2009/07/13 19:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}: "URL" = http://www-search.ne...&q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}: "URL" = http://www-search.ne...&q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{969E16F5-A4AD-4F8E-8FFD-D22FDB12B980}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec....&pvid=21.5.0.19
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{969E16F5-A4AD-4F8E-8FFD-D22FDB12B980}: "URL" = http://www.bing.com/...rc=IE-SearchBox
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec....&pvid=21.5.0.19
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IESR02
IE - HKCU\..\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}: "URL" = http://www-search.ne...&q={searchTerms}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7AURU_enUS501
IE - HKCU\..\SearchScopes\{7DFC6F9D-5B09-4F39-8D2A-1FDEFE5A9676}: "URL" = http://search.condui...&q={searchTerms}
IE - HKCU\..\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}: "URL" = http://www-search.ne...&q={searchTerms}
IE - HKCU\..\SearchScopes\{E69F19C6-287A-422D-9955-287F0A2DB3B2}: "URL" = http://websearch.ask...A5-D154D005C074
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.65.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Curt\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Curt\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.5.0.19\IPSFF [2014/09/05 23:40:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D}: C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.6.15\coFFPlgn\ [2014/09/25 17:48:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK
 
 
========== Chrome  ==========
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www-search.ne...a9-643ffc379364,
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Curt\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\gcswf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Curt\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Java™ Platform SE 7 U5 (Enabled) = C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.50.255 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Windows Live™ Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Curt\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~2\mcafee\msc\npmcsn~1.dll
CHR - Extension: Google Voice Search Hotword (Beta) = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: Norton Identity Safe = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif\1.0.5_0\
CHR - Extension: SlingPlayer for DISH Anywhere = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcnpmlegoehfgohpkmjhpohjchokamnn\2.4.0.89_0\
CHR - Extension: Google Wallet = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Norton Security Toolbar = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob\2014.7.8.23_0\
CHR - Extension: Facebook Font Changer = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\olkmjdncgblppfakdnmcbljlngaodoaf\157\
CHR - Extension: Facebook Panda  Google Maps for Facebook = C:\Users\Curt\AppData\Local\Google\Chrome\User Data\Default\Extensions\padomndbadofflajmcnblpfgincegbpl\238\
 
