Ok , uninstalled Limwire, ran OTL see results below but tried to run GMER three times and it does not seem to like my computer, prgram runs for several minutes then hangs and my computer completely freezes and the only option is to reboot, also after reboot it seems to take a long time during startup but is working fine once it gets through it's long startup.
Here are the results.
OTL logfile created on: 23/12/2010 8:16:49 PM - Run 6
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Karl\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.75 Gb Total Space | 350.03 Gb Free Space | 75.15% Space Free | Partition Type: NTFS
Computer Name: KARL-OBZ0STNSQQ | User Name: Karl | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Karl\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\DeltaIITray.exe ()
PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
PRC - C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
PRC - C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Marvell\raid\Apache2\bin\httpd.exe (Apache Software Foundation)
PRC - C:\WINDOWS\system32\oodag.exe (O&O Software GmbH)
PRC - C:\USBStorage\USBDetector.exe (ali)
========== Modules (SafeList) ========== MOD - C:\Documents and Settings\Karl\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ========== SRV - (PEVSystemStart) -- C:\ComboFix\PEV.cfx File not found
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
SRV - (Application Updater) -- C:\Program Files\Application Updater\ApplicationUpdater.exe (Spigot, Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (Marvell RAID) -- C:\Program Files\Marvell\raid\svc\mvraidsvc.exe ()
SRV - (MRUWebService) -- C:\Program Files\Marvell\raid\Apache2\bin\httpd.exe (Apache Software Foundation)
SRV - (O&O Defrag) -- C:\WINDOWS\system32\oodag.exe (O&O Software GmbH)
========== Driver Services (SafeList) ========== DRV - (ossrv) -- C:\WINDOWS\System32\drivers\ctoss2k.sys File not found
DRV - (cpuz132) -- C:\DOCUME~1\Karl\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys File not found
DRV - (catchme) -- C:\DOCUME~1\Karl\LOCALS~1\Temp\catchme.sys File not found
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (L1e) -- C:\WINDOWS\system32\drivers\l1e51x86.sys (Atheros Communications, Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (AtiHdmiService) -- C:\WINDOWS\system32\drivers\AtiHdmi.sys (ATI Research Inc.)
DRV - (DELTAII) Service for M-Audio Delta Driver (WDM) -- C:\WINDOWS\system32\drivers\MAudioDelta.sys (Avid Technology, Inc.)
DRV - (RTHDMIAzAudService) -- C:\WINDOWS\system32\drivers\RtKHDMI.sys (Realtek Semiconductor Corp.)
DRV - (mv61xx) -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys (Marvell Semiconductor, Inc.)
DRV - (Aspi32) -- C:\WINDOWS\system32\drivers\ASPI32.SYS (Adaptec)
DRV - (61883) -- C:\WINDOWS\system32\drivers\61883.sys (Microsoft Corporation)
DRV - (Avc) -- C:\WINDOWS\system32\drivers\avc.sys (Microsoft Corporation)
DRV - (MSTAPE) -- C:\WINDOWS\system32\drivers\mstape.sys (Microsoft Corporation)
DRV - (AVCSTRM) -- C:\WINDOWS\system32\drivers\avcstrm.sys (Microsoft Corporation)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (AsIO) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (speedfan) -- C:\WINDOWS\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (ubohci) -- C:\WINDOWS\system32\drivers\ubohci.sys (Unibrain S.A.)
DRV - (ubumapi) -- C:\WINDOWS\system32\drivers\UBUMAPI.sys (Unibrain S.A.)
DRV - (ubsbm) -- C:\WINDOWS\system32\drivers\UBSBM.sys (Unibrain S.A.)
DRV - (Afc) -- C:\WINDOWS\system32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (sfman) Creative SoundFont Manager Driver (WDM) -- C:\WINDOWS\system32\drivers\sfmanm.sys (Creative Technology Ltd.)
DRV - (emu10k1) Creative Interface Manager Driver (WDM) -- C:\WINDOWS\system32\drivers\ctlfacem.sys (Creative Technology Ltd.)
DRV - (emu10k) Creative SB Live! (WDM) -- C:\WINDOWS\system32\drivers\emu10k1m.sys (Creative Technology Ltd.)
DRV - (ctljystk) -- C:\WINDOWS\system32\drivers\ctljystk.sys (Creative Technology Ltd.)
