Musta na...Noypi too...thanks for taking the case/Morris
Here are the OTL (List and Extras) and Security Check reports.
OTL logfile created on: 3/31/2011 10:21:15 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\bvemd\Desktop
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 62.00% Memory free
7.00 Gb Paging File | 6.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 111.54 Gb Total Space | 82.29 Gb Free Space | 73.77% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.06 Gb Free Space | 50.61% Space Free | Partition Type: NTFS
Drive J: | 67.29 Gb Total Space | 3.75 Gb Free Space | 5.57% Space Free | Partition Type: NTFS
Drive K: | 43.94 Gb Total Space | 15.93 Gb Free Space | 36.24% Space Free | Partition Type: NTFS
Computer Name: CDLRHAWK | User Name: bvemd | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/03/31 10:17:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\bvemd\Desktop\OTL.exe
PRC - [2011/03/28 22:38:58 | 000,235,168 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10o_ActiveX.exe
PRC - [2011/01/07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/01/07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/01/06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/01/06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010/12/05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010/11/30 17:26:12 | 000,749,384 | ---- | M] (AVG) -- C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
PRC - [2010/10/22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010/03/18 02:52:56 | 000,045,056 | ---- | M] (Intuit) -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
PRC - [2010/01/18 16:44:00 | 000,079,152 | ---- | M] (McKesson MIG) -- C:\Program Files\Common Files\McKesson\MIG\Service\AliUpdate.exe
PRC - [2009/07/08 03:53:36 | 000,472,112 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Pure Networks\Network Magic\nmapp.exe
PRC - [2009/07/07 15:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
PRC - [2009/07/07 15:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
PRC - [2009/05/14 10:01:24 | 004,440,064 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
PRC - [2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/06 13:59:12 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) -- C:\Windows\System32\atashost.exe
PRC - [2008/08/25 10:04:18 | 000,069,632 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe
PRC - [2008/08/25 10:01:26 | 001,486,848 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe
PRC - [2008/08/18 08:46:08 | 000,453,712 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
PRC - [2008/08/18 08:45:34 | 001,186,896 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
PRC - [2008/07/31 19:41:50 | 000,808,296 | ---- | M] (Broadcom Corporation) -- C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
PRC - [2008/07/31 19:41:50 | 000,021,352 | ---- | M] (Broadcom Corporation) -- C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
PRC - [2008/07/10 18:42:14 | 000,819,200 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2008/07/10 18:12:40 | 000,466,944 | ---- | M] (Intel® Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008/07/01 22:22:34 | 000,040,960 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2008/07/01 22:22:18 | 000,196,608 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2008/07/01 22:22:16 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2008/07/01 22:22:16 | 000,046,376 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2008/06/30 02:14:00 | 000,442,467 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008/06/30 02:13:54 | 000,221,273 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_3cbccf3d\stacsv.exe
PRC - [2008/06/30 02:13:48 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_3cbccf3d\AEstSrv.exe
PRC - [2008/06/15 04:12:20 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/06/15 04:12:18 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/06/12 06:59:58 | 000,786,432 | ---- | M] (Wave Systems Corp.) -- C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
PRC - [2008/06/03 13:28:50 | 000,386,328 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
PRC - [2008/06/03 13:16:30 | 000,382,232 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Ambient Light Sensor\AlsSvc.exe
PRC - [2008/05/30 01:29:28 | 000,593,920 | ---- | M] (Dell, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe
PRC - [2008/04/11 11:28:08 | 000,372,736 | ---- | M] () -- C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDellB.exe
PRC - [2008/02/28 14:42:00 | 000,253,952 | ---- | M] (PIXELA CORPORATION) -- C:\Program Files\Video\PIXELA\ImageMixer 3 SE\CameraMonitor.exe
PRC - [2007/04/19 03:56:36 | 000,133,968 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\ASF Agent\ASFAgent.exe
========== Modules (SafeList) ==========
MOD - [2011/03/31 10:17:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\bvemd\Desktop\OTL.exe
MOD - [2010/08/31 08:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (Pxhsocadmdsi)
SRV - [2011/01/06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010/10/22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010/03/18 02:52:56 | 000,045,056 | ---- | M] (Intuit) [Auto | Running] -- C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe -- (QBCFMonitorService)
SRV - [2010/01/18 16:44:00 | 000,079,152 | ---- | M] (McKesson MIG) [Auto | Running] -- C:\Program Files\Common Files\McKesson\MIG\Service\AliUpdate.exe -- (AliUpdate)
SRV - [2009/07/23 22:10:38 | 000,061,440 | ---- | M] (Intuit Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe -- (QBFCService)
SRV - [2009/07/07 15:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice)
SRV - [2009/05/14 10:01:24 | 004,440,064 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe -- (NVIDIA Performance Driver Service)
SRV - [2009/03/06 13:59:12 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) [Auto | Running] -- C:\Windows\System32\atashost.exe -- (atashost)
SRV - [2008/08/25 10:04:18 | 000,069,632 | ---- | M] (Smith Micro Software, Inc.) [Auto | Running] -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe -- (SMManager)
SRV - [2008/08/18 08:46:08 | 000,453,712 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe -- (dcpsysmgrsvc)
SRV - [2008/07/31 19:41:50 | 000,808,296 | ---- | M] (Broadcom Corporation) [Auto | Running] -- C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe -- (Credential Vault Host Control Service)
SRV - [2008/07/31 19:41:50 | 000,021,352 | ---- | M] (Broadcom Corporation) [Auto | Running] -- C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe -- (Credential Vault Host Storage)
SRV - [2008/07/10 18:42:14 | 000,819,200 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008/07/10 18:12:40 | 000,466,944 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008/06/30 02:13:54 | 000,221,273 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_3cbccf3d\stacsv.exe -- (STacSV)
SRV - [2008/06/30 02:13:48 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_3cbccf3d\AEstSrv.exe -- (AESTFilters)
SRV - [2008/06/15 04:12:20 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/06/12 06:59:58 | 000,786,432 | ---- | M] (Wave Systems Corp.) [Auto | Running] -- C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe -- (TdmService)
SRV - [2008/06/03 13:28:50 | 000,386,328 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe -- (buttonsvc32)
SRV - [2008/06/03 13:16:30 | 000,382,232 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\Ambient Light Sensor\AlsSvc.exe -- (alssvc)
SRV - [2008/04/25 13:45:40 | 000,638,976 | ---- | M] (Wave Systems Corp.) [On_Demand | Stopped] -- C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe -- (SecureStorageService)
SRV - [2008/03/10 13:48:48 | 001,249,280 | ---- | M] () [Auto | Stopped] -- C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe -- (tcsd_win32.exe)