O1 HOSTS File: ([2014/02/13 23:03:35 | 000,450,709 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 15469 more lines...
O2:64bit: - BHO: (Norton Identity Protection) - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.6.15\CoIEPlg.dll (Symantec Corporation)
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2:64bit: - BHO: (YTAHelper) - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} - C:\ProgramData\YTAHelper\YTAHelper64.dll (Goobzo Ltd.)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Norton Identity Protection) - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (Norton Identity Safe Toolbar) - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.6.15\CoIEPlg.dll (Symantec Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (Norton Identity Safe Toolbar) - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.6.15\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SA3\SACpl.exe (Conexant Systems, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [fst_us_240]  File not found
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - HKCU..\Run: [HijackThis startup scan] C:\Program Files (x86)\Trend Micro\HiJackThis\HijackThis.exe (Trend Micro Inc.)
O4 - HKCU..\Run: [Spybot-S&D Cleaning] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe (Safer-Networking Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logme...rl.cab?lmi=1007 (Performance Viewer Activex Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 72.20.64.11 72.20.64.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9E275576-8191-489E-9E7A-9BD1F310CE31}: DhcpNameServer = 72.20.64.11 72.20.64.12
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~3\WinSpeed\WINSPE~1.DLL) - C:\ProgramData\WinSpeed\WinSpeed_x64.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\GoToAssist Express Customer: DllName - (C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\498\g2ax_winlogonx64.dll) - C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\498\g2ax_winlogonx64.dll (Citrix Online, a division of Citrix Systems, Inc.)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) -  File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/09/25 15:10:38 | 000,000,000 | ---D | C] -- C:\Users\Curt\Desktop\Perdaems
[2014/09/23 11:42:25 | 000,593,112 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symnets.sys
[2014/09/23 11:42:25 | 000,023,568 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symelam.sys
[2014/09/23 11:42:24 | 001,148,120 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symefa64.sys
[2014/09/23 11:42:24 | 000,876,248 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtsp64.sys
[2014/09/23 11:42:24 | 000,493,656 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symds64.sys
[2014/09/23 11:42:24 | 000,266,968 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\ironx64.sys
[2014/09/23 11:42:24 | 000,162,392 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\ccsetx64.sys
[2014/09/23 11:42:24 | 000,037,592 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtspx64.sys
[2014/09/23 11:42:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NAVx64\1506000.020
[2014/09/23 09:59:44 | 000,000,000 | ---D | C] -- C:\Users\Curt\AppData\Local\CrashDumps
[2014/09/21 08:44:11 | 000,000,000 | ---D | C] -- C:\Users\Curt\AppData\Local\GoPro
[2014/09/21 07:35:03 | 000,000,000 | ---D | C] -- C:\Users\Curt\AppData\Roaming\GoPro
[2014/09/21 07:34:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CineForm
[2014/09/21 07:34:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
[2014/09/21 07:28:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GoPro
[2014/09/10 10:06:47 | 000,000,000 | ---D | C] -- C:\Users\Curt\Desktop\Tools
[2014/09/10 10:04:19 | 000,000,000 | ---D | C] -- C:\Users\Curt\Desktop\michael
[2014/09/06 06:11:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\cooUponnpeak
[2014/09/05 23:41:18 | 000,000,000 | ---D | C] -- C:\Users\Curt\Documents\Symantec
[2014/09/05 23:41:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2014/09/05 23:39:50 | 000,162,392 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSTx64\7DE07060.00F\ccSetx64.sys
[2014/09/05 23:39:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSTx64
[2014/09/05 23:39:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSTx64\7DE07060.00F
[2014/09/05 23:39:46 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Identity Safe
[2014/09/05 23:39:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Identity Safe
[2014/09/05 23:39:41 | 000,177,752 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2014/09/05 23:39:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2014/09/05 23:39:21 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton AntiVirus
[2014/09/05 23:39:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton AntiVirus
[2014/09/05 23:39:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NAVx64
[2014/09/05 23:38:52 | 000,000,000 | ---D | C] -- C:\ProgramData\cooUponnpeak
[2014/09/05 23:38:20 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2014/09/05 23:38:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2014/09/05 23:33:45 | 000,000,000 | ---D | C] -- C:\Users\Curt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
[2014/09/05 23:33:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2014/09/04 10:37:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\couponpeakk
[2014/09/04 10:18:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\predm
[2014/09/04 10:16:04 | 000,000,000 | ---D | C] -- C:\Users\Curt\AppData\Roaming\Systweak
[2014/09/04 08:29:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RocketTab
[2014/09/04 08:29:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\YTAHelper
[2014/09/04 08:29:38 | 000,000,000 | ---D | C] -- C:\ProgramData\YTAHelper
[2014/09/04 08:29:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\YTAHelper
[2014/09/04 08:29:31 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\GOOBZO
[2014/09/04 08:29:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
[2014/09/04 08:29:27 | 000,172,032 | ---- | C] (Jin Hui    E-mail: [email protected]   Web: http://www.jcomsoft.com) -- C:\Windows\SysWow64\AniGIF.ocx
[2014/09/04 08:29:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\YouTube Accelerator
[2014/09/04 08:29:24 | 000,000,000 | ---D | C] -- C:\ProgramData\SearchModule
[2014/09/04 08:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Goobzo
[2014/09/04 08:29:05 | 000,000,000 | ---D | C] -- C:\Users\Curt\AppData\Local\CrashRpt
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014/09/25 17:55:25 | 000,028,352 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/09/25 17:55:25 | 000,028,352 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/09/25 17:46:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/09/25 17:46:47 | 2058,604,543 | -HS- | M] () -- C:\hiberfil.sys
[2014/09/25 17:06:00 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2670791669-1474501898-432529009-1000UA.job
[2014/09/25 17:00:56 | 000,782,470 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/09/25 17:00:56 | 000,662,634 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/09/25 17:00:56 | 000,122,470 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/09/25 17:00:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/09/25 15:22:05 | 000,018,288 | ---- | M] () -- C:\Users\Curt\AppData\Local\recently-used.xbel
[2014/09/25 12:06:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2670791669-1474501898-432529009-1000Core.job