DRV - (PfModNT) -- C:\WINDOWS\system32\PfModNT.sys (Creative Technology Ltd.)
DRV - (giveio) -- C:\WINDOWS\system32\giveio.sys ()
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://ca.msn.com/?lang=en-ca&OCID=iehpIE - HKU\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ca
IE - HKU\S-1-5-21-1078081533-115176313-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ========== FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=867034"
FF - prefs.js..browser.search.update: false
FF - prefs.js..extensions.enabledItems:
searchsettings@spigot.com:1.2.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/21 10:17:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/22 21:04:02 | 000,000,000 | ---D | M]
[2010/05/12 11:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karl\Application Data\Mozilla\Extensions
[2010/05/12 11:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karl\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2010/09/23 20:14:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Karl\Application Data\Mozilla\Firefox\Profiles\xps5bbe2.default\extensions
[2010/05/19 14:33:07 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Karl\Application Data\Mozilla\Firefox\Profiles\xps5bbe2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/12/22 21:04:04 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/22 21:04:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/12/22 21:03:56 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
O1 HOSTS File: ([2010/12/22 15:17:27 | 000,428,313 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1
www.007guard.comO1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1
www.008k.comO1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1
www.00hq.comO1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1
www.032439.comO1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1
www.0scan.comO1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1
www.1000gratisproben.comO1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1
www.1001namen.comO1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1
www.100888290cs.comO1 - Hosts: 127.0.0.1
www.100sexlinks.comO1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1
www.10sek.comO1 - Hosts: 127.0.0.1
www.1-2005-search.comO1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 14748 more lines...
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O3 - HKU\S-1-5-21-1078081533-115176313-839522115-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O4 - HKLM..\Run: [Ai Nap] C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe ()
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\system32\DeltaIITray.exe ()
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe ()
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [USBDetector] C:\USBStorage\USBDetector.exe (ali)
O4 - HKU\.DEFAULT..\Run: [EPSON Stylus Photo R280 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICKA.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-18..\Run: [EPSON Stylus Photo R280 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICKA.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-1078081533-115176313-839522115-1003..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data]
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O7 - HKU\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089}
http://office.microsoft.com/templates/ieawsdc.cab (Microsoft Office Template and Media Control)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83}
http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C}
http://www.update.microsoft.com/microso ... 0838236687 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
http://www.update.microsoft.com/microso ... 8777991140 (MUWebControl Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968}
http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}
https://spectro-us.webex.com/client/T26 ... eatgpc.cab (GpcContainer Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.200.241.37 24.201.245.77 24.200.243.189
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Karl\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Karl\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/11/22 23:41:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{be20da62-be4a-11de-92f0-00221595a44b}\Shell\AutoRun\command - "" = D:\PortableVault.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-1078081533-115176313-839522115-1003\...exe [@ = exefile] -- Reg Error: Key error. File not found
========== Files/Folders - Created Within 30 Days ========== [2010/12/23 20:15:43 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Karl\Desktop\OTL.exe
[2010/12/22 21:04:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/12/22 21:04:02 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/12/22 21:04:02 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/12/22 21:04:02 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/12/22 21:04:02 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/12/22 21:04:02 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/12/22 03:03:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karl\Application Data\KoshyJohn.com
[2010/12/22 00:41:25 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2010/12/22 00:39:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2010/12/21 16:07:31 | 000,000,000 | ---D | C] -- C:\Program Files\FileASSASSIN
[2010/12/20 19:47:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karl\My Documents\Ville de Montreal
[2010/12/15 20:29:36 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2010/12/15 20:29:08 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010/12/07 02:06:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karl\Application Data\AVG10
[2010/12/07 02:05:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010/12/07 02:05:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2010/12/04 10:56:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2010/11/28 12:47:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karl\My Documents\Personal Translator
[2010/11/28 12:45:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Personal Translator
[2010/11/28 12:45:34 | 000,000,000 | ---D | C] -- C:\Program Files\linguatec
[2010/11/27 11:15:26 | 000,000,000 | ---D | C] -- C:\Program Files\MP3 CD Converter Professional
[2010/11/26 20:18:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karl\Application Data\HOLM Acoustics
[2010/11/26 20:18:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HOLM Acoustics
[2010/11/25 02:51:24 | 000,000,000 | ---D | C] -- C:\Program Files\HOLM Acoustics
[2010/11/25 00:46:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karl\Local Settings\Application Data\Deployment
[2009/06/06 09:07:59 | 000,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[1998/12/09 02:53:54 | 000,186,368 | ---- | C] (Symantec Corp., Peter Norton Computing Group) -- C:\Program Files\Common Files\IRAREG.DLL
[1998/12/09 02:53:54 | 000,099,840 | ---- | C] (Symantec Corp.) -- C:\Program Files\Common Files\IRAABOUT.DLL
[1998/12/09 02:53:54 | 000,070,144 | ---- | C] (Symantec Corp., Peter Norton Computing Group) -- C:\Program Files\Common Files\IRAMDMTR.DLL
[1998/12/09 02:53:54 | 000,048,640 | ---- | C] (Symantec Corp., Peter Norton Computing Group) -- C:\Program Files\Common Files\IRALPTTR.DLL
[1998/12/09 02:53:54 | 000,031,744 | ---- | C] (Symantec Corp., Peter Norton Computing Group) -- C:\Program Files\Common Files\IRAWEBTR.DLL
[1998/12/09 02:53:54 | 000,017,920 | ---- | C] (Symantec Corp.) -- C:\Program Files\Common Files\IRASRIAL.DLL
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2010/12/23 20:15:47 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Karl\Desktop\OTL.exe
[2010/12/23 19:57:00 | 000,000,252 | ---- | M] () -- C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[2010/12/23 19:27:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/12/23 16:01:38 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{25B74EC3-C085-4B0B-9AAE-4DBCBC857922}.job
[2010/12/23 12:06:05 | 000,003,421 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\Transcend Magazine - Downhill Mountain Biking at its Fastest..url
[2010/12/23 11:03:13 | 000,002,921 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\Downhill - Ridemonkey.com (2).url
[2010/12/23 11:02:58 | 000,000,208 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\Google.url
[2010/12/23 09:59:36 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/12/23 09:58:16 | 000,453,730 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/12/23 09:58:16 | 000,074,570 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/12/23 09:54:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/12/23 09:53:59 | 000,000,182 | ---- | M] () -- C:\WINDOWS\System32\61xx.xml
[2010/12/23 09:53:58 | 000,000,008 | ---- | M] () -- C:\WINDOWS\mvraidver.dat
[2010/12/23 09:53:51 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/12/23 09:53:49 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/12/23 09:53:44 | 000,325,920 | ---- | M] () -- C:\WINDOWS\System32\OODBS.lor
[2010/12/23 01:24:10 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\ApplicationUpdater.doc
[2010/12/22 21:03:55 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/12/22 21:03:55 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/12/22 21:03:55 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/12/22 21:03:55 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/12/22 21:03:55 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/12/22 19:00:38 | 000,000,281 | -HS- | M] () -- C:\boot.ini
[2010/12/22 15:17:27 | 000,428,313 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/12/22 03:19:06 | 000,000,346 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\ DROPMACHINE.COM View Forum - -- downhill racing--.url
[2010/12/22 03:03:24 | 000,001,955 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\neoSearch.lnk
[2010/12/22 00:39:51 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2010/12/22 00:17:42 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\Karl\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/12/22 00:17:42 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/21 16:07:31 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FileASSASSIN.lnk
[2010/12/21 00:33:42 | 000,000,216 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\dfrg
[2010/12/21 00:33:42 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\dfrgr
[2010/12/21 00:32:28 | 000,000,336 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\0sx6qsHREIi
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/19 14:22:24 | 000,000,015 | ---- | M] () -- C:\WINDOWS\System32\package.lst
[2010/12/17 11:15:36 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\iTunes.lnk
[2010/12/16 18:07:04 | 000,427,647 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101222-151727.backup
[2010/12/15 20:38:16 | 000,149,992 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/12/15 20:28:10 | 000,427,647 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101216-180704.backup
[2010/12/13 06:31:43 | 000,019,456 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\The modifications are simple for the Phenol.doc
[2010/12/10 19:07:26 | 005,903,287 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\The Rolling Stones - Gimme Shelter (Zeds Dead Remix).mp3
[2010/12/10 19:05:53 | 007,110,771 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Gimme Shelter The Rolling Stones.mp3
[2010/12/10 18:56:10 | 005,954,696 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Soulsavers-Unbalanced Pieces.mp3
[2010/12/10 18:44:31 | 008,418,565 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Drive It Like You Stole It - The Glitch Mob (Drink the Sea).mp3
[2010/12/10 18:18:28 | 000,153,600 | ---- | M] () -- C:\Documents and Settings\Karl\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/10 11:04:46 | 000,426,903 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101215-202810.backup
[2010/12/09 22:00:59 | 000,073,728 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Ref.doc
[2010/12/07 02:43:15 | 000,023,552 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Hello all.doc
[2010/12/06 14:02:18 | 000,019,456 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Claude Dupouy.doc
[2010/12/04 22:30:36 | 001,455,936 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\LMarsden.pdf
[2010/12/03 01:35:04 | 000,026,112 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\Sotrem Calibration Fe.doc
[2010/12/02 21:54:33 | 000,000,125 | ---- | M] () -- C:\Documents and Settings\Karl\Desktop\SCP SCIENCEexchange.url
[2010/12/01 23:47:17 | 000,426,615 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101210-110446.backup
[2010/11/30 00:19:29 | 000,425,925 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101201-234717.backup
[2010/11/30 00:16:50 | 000,019,456 | ---- | M] () -- C:\Documents and Settings\Karl\My Documents\John Sidney.doc
[2010/11/29 18:46:17 | 000,000,780 | ---- | M] () -- C:\Documents and Settings\Karl\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Outlook.lnk
[2010/11/28 12:46:14 | 000,000,923 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Personal Translator.lnk
[2010/11/27 09:52:59 | 000,035,654 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2010/11/27 09:09:08 | 000,001,302 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\ss.ini
[2010/11/24 21:30:31 | 000,425,925 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101130-001929.backup
[2010/11/24 21:30:24 | 000,425,925 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20101124-213031.backup
[2010/11/24 10:20:18 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdw.DAT
[2010/11/24 10:19:44 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ========== [2010/12/23 01:24:10 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\ApplicationUpdater.doc
[2010/12/22 03:03:24 | 000,001,955 | ---- | C] () -- C:\Documents and Settings\Karl\Desktop\neoSearch.lnk
[2010/12/22 00:44:42 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2010/12/22 00:39:51 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2010/12/22 00:17:42 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\Karl\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/12/21 16:07:31 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\FileASSASSIN.lnk
[2010/12/21 00:32:31 | 000,000,216 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\dfrg
[2010/12/21 00:32:31 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\dfrgr
[2010/12/21 00:32:28 | 000,000,336 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\0sx6qsHREIi
[2010/12/13 06:31:43 | 000,019,456 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\The modifications are simple for the Phenol.doc
[2010/12/10 19:07:26 | 005,903,287 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\The Rolling Stones - Gimme Shelter (Zeds Dead Remix).mp3
[2010/12/10 19:05:53 | 007,110,771 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Gimme Shelter The Rolling Stones.mp3
[2010/12/10 18:55:59 | 005,954,696 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Soulsavers-Unbalanced Pieces.mp3
[2010/12/10 18:44:31 | 008,418,565 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Drive It Like You Stole It - The Glitch Mob (Drink the Sea).mp3
[2010/12/09 22:00:58 | 000,073,728 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Ref.doc
[2010/12/07 02:43:15 | 000,023,552 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Hello all.doc
[2010/12/06 14:02:17 | 000,019,456 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Claude Dupouy.doc
[2010/12/04 22:30:36 | 001,455,936 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\LMarsden.pdf
[2010/12/02 21:54:33 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\Karl\Desktop\SCP SCIENCEexchange.url
[2010/12/02 11:48:08 | 000,026,112 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\Sotrem Calibration Fe.doc
[2010/11/29 18:46:17 | 000,000,780 | ---- | C] () -- C:\Documents and Settings\Karl\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Outlook.lnk
[2010/11/29 11:29:17 | 000,019,456 | ---- | C] () -- C:\Documents and Settings\Karl\My Documents\John Sidney.doc
[2010/11/28 12:46:14 | 000,000,923 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Personal Translator.lnk
[2010/10/14 01:36:44 | 000,179,263 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010/04/07 20:09:06 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Karl\Local Settings\Application Data\housecall.guid.cache
[2010/02/06 18:33:34 | 000,758,018 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/02/06 18:33:34 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/01/26 23:00:03 | 000,035,654 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2010/01/26 22:53:54 | 000,001,302 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ss.ini
[2009/10/15 09:56:23 | 000,055,296 | ---- | C] () -- C:\WINDOWS\System32\PROTOCOL.DLL
[2009/10/15 09:56:23 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\Supercom.dll
[2009/10/15 09:56:23 | 000,034,816 | ---- | C] () -- C:\WINDOWS\System32\P_3964R.dll
[2009/10/14 11:28:14 | 000,000,039 | ---- | C] () -- C:\WINDOWS\bti.ini
[2009/09/10 09:10:23 | 000,000,113 | ---- | C] () -- C:\WINDOWS\BOXPLOT.INI
[2009/08/22 17:28:24 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2009/06/06 09:08:24 | 000,000,231 | ---- | C] () -- C:\WINDOWS\ac3api.ini
[2009/06/06 09:08:24 | 000,000,128 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2009/05/17 00:35:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX.INI
[2009/05/16 22:48:19 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Woodwinds
[2009/05/16 22:48:19 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Karl\Application Data\Vocals
[2009/05/16 22:48:19 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2009/05/16 22:46:52 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Workflows
[2009/05/16 22:46:52 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Karl\Application Data\Widgets
[2009/05/16 22:46:52 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdw.DAT
[2008/11/23 22:45:07 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2008/11/23 22:45:07 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2008/11/23 12:26:02 | 000,000,067 | ---- | C] () -- C:\WINDOWS\DVDRegionFree.INI
[2008/11/23 12:15:41 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2008/11/23 11:56:52 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/11/23 11:56:07 | 000,000,044 | ---- | C] () -- C:\WINDOWS\EPSPR280.ini
[2008/11/23 11:48:53 | 000,153,600 | ---- | C] () -- C:\Documents and Settings\Karl\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/11/23 01:05:24 | 000,001,338 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/11/23 01:05:24 | 000,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini
[2008/11/23 01:05:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI
[2008/11/22 23:46:26 | 000,032,746 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008/11/22 23:45:57 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008/11/22 23:45:49 | 000,032,363 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008/11/22 23:45:49 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008/11/22 18:35:33 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007/11/01 17:10:22 | 000,047,394 | ---- | C] () -- C:\WINDOWS\php.ini
[2007/10/24 18:14:38 | 000,000,236 | ---- | C] () -- C:\WINDOWS\zraidtray.ini
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[1999/01/22 18:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1996/04/03 14:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== Alternate Data Streams ========== @Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AC6124CA
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:80337C03
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6DFF1A8A
< End of report >
OTL Extras logfile created on: 23/12/2010 8:16:49 PM - Run 6
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Karl\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 78.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465.75 Gb Total Space | 350.03 Gb Free Space | 75.15% Space Free | Partition Type: NTFS
Computer Name: KARL-OBZ0STNSQQ | User Name: Karl | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Classes\<extension>]
.exe [@ = exefile] -- Reg Error: Key error. File not found
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\XLabPro\Bin32\xlcedi.exe" = C:\XLabPro\Bin32\xlcedi.exe:*:Enabled:XLCedi -- (Spectro Analytical Instruments, Kleve)
"C:\XLabPro\Bin32\XLComSer.exe" = C:\XLabPro\Bin32\XLComSer.exe:*:Enabled:MFC-Application X-LabPro Communication Server -- (SPECTRO A. I.)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- File not found
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\River Past\Audio Converter Pro\AudioConverter.exe" = C:\Program Files\River Past\Audio Converter Pro\AudioConverter.exe:*:Enabled:River Past Audio Converter Pro -- File not found
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\XLabPro\Bin32\XLSpcView.exe" = C:\XLabPro\Bin32\XLSpcView.exe:*:Enabled:XLSpcView -- ()
"C:\XLabPro\Bin32\XLMethodAdmin.exe" = C:\XLabPro\Bin32\XLMethodAdmin.exe:*:Enabled:XLMethodAdmin -- ()
"C:\XLabPro\Bin32\XLJobMan.exe" = C:\XLabPro\Bin32\XLJobMan.exe:*:Enabled:MFC-Anwendung XLJobMan -- ()
"C:\Program Files\AVG\AVG10\avgmfapx.exe" = C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:AVG Installer -- File not found
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{0B85590A-3AAF-4483-923F-6B794891D1EF}" = CCC Help Norwegian
"{119BC991-FB88-43E1-64E1-001D299C96FC}" = CCC Help Chinese Standard
"{144206FC-E020-C6DC-32D3-CCD8916D777A}" = CCC Help Chinese Traditional
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14EC807A-F88E-4FCF-8013-CB909F930E88}_is1" = PDF-Tools 4
"{1829AFBC-19F5-B1FE-73B1-30FF9DA49062}" = ATI Catalyst Install Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FDA5A37-B22D-43FF-B582-B8964050DC13}" = Microsoft Games for Windows - LIVE Redistributable
"{203DE5E5-6ADB-1388-2899-D9D72BF67E87}" = CCC Help Dutch
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{237CD223-1B9D-47E8-A76C-E478B83CCEA2}" = File Uploader
"{242067FA-B640-B4EE-FCFF-BBD58C422D84}" = CCC Help French
"{25C1E7E8-59CA-2EFA-2075-995DD6608081}" = ccc-utility
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 23
"{277F48D9-BF57-F7CD-0292-FD79B5415B8A}" = Skins
"{2BCD213E-0B29-914F-6EF4-12362FFED1E3}" = CCC Help Korean
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{327FA5C6-57B5-B380-ABB8-87AB8ACC7A07}" = Catalyst Control Center Graphics Full Existing
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{391BF2AA-1304-471A-9CBF-084AE32813D6}" = M-Audio Delta Driver 6.0.2 (x86)
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3E2C691B-B7E6-4053-B5C3-94B8BC407E7A}" = Adobe Premiere Elements 4.0
"{3F5577A2-A090-F16B-A0B1-C92F95EB639A}" = CCC Help Spanish
"{3F9FC147-7DD3-2A2E-7C49-75A8C2EC3F27}" = CCC Help Hungarian
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4EFCD9A3-EF7A-5A7A-2550-2FEE6D6D0B1D}" = Catalyst Control Center Localization All
"{501451DE-5808-4599-B544-8BD0915B6B24}_is1" = FreeRIP v3.30
"{53480370-6CA2-47EC-BC05-02B4B9271C31}" = O&O Defrag Professional Edition
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{5BC29689-52A7-85F3-E8D6-D2DF75A9FD16}" = CCC Help Finnish
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F05C28D-DEA9-4AD6-A73A-064175988EAB}" = Search Settings v1.2.3
"{618463E7-79C0-A9B2-7EC6-61E9E27EDD6A}" = CCC Help English
"{621C02EA-AAFF-4026-A903-165D59529A16}" = Driver Detective
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{64D593B2-634B-D393-8FA7-59871749CB9D}" = CCC Help Swedish
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6CE1A03A-8686-EA72-B270-23F46F6FFDB6}" = Catalyst Control Center Graphics Full New
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{740D5800-96EC-9B5D-E6F4-B247D04C2BD2}" = CCC Help Thai
"{7423C902-C0E1-E640-39D0-0CECB8BAD921}" = CCC Help Czech
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{79E4BE16-174F-4348-965B-E1A96AEF7352}" = Personal Translator 14 Professional
"{7B4F82D7-292D-248C-2B5F-DBA4EF105F2A}" = CCC Help Italian
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7E8C79CC-AC40-4E67-A959-332A366230DA}" = COWON iAUDIO 9 User's Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86A4C6D9-29EE-4719-AFA1-BA3341862B83}" = Microsoft Games for Windows - LIVE
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{8875D660-8BFA-33FB-665D-EFC4DA0AC86B}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8C5FAD77-F678-4758-A296-C12F08D179E0}" = Microsoft IntelliPoint 6.2
"{8EDBA74D-0686-4C99-BFDD-F894678E5102}" = Adobe Common File Installer
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9455959E-D588-EFAE-329C-F66CC797F32A}" = Adobe Media Player
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{97D1B7D2-4428-4B1A-B676-1C4AC877EC5B}" = HOLMImpulse
"{9CD8B0D2-F0B4-45C7-98EE-9F7B859F086C}" = CCC Help Portuguese
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
"{A7F4B9C2-7397-6A6B-BF5E-0CCD7A4883B4}" = CCC Help Danish
"{A92A4DB0-CD37-42D1-BE1D-603D53C24328}" = Intel(R) Processor ID Utility
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A961C6FD-C583-45F6-A0A4-5E4376C29E41}" = Catalyst Control Center - Branding
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{AC76BA86-7AD7-2447-0000-900000000003}" = Chinese Simplified Fonts Support For Adobe Reader 9
"{AEB9948B-4FF2-47C9-990E-47014492A0FE}" = MSXML 6.0 Parser
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B39A8794-8C03-45AF-9E2D-5455DA39D8CA}" = X-LabPro
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B4776946-998D-953A-8088-E1885BE19C73}" = ccc-core-static
"{BFC97102-F7FA-8844-6713-41870818D492}" = ccc-core-preinstall
"{BFCE50CF-6574-7F1A-6A5B-5280A3D87298}" = CCC Help Polish
"{BFD2D57C-9DB0-5200-DD11-C14FD0F2A60D}" = CCC Help German
"{C09474D5-B702-4B97-A50E-209CA09742F9}" = Visual Analyser
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4A156FB-58FD-54DF-FE86-9578887AF1EA}" = Catalyst Control Center Graphics Light
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D03E7B00-CA85-4684-9321-1888873C34BD}" = ArcSoft PhotoImpression 6
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{DC6DE3E3-549B-BC59-9D10-9F7A89B9001C}" = CCC Help Russian
"{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}" = COWON Media Center - jetAudio Basic VX
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BF3D81-BF3F-67E6-9E03-BD911B6E361B}" = Catalyst Control Center Core Implementation
"{E6358333-B89B-4243-8477-647C9360B5D9}_is1" = Batch PPTX to PPT Converter 2010
"{E6F69E99-0FFF-F831-C046-8C186EAE4EFE}" = CCC Help Greek
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F007CBCE-D714-4C0B-8CE9-9B0D78116468}" = ViewNX
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F65FE148-FCF5-42F7-8803-FA0B7DA8B8A4}" = ubCore
"{F85C7118-F3DC-4ED9-AB27-3E7931EA3D88}" = Adobe Premiere Elements 4.0 Templates
"{FAF98B9B-175D-A8F8-D62A-64EE22BECEFD}" = CCC Help Turkish
"{FF477885-5EA8-40D0-ADF3-D4C1B86FAEA4}" = EPSON Print CD
"{FFF0B605-CAA2-5543-91CC-2D28A2D37C81}" = CCC Help Japanese
"ActiveTouchMeetingClient" = WebEx
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"A-PDF Restrictions Remover_is1" = A-PDF Restrictions Remover 1.6
"Audacity_is1" = Audacity 1.2.6
"BassBox 6 Pro and X·over 3 Pro" = BassBox 6 Pro and X·over 3 Pro
"Burn My Files_is1" = Burn My Files
"Canon PhotoStitch 3.1" = Canon Utilities PhotoStitch 3.1
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2008-01-24
"DC-Bass Source" = DC-Bass Source 1.1.1
"EPSON Printer and Utilities" = EPSON Printer Software
"Exact Audio Copy" = Exact Audio Copy 0.99pb5
"FileASSASSIN" = FileASSASSIN
"FLAC" = FLAC 1.2.1b (remove only)
"Free Video Converter_is1" = Free Video Converter V 1.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{621C02EA-AAFF-4026-A903-165D59529A16}" = Driver Detective
"InstallShield_{B39A8794-8C03-45AF-9E2D-5455DA39D8CA}" = X-LabPro
"InstallShield_{F65FE148-FCF5-42F7-8803-FA0B7DA8B8A4}" = ubCore
"Internet Scrabble Club_is1" = WordBiz version 1.8
"iWisoft Free Video Converter_is1" = iWisoft Free Video Converter 1.2
"LADSPA_plugins-win_is1" = LADSPA_plugins-win-0.4.15
"LEAP" = LEAP 5.2.0.357 Uninstall
"Linkage_is1" = Linkage 2.5 Personal Version
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MP3 CD Converter Professional" = MP3 CD Converter Professional 5.03
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"mv61xxDriver" = marvell 61xx
"mv61xxMRU" = Marvell 61xx MRU
"NEFView" = NEFView
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OCM Master-Database Update_is1" = Version 2.00.0000.0284
"Order Configuration Manager (OCM)_is1" = Order Configuration Manager (OCM)
"PremElem40" = Adobe Premiere Elements 4.0
"PremElem40Templates" = Adobe Premiere Elements 4.0 Templates
"r8brain" = r8brain 1.9
"RadialpointSecurityAdvisorService_is1" = Radialpoint Security Advisor 2.5.10
"RawShooter essentials 2006" = RawShooter essentials 2006
"ReaJPEG Pro_is1" = ReaJPEG Pro 3.9
"Silent Package Run-Time Sample" = EPSON R280 User's Guide
"Spark Analyzer Vision Mx" = Spark Analyzer Vision Mx
"Speaker Workshop" = Speaker Workshop
"SpeedFan" = SpeedFan (remove only)
"SpywareBlaster_is1" = SpywareBlaster 4.4
"Vit Registry Fix" = Vit Registry Fix 9.5 (remove only)
"VLC media player" = VLC media player 1.0.5
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xilisoft DVD Creator" = Xilisoft DVD Creator
"Xilisoft DVD to Zune Converter 5" = Xilisoft DVD to Zune Converter 5
"Xilisoft Zune Video Converter" = Xilisoft Zune Video Converter
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-1078081533-115176313-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent
========== Last 10 Event Log Errors ========== [ Application Events ]
Error - 13/07/2010 4:07:30 PM | Computer Name = KARL-OBZ0STNSQQ | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.
Error - 13/07/2010 4:07:30 PM | Computer Name = KARL-OBZ0STNSQQ | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.
Error - 27/09/2010 12:23:33 PM | Computer Name = KARL-OBZ0STNSQQ | Source = Google Update | ID = 20
Description =
Error - 27/09/2010 1:23:38 PM | Computer Name = KARL-OBZ0STNSQQ | Source = Google Update | ID = 20
Description =
Error - 27/09/2010 2:23:39 PM | Computer Name = KARL-OBZ0STNSQQ | Source = Google Update | ID = 20
Description =
Error - 03/11/2010 11:40:55 PM | Computer Name = KARL-OBZ0STNSQQ | Source = MsiInstaller | ID = 11706
Description = Product: Adobe Reader 9.4.0 -- Error 1706.No valid source could be
found for product Adobe Reader 9.4.0. The Windows Installer cannot continue.
Error - 26/11/2010 9:16:52 PM | Computer Name = KARL-OBZ0STNSQQ | Source = Application Error | ID = 1000
Description = Faulting application spybotsd.exe, version 1.6.2.46, faulting module
unknown, version 0.0.0.0, fault address 0x71356800.
Error - 04/12/2010 12:02:04 PM | Computer Name = KARL-OBZ0STNSQQ | Source = MsiInstaller | ID = 1013
Description = Product: AVG 2011 -- Uninstallation of the old AVG version failed
and the new installation cannot be completed. Try to uninstall the old version manually
and then launch the installation again.
Error - 22/12/2010 1:39:40 AM | Computer Name = KARL-OBZ0STNSQQ | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 0x80070003, P2 moac, P3 cachereset, P4 3.0.8107.0,
P5 unspecified, P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
Error - 22/12/2010 1:48:52 AM | Computer Name = KARL-OBZ0STNSQQ | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 0, P2 moaccapability, P3 3.0.8107.0, P4
0, P5 0, P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
[ System Events ]
Error - 21/12/2010 1:51:35 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7001
Description = The MRU Web Service service depends on the AFD Networking Support
Environment service which failed to start because of the following error: %%31
Error - 21/12/2010 1:51:35 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7001
Description = The IPSEC Services service depends on the IPSEC driver service which
failed to start because of the following error: %%31
Error - 21/12/2010 1:51:35 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
AFD AsIO Avgldx86 AvgMfx86 Avgtdix Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
Error - 21/12/2010 1:52:52 AM | Computer Name = KARL-OBZ0STNSQQ | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 21/12/2010 1:56:37 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7023
Description = The Windows Driver Foundation - User-mode Driver Framework service
terminated with the following error: %%31
Error - 21/12/2010 8:14:23 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7023
Description = The Windows Driver Foundation - User-mode Driver Framework service
terminated with the following error: %%31
Error - 22/12/2010 9:10:35 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7023
Description = The Windows Driver Foundation - User-mode Driver Framework service
terminated with the following error: %%31
Error - 23/12/2010 10:54:20 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7023
Description = The Windows Driver Foundation - User-mode Driver Framework service
terminated with the following error: %%31
Error - 23/12/2010 11:40:02 AM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7034
Description = The Marvell RAID Event Agent service terminated unexpectedly. It
has done this 1 time(s).
Error - 23/12/2010 2:25:26 PM | Computer Name = KARL-OBZ0STNSQQ | Source = Service Control Manager | ID = 7034
Description = The iPod Service service terminated unexpectedly. It has done this
1 time(s).
< End of report >