SRV - [2008/01/20 19:21:41 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/04/19 03:56:36 | 000,133,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\ASF Agent\ASFAgent.exe -- (ASFAgent)
========== Driver Services (SafeList) ==========
DRV - [2010/12/08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010/09/13 15:27:40 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010/09/07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010/09/07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010/08/03 15:23:58 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010/08/03 15:23:54 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010/08/03 15:23:52 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2009/12/21 21:39:14 | 000,016,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\pwdrvio.sys -- (pwdrvio)
DRV - [2009/12/21 21:39:12 | 000,011,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\pwdspio.sys -- (pwdspio)
DRV - [2009/08/27 23:00:58 | 000,016,694 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PalmUSBD.sys -- (PalmUSBD)
DRV - [2009/07/07 15:48:44 | 000,027,696 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\purendis.sys -- (purendis)
DRV - [2009/07/07 15:48:44 | 000,026,672 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\pnarp.sys -- (pnarp)
DRV - [2009/06/16 15:59:00 | 009,768,640 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/08/06 23:42:46 | 003,662,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel®
DRV - [2008/07/23 00:16:50 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbccid.sys -- (USBCCID)
DRV - [2008/07/23 00:16:46 | 000,032,808 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\cvusbdrv.sys -- (cvusbdrv)
DRV - [2008/07/01 22:22:14 | 000,170,032 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008/07/01 22:12:12 | 000,038,400 | ---- | M] (REDC) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2008/07/01 22:12:10 | 000,043,008 | ---- | M] (REDC) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2008/07/01 22:12:10 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2008/06/30 23:47:24 | 000,224,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1y6032.sys -- (e1yexpress) Intel®
DRV - [2008/06/30 02:14:04 | 000,380,928 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2008/06/24 05:16:54 | 000,168,248 | ---- | M] (Wave Systems Corp.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\WavxDMgr.sys -- (WavxDMgr)
DRV - [2008/06/22 10:45:40 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2008/06/18 03:12:50 | 000,144,672 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA001Ufd.sys -- (OA001Ufd)
DRV - [2008/06/18 03:12:48 | 000,277,504 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA001Vid.sys -- (OA001Vid)
DRV - [2008/06/04 12:14:00 | 000,026,608 | ---- | M] (Dell Inc) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\PBADRV.sys -- (PBADRV)
DRV - [2008/02/20 19:19:56 | 000,030,816 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iqvw32.sys -- (NAL)
DRV - [2008/01/20 19:21:33 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel®
DRV - [2007/04/19 03:28:12 | 000,042,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Asfalrt.sys -- (AsfAlrt)
DRV - [2006/11/02 00:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://partnerpage.google.com/smallbiz.dell.com/en_us?hl=en&client=dell-usuk&channel=us-smb&ibd=5080918
IE - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://my.yahoo.com/
IE - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=867034"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "my.yahoo.com"
FF - prefs.js..extensions.enabledItems: {018937AD-209F-4C9A-AEBB-A9BB4272C49B}:1.9.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:10.0.0.1178
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_us&p="
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 50370
FF - prefs.js..network.proxy.type: 0
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ [2011/03/22 21:41:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/03/10 01:53:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/27 01:26:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
[2008/10/01 02:05:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bvemd\AppData\Roaming\Mozilla\Extensions
[2011/03/27 20:57:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\bvemd\AppData\Roaming\Mozilla\Firefox\Profiles\kggo3p8f.default\extensions
[2010/04/27 21:30:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\bvemd\AppData\Roaming\Mozilla\Firefox\Profiles\kggo3p8f.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/03/27 01:10:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/20 00:07:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/12/20 01:14:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/27 01:10:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/03/22 21:41:29 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX
[2010/09/20 20:12:55 | 000,000,000 | ---D | M] (XULRunner) -- C:\USERS\BVEMD\APPDATA\LOCAL\{018937AD-209F-4C9A-AEBB-A9BB4272C49B}
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
O1 HOSTS File: ([2010/11/07 03:50:47 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O3 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Value error. File not found
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [DCPstrApp] C:\Program Files\Dell\Dell ControlPoint\Security Manager\SecurityDeviceInfoSetRegistryString.exe (Broadcom Corporation)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDellB.exe ()
O4 - HKLM..\Run: [DellConnectionManager] C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe (Smith Micro Software, Inc.)
O4 - HKLM..\Run: [DellControlPoint] C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe (Dell, Inc.)
O4 - HKLM..\Run: [ECenter] C:\DELL\E-Center\EULALauncher.exe ( )
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [Intuit SyncManager] C:\Program Files\Common Files\Intuit\Sync\IntuitSyncManager.exe (Intuit Inc. All rights reserved.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Security\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [nmapp] C:\Program Files\Pure Networks\Network Magic\nmapp.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [nmctxth] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\Windows\System32\nvHotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Windows\System32\nwiz.exe ()
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: //mail.yahoo.com/ ([]htt in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: emc.org ([dxview] https in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: emc.org ([ikevpn] https in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: hrmprod ([]http in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: info.sys ([hrmprod] http in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: yahoo.com ([edit.finance] http in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: yahoo.com ([groups] http in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: yahoo.com ([login] https in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: yahoo.com ([my] http in Trusted sites)
O15 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000\..Trusted Domains: yahoo.com ([us.mc385.mail] http in Trusted sites)
O16 - DPF: {04B6290C-97B8-49A1-B0A3-1312254F7C54}
http://ikemd:8001/portal/applets/SharedSession.dll (Reg Error: Key error.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000}
http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {1A988C5B-7C51-4A6A-8635-6B83BA1288B2}
https://dxview.emc.org/hrs/download/Setup.cab (Reg Error: Key error.)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258}
http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {2AB1C516-D654-4D3A-B3D6-2185BBCEB409}
https://ikevpn.emc.org/+CSCOL+/relayp.cab (Reg Error: Key error.)