[2014/09/25 10:08:16 | 850,248,704 | ---- | M] () -- C:\Users\Curt\Documents\mailbox.pst
[2014/09/24 15:04:41 | 001,993,682 | ---- | M] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\Cat.DB
[2014/09/23 15:09:38 | 000,002,442 | ---- | M] () -- C:\Users\Public\Desktop\Norton AntiVirus.lnk
[2014/09/23 15:07:13 | 000,045,410 | ---- | M] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\VT20140916.019
[2014/09/23 09:59:33 | 000,557,641 | ---- | M] () -- C:\Users\Curt\New document 2.2014_09_23_09_59_29.2.svg
[2014/09/23 09:59:30 | 010,133,162 | ---- | M] () -- C:\Users\Curt\New document 5.2014_09_23_09_59_29.0.svg
[2014/09/21 08:28:30 | 000,951,115 | ---- | M] () -- C:\Users\Curt\Desktop\James & Jen Perdaems monogram.png
[2014/09/21 07:34:43 | 000,001,153 | ---- | M] () -- C:\Users\Curt\Desktop\GoPro Studio.lnk
[2014/09/21 07:34:41 | 000,001,255 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CineForm Status.lnk
[2014/09/21 03:59:18 | 000,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\isolate.ini
[2014/09/19 08:22:07 | 000,002,064 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2014/09/19 08:15:30 | 000,497,088 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014/09/15 17:52:27 | 000,775,084 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014/09/05 23:39:41 | 000,177,752 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2014/09/05 23:39:41 | 000,008,222 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2014/09/05 23:39:41 | 000,000,854 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2014/09/05 23:33:45 | 000,001,216 | ---- | M] () -- C:\Users\Curt\Desktop\Norton Installation Files.lnk
[2014/09/05 22:18:33 | 000,328,410 | ---- | M] () -- C:\Users\Curt\Documents\monogram1.vj
[2014/09/04 10:35:33 | 000,002,366 | ---- | M] () -- C:\Users\Curt\Desktop\Google Chrome.lnk
[2014/09/04 10:35:33 | 000,001,439 | ---- | M] () -- C:\Users\Curt\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014/09/04 08:29:27 | 000,172,032 | ---- | M] (Jin Hui    E-mail: [email protected]   Web: http://www.jcomsoft.com) -- C:\Windows\SysWow64\AniGIF.ocx
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014/09/25 15:22:05 | 000,018,288 | ---- | C] () -- C:\Users\Curt\AppData\Local\recently-used.xbel
[2014/09/23 15:07:13 | 001,993,682 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\Cat.DB
[2014/09/23 15:07:13 | 000,045,410 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\VT20140916.019
[2014/09/23 11:42:25 | 000,009,939 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symelam64.cat
[2014/09/23 11:42:25 | 000,008,192 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symnet64.cat
[2014/09/23 11:42:25 | 000,001,440 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symnet.inf
[2014/09/23 11:42:25 | 000,001,098 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symelam.inf
[2014/09/23 11:42:24 | 000,008,202 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\ccsetx64.cat
[2014/09/23 11:42:24 | 000,008,194 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symefa64.cat
[2014/09/23 11:42:24 | 000,008,188 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symds64.cat
[2014/09/23 11:42:24 | 000,008,188 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtspx64.cat
[2014/09/23 11:42:24 | 000,008,184 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtsp64.cat
[2014/09/23 11:42:24 | 000,008,184 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\iron.cat
[2014/09/23 11:42:24 | 000,003,433 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symefa.inf
[2014/09/23 11:42:24 | 000,002,852 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symds.inf
[2014/09/23 11:42:24 | 000,001,437 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtsp64.inf
[2014/09/23 11:42:24 | 000,001,420 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\srtspx64.inf
[2014/09/23 11:42:24 | 000,000,855 | R--- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\ccsetx64.inf
[2014/09/23 11:42:24 | 000,000,767 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\iron.inf
[2014/09/23 11:42:03 | 000,030,068 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\symvtcer.dat
[2014/09/23 11:42:03 | 000,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NAVx64\1506000.020\isolate.ini
[2014/09/23 09:59:32 | 000,557,641 | ---- | C] () -- C:\Users\Curt\New document 2.2014_09_23_09_59_29.2.svg
[2014/09/23 09:59:29 | 010,133,162 | ---- | C] () -- C:\Users\Curt\New document 5.2014_09_23_09_59_29.0.svg
[2014/09/21 08:28:23 | 000,951,115 | ---- | C] () -- C:\Users\Curt\Desktop\James & Jen Perdaems monogram.png
[2014/09/21 07:34:43 | 000,001,153 | ---- | C] () -- C:\Users\Curt\Desktop\GoPro Studio.lnk
[2014/09/21 07:34:41 | 000,001,255 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CineForm Status.lnk
[2014/09/05 23:39:47 | 000,008,202 | R--- | C] () -- C:\Windows\SysNative\drivers\NSTx64\7DE07060.00F\ccSetx64.cat
[2014/09/05 23:39:47 | 000,000,855 | R--- | C] () -- C:\Windows\SysNative\drivers\NSTx64\7DE07060.00F\ccSetx64.inf
[2014/09/05 23:39:47 | 000,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NSTx64\7DE07060.00F\isolate.ini
[2014/09/05 23:39:41 | 000,008,222 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2014/09/05 23:39:41 | 000,000,854 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2014/09/05 23:39:40 | 000,002,442 | ---- | C] () -- C:\Users\Public\Desktop\Norton AntiVirus.lnk
[2014/09/05 23:33:45 | 000,001,216 | ---- | C] () -- C:\Users\Curt\Desktop\Norton Installation Files.lnk
[2014/09/05 22:18:33 | 000,328,410 | ---- | C] () -- C:\Users\Curt\Documents\monogram1.vj
[2014/08/26 09:54:11 | 002,790,156 | ---- | C] () -- C:\Users\Curt\New document 4.2014_08_26_09_54_11.1.svg
[2014/08/26 09:54:11 | 000,001,360 | ---- | C] () -- C:\Users\Curt\New document 11.2014_08_26_09_54_11.0.svg
[2014/07/08 15:53:19 | 000,000,055 | ---- | C] () -- C:\Users\Curt\New document 1.2014_07_08_15_53_19.0.svg
[2014/07/08 15:36:56 | 054,694,496 | ---- | C] () -- C:\Users\Curt\New document 2.2014_07_08_15_36_56.0.svg
[2014/05/14 22:44:36 | 005,352,379 | ---- | C] () -- C:\Users\Curt\New document 6.2014_05_14_22_44_36.1.svg
[2014/05/14 22:44:36 | 003,690,635 | ---- | C] () -- C:\Users\Curt\New document 11.2014_05_14_22_44_36.0.svg
[2014/04/04 14:12:04 | 000,121,840 | ---- | C] () -- C:\Users\Curt\New document 5.2014_04_04_14_12_04.0.svg
[2014/03/28 20:19:52 | 000,007,606 | ---- | C] () -- C:\Users\Curt\AppData\Local\Resmon.ResmonCfg
[2014/03/25 20:33:07 | 000,004,096 | -H-- | C] () -- C:\Users\Curt\AppData\Local\keyfile3.drm
[2014/01/19 11:44:51 | 000,465,357 | ---- | C] () -- C:\Users\Curt\New document 5.2014_01_19_10_44_51.0.svg
[2014/01/16 13:49:37 | 000,029,874 | ---- | C] () -- C:\Users\Curt\New document 1.2014_01_16_12_49_37.0.svg
[2014/01/15 17:55:35 | 000,012,145 | ---- | C] () -- C:\Users\Curt\rect2985.png
[2013/12/10 17:26:02 | 000,226,852 | ---- | C] () -- C:\Users\Curt\New_document_1-g26046-482.png
[2013/12/04 23:18:28 | 000,000,345 | ---- | C] () -- C:\Windows\wininit.ini
[2013/09/04 13:44:26 | 000,000,258 | RHS- | C] () -- C:\Users\Curt\ntuser.pol
[2013/08/14 15:53:01 | 000,113,224 | ---- | C] () -- C:\Users\Curt\g2ax_customer_downloadhelper_win32_x86.exe
[2013/02/10 02:04:25 | 000,001,110 | ---- | C] () -- C:\Users\Curt\test.pss
[2013/01/23 07:12:06 | 000,009,584 | ---- | C] () -- C:\Windows\SysWow64\ractrlkeyhook.dll
 