O16 - DPF: {36B874FC-EECA-4622-8DCE-F8D453C88845}
https://dxview.emc.org/HRS/download/AliUpdate.cab (Reg Error: Key error.)
O16 - DPF: {47BC1B99-FC95-41D3-A188-C80EBA373017}
https://dxview.emc.org/hrs/download/Setup.cab (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}
http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5}
http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB}
http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {EB29B81A-7351-4890-8BCE-58127C3545F9}
http://ikemd:8001/portal/applets/mckntauth.ocx (Reg Error: Key error.)
O16 - DPF: 09D0984B-E76E-4154-9EB4-519E25FEF7E5
https://dxview.emc.org/HRS/download/\Setup.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.20.1
O18 - Protocol\Handler\intu-help-qb3 {c5e479ea-0a65-4b05-8c6c-2fc8cc682eb4} - C:\Program Files\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll (Intuit, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-2291348649-2389572445-1617005422-1000 Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O22 - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\System32\DreamScene.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\bvemd\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\bvemd\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O30 - LSA: Authentication Packages - (wvauth) - C:\Windows\System32\wvauth.dll (Wave Systems Corp.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{30027bcf-9cc8-11dd-ac9d-002170ae7395}\Shell\AutoRun\command - "" = F:\WDSetup.exe
O33 - MountPoints2\{622f2218-c701-11de-a92b-002170ae7395}\Shell - "" = AutoRun
O33 - MountPoints2\{622f2218-c701-11de-a92b-002170ae7395}\Shell\AutoRun\command - "" = F:\SimpliSafe.exe
O33 - MountPoints2\{7b5a7d99-d164-11de-b0b2-002170ae7395}\Shell - "" = AutoRun
O33 - MountPoints2\{7b5a7d99-d164-11de-b0b2-002170ae7395}\Shell\AutoRun\command - "" = F:\SimpliSafe.exe
O33 - MountPoints2\{914644fb-95b4-11dd-92d8-002170ae7395}\Shell - "" = AutoRun
O33 - MountPoints2\{914644fb-95b4-11dd-92d8-002170ae7395}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
O33 - MountPoints2\{aeaa564f-6c31-11df-91ad-002170ae7395}\Shell - "" = AutoRun
O33 - MountPoints2\{aeaa564f-6c31-11df-91ad-002170ae7395}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\WDSetup.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2021/02/01 02:58:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Protexis
[2021/02/01 02:57:01 | 000,000,000 | ---D | C] -- C:\Program Files\Shield
[2021/02/01 02:56:13 | 000,000,000 | ---D | C] -- C:\Program Files\Utilities
[2011/03/31 10:17:45 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\bvemd\Desktop\OTL.exe
[2011/03/30 14:44:44 | 000,000,000 | ---D | C] -- C:\Temp2
[2011/03/29 01:42:42 | 000,000,000 | -HSD | C] -- C:\found.005
[2011/03/28 20:00:35 | 000,000,000 | -HSD | C] -- C:\found.004
[2011/03/27 01:10:07 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/03/27 01:10:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/03/27 01:10:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/03/22 22:22:18 | 000,000,000 | ---D | C] -- C:\Users\bvemd\AppData\Roaming\AVG
[2011/03/22 22:21:18 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/03/22 22:21:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC Tuneup 2011
[2011/03/22 21:44:01 | 000,000,000 | ---D | C] -- C:\Users\bvemd\AppData\Roaming\AVG10
[2011/03/22 21:42:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
[2011/03/22 21:41:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\AVG
[2011/03/22 21:40:19 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011/03/21 15:12:12 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/03/14 13:24:39 | 001,137,360 | ---- | C] (F-Secure Corporation) -- C:\Users\bvemd\Desktop\fsbl.exe
[2011/03/10 22:46:28 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG10
[2011/03/10 00:35:37 | 000,000,000 | -HSD | C] -- C:\found.003
[2011/03/09 20:35:20 | 000,000,000 | -HSD | C] -- C:\found.002
[2011/03/09 19:49:05 | 000,000,000 | -HSD | C] -- C:\found.001
[2011/03/09 19:08:38 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011/03/09 03:57:58 | 000,000,000 | -HSD | C] -- C:\found.000
[2011/03/09 01:37:56 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/03/09 01:37:55 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/03/09 01:37:55 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/03/09 01:37:55 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2011/03/09 00:21:57 | 000,000,000 | ---D | C] -- C:\Users\bvemd\AppData\Roaming\f-secure
[2011/03/09 00:21:47 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
========== Files - Modified Within 30 Days ==========
[2011/03/31 10:17:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\bvemd\Desktop\OTL.exe
[2011/03/31 09:55:44 | 000,595,684 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/03/31 09:55:44 | 000,101,350 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/03/31 09:54:05 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/03/31 09:50:20 | 000,383,476 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/03/31 09:50:20 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/03/31 09:50:03 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/31 09:50:02 | 000,383,476 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/03/31 09:50:02 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/31 09:49:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/03/30 20:59:20 | 110,445,849 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/03/30 20:58:52 | 000,123,714 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2011/03/30 15:21:46 | 000,625,664 | ---- | M] () -- C:\Users\bvemd\Desktop\dds.scr