========== ZeroAccess Check ==========
 
[2013/04/14 12:11:14 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/06/24 20:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/24 19:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 19:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 21:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 19:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2013/07/09 22:32:33 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Apowersoft
[2013/08/08 18:24:33 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Canon
[2013/12/05 00:30:34 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\DefaultTab
[2014/09/18 09:32:31 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Dropbox
[2013/10/01 16:56:42 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\FileZilla
[2012/01/26 20:07:52 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Fingertapps
[2014/04/12 09:59:21 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Garmin
[2014/09/21 07:36:58 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\GoPro
[2014/09/06 19:54:10 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\GrandVJ2
[2013/12/01 11:51:21 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\inkscape
[2013/02/10 02:04:27 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\OfficeOne
[2014/07/23 14:26:56 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Oracle
[2014/07/15 13:11:53 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\PCDr
[2014/02/14 12:38:12 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\PDF Architect
[2014/02/01 03:45:31 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Sling Media
[2014/09/04 10:26:01 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Systweak
[2012/08/22 19:59:05 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\TeamViewer
[2014/04/16 13:35:40 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Video Mapper
[2014/01/02 21:29:50 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\WildTangent
[2013/07/09 23:08:11 | 000,000,000 | ---D | M] -- C:\Users\Curt\AppData\Roaming\Xilisoft
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 192 bytes -> C:\Windows:nlsPreferences
@Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:373E1720
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:56E2E879

< End of report >


  • 0

#3
Astoltz

Astoltz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts

OTL Extras logfile created on: 9/25/2014 5:51:25 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Curt\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17280)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
7.89 Gb Total Physical Memory | 5.58 Gb Available Physical Memory | 70.68% Memory free
15.78 Gb Paging File | 13.25 Gb Available in Paging File | 83.99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 679.00 Gb Total Space | 581.53 Gb Free Space | 85.65% Space Free | Partition Type: NTFS
 
Computer Name: MADMIXERPRO | User Name: Curt | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0CA67F6C-7E44-489F-BD79-4F8CD11BA65A}" = rport=138 | protocol=17 | dir=out | app=system |
"{13FC857E-B305-45BE-BAD8-E2EA0F7EFD01}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{19FA029A-B39A-4046-862A-22ABAA7D8431}" = rport=139 | protocol=6 | dir=out | app=system |
"{2B8F3533-7570-4D7A-8DF6-0001B76FB73B}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{2D500FC5-40D0-4D5A-80E9-9838D687A915}" = lport=139 | protocol=6 | dir=in | app=system |
"{3AF2CC1B-EBDA-4A77-BFAF-A4998E3A3AD1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{5666CEBE-B1FD-4EE0-8E9B-B8E6C2EA47A5}" = lport=2869 | protocol=6 | dir=in | app=system |
"{58A40FB4-A645-45FA-A472-F0EADADB202A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{68385504-6D3B-459D-8092-FA4A92BA4CBE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6986D2F2-6BBE-4DBA-950C-6F4418E844A1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6B20DF2E-3F2B-48F4-B0A8-B8352FD1F3B6}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{715EB9CA-BE81-4997-BF07-9EEC5049AB84}" = lport=445 | protocol=6 | dir=in | app=system |
"{7E9E529F-9322-4DED-BC5D-7174041AB015}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8702694D-A24A-4CEA-85B1-96524C6CCEEE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{91246A15-BA89-4699-8782-02943CB1CC93}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{916AE725-3204-4765-9C18-AD50D13410CF}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9C5D75CA-1403-4CF4-99C2-6FE92F15B82F}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{A5506F73-8BA9-4055-95D6-7D59EB5288AD}" = rport=10243 | protocol=6 | dir=out | app=system |
"{B5C87520-7850-48AA-B6DC-244BD568A2B0}" = lport=138 | protocol=17 | dir=in | app=system |
"{C0743E8E-CDEF-4129-B9E1-E99D8954E6D4}" = lport=10243 | protocol=6 | dir=in | app=system |
"{C2157AA7-9047-4166-85A9-81C1F66E682E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CAEC66D8-9D8E-4BD7-A0CB-5493D51EA344}" = rport=137 | protocol=17 | dir=out | app=system |
"{DCCCEA92-89A3-4392-8A1F-FFE9A2159E18}" = rport=445 | protocol=6 | dir=out | app=system |
"{ECAF03EB-546F-4ADA-BB29-A2AE571CF641}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{ED2B1B1C-E126-4841-96B6-CA3CB1325C94}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EE972DBC-7700-4EF9-9A4C-57E8A9AA4A35}" = lport=137 | protocol=17 | dir=in | app=system |
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03955429-EDCC-4D4C-BDF0-2A3CB2DAA1F5}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19B851DF-76AB-46E8-822F-545FAA99F848}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftplayer.dll |
"{1BB1B30B-C8A2-4576-BDEF-477940B701D3}" = dir=in | app=c:\program files\dell stage\dell stage\accuweather\accuweather.exe |
"{1FECF23D-BE84-4567-8FF3-3D71220D4C55}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\video download capture.exe |
"{2103E341-2A24-4544-92B9-0E96D2CDB37C}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{230F0751-2EFB-4D86-982D-B0808611C57F}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdump.dll |
"{2347B3B0-003F-46BC-BE33-B1DB103C43AD}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftsrv.dll |
"{308EC305-C3F1-41D8-AF5A-45F28DFFFB66}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdownloaderhelp.dll |
"{32C7B208-2915-4AA0-8FBB-8FCE3CBA44C4}" = dir=in | app=c:\program files\dell stage\dell stage\stage_primary.exe |
"{336FF66F-C1F5-4C8C-A9F4-E7BCBBFAF042}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftac.dll |
"{392B1E3B-5FDB-4AC3-9B82-82830E78AFB0}" = dir=in | app=c:\program files (x86)\dell\videostage\videostage.exe |
"{3B40989C-4B5B-4228-A651-9D7F7EC03B60}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{457BF7AA-F877-4519-B34A-85E114E07FE6}" = protocol=17 | dir=in | app=c:\users\curt\appdata\roaming\dropbox\bin\dropbox.exe |
"{4B925D2A-2DB0-49F0-8C78-002AD66E09ED}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5A5B1EC9-E3F2-4508-B945-3F5A53160084}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{5D4BE009-1ED2-49E4-865E-9F3197B6F6AB}" = dir=in | app=c:\program files (x86)\leapfrog\leapfrog connect\leapfrogconnect.exe |
"{6403F040-1B5B-45A2-B8CF-05F9367AB217}" = dir=in | app=c:\program files (x86)\intel corporation\intel widi\widiapp.exe |
"{6A34ADE6-9B4D-4114-A104-D448B22D612A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6A83C18C-5D2F-4670-9674-77023C12EF48}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6ADDD4DD-8D67-454D-937D-7348BA676BE9}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6BC7F9B8-BAA6-4515-8019-AE3D1B5B1232}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{72276E84-8DC0-4EF8-9E9C-A91F87B5345F}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{733CE16C-12AB-482B-B99E-C2E92788F408}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{76611B13-4F0E-48DF-A245-B7BF7B2BC146}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{7BB1E240-E26C-4A75-9D3D-49A986175DD9}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{7F2C374C-542E-42B1-A033-56154449302A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{81A4224A-E6BF-451E-9189-ABA14BE46514}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{84442E71-46A7-4DA0-8359-E40A5C6992BC}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9C886423-4516-4BE9-870A-72B128414524}" = protocol=1 | dir=out | [email protected],-28544 |
"{9F511F0C-69DC-49F4-BC50-86EB066A04A6}" = protocol=6 | dir=out | app=system |
"{A2C16792-55CF-4E48-A11E-7CB268C341DD}" = protocol=6 | dir=in | app=c:\users\curt\appdata\roaming\dropbox\bin\dropbox.exe |
"{A39CF95E-514E-438F-9A9A-569CA3B192A6}" = protocol=58 | dir=out | [email protected],-28546 |
"{A602830C-03D4-4DF0-94DB-E58298F6FD7A}" = dir=in | app=c:\program files\dell stage\musicstage\musicstageengine.exe |
"{A78F65CA-C84E-4135-8BF1-A7768BD2B148}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftac.dll |
"{AE253E34-D772-4C90-95B1-1DDCA4D2509E}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{AFB5F5D4-2907-492A-8120-DA1D59420371}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B33586E6-2F6E-4D5F-94D2-E88855DDA656}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B3FDB42B-A3F1-4E42-A872-53D52BB2AA14}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B9490BD9-0F44-4ABF-89B2-DCB4489E7FC8}" = protocol=58 | dir=in | [email protected],-28545 |
"{BA0E7B83-8616-4AAF-9850-2BD844643A8A}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{BC8B56FE-1A15-4A7E-9449-D0EE8AA19F46}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{C38B19A3-0BBC-4E70-BD9B-47B6F4D21B75}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdump.dll |
"{C3E5435B-4BF2-4D99-BAC9-B11027F7CE69}" = protocol=1 | dir=in | [email protected],-28543 |
"{C4672710-00F3-46A0-9BF0-9FC32C43CA03}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{C98B4A61-34BA-4ED6-BF0E-8AF3C6D6C0DB}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{CA245A28-882A-41D2-BA2C-0C65E73C28ED}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{CC6C6C96-9CE6-456E-8D48-FBA381C0B019}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdownloaderhelp.dll |