[2011/03/29 02:00:17 | 000,027,648 | ---- | M] () -- C:\Users\bvemd\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/27 01:40:32 | 000,001,356 | ---- | M] () -- C:\Users\bvemd\AppData\Local\d3d9caps.dat
[2011/03/27 01:27:00 | 000,001,889 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/03/24 12:02:13 | 000,000,426 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2011/03/23 18:23:58 | 000,000,000 | ---- | M] () -- C:\Users\bvemd\defogger_reenable
[2011/03/23 17:04:15 | 000,293,019 | ---- | M] () -- C:\Users\bvemd\Desktop\gmer.zip
[2011/03/23 17:02:24 | 000,050,477 | ---- | M] () -- C:\Users\bvemd\Desktop\Defogger.exe
[2011/03/22 22:07:41 | 000,001,004 | -HS- | M] () -- C:\Windows\System32\sys_drv.dat
[2011/03/22 21:42:35 | 000,000,832 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/03/21 22:38:07 | 001,006,764 | ---- | M] () -- C:\Users\bvemd\Desktop\rkill2.com
[2011/03/21 13:52:07 | 000,000,000 | ---- | M] () -- C:\Users\bvemd\AppData\Local\WavXMapDrive.bat
[2011/03/14 13:11:06 | 001,137,360 | ---- | M] (F-Secure Corporation) -- C:\Users\bvemd\Desktop\fsbl.exe
[2011/03/10 01:53:49 | 000,001,726 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/03/10 01:09:52 | 000,030,720 | ---- | M] () -- C:\Windows\System32\umstartup.etl
[2011/03/09 19:08:45 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/03/09 18:25:40 | 000,001,035 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
========== Files Created - No Company Name ==========
[2011/03/30 20:59:20 | 110,445,849 | ---- | C] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2011/03/30 20:58:52 | 000,123,714 | ---- | C] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2011/03/30 15:21:43 | 000,625,664 | ---- | C] () -- C:\Users\bvemd\Desktop\dds.scr
[2011/03/23 18:23:58 | 000,000,000 | ---- | C] () -- C:\Users\bvemd\defogger_reenable
[2011/03/23 17:04:15 | 000,293,019 | ---- | C] () -- C:\Users\bvemd\Desktop\gmer.zip
[2011/03/23 17:02:24 | 000,050,477 | ---- | C] () -- C:\Users\bvemd\Desktop\Defogger.exe
[2011/03/22 21:42:35 | 000,000,832 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2011.lnk
[2011/03/21 22:38:03 | 001,006,764 | ---- | C] () -- C:\Users\bvemd\Desktop\rkill2.com
[2011/03/10 01:53:49 | 000,001,726 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/03/09 18:25:40 | 000,001,035 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/11/28 03:36:54 | 000,815,104 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/11/28 03:36:54 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/11/08 14:43:33 | 000,000,286 | ---- | C] () -- C:\Windows\reimage.ini
[2010/11/05 21:00:49 | 000,000,036 | ---- | C] () -- C:\Users\bvemd\AppData\Local\housecall.guid.cache
[2010/10/20 21:41:17 | 000,000,010 | ---- | C] () -- C:\Users\bvemd\AppData\Roaming\install
[2010/10/20 21:24:47 | 000,000,182 | ---- | C] () -- C:\Users\bvemd\AppData\Roaming\10450.bat
[2010/10/20 21:24:39 | 000,000,183 | ---- | C] () -- C:\Users\bvemd\AppData\Roaming\5264.bat
[2010/09/20 20:13:02 | 000,000,120 | ---- | C] () -- C:\Users\bvemd\AppData\Local\Psuwoxiredoxira.dat
[2010/09/20 20:13:02 | 000,000,000 | ---- | C] () -- C:\Users\bvemd\AppData\Local\Mvuzogovi.bin
[2010/01/24 03:08:25 | 000,461,368 | ---- | C] () -- C:\Windows\System32\pwNative.exe
[2010/01/24 03:08:25 | 000,016,456 | ---- | C] () -- C:\Windows\System32\pwdrvio.sys
[2010/01/24 03:08:25 | 000,011,088 | ---- | C] () -- C:\Windows\System32\pwdspio.sys
[2010/01/04 02:44:54 | 000,000,090 | ---- | C] () -- C:\Windows\QBChanUtil_Trigger.ini
[2009/12/26 02:31:15 | 001,657,376 | ---- | C] () -- C:\Windows\System32\nwiz.exe
[2009/12/26 02:31:15 | 000,449,056 | ---- | C] () -- C:\Windows\System32\nvAppBar.exe
[2009/12/26 02:31:15 | 000,267,296 | ---- | C] () -- C:\Windows\System32\nvTaskbar.exe
[2009/12/26 02:31:14 | 001,724,416 | ---- | C] () -- C:\Windows\System32\nvwdmcpl.dll
[2009/12/26 02:31:14 | 001,507,328 | ---- | C] () -- C:\Windows\System32\nView.dll
[2009/12/26 02:31:14 | 001,101,824 | ---- | C] () -- C:\Windows\System32\nvwimg.dll
[2009/12/26 02:31:14 | 000,466,944 | ---- | C] () -- C:\Windows\System32\nvShell.dll
[2009/11/22 01:26:04 | 008,892,928 | ---- | C] () -- C:\ProgramData\atscie.msi
[2009/09/10 23:28:17 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/09/10 23:28:17 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/09/10 23:27:15 | 000,062,976 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/08/28 00:10:27 | 000,000,000 | ---- | C] () -- C:\Windows\QuickInstall.INI
[2009/07/18 23:03:34 | 000,001,356 | ---- | C] () -- C:\Users\bvemd\AppData\Local\d3d9caps.dat
[2009/06/29 23:17:48 | 000,000,023 | ---- | C] () -- C:\Windows\bo9440cn.ini
[2009/06/12 09:40:04 | 000,000,307 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2009/06/12 09:40:04 | 000,000,160 | ---- | C] () -- C:\Windows\brpcfx.ini
[2009/06/12 00:36:16 | 000,000,426 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2009/06/12 00:36:16 | 000,000,065 | ---- | C] () -- C:\Windows\System32\bd9440cn.dat
[2009/06/12 00:36:16 | 000,000,026 | ---- | C] () -- C:\Windows\BRPP2KA.INI
[2009/06/05 08:48:28 | 000,045,056 | ---- | C] () -- C:\Windows\System32\BRTCPCON.DLL