"{D0EE97BE-3286-4885-A523-52ACC4429AF8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D9E98063-055E-4122-8882-505FF6468B1A}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{DDB36143-3FF6-49F0-A601-8B437DAD50BC}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{DE9BCB8F-FBD6-44B2-99FA-41278283D703}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\video download capture.exe |
"{E7B9571F-2DBC-4998-89BC-A2165BEEC8F1}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftplayer.dll |
"{F379298A-7D37-467B-8446-CD86FAA95438}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{F3EA790D-DE26-43AE-AA5F-B2939857BCD9}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{F89FC2A7-CA82-42DF-A632-87D720CAD016}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftsrv.dll |
"TCP Query User{0BC7AC8E-5828-4920-A692-F1DDF7F8A779}C:\program files (x86)\arkaos grandvj 2.0.0\grandvj.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.0\grandvj.exe |
"TCP Query User{140C9BFA-5283-4854-84FC-F19E712159A6}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe" = protocol=6 | dir=in | app=c:\program files (x86)\spybot - search & destroy 2\sdfiles.exe |
"TCP Query User{1F9915CE-E0DD-4854-9A77-AC0E3660F876}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"TCP Query User{22EC6CA8-9181-407C-9886-477BD396AE38}C:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe |
"TCP Query User{27E3643F-1981-4B87-95CB-1BC616EE8AF7}C:\photoboof\utils\webserver\pbapache.exe" = protocol=6 | dir=in | app=c:\photoboof\utils\webserver\pbapache.exe |
"TCP Query User{2B8EA189-2ADC-4DDB-8420-3666195B4CC4}C:\program files\showxpress\screencontrol\screencontrol.exe" = protocol=6 | dir=in | app=c:\program files\showxpress\screencontrol\screencontrol.exe |
"TCP Query User{6403D618-5778-476D-966D-BA8346F7D617}C:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe |
"TCP Query User{74C6E7C1-83AD-4E98-A78D-C2B5BB33B76D}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe" = protocol=6 | dir=in | app=c:\program files (x86)\spybot - search & destroy 2\sdupdate.exe |
"TCP Query User{79110BB4-A10D-4113-8CCD-AAECF04838AA}C:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe |
"TCP Query User{7CD6803F-8B7B-4EE5-8A4C-33FD39CE6408}C:\program files\showxpress\live\live.exe" = protocol=6 | dir=in | app=c:\program files\showxpress\live\live.exe |
"TCP Query User{99462208-C549-443A-98F8-76D2AA2EF851}C:\program files (x86)\microsoft games\age of empires ii\empires2.icd" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\empires2.icd |
"TCP Query User{A19DCAF1-D462-4138-8399-E0CB705F6E85}C:\program files\showxpress\controlboard.exe" = protocol=6 | dir=in | app=c:\program files\showxpress\controlboard.exe |
"TCP Query User{BB21A669-CDBC-44DC-A967-F6DD0DB69920}C:\program files\showxpress\screencontrol\screencontrol.exe" = protocol=6 | dir=in | app=c:\program files\showxpress\screencontrol\screencontrol.exe |
"TCP Query User{BE058F1A-5AF0-4C2F-929F-48388D6AFAFD}C:\users\curt\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\curt\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{CD0AD896-C118-4624-9AC6-1915685C43F6}C:\photoboof\utils\webserver\pbapache.exe" = protocol=6 | dir=in | app=c:\photoboof\utils\webserver\pbapache.exe |
"TCP Query User{D15358D9-72C5-4D95-85FA-D55708D26F63}C:\program files\showxpress\live\live.exe" = protocol=6 | dir=in | app=c:\program files\showxpress\live\live.exe |
"TCP Query User{E46DD0C0-D39F-47F1-AD7D-497B835381A6}C:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe" = protocol=6 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe |
"TCP Query User{F624B1D9-1A4A-481D-9605-5291ED55EF1C}C:\program files\showxpress\controlboard.exe" = protocol=6 | dir=in | app=c:\program files\showxpress\controlboard.exe |
"TCP Query User{F7B4F0F1-8F72-416F-9D59-FD3B378F6A8C}C:\users\curt\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\curt\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{063D74B3-BDB7-4E96-9230-17E637553083}C:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe |
"UDP Query User{10E87598-2618-4BFF-93EE-F7D933A8A720}C:\photoboof\utils\webserver\pbapache.exe" = protocol=17 | dir=in | app=c:\photoboof\utils\webserver\pbapache.exe |
"UDP Query User{1518CAEF-3513-486A-BC63-6D353C735110}C:\users\curt\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\curt\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{156E9C70-92D6-436A-A4C0-98CCB3CC31C7}C:\program files\showxpress\live\live.exe" = protocol=17 | dir=in | app=c:\program files\showxpress\live\live.exe |
"UDP Query User{245701F6-37B5-44AC-BA47-F7634CE20D39}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"UDP Query User{2F692A9E-2DDE-416C-9059-539E104EF375}C:\program files\showxpress\screencontrol\screencontrol.exe" = protocol=17 | dir=in | app=c:\program files\showxpress\screencontrol\screencontrol.exe |
"UDP Query User{31109725-818F-4E23-94FA-C89FFDB4B272}C:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe |
"UDP Query User{7EF23F8D-9260-456C-9D86-DEBA034E6E4B}C:\program files\showxpress\controlboard.exe" = protocol=17 | dir=in | app=c:\program files\showxpress\controlboard.exe |
"UDP Query User{8328F11A-6E31-4E1F-8E06-45BC96838B94}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe" = protocol=17 | dir=in | app=c:\program files (x86)\spybot - search & destroy 2\sdfiles.exe |
"UDP Query User{9005CFE5-7838-4B12-A220-33375BDDDB83}C:\program files\showxpress\screencontrol\screencontrol.exe" = protocol=17 | dir=in | app=c:\program files\showxpress\screencontrol\screencontrol.exe |
"UDP Query User{96F7BBBE-C73C-46C0-8177-8002E6823B9D}C:\program files\showxpress\controlboard.exe" = protocol=17 | dir=in | app=c:\program files\showxpress\controlboard.exe |
"UDP Query User{9D814EF4-E040-4238-BF1B-DFD197CD8B6C}C:\photoboof\utils\webserver\pbapache.exe" = protocol=17 | dir=in | app=c:\photoboof\utils\webserver\pbapache.exe |
"UDP Query User{A878B9BB-6FA0-4F30-8647-26EEDD77B5D7}C:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.3\grandvj.exe |
"UDP Query User{AF917EE2-98BB-4EFB-8AED-0D7212CDFDFD}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe" = protocol=17 | dir=in | app=c:\program files (x86)\spybot - search & destroy 2\sdupdate.exe |
"UDP Query User{BD73CB9E-BFBA-45E3-AEAD-E7DCD8405C9C}C:\program files (x86)\arkaos grandvj 2.0.0\grandvj.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.0\grandvj.exe |
"UDP Query User{BDD98773-2134-4B56-B057-31DD090E56E0}C:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe" = protocol=17 | dir=in | app=c:\program files (x86)\arkaos grandvj 2.0.2\grandvj.exe |
"UDP Query User{DEADDED1-4E77-4ED3-84E3-332E18D5247B}C:\program files\showxpress\live\live.exe" = protocol=17 | dir=in | app=c:\program files\showxpress\live\live.exe |
"UDP Query User{E74A5980-EA5F-40A1-BB83-A244014815C7}C:\program files (x86)\microsoft games\age of empires ii\empires2.icd" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\empires2.icd |
"UDP Query User{FA85E0D8-6DA7-4A67-BFCF-3700273A2078}C:\users\curt\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\curt\appdata\local\google\chrome\application\chrome.exe |
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP560_series" = Canon MP560 series MP Drivers
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel® Wireless Display
"{2ABA2E8D-23CF-418F-BC8F-2EC99FA51A3F}" = Intel® PROSet/Wireless Software for Bluetooth® Technology
"{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}" = Apple Mobile Device Support
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{624C7F0A-89B2-4C49-9CAB-9D69613EC95A}" = Microsoft IntelliPoint 8.2
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{704C0303-D20C-45AF-BD2B-556EAF31BE09}" = iCloud
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{A02609EB-395E-4638-8DD7-30CE043014E5}" = ANT Drivers Installer x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}" = Intel® Turbo Boost Technology Monitor 2.0
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}" = iTunes
"{D61E4101-9E15-4D0E-ABD1-1ABD36B43330}" = Intel® PROSet/Wireless WiFi Software
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"0B624A43DD66DBF5CF3EDFA9741A364E688062A4" = Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 )
"781745E87AFF80C0C1388CFF79D19ECAB2E9BB47" = Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0)
"8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D" = Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012)
"CNXT_AUDIO_HDA" = Conexant SmartAudio HD
"D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2" = Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1)
"F9D2A789F9CFF8CEC36B544F53877C80F1F73C46" = Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
"GIMP-2_is1" = GIMP 2.8.2
"HiTi Photo Printer P51x series" = HiTi Photo Printer P51x series
"Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2
"PC-Doctor for Windows" = My Dell
"ProInst" = Intel PROSet Wireless
"ShowXpress_is1" = ShowXpress
"SynTPDeinstKey" = Dell Touchpad
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03711302-5E15-4432-B471-57E942A2D2E1}" = ArKaos GrandVJ 2
"{08BFB912-8D71-4E29-9A80-18BFB385F19B}" = LeapFrog Connect
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0DD706AF-B542-438C-999E-B30C7F625C8D}" = Intel® WiDi
"{0E74474A-1CDF-4249-A507-CE8C1DCEC8BC}" = TrustedID IDMonitor Identity Protection
"{0ECFCB07-9BFE-4970-ACA1-D568D982760B}" = Complete Care Business Service Agreement
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 65
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2BFDA78F-39F7-4537-9995-71424CFA88BB}" = LogMeIn
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{35B15182-D134-4F41-82BB-59B83F596487}" = LeapFrog Tag Plugin
"{39D06E77-8921-4056-8901-36D0035BAECA}" = Dell Stage
"{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}" = Banctec Service Agreement
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{52E225FC-FCB4-41F7-837B-6E37FB05BD7B}" = Adobe AIR
"{560D64A9-BDFD-44B7-90D1-8FBBED7F4A19}" = Garmin Express
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}" = WinSpeed
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6D181996-F404-4639-9B95-15012541CB7C}" = Garmin Express Tray
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{732E3F74-FF24-42BC-B1A2-3244BBEBEB5D}" = LeapFrog LeapPad Explorer Plugin
"{7720C46F-309B-4D92-911E-13B518B3B7BA}" = ArKaos GrandVJ 2
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7EC66A95-AC2D-4127-940B-0445A526AB2F}" = Dell DataSafe Online
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{817c6bb8-ea2d-4e12-abbc-e33c3de43f64}" = Garmin Express
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{87434D51-51DB-4109-B68F-A829ECDCF380}" = AccelerometerP11
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ULTIMATER_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ULTIMATER_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ULTIMATER_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_ULTIMATER_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{903679E8-44C8-4C07-9600-05C92654FC50}" = QualxServ Service Agreement
"{91120000-002E-0000-0000-0000000FF1CE}" = Microsoft Office Ultimate 2007
"{91120000-002E-0000-0000-0000000FF1CE}_ULTIMATER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{9155DB04-A032-491A-88B2-7C19B9E9F945}" = LeapFrog My Pals Plugin
"{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}" = Dell MusicStage
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{934D1799-3D51-4EEA-A25D-C416FBD8CA8C}" = Darkroom Booth
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}" = Dell Home Systems Service Agreement
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.12) MUI
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy
"{C16A92EF-017B-4839-9C75-FBADB5A1FA27}" = TrustedID
"{C33AA6D6-F5EC-48F3-AFDC-8141345D473A}" = Premium Service Agreement
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CA8D64BC-AC35-4285-B9B5-7C124ABDA211}" = LeapFrog MyOwnLeaptop Plugin
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D968FBF3-E4A6-4D82-981D-D7FF9B7BFC30}" = Elevated Installer
"{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4335E82-17B3-460F-9E70-39D9BC269DB3}" = Dell PhotoStage
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{EF85FEF4-EB92-4075-A6D2-5F519BB30A2C}" = Accidental Damage Services Agreement
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Age of Empires 2.0" = Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion
"ArKaos GrandVJ 2.0.3" = GrandVJ 2.0.3
"Canon MP560 series User Registration" = Canon MP560 series User Registration
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"Dell Webcam Central" = Dell Webcam Central
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"GoPro Studio" = GoPro Studio 2.0.1
"GoToAssist Express Customer" = GoToAssist Customer 1.6.0.498
"Inkscape" = Inkscape 0.48.4
"InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"LeapPadExplorerPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)
"LeaptopPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog MyOwnLeaptop Plugin)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"MyPalsPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin)
"NAV" = Norton AntiVirus
"NST" = Norton Identity Safe
"ProInst" = Intel PROSet Wireless
"Score Master_is1" = Score Master
"TagPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
"Take It Or Leave It_is1" = Take It Or Leave It
"Trivia Board Pro 4_is1" = Trivia Board Pro 4
"Trivia Feud_is1" = Trivia Feud
"Trivia Fortune_is1" = Trivia Fortune
"Trivia Ladder_is1" = Trivia Ladder
"Trivia Squares_is1" = Trivia Squares
"ULTIMATER" = Microsoft Office Ultimate 2007
"UPCShell" = LeapFrog Connect
"WinLiveSuite" = Windows Live Essentials
"X10Hardware" = X10 Hardware™
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"FLV Player" = FLV Player
"Google Chrome" = Google Chrome
"JoinMe" = join.me
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 9/23/2014 5:09:25 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/23/2014 9:21:18 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/24/2014 4:59:49 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/24/2014 9:21:51 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/24/2014 9:42:30 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/25/2014 12:02:28 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/25/2014 6:57:18 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/25/2014 7:23:30 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/25/2014 7:29:29 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
Error - 9/25/2014 7:48:19 PM | Computer Name = MadmixerPro | Source = WinMgmt | ID = 10
Description =
 