[2009/06/05 08:48:28 | 000,000,114 | ---- | C] () -- C:\Windows\System32\BRLMW03A.INI
[2009/06/05 08:48:27 | 000,000,050 | ---- | C] () -- C:\Windows\System32\BAOCH06A.DAT
[2009/06/05 08:48:26 | 000,000,098 | ---- | C] () -- C:\Windows\Brfaxrx.ini
[2009/06/05 08:48:25 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BrMuSNMP.dll
[2009/06/05 08:48:25 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2009/06/05 08:47:12 | 000,031,567 | ---- | C] () -- C:\Windows\maxlink.ini
[2008/10/08 02:40:16 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/10/07 21:05:22 | 000,383,476 | ---- | C] () -- C:\ProgramData\nvModes.001
[2008/10/07 02:03:20 | 000,001,004 | -HS- | C] () -- C:\Windows\System32\sys_drv.dat
[2008/10/07 01:52:54 | 000,383,476 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008/10/07 01:49:20 | 000,000,129 | ---- | C] () -- C:\Users\bvemd\AppData\Roaming\Skin.flk
[2008/10/05 23:20:17 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/09/27 00:42:00 | 000,027,648 | ---- | C] () -- C:\Users\bvemd\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/27 00:01:50 | 000,000,000 | ---- | C] () -- C:\Users\bvemd\AppData\Local\WavXMapDrive.bat
[2008/09/18 07:06:07 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2008/09/18 04:24:25 | 000,157,008 | ---- | C] () -- C:\Windows\System32\brcmbsp.dll
[2008/09/18 04:22:49 | 000,080,368 | ---- | C] () -- C:\Windows\System32\pbadrvdll.dll
[2008/07/28 16:03:06 | 000,010,752 | ---- | C] () -- C:\Windows\System32\Wavx_ESC_Logging.dll
[2008/06/13 09:18:56 | 000,512,000 | ---- | C] () -- C:\Windows\System32\AmRes_sv.dll
[2008/06/13 09:18:56 | 000,507,904 | ---- | C] () -- C:\Windows\System32\AmRes_no.dll
[2008/06/13 09:18:54 | 000,536,576 | ---- | C] () -- C:\Windows\System32\AmRes_nl.dll
[2008/06/13 09:18:54 | 000,507,904 | ---- | C] () -- C:\Windows\System32\AmRes_da.dll
[2008/06/13 09:18:52 | 000,540,672 | ---- | C] () -- C:\Windows\System32\AmRes_de.dll
[2008/06/13 09:18:52 | 000,536,576 | ---- | C] () -- C:\Windows\System32\AmRes_fr.dll
[2008/06/13 09:18:52 | 000,507,904 | ---- | C] () -- C:\Windows\System32\AmRes_en.dll
[2008/06/13 09:18:50 | 000,532,480 | ---- | C] () -- C:\Windows\System32\AmRes_it.dll
[2008/06/13 09:18:50 | 000,516,096 | ---- | C] () -- C:\Windows\System32\AmRes_ja.dll
[2008/06/13 09:18:48 | 000,520,192 | ---- | C] () -- C:\Windows\System32\AmRes_pt-BR.dll
[2008/06/13 09:18:48 | 000,503,808 | ---- | C] () -- C:\Windows\System32\AmRes_ko.dll
[2008/06/13 09:18:46 | 000,561,152 | ---- | C] () -- C:\Windows\System32\AmRes_ru.dll
[2008/06/13 09:18:44 | 000,475,136 | ---- | C] () -- C:\Windows\System32\AmRes_zh-CHT.dll
[2008/06/13 09:18:44 | 000,475,136 | ---- | C] () -- C:\Windows\System32\AmRes_zh-CHS.dll
[2008/06/13 09:18:42 | 000,532,480 | ---- | C] () -- C:\Windows\System32\AmRes_es.dll
[2008/06/13 09:16:16 | 000,524,288 | ---- | C] () -- C:\Windows\System32\AmRes_pl.dll
[2008/05/30 07:38:24 | 000,081,920 | ---- | C] () -- C:\Windows\System32\Internationalization_zh-CHS.dll
[2008/05/30 07:38:14 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_sv.dll
[2008/05/30 07:37:52 | 000,081,920 | ---- | C] () -- C:\Windows\System32\Internationalization_zh-CHT.dll
[2008/05/30 07:37:24 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_ru.dll
[2008/05/30 07:37:22 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_pt.dll
[2008/05/30 07:37:20 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_pl.dll
[2008/05/30 07:37:18 | 000,094,208 | ---- | C] () -- C:\Windows\System32\Internationalization_no.dll
[2008/05/30 07:37:16 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_nl.dll
[2008/05/30 07:37:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\Internationalization_ko.dll
[2008/05/30 07:37:12 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_da.dll
[2008/05/30 07:37:12 | 000,090,112 | ---- | C] () -- C:\Windows\System32\Internationalization_ja.dll
[2008/05/30 07:37:10 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_de.dll
[2008/05/30 07:37:08 | 000,098,304 | ---- | C] () -- C:\Windows\System32\Internationalization_es.dll
[2008/05/30 07:37:06 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_fr.dll
[2008/05/30 07:37:04 | 000,102,400 | ---- | C] () -- C:\Windows\System32\Internationalization_it.dll
[2008/05/14 15:40:30 | 000,262,144 | ---- | C] () -- C:\Windows\System32\wxvault.dll
[2008/03/24 10:47:02 | 000,000,012 | ---- | C] () -- C:\Users\bvemd\AppData\Roaming\userdic.tlx
[2008/03/18 11:02:52 | 000,143,360 | R--- | C] () -- C:\Windows\System32\preflib.dll
[2008/02/25 10:04:48 | 000,835,584 | ---- | C] () -- C:\Windows\System32\DemoLicense.dll
[2008/02/03 15:11:51 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2008/01/20 19:23:41 | 000,081,158 | ---- | C] () -- C:\Windows\System32\manage-bde.ini.en
[2008/01/09 15:01:48 | 000,053,248 | ---- | C] () -- C:\Windows\bdoscandel.exe
[2008/01/09 15:01:48 | 000,000,453 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2007/04/19 03:52:16 | 000,080,720 | ---- | C] () -- C:\Windows\System32\AsfBios.dll
[2007/04/19 03:28:10 | 000,025,424 | ---- | C] () -- C:\Windows\System32\drivers\netamsg.dll
[2006/11/02 05:55:52 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 05:46:27 | 000,256,064 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 05:34:20 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 03:33:01 | 000,595,684 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 03:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 03:33:01 | 000,101,350 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 03:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 03:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 03:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 01:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 01:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 00:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 00:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/08/14 09:02:10 | 000,072,192 | ---- | C] () -- C:\Windows\System32\xltZlib.dll
[2006/06/30 10:58:44 | 000,143,360 | ---- | C] () -- C:\Windows\System32\bioapi_mds300.dll
[2006/06/30 10:58:44 | 000,106,496 | ---- | C] () -- C:\Windows\System32\bioapi100.dll
[2004/09/10 10:34:00 | 000,917,504 | ---- | C] () -- C:\Windows\System32\lmgr10.dll
[2004/09/10 10:34:00 | 000,057,344 | ---- | C] () -- C:\Windows\System32\ADsSecurity.dll
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
========== Files - Unicode (All) ==========
[2011/03/22 22:27:40 | 000,000,000 | ---D | M](C:\Windows\System32\????m????????????????????????m?????????f) -- C:\Windows\System32\湩獧牴慥m㼿䑟慢楳彣瑳楲杮瑳敲浡㼀弿㽄戤獡捩獟牴湩獧牴慥m㼿䙟慢楳彣楦敬畢f
[2011/03/22 22:27:40 | 000,000,000 | ---D | C](C:\Windows\System32\????m????????????????????????m?????????f) -- C:\Windows\System32\湩獧牴慥m㼿䑟慢楳彣瑳楲杮瑳敲浡㼀弿㽄戤獡捩獟牴湩獧牴慥m㼿䙟慢楳彣楦敬畢f
[2011/03/22 22:27:40 | 000,000,000 | ---- | M] ()(C:\Windows\System32\????m????????????????????????m?????????fnmsrvc.exe.11.2.9195.1-ship-1300858060.dmp) -- C:\Windows\System32\湩獧牴慥m㼿䑟慢楳彣瑳楲杮瑳敲浡㼀弿㽄戤獡捩獟牴湩獧牴慥m㼿䙟慢楳彣楦敬畢fnmsrvc.exe.11.2.9195.1-ship-1300858060.dmp
[2011/03/22 22:27:40 | 000,000,000 | ---- | C] ()(C:\Windows\System32\????m????????????????????????m?????????fnmsrvc.exe.11.2.9195.1-ship-1300858060.dmp) -- C:\Windows\System32\湩獧牴慥m㼿䑟慢楳彣瑳楲杮瑳敲浡㼀弿㽄戤獡捩獟牴湩獧牴慥m㼿䙟慢楳彣楦敬畢fnmsrvc.exe.11.2.9195.1-ship-1300858060.dmp
========== Alternate Data Streams ==========
@Alternate Data Stream - 152 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:0B4227B4
< End of report >
CHECKUP
Results of screen317's Security Check version 0.99.10
Windows Vista Service Pack 2 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
AVG 2011
AVG PC Tuneup 2011
AVG 2011
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
AVG PC Tuneup 2011
CCleaner
Java™ 6 Update 24
Java™ 6 Update 7
Out of date Java installed!
Adobe Flash Player 10.2.153.1
Adobe Reader 9.4.3
Japanese Fonts Support For Adobe Reader 9
Out of date Adobe Reader installed!
Mozilla Firefox (3.6.14)
Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent
AVG avgwdsvc.exe
AVG avgtray.exe
AVG avgnsx.exe
``````````End of Log````````````
EXTRAS:
OTL Extras logfile created on: 3/31/2011 10:21:15 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\bvemd\Desktop
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 62.00% Memory free
7.00 Gb Paging File | 6.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 111.54 Gb Total Space | 82.29 Gb Free Space | 73.77% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.06 Gb Free Space | 50.61% Space Free | Partition Type: NTFS
Drive J: | 67.29 Gb Total Space | 3.75 Gb Free Space | 5.57% Space Free | Partition Type: NTFS
Drive K: | 43.94 Gb Total Space | 15.93 Gb Free Space | 36.24% Space Free | Partition Type: NTFS
Computer Name: CDLRHAWK | User Name: bvemd | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\Video\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\Video\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A85A78B-2003-41E7-8258-A5A52CA054DB}" = rport=445 | protocol=6 | dir=out | app=system |
"{0C850686-857C-4D48-9F9B-57D68B1490D3}" = lport=137 | protocol=17 | dir=in | app=system |
"{27ECA7DE-F73A-4A07-AAF4-8B94FAD6B1D9}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{2CE4EE69-BF68-425C-B76D-CF001559B797}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2EE3707D-1C8B-4FCC-A15B-426EE49379B6}" = rport=137 | protocol=17 | dir=out | app=system |
"{315E4BD3-4EE1-4197-A390-6E45681677FA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{440BE357-CFCB-4C83-A0A9-090BA10D6AE5}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4B24DC63-1436-477D-B029-FCCCFD33F7D6}" = lport=139 | protocol=6 | dir=in | app=system |
"{4BE0E5D1-78D2-41D6-ACEA-93EE5D9002D2}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{65091FEC-2282-41DE-B2C6-FDAEADF4E21A}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{7886D0FF-0AC6-4CC4-8AC4-CBBEF88CCC9F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7C0D7B74-13DF-4398-B731-5F1D1AC43899}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{977BC828-6318-4B59-9050-2608360E3C43}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{99049BAF-E0E9-4817-8B15-D286FE2E2473}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{A286B04E-6BBA-4F96-A2B2-291AE0927A23}" = lport=445 | protocol=6 | dir=in | app=system |
"{B8727D2A-7F97-447F-9DE2-4B9C47D3C506}" = rport=138 | protocol=17 | dir=out | app=system |
"{B88F6065-65C3-4C29-B4C2-7FE42B2BCFFC}" = rport=139 | protocol=6 | dir=out | app=system |
"{C1DFA9A0-7D87-4447-A59E-FBD231609B33}" = lport=138 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{053F98FD-CF63-4BFE-8C61-ED6BA9ED4838}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{19E0ABBD-425A-48DE-8513-C185A41B9366}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgnsx.exe |
"{1A2B05A7-0E59-41EC-B64C-7C3E12578287}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgnsx.exe |
"{268EF5BD-E930-412B-B1BD-D4A4FF4E06F9}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2B378B70-823B-401F-AC07-EC5380B8DCBE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{4996D6BE-9210-4FC8-8049-A896CD6593F4}" = protocol=17 | dir=in | app=c:\program files\common files\pure networks shared\platform\nmsrvc.exe |
"{5A39034A-8739-4EA9-A80B-B36EE8F237BE}" = protocol=6 | dir=in | app=c:\program files\common files\pure networks shared\platform\nmsrvc.exe |
"{5A661A8B-E7F5-43B2-914E-E80AC9091F99}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{76405F4E-9601-4ABB-8DDC-6BFAD80DC70D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{83E4EC78-B6F8-4829-996C-57FEB0D8D055}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{908890BA-F35E-4630-AA0B-9EE3A1728FA2}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{A2B2DF26-D464-4A90-8117-14E7108ABF9C}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{BFCDD21E-4F36-472E-A3C6-054A07290B45}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{C4090A8A-D3E9-435E-A5D6-050ACA8935A6}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C6226581-88ED-4561-A6FD-9D6E55B1B3A9}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgemcx.exe |
"{D247B59E-5049-48CB-83A2-C2644B39677D}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgemcx.exe |
"{DDDD0A0F-395C-4B23-9C5B-96B1342781DF}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{FA157FB4-0613-4C64-8ED2-459B584136A9}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"{FFCF06BB-9ED9-4F06-986F-E8D86A79BE88}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"TCP Query User{3197FCB0-414F-461B-8120-A20B5C3E4262}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{374655D7-FBA6-46AC-A874-F2E6C3B15B46}F:\system\apps\736d6172-7470-6373-6f6c-7574696f5162\exec\spywarefree.exe" = protocol=6 | dir=in | app=f:\system\apps\736d6172-7470-6373-6f6c-7574696f5162\exec\spywarefree.exe |
"TCP Query User{3889D198-78C9-4DDE-B45D-945FDA411245}C:\program files\palm\hotsync.exe" = protocol=6 | dir=in | app=c:\program files\palm\hotsync.exe |
"TCP Query User{3A8F511B-8492-4835-831B-3FD623E6AB80}C:\windows\system32\taskeng.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskeng.exe |
"TCP Query User{65B10B49-79E6-4F6F-816B-8D7127229162}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{69E9FB9B-C3FF-450B-9A6C-8EEFFFCF51C3}F:\simplisafe.exe" = protocol=6 | dir=in | app=f:\simplisafe.exe |
"TCP Query User{B31768A2-416C-482F-AD47-0C31F1C128EA}F:\simplisafe.exe" = protocol=6 | dir=in | app=f:\simplisafe.exe |
"TCP Query User{F150E900-DB09-48E7-8AF2-72458C61B4AD}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{2484C71C-5B2E-4974-8106-E21239D404DF}C:\program files\palm\hotsync.exe" = protocol=17 | dir=in | app=c:\program files\palm\hotsync.exe |
"UDP Query User{4ADF3C4C-1811-4E60-A90E-A6AC52E8E044}F:\system\apps\736d6172-7470-6373-6f6c-7574696f5162\exec\spywarefree.exe" = protocol=17 | dir=in | app=f:\system\apps\736d6172-7470-6373-6f6c-7574696f5162\exec\spywarefree.exe |
"UDP Query User{4D08DA48-19D6-4C45-9023-A2E228FE56AF}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{7CF8D069-2535-4062-8BF0-3B89785F0755}F:\simplisafe.exe" = protocol=17 | dir=in | app=f:\simplisafe.exe |
"UDP Query User{87F1F946-D4D5-4B56-AC01-E1E74457B4CC}F:\simplisafe.exe" = protocol=17 | dir=in | app=f:\simplisafe.exe |
"UDP Query User{DDD0038E-618C-44B6-8AD3-DF4D1D3F8077}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{DE864D58-0249-4E85-91EC-CA914507DE30}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{E27DF3FB-B375-4A9D-9756-B3AF509187FF}C:\windows\system32\taskeng.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskeng.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0394CDC8-FABD-4ED8-B104-03393876DFDF}" = Roxio Creator Tools
"{041F04B1-F985-44E8-A070-C3EB1A39369F}" = Dell ControlPoint Connection Manager
"{066D25F6-8B8B-433C-88B4-EDF41D604E7E}" = Broadcom USH Host Components
"{06A9E630-DBA6-4D92-9DE7-A235AA6496C7}" = QuickBooks
"{0700E22B-A422-40A5-BD20-04BF618CA0F9}" = QuickBooks Pro 2010
"{07159635-9DFE-4105-BFC0-2817DB540C68}" = Roxio Activation Module
"{07D618CD-B016-438A-ADC9-A75BD23F85CE}" = Wave Support Software
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0B0A2153-58A6-4244-B458-25EDF5FCD809}" = Private Information Manager
"{0D397393-9B50-4C52-84D5-77E344289F87}" = Roxio Creator Data
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2220CF3A-EBD6-4070-94D0-0C7337B537A7}" = All Day Battery Life Configuration
"{2223FC2F-B862-4F83-BC9E-DDF2DADF2859}" = Intel® Network Connections 13.0.42.0
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java™ 6 Update 24
"{294EAADF-E50F-4DD8-AD8D-19587EA10512}" = Modem Diagnostic Tool
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}" = PaperPort Image Printer
"{3393CDDB-27F0-4869-BED4-BE478598F0FF}" = Dell Control Point
"{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime
"{3A6BE9F4-5FC8-44BB-BE7B-32A29607FEF6}" = Preboot Manager
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C0A8D65-4286-4B58-87FE-18AD24289285}" = NVIDIA Performance Drivers
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{51AE9E42-640D-4C14-A9B6-43F64AA4E3E2}" = Document Manager Lite
"{53333479-6A52-4816-8497-5C52B67ED339}" = EMBASSY Security Setup
"{558B86E5-CFAC-447C-99EE-5BB1C068706D}" = NTRU TCG Software Stack
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A3F6A80-7913-475E-8B96-477A952CFA43}" = SupportSoft Assisted Service
"{5AF4F4C5-C71C-418F-B0B1-3903A345BD71}" = Ambient Light Sensor
"{5BF5F9C5-E95B-4AFA-94BE-F2A9CA73B61D}" = Apple Mobile Device Support
"{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}" = EDocs
"{6EA8A52B-8EA1-4A59-85AB-48132299061A}" = Intel® PRO Alerting Agent
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7AC0886A-CE48-4EB6-9CC3-4C56D427F2E1}" = Cisco Network Magic
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7EA69B5E-EE96-44A1-BDD6-F9C193CDDAF9}" = Wave Infrastructure Installer
"{7FCC4EDC-6EE2-4309-ABD7-85F2667A7B90}" = WebEx Support Manager for Internet Explorer
"{82C19692-571C-45D2-BAF2-278225787A35}" = ImageMixer 3 SE
"{83FFCFC7-88C6-41C6-8752-958A45325C82}" = Roxio Creator Audio
"{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}" = Roxio Creator BDAV Plugin
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{91490409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Primary Interop Assemblies
"{9593C6E5-205E-45C3-B785-05CF146CA76A}" = biolsp patch
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A093D83F-429A-4AB2-A0CD-1F7E9C7B764A}" = Trusted Drive Manager
"{A276502A-8979-44FB-8090-90CF72F22ABC}" = AVG 2011
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA468551-1794-42FE-B504-C41D75EEBDF2}_is1" = Partition Wizard Home Edition 4.2.2
"{ABBA2EA4-740E-4052-902B-9CA70B081E3F}" = Dell Embassy Trust Suite by Wave Systems
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.3
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{ADAED43C-BBD9-42C5-8B21-F4FBFA81E3C3}" = Palm
"{AED53CDF-1046-4C6B-B5E2-C195125ECDA0}" = Intel® PROSet/Wireless WiFi Software
"{AF7E4468-E364-4991-BC2A-6E8293E1055B}" = BioAPI Framework
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B6C89654-A6A2-477C-873B-724EC1C56407}" = ScanSoft PaperPort 11
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C50191F1-F4D1-48FD-8936-9B954A8734C5}" = HRS 11.6 Distributed
"{C83FB11D-9EC6-49D7-99A7-DDDB2264883C}" = Brother MFL-Pro Suite
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator DE
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1E829E9-88B8-47C6-A75E-0D40E2C09D50}" = Secure Update
"{D2008F41-9E8E-4CA8-BBB0-83CC620C31FB}" = Dell ControlPoint System Manager
"{D4E53304-1F6C-4111-9872-1BCD2CF5B642}" = AVG 2011
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{E738A392-F690-4A9D-808E-7BAF80E0B398}" = ESC Home Page Plugin
"{EC84E3E6-C2D6-4DFB-81E0-448324C8FDF4}" = Security Wizards
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{EE88F38C-81C3-4C22-AAED-D2BD8D090F80}" = Horizon Medical Imaging Update Service
"{EEAFE1E5-076B-430A-96D9-B567792AFA88}" = EMBASSY Security Center
"{EF05BA0F-AC15-4D12-AC5C-276225F5E751}" = Gemalto
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F4487649-7368-4217-AEA3-1E04DB3E2C5C}" = Dell ControlPoint Security Manager
"{FC467B61-F890-4E29-8585-365DAB66F13E}" = Pure Networks Platform
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"{FF1DDCF4-3A28-4F7F-96D8-E3F4BD1C1702}" = Dell Security Device Driver Pack
"7-Zip" = 7-Zip 4.65
"9D57DE505B6D8C710EF3B74BE638DBB936EED8A3" = Windows Driver Package - Dell Inc. PBADRV System (01/07/2008 1.0.1.5)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AVG" = AVG 2011
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F" = Conexant HDA D330 MDC V.92 Modem
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Creative OA001" = Integrated Webcam Driver (1.02.02.0603)
"Dell Webcam Central" = Dell Webcam Central
"Free HD Converter_is1" = Free HD Converter V 1.7
"GOM Player" = GOM Player
"Google Updater" = Google Updater
"InstallShield_{07D618CD-B016-438A-ADC9-A75BD23F85CE}" = Wave Support Software
"InstallShield_{0B0A2153-58A6-4244-B458-25EDF5FCD809}" = Private Information Manager
"InstallShield_{51AE9E42-640D-4C14-A9B6-43F64AA4E3E2}" = Document Manager Lite
"InstallShield_{53333479-6A52-4816-8497-5C52B67ED339}" = EMBASSY Security Setup
"InstallShield_{D1E829E9-88B8-47C6-A75E-0D40E2C09D50}" = Secure Update
"InstallShield_{E738A392-F690-4A9D-808E-7BAF80E0B398}" = ESC Home Page Plugin
"InstallShield_{EC84E3E6-C2D6-4DFB-81E0-448324C8FDF4}" = Security Wizards
"InstallShield_{EEAFE1E5-076B-430A-96D9-B567792AFA88}" = EMBASSY Security Center
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Visual Studio 2005 Tools for Office Runtime" = Microsoft Visual Studio 2005 Tools for Office Runtime
"Mozilla Firefox (3.6.14)" = Mozilla Firefox (3.6.14)
"Network MagicUninstall" = Network Magic
"NVIDIA Drivers" = NVIDIA Drivers
"nView Desktop Manager" = NVIDIA nView Desktop Manager
"ProInst" = Intel PROSet Wireless
"PROSetDX" = Intel® Network Connections 13.0.42.0
"Quicken WillMaker Plus 2009" = Quicken WillMaker Plus 2009
"SyncBack_is1" = SyncBack
"UltSounds" = Windows Sound Schemes
"UltSounds2" = Ultimate Extras sounds from Microsoft® Tinker™
"VLC media player" = VLC media player 1.1.5
"Xvid_is1" = Xvid 1.2.1 final uninstall
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2291348649-2389572445-1617005422-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
Help
Read the following topic before creating a new topic in this forum. It contains instructions on the what we would like you to post, which will enable us to help you more quickly.
This topic is locked
Attach.txt (9.18K)
Back to top
icon on your desktop.
button.