[ OSession Events ]
Error - 4/18/2012 4:45:34 PM | Computer Name = MadmixerPro | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 14
 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error - 9/27/2012 3:46:34 PM | Computer Name = MadmixerPro | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.6661.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 108
 seconds with 60 seconds of active time.  This session ended with a crash.
 
Error - 8/10/2014 10:10:22 PM | Computer Name = MadmixerPro | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9
 seconds with 0 seconds of active time.  This session ended with a crash.
 
[ System Events ]
Error - 9/25/2014 7:22:43 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
 service which failed to start because of the following error:   %%1068
 
Error - 9/25/2014 7:25:15 PM | Computer Name = MadmixerPro | Source = DCOM | ID = 10005
Description =
 
Error - 9/25/2014 7:28:55 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Garmin
 Core Update Service service to connect.
 
Error - 9/25/2014 7:28:55 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7000
Description = The Garmin Core Update Service service failed to start due to the
following error:   %%1053
 
Error - 9/25/2014 7:29:18 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7000
Description = The Update Deal Keeper service failed to start due to the following
 error:   %%2
 
Error - 9/25/2014 7:29:18 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7000
Description = The Util Deal Keeper service failed to start due to the following
error:   %%2
 
Error - 9/25/2014 7:47:50 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Garmin
 Core Update Service service to connect.
 
Error - 9/25/2014 7:47:50 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7000
Description = The Garmin Core Update Service service failed to start due to the
following error:   %%1053
 
Error - 9/25/2014 7:48:13 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7000
Description = The Update Deal Keeper service failed to start due to the following
 error:   %%2
 
Error - 9/25/2014 7:48:13 PM | Computer Name = MadmixerPro | Source = Service Control Manager | ID = 7000
Description = The Util Deal Keeper service failed to start due to the following
error:   %%2
 
 
< End of report >
 


  • 0

#4
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Sorry for the delay. I would be happy to take a look. While I review your logs would you be able to give me some information on what symptoms you are having? Thank you.


  • 0

#5
godawgs

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP