Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

IE8 using progressively more ram?


  • Please log in to reply
11 replies to this topic

#1 dobbins92

dobbins92

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 AM

Posted 06 January 2012 - 12:30 AM

I am using IE8 and have notice 2 instances of iexplore running in my processes. They seem to accumulate more and more memory usage until my computer continuously hang. If I close the browser they memory is freed up and all runs well until I re-open IE. It will then slowly use up all of my memory again. I would like to have someone check my HJT log to see if there are any bugs in there.

Edited by Orange Blossom, 06 January 2012 - 04:51 AM.
Log removed. ~ OB


BC AdBot (Login to Remove)

 


#2 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 37,011 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:11:09 AM

Posted 06 January 2012 - 04:55 AM

Hello,

I removed the HiJack This log as such are not analyzed in this forum, we rarely use HJT any more, and because your description does not indicate the need for specialized assistance.

The appearance of 2 instances of IE in processes is normal for IE8. It does it on my system as well.

As for the memory issues. Are you using a lot of tabs? Viewing a lot of flash content or other memory intensive content on the web? How much RAM do you have?

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

#3 dobbins92

dobbins92
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 AM

Posted 07 January 2012 - 01:07 AM

I have 3GB of ram and usually only have 1 or 2 tabs open. I have noticed that when I keep Facebook open it really slows down my computer more quickly. Without the browser open the system uses right around 1GB. With browser open it starts at about 1.3 and climbs. When it gets to around 2.1 or higher I experience a lot of lag, especially when scrolling and any videos are very jerky.

#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:09 PM

Posted 10 January 2012 - 05:43 AM

Please perform the following, so that we can get the exact specs of your computer. This will better assist us in helping you more.

Publish a Snapshot using Speccy

The below is for those who cannot get online

Please take caution when attaching a text file to your post if you cannot copy/paste the link to your post, you will need to edit it to make sure that your Windows Key is not present.

Second:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Third

Please download and run Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

And Finally:

Download Autoruns for Windows: http://technet.microsoft.com/en-us/sysinte...s/bb963902.aspx

No installation required.

Simply unzip Autoruns.zip file, and double click on autoruns.exe file to run the program.

Go File>Save, and save it as AutoRuns.txt file to know location.

You must select Text from drop-down menu as a file type:

Posted Image

Attach the file to your next reply.

Compliments of Broni

#5 hamluis

hamluis

    Moderator


  • Moderator
  • 56,298 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:10:09 AM

Posted 10 January 2012 - 06:58 AM

FWIW: IE will always reflect 2 processees in Task Manager, when only 1 window is open. When user opens an additional window/tab in IE, an addition process is reflected in Task Manager. This is normal.

Louis

#6 dobbins92

dobbins92
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 AM

Posted 10 January 2012 - 11:34 PM

http://speccy.piriform.com/results/Cke2Ym3iIGFu4p04pZQjUnx

#7 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:09 PM

Posted 11 January 2012 - 05:50 AM

Can you perform the other tasks as well, and you should remove adaware it is outdated and not very reliable anymore.

#8 dobbins92

dobbins92
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 AM

Posted 15 January 2012 - 10:47 PM

MiniToolBox by Farbar
Ran by Matt (administrator) on 10-01-2012 at 22:17:02
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 localhost
127.0.0.1 activate.adobe.com

========================= IP Configuration: ================================

Intel® 82562V-2 10/100 Network Connection = Local Area Connection (Connected)
EasyTether Network Adapter = Local Area Connection 6 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Matt-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : EasyTether Network Adapter
Physical Address. . . . . . . . . : 02-00-54-74-68-72
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® 82562V-2 10/100 Network Connection
Physical Address. . . . . . . . . : 00-1D-09-75-77-EC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1089:2efe:8c8a:7ba7%8(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, January 10, 2012 6:38:19 PM
Lease Expires . . . . . . . . . . : Saturday, February 17, 2148 4:45:27 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 167779593
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-7F-DF-F2-00-1D-09-75-77-EC
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : isatap.Belkin
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:30bf:38b8:52e4:7d74(Preferred)
Link-local IPv6 Address . . . . . : fe80::30bf:38b8:52e4:7d74%9(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{61A10D90-79E5-424F-97A3-CB1F0BC024B4}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.2.1

Name: google.com
Addresses: 74.125.225.19
74.125.225.20
74.125.225.16
74.125.225.17
74.125.225.18



Pinging google.com [74.125.225.18] with 32 bytes of data:

Reply from 74.125.225.18: bytes=32 time=36ms TTL=53

Reply from 74.125.225.18: bytes=32 time=41ms TTL=53



Ping statistics for 74.125.225.18:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 36ms, Maximum = 41ms, Average = 38ms

Server: UnKnown
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.180.149
209.191.122.70
72.30.2.43
98.137.149.56



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=95ms TTL=48

Reply from 209.191.122.70: bytes=32 time=53ms TTL=48



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 53ms, Maximum = 95ms, Average = 74ms

Server: UnKnown
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
16 ...02 00 54 74 68 72 ...... EasyTether Network Adapter
8 ...00 1d 09 75 77 ec ...... Intel® 82562V-2 10/100 Network Connection
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 isatap.Belkin
9 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
17 ...00 00 00 00 00 00 00 e0 isatap.{61A10D90-79E5-424F-97A3-CB1F0BC024B4}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.2 276
192.168.2.2 255.255.255.255 On-link 192.168.2.2 276
192.168.2.255 255.255.255.255 On-link 192.168.2.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
9 18 ::/0 On-link
1 306 ::1/128 On-link
9 18 2001::/32 On-link
9 266 2001:0:5ef5:79fb:30bf:38b8:52e4:7d74/128
On-link
8 276 fe80::/64 On-link
9 266 fe80::/64 On-link
8 276 fe80::1089:2efe:8c8a:7ba7/128
On-link
9 266 fe80::30bf:38b8:52e4:7d74/128
On-link
1 306 ff00::/8 On-link
9 266 ff00::/8 On-link
8 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/10/2012 10:02:06 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (01/04/2012 06:06:55 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040154.

Error: (01/04/2012 06:06:55 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Writers will not receive events since the COM+ database is corrupted.
This might happened if an error occurred during Windows setup.
The error returned from CoCreateInstance on class with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and Name CEventSystem is [0x80040154]

Error: (01/04/2012 06:06:55 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80040154.

Error: (01/04/2012 06:06:55 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Writers will not receive events since the COM+ database is corrupted.
This might happened if an error occurred during Windows setup.
The error returned from CoCreateInstance on class with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and Name CEventSystem is [0x80040154]

Error: (01/04/2012 06:04:54 PM) (Source: ESENT) (User: )
Description: WinMail (2332) WindowsMail0: The database engine stopped the instance (0) with error (-510).

Error: (01/04/2012 04:32:37 PM) (Source: ESENT) (User: )
Description: WinMail (2332) WindowsMail0: The logfile sequence in "C:\Users\Matt\AppData\Local\Microsoft\Windows Mail\" has been halted due to a fatal error. No further updates are possible for the databases that use this logfile sequence. Please correct the problem and restart or restore from backup.

Error: (01/04/2012 04:32:37 PM) (Source: ESENT) (User: )
Description: WinMail (2332) WindowsMail0: Unable to write to section 3 while flushing logfile C:\Users\Matt\AppData\Local\Microsoft\Windows Mail\edb.log. Error -1011 (0xfffffc0d).

Error: (01/04/2012 04:32:37 PM) (Source: ESENT) (User: )
Description: WinMail (2332) WindowsMail0: An attempt to write to the file "C:\Users\Matt\AppData\Local\Microsoft\Windows Mail\edb.log" at offset 82944 (0x0000000000014400) for 512 (0x00000200) bytes failed after WinMail0 seconds with system error 8 (0x00000008): "Not enough storage is available to process this command. ". The write operation will fail with error -1011 (0xfffffc0d). If this error persists then the file may be damaged and may need to be restored from a previous backup.

Error: (01/02/2012 00:16:07 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {12585025-7f1f-4fb5-b499-18545c5809cd}


System errors:
=============
Error: (01/10/2012 06:38:18 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.2.2 for the Network Card with network address 001D097577EC has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

Error: (01/10/2012 02:08:11 PM) (Source: DCOM) (User: Matt)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Matt-PCMattS-1-5-21-3952798434-3583046330-2447698172-1000LocalHost (Using LRPC)

Error: (01/10/2012 05:30:15 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.2.2 for the Network Card with network address 001D097577EC has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

Error: (01/04/2012 06:14:02 PM) (Source: Service Control Manager) (User: )
Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86

Error: (01/04/2012 06:11:51 PM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

Feature: %%835

Error Code: 0x80004005

Error description: Unspecified error

Reason: %%842

Error: (01/04/2012 06:11:32 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (01/04/2012 06:09:39 PM) (Source: volmgr) (User: )
Description: Configuring the Page file for crash dump failed. Make sure there is a page
file on the boot partition and that is large enough to contain all physical
memory.

Error: (01/04/2012 06:09:29 PM) (Source: volmgr) (User: )
Description: Configuring the Page file for crash dump failed. Make sure there is a page
file on the boot partition and that is large enough to contain all physical
memory.

Error: (01/04/2012 06:06:53 PM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (01/04/2012 04:02:23 PM) (Source: Microsoft-Windows-Kernel-General) (User: SYSTEM)
Description: 0xc000014d28\??\C:\Users\Matt\ntuser.dat


Microsoft Office Sessions:
=========================
Error: (01/10/2012 10:02:06 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (01/04/2012 06:06:55 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040154

Error: (01/04/2012 06:06:55 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80040154

Error: (01/04/2012 06:06:55 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040154

Error: (01/04/2012 06:06:55 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80040154

Error: (01/04/2012 06:04:54 PM) (Source: ESENT)(User: )
Description: WinMail2332WindowsMail0: 0-510

Error: (01/04/2012 04:32:37 PM) (Source: ESENT)(User: )
Description: WinMail2332WindowsMail0: C:\Users\Matt\AppData\Local\Microsoft\Windows Mail\

Error: (01/04/2012 04:32:37 PM) (Source: ESENT)(User: )
Description: WinMail2332WindowsMail0: C:\Users\Matt\AppData\Local\Microsoft\Windows Mail\edb.log-1011 (0xfffffc0d)

Error: (01/04/2012 04:32:37 PM) (Source: ESENT)(User: )
Description: WinMail2332WindowsMail0: C:\Users\Matt\AppData\Local\Microsoft\Windows Mail\edb.log82944 (0x0000000000014400)512 (0x00000200)-1011 (0xfffffc0d)8 (0x00000008)Not enough storage is available to process this command. 0

Error: (01/02/2012 00:16:07 AM) (Source: VSS)(User: )
Description: 0x80070005

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {12585025-7f1f-4fb5-b499-18545c5809cd}


=========================== Installed Programs ============================

18 Wheels of Steel - American Long Haul (Version: 2.2.0.95)
18 Wheels of Steel Extreme Trucker (Version: 2.2.0.95)
18 WoS Extreme Trucker (Version: 1.00.0000)
32 Bit HP CIO Components Installer (Version: 7.1.8)
AC3Filter 1.63b (Version: 1.63b)
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Ad-Aware (Version: 9.6.0)
Ad-Aware Security Toolbar (Version: 0.9.1.8)
Adobe Acrobat 4.0
Adobe AIR (Version: 2.0.2.12610)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 10 Plugin (Version: 10.0.45.2)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Help Center 2.1 (Version: 2.1)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Photoshop Elements 5.0 (Version: 5.0)
Adobe Photoshop Elements 8.0 (Version: 8.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.02)
Adobe Reader 9.4.7 (Version: 9.4.7)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Adobe SVG Viewer 3.0 (Version: 3.0)
Agatha Christie - 4:50 from Paddington (Version: 2.2.0.97)
AIO_Scan (Version: 100.0.206.000)
America Online
Ankh - The Lost Treasures (Version: 2.2.0.97)
Antique Road Trip (Version: 2.2.0.97)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.6.12.0)
ASPCA Tri Reminder by We-Care.com v4.0.13.5 (Version: 4.0.13.5)
AVS Audio Converter version 7
AVS Update Manager 1.0
AVS Video Converter 6
AVS4YOU Software Navigator 1.4
AXIS Media Control SDK 5.60
Azteca (Version: 2.2.0.97)
Bass Audio Decoder (remove only)
Bejeweled 3
Belkin Setup and Router Monitor
Bicycle Go Fish (Version: 2.2.0.97)
Big Fish Games: Game Manager (Version: 2.0.1.43)
Big Rig Europe (Version: 2.2.0.95)
Bigfoot: Chasing Shadows (Version: 2.2.0.95)
Blue's Preschool
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 100.0.170.000)
Bus Driver (Version: 2.2.0.95)
C5200 (Version: 100.0.206.000)
C5200_Help (Version: 100.0.206.000)
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000)
CD Audio Reader Filter (remove only)
CDDRV_Installer (Version: 4.60)
Chuzzle Deluxe
CK Font Organizer (Version: 1.0.0.8)
Copy (Version: 100.0.170.000)
Crazy Chicken Kart 2 (Version: 2.2.0.97)
Cruise Clues: Caribbean Adventure (Version: 2.2.0.95)
CustomerResearchQFolder (Version: 1.00.0000)
Data Lifeguard Diagnostic for Windows 1.21
Death Rally for Windows
Deer Drive (Version: 2.2.0.95)
Dell Resource CD (Version: 1.10.0000)
Destination Component (Version: 100.0.0.0)
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
Disney Pirates of the Caribbean Online (Version: )
DocProc (Version: 10.0.0.0)
DocProcQFolder (Version: 1.00.0000)
Download Manager 2.3.10 (Version: 2.3.10)
Dream Chronicles: The Book of Water Collector's Edition (Version: 2.2.0.98)
Dream Day True Love (Version: 2.2.0.95)
EasyTether (Version: 1.1.12)
Eighteen Wheels of Steel Haulin' (Version: 2.2.0.95)
erLT (Version: 1.12.0117)
eSupportQFolder (Version: 1.00.0000)
Farm Mania: Hot Vacation (Version: 2.2.0.97)
Fax (Version: 100.0.187.000)
ffdshow v1.1.3562 [2010-09-07] (Version: 1.1.3562.0)
FILE RECOVERY for Windows (Version: 1.0.201)
Font Companion
Free Audio Converter version 2.3.815
Gogo MP3 To CD Burner
Google Earth (Version: 5.2.0.5932)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.79)
GPBaseService (Version: 100.0.187.000)
GrabIt 1.7.2 Beta 4 (build 997)
Haunted Hotel II: Believe the Lies
Hidden Mysteries: Civil War
Hidden Object Crosswords
Hidden Object Studios™ - I'll Believe You (Version: 2.2.0.98)
HiJackThis (Version: 1.0.0)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Games (Version: 1.0.2.5)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Photosmart All-In-One Driver Software 10.0 Rel .2 (Version: 10.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Solution Center 10.0 (Version: 10.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoSmartDiscLabel_PaperLabel (Version: 2.02.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.02.0000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
hpphotosmartdisclabelplugin (Version: 2.02.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000)
HPProductAssistant (Version: 100.0.170.000)
HPSSupply (Version: 100.0.170.000)
I Love Science! (Version: 1.1)
Indoor Sports Games
Initio USB Default Controller Driver 32-bit (Version: 1.0.4)
Intel® PRO Network Connections 12.1.11.0 (Version: )
Itibiti RTC (Version: 0.0.1)
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
John Deere Drive Green (Version: 1.00.0000)
JumpStart 3rd Grade v1.2
K-Lite Codec Pack 6.1.0 (Full) (Version: 6.1.0)
KhalInstallWrapper (Version: 4.60.122)
LEGO Digital Designer
LEGO Universe
LimeWire 5.5.16 (Version: 5.5.16)
Logitech SetPoint (Version: 4.60)
LogMeIn (Version: 4.1.1558)
Malwarebytes' Anti-Malware version 1.51.2.1300 (Version: 1.51.2.1300)
MarketResearch (Version: 100.0.170.000)
Marooned 2: The Secrets of the Akoni (Version: 2.2.0.95)
MGI VideoWave 4 (Version: 4.0.0656)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Midtown Madness 2
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Web Platform Installer 3.0 (Version: 3.0.5)
Microsoft Web Publishing Wizard 1.52
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MX vs ATV Unleashed (Version: 2.2.0.95)
Mystery of Mortlake Mansion (Version: 2.2.0.97)
NASCAR Heat
NASCAR Racing 1999 Edition
NASCAR Revolution
Nero BurnLite 10 (Version: 10.0.10100.1.100)
Nero BurnLite 10 (Version: 10.0.10500)
Nero Control Center 10 (Version: 10.0.13100.3.1)
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10700)
Nero Core Components 10 (Version: 2.0.15100.0.1)
Nero Update (Version: 1.0.0018)
Nick Jr Bingo (Version: 2.2.0.98)
Nightmare on the Pacific (Version: 2.2.0.97)
Norton Security Scan (Version: 3.1.1.6)
NVIDIA Display Control Panel (Version: 6.14.11.9728)
NVIDIA Drivers (Version: 1.10.57.35)
OCR Software by I.R.I.S. 10.0 (Version: 10.0)
OpenSource DTS/AC3/DD+ Source Filter (remove only)
Oregon Trail 5
PanoStandAlone (Version: 100.0.170.000)
PDF Settings CS5 (Version: 10.0)
Picaboo X (Version: 10.135)
Picaboo X (Version: 10.135P)
Portrait Professional 10.6 (Version: 10.6)
Portrait Professional 9.7 (Version: 9.7)
Postal 2
PrintMaster 2011 Express (Version: 3.0.10)
PS_AIO_02_ProductContext (Version: 100.0.206.000)
PS_AIO_02_Software (Version: 100.0.206.000)
PS_AIO_02_Software_Min (Version: 100.0.206.000)
PSSWCORE (Version: 2.02.0000)
Puzzle Express
PVSonyDll (Version: 1.00.0001)
QuickCam (Version: 5.4.3)
QuickTime (Version: 7.71.80.42)
Railroad Lines (Version: 2.2.0.98)
Real Crimes - Jack the Ripper (Version: 2.2.0.95)
RealMedia (remove only)
RealPlayer 7 Basic
Realtek High Definition Audio Driver (Version: 6.0.1.5408)
RegGenie v3.0 (Version: 3.0)
Roblox
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.550.0)
SamsungSimpleDL (Version: 1.0.001)
Scan (Version: 10.1.0.0)
Shop for HP Supplies (Version: 10.0)
Sierra Utilities
SIplugin (Version: 1.00.0000)
Skype™ 5.5 (Version: 5.5.124)
SolutionCenter (Version: 100.0.175.000)
Speccy (Version: 1.14)
SpongeBob SquarePants - Battle for Bikini Bottom DEMO (Version: 1.00.000)
Status (Version: 100.0.175.000)
Super Solvers Reading Ages 9-12
swMSM (Version: 12.0.0.1)
The Serpent of Isis: Your Journey Continues
Thomas & Friends - The Great Festival Adventure
Toolbox (Version: 100.0.170.000)
Trailer Park Tycoon
TrayApp (Version: 100.0.170.000)
Treasure Seekers: The Time Has Come
Twisted Lands: Shadow Town (Version: 2.2.0.95)
Uninstall Digital Binoculars Driver
Unity Web Player (All users) (Version: )
Unlikely Suspects (Version: 2.2.0.95)
UnloadSupport (Version: 10.0.0)
Unreal Tournament
Unsolved Mystery Club ™ - Amelia Earhart (Version: 2.2.0.97)
Update Installer for WildTangent Games App
Victorian Mysteries: Woman in White (Version: 2.2.0.95)
VideoToolkit01 (Version: 100.0.128.000)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
VLC media player 1.1.0 (Version: 1.1.0)
WD SmartWare (Version: 1.5.1)
WebReg (Version: 100.0.170.000)
Westward IV - All Aboard (Version: 2.2.0.95)
WIDCOMM Bluetooth Software (Version: 5.1.0.1700)
WildTangent Games App (HP Games) (Version: 4.0.5.31)
WildTangent Games App (Version: 4.0.5.2)
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0)
Word Cross
Yahoo! Messenger
Yahoo! SiteBuilder (Version: 2.4.0)
Yahoo! Software Update
Yahtzee
Zenerchi
Zylom Games Player Plugin

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 3069.45 MB
Available physical RAM: 1134.51 MB
Total Pagefile: 5113.74 MB
Available Pagefile: 2641.3 MB
Total Virtual: 2047.88 MB
Available Virtual: 1963.92 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.51 GB) (Free:549.05 GB) NTFS
6 Drive h: () (Removable) (Total:3.7 GB) (Free:0.39 GB) FAT32
7 Drive l: () (Removable) (Total:1.87 GB) (Free:0.65 GB) FAT

========================= Users: ========================================

User accounts for \\MATT-PC

Administrator ASPNET Guest
LogMeInRemoteUser Matt

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

Results of screen317's Security Check version 0.99.30
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
Microsoft Security Essentials
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Ad-Aware
Malwarebytes' Anti-Malware
Java™ 6 Update 29
Java version out of date!
Adobe Flash Player 10.0.45.2 Flash Player out of Date!
Adobe Reader 9 Adobe Reader out of date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Windows Defender MSMpEng.exe
Ad-Aware AAWService.exe
Ad-Aware AAWTray.exe
Microsoft Security Essentials msseces.exe
Microsoft Security Client Antimalware MsMpEng.exe
Microsoft Security Client Antimalware NisSrv.exe
``````````End of Log````````````

#9 dobbins92

dobbins92
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 AM

Posted 15 January 2012 - 10:48 PM

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Logitech SetPoint.lnk" "Logitech SetPoint Event Manager (UNICODE)" "Logitech, Inc." "c:\program files\logitech\setpoint\setpoint.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVS Video Converter 6" "AVS Video Converter Shell Extension" "Online Media Technologies Ltd." "c:\program files\avs4you\avsvideoconverter6\avsvideoconvertershext.dll"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "LavasoftShellExt" "Shell Extension " "Lavasoft Limited" "c:\program files\lavasoft\ad-aware\shellext.dll"
+ "ShellConverter" "AVSShellConverter ActiveX DLL" "Online Media Technologies Ltd." "c:\program files\common files\avsmedia\activex\avsshellconverter.dll"
+ "WDBackupMenuHandler" "WDContextMenuHandler.dll" "Western Digital" "c:\program files\western digital\wd smartware\wdcontextmenuhandler.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "WDBackupPropSheetHandler" "WDContextMenuHandler.dll" "Western Digital" "c:\program files\western digital\wd smartware\wdcontextmenuhandler.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes' Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "Monitor" "BTNCopy Module" "Broadcom Corporation." "c:\windows\system32\btncopy.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "LavasoftShellExt" "Shell Extension " "Lavasoft Limited" "c:\program files\lavasoft\ad-aware\shellext.dll"
+ "MBAMShlExt" "Malwarebytes' Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "WDBackupMenuHandler" "WDContextMenuHandler.dll" "Western Digital" "c:\program files\western digital\wd smartware\wdcontextmenuhandler.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\PropertySheetHandlers" "" "" ""
+ "WDBackupPropSheetHandler" "WDContextMenuHandler.dll" "Western Digital" "c:\program files\western digital\wd smartware\wdcontextmenuhandler.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Ad-Aware Security Toolbar" "Ad-Aware Security Toolbar Link Library" "" "c:\program files\adawaretb\adawaredx.dll"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "WeCareReminder Class" "We-Care.com Browser Helper" "We-Care.com" "c:\programdata\wecarereminder\iehelperv2.5.0.dll"
+ "{D4027C7F-154A-4066-A1AD-4243D8127440}" "Ask.com Toolbar" "Ask.com" "c:\program files\ask.com\genericasktoolbar.dll"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" ""
+ "UrlSearchHook Class" "Ask.com Toolbar" "Ask.com" "c:\program files\ask.com\genericasktoolbar.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Ad-Aware Security Toolbar" "Ad-Aware Security Toolbar Link Library" "" "c:\program files\adawaretb\adawaredx.dll"
+ "genericasktoolbar.dll" "Ask.com Toolbar" "Ask.com" "c:\program files\ask.com\genericasktoolbar.dll"
"Task Scheduler" "" "" ""
+ "\AdobeAAMUpdater-1.0-Matt-PC-Matt" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "\Microsoft\Microsoft Antimalware\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\antimalware\mpcmdrun.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
+ "\Norton Security Scan for Matt" "Norton Security Scan" "Symantec Corporation" "c:\program files\norton security scan\engine\3.1.1.6\nss.exe"
+ "\RegGenie v3.0 - Step 1" "" "" "c:\program files\reggenie\reggenieonreboot.exe"
+ "\RegGenie v3.0 - Step 2" "" "" "File not found: C:\Program Files\RegGenie\RegGenieOnRebootExpired.exe"
+ "\Scheduled Update for Ask Toolbar" "" "" "c:\program files\ask.com\updatetask.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeActiveFileMonitor5.0" "Tracks files that are managed by Adobe Photoshop Elements" "" "c:\program files\adobe\photoshop elements 5.0\photoshopelementsfileagent.exe"
+ "AdobeActiveFileMonitor8.0" "Tracks files that are managed by Elements Organizer" "Adobe Systems Incorporated" "c:\program files\adobe\elements organizer 8.0\photoshopelementsfileagent.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "btwdins" "Handles installation and removal of Bluetooth devices." "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\bin\btwdins.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqddsvc.dll"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "Lavasoft Ad-Aware Service" "Lavasoft Ad-Aware Service" "Lavasoft Limited" "c:\program files\lavasoft\ad-aware\aawservice.exe"
+ "LBTServ" "Logitech Bluetooth Service" "Logitech, Inc." "c:\program files\common files\logishrd\bluetooth\lbtserv.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files\microsoft office\office14\groove.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\antimalware\msmpeng.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\antimalware\nissrv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "SwitchBoard" "Adobe SwitchBoard" "Adobe Systems Incorporated" "c:\program files\common files\adobe\switchboard\switchboard.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "androidusb" "ADB Interface" "Google Inc" "c:\windows\system32\drivers\ssadadb.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "btaudio" "Bluetooth Audio Device" "Broadcom Corporation." "c:\windows\system32\drivers\btaudio.sys"
+ "BTDriver" "Bluetooth BTPORT Driver for Windows 2000" "Broadcom Corporation." "c:\windows\system32\drivers\btport.sys"
+ "BTKRNL" "Bluetooth Bus Enumerator" "Broadcom Corporation." "c:\windows\system32\drivers\btkrnl.sys"
+ "BTWDNDIS" "Bluetooth LAN Access Server Driver" "Broadcom Corporation." "c:\windows\system32\drivers\btwdndis.sys"
+ "btwhid" "Bluetooth Virtual HID Minidriver" "Broadcom Corporation." "c:\windows\system32\drivers\btwhid.sys"
+ "BTWUSB" "Driver for Bluetooth USB Devices" "Broadcom Corporation." "c:\windows\system32\drivers\btwusb.sys"
+ "cpuz135" "" "" "File not found: C:\Users\Matt\AppData\Local\Temp\cpuz135\cpuz135_x32.sys"
+ "E100B" "Intel® PRO/100 Adapter NDIS 5.1 driver" "Intel Corporation" "c:\windows\system32\drivers\e100b325.sys"
+ "e1express" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1e6032.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "easytether" "EasyTether Network Driver" "Mobile Stream" "c:\windows\system32\drivers\easytthr.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "ivusb" "Initio Default Vendor Specific Device Driver" "Initio Corporation" "c:\windows\system32\drivers\ivusb.sys"
+ "JL2005C" "Universal Serial Bus Camera Driver" "Windows ® 2000 DDK provider" "c:\windows\system32\drivers\jl2005c.sys"
+ "Lbd" "Ad-Aware mini-filter driver" "Lavasoft AB" "c:\windows\system32\drivers\lbd.sys"
+ "LHidFilt" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhidfilt.sys"
+ "LMIInfo" "RemotelyAnywhere Kernel Information Provider" "LogMeIn, Inc." "c:\program files\logmein\x86\rainfo.sys"
+ "lmimirr" "LogMeIn Mirror Miniport Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\lmimirr.sys"
+ "LMIRfsDriver" "LogMeIn Rfs Drivemap Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\lmirfsdriver.sys"
+ "LMouFilt" "Logitech Mouse Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lmoufilt.sys"
+ "MBAMSwissArmy" "" "" "File not found: C:\Windows\system32\drivers\mbamswissarmy.sys"
+ "MpKsl93c741e9" "" "" "File not found: c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{19F9606E-9065-4A92-82E8-D7B00BD51CC6}\MpKsl93c741e9.sys"
+ "MpKsla4d70fcd" "KSLDriver" "Microsoft Corporation" "c:\programdata\microsoft\microsoft antimalware\definition updates\{e4e9e1fc-fba9-4bb7-a5f9-aa51b5067482}\mpksla4d70fcd.sys"
+ "MpKslbe362cc9" "" "" "File not found: c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3A1777CA-9159-435B-AC54-AB1D1361FF32}\MpKslbe362cc9.sys"
+ "MpKsld1806be3" "" "" "File not found: c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3F10DADA-8138-45A2-A6D2-F649EFC68C01}\MpKsld1806be3.sys"
+ "nuvaud2" "Nogatech USBVision Streaming Class Driver" "Nogatech Ltd." "c:\windows\system32\drivers\nuvaud2.sys"
+ "nuvvid2" "Nogatech USBVision Streaming Class Driver" "Nogatech Ltd." "c:\windows\system32\drivers\nuvvid2.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 197.28 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "papycpu" "" "" "File not found: C:\Windows\System32\Drivers\papycpu.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "QCEmerald" "Video Minidriver" "Logitech Inc." "c:\windows\system32\drivers\lvce.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "ssadbus" "SAMSUNG Android USB Composite Device Driver" "MCCI Corporation" "c:\windows\system32\drivers\ssadbus.sys"
+ "ssadmdfl" "SAMSUNG Android USB Modem (Filter)" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdfl.sys"
+ "ssadmdm" "SAMSUNG Android USB Modem Drivers" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdm.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "VST_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv3.sys"
+ "VSTHWBS2" "HSF_HWB2 WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstbs23.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam.sys"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt3.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.ac3acm" "AC-3 ACM Codec" "fccHandler" "c:\windows\system32\ac3acm.acm"
+ "msacm.ac3filter" "" "" "c:\windows\system32\ac3filter.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.lameacm" "Lame MP3 codec engine" "http://www.mp3dev.org/" "c:\windows\system32\lameacm.acm"
+ "msacm.sl_anet" "Audio codec for MS ACM" "Sipro Lab Telecom Inc." "c:\windows\system32\sl_anet.acm"
+ "MSVideo" "Logitech USB Video Camera" "Logitech Inc." "c:\windows\system32\lvfwwdmt.dll"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.dvsd" "Stub DV Compression Manager" "Adaptec" "c:\windows\system32\dvc.dll"
+ "VIDC.FFDS" "" "" "c:\windows\system32\ff_vfw.dll"
+ "VIDC.I420" "" "" "File not found: msh263.drv"
+ "VIDC.JDCT" "JEILIN JDCT Decompressor" "JEILIN Tech." "c:\windows\system32\jl_jdct.drv"
+ "VIDC.NTN1" "NUVision Extension DLL" "Nogatech Ltd." "c:\windows\system32\nuvision.ax"
+ "VIDC.XVID" "" "" "c:\windows\system32\xvidvfw.dll"
+ "VIDC.YV12" "Helix YV12 YUV Codec" "www.helixcommunity.org" "c:\windows\system32\yv12vfw.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Ligos MPEG Splitter" "MPEG Parser Filter" "Ligos Corporation" "c:\windows\system32\mpeg2parser.ax"
+ "MainConcept (Adobe2) AVC/H.264 Video Encoder" "AVC/H.264 Video Encoder DirectShow Filter" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2h264ve.ax"
+ "MainConcept (Adobe2) MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2mpgdmx.ax"
+ "MainConcept (Adobe2) MPEG Push Demultiplexer" "MPEG Push Demultiplexer" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2mpgpdmx.ax"
+ "RDX Video Renderer" "Intel RDX: Video Renderer" "Intel Corporation" "c:\windows\system32\rdxvid.ax"
+ "VideoWave AWR Filter" "VideoWave AWR" "MGI Software Corp" "c:\program files\mgi\videowave\mvwawr.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "AC3File" "" "" "c:\program files\k-lite codec pack\filters\ac3file.ax"
+ "AC3Filter" "ac3filter" "" "c:\program files\ac3filter\ac3filter.ax"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files\google\google earth\client\wavdest.ax"
+ "AudioFlt" "AudioFlt Filter" "MGI Software Corp." "c:\program files\mgi\videowave\audf.dll"
+ "AVS Video Out" "AVSVideoOutFilter DirectShow Filter" "Online Media Technologies Ltd" "c:\program files\common files\avsmedia\activex\avsvideooutfilter3.ax"
+ "Axis MPEG Audio Transform" "MPEG Audio Transform Filter" "Axis Communications" "c:\program files\axis communications\components\mpegaudiotransformfilter.ax"
+ "Axis MPEG HTTP Stream Source" "HTTP Stream Source Filter" "Axis Communications" "c:\program files\axis communications\components\httpstreamsourcefilter.ax"
+ "AXIS Picture Events" "AXIS Picture Events Filter" "Axis Communications" "c:\program files\axis communications\components\axpiceventsfilter.ax"
+ "Axis Time Shifter" "TimeShifter" "Axis Communications AB" "c:\program files\axis communications\components\axistimeshifter.ax"
+ "AxisRTPSrcFilter" "AXIS RTP Source Filter" "Axis Communications" "c:\program files\axis communications\components\axisrtpsrcfilter.ax"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "CDDA Reader" "CDDA Reader Filter" "Gabest" "c:\program files\cd audio reader filter\cddareader.ax"
+ "DC-Bass Source" "DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files\k-lite codec pack\filters\dcbasssource.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\program files\k-lite codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\program files\k-lite codec pack\filters\vsfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files\k-lite codec pack\filters\divxdech264.ax"
+ "DV Patch" "DVPatch" "MGI Software Corp." "c:\program files\mgi\videowave\dvpatch.dll"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "File Source (Monkey Audio)" "" "" "c:\program files\k-lite codec pack\filters\monkeysource.ax"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files\k-lite codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "HP VTK Frame Grabber Filter" "VideoToolKit" "Hewlett-Packard Development Co. L.P." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK MPEG-1 Encoder" "VideoToolKit" "Hewlett-Packard Development Co. L.P." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Resize Filter" "VideoToolKit" "Hewlett-Packard Development Co. L.P." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Rotate Filter" "VideoToolKit" "Hewlett-Packard Development Co. L.P." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "Ligos MPEG2 Video Decoder" "MPEG Decoder Filter" "Ligos Corporation" "c:\windows\system32\mpeg2decoder.ax"
+ "LogMeIn Video Decoder" "LogMeIn Video Codec" "LogMeIn, Inc." "c:\program files\logmein\x86\racodec.ax"
+ "LogMeIn Video Encoder" "LogMeIn Video Codec" "LogMeIn, Inc." "c:\program files\logmein\x86\racodec.ax"
+ "madFlac Decoder" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files\k-lite codec pack\filters\madflac.ax"
+ "madFlac Source" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files\k-lite codec pack\filters\madflac.ax"
+ "MainConcept (Adobe2) AAC Decoder" "AAC audio decoder filter" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2daac.ax"
+ "MainConcept (Adobe2) AAC Encoder" "AAC audio encoder filter" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2eaac.ax"
+ "MainConcept (Adobe2) AVC/H.264 Video Decoder" "AVC/H.264 Video Decoder" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2avcvd.ax"
+ "MainConcept (Adobe2) AVC/H.264 Video Encoder" "AVC/H.264 Video Encoder DirectShow Filter" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2h264ve.ax"
+ "MainConcept (Adobe2) DV Video Decoder" "DirectShow DV Video Encoder and Decoder" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2dsdv.ax"
+ "MainConcept (Adobe2) DV Video Encoder" "DirectShow DV Video Encoder and Decoder" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2dsdv.ax"
+ "MainConcept (Adobe2) MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2mpgdmx.ax"
+ "MainConcept (Adobe2) MPEG Push Demultiplexer" "MPEG Push Demultiplexer" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2mpgpdmx.ax"
+ "MainConcept (Adobe2) Stream Parser" "MPEG-1/2 Demultiplexer" "MainConcept AG" "c:\program files\adobe\elements organizer 8.0\caheadless\ad2mpgdmx.ax"
+ "MGI Source" "DVProduceFilter" "MGI Software Corp." "c:\program files\mgi\videowave\dvsrcfilter.dll"
+ "MGI Switcher" "MGI FilterGraph Routing filter" "MGI Software Corp." "c:\program files\mgi\videowave\mgiswitcher.dll"
+ "MGI WAV Dest" "MGI Filter" "MGI Software Corp." "c:\program files\mgi\videowave\wavhead.dll"
+ "MONOGRAM Musepack Decoder" "mmmpcdec" "" "c:\program files\k-lite codec pack\filters\mmmpcdec.ax"
+ "MONOGRAM Musepack Splitter" "mmmpcdmx" "" "c:\program files\k-lite codec pack\filters\mmmpcdmx.ax"
+ "MPC - DTS/AC3/DD+ Source" "DTS/AC3 Source Filter" "Gabest" "c:\program files\opensource dtsac3dd+ source filter\dtsac3source.ax"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\flvsplitter.ax"
+ "MPC - MP4 Source" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - MP4 Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - MPEG4 Video Source" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - MPEG4 Video Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Nogatech Audio Capture" "NUVision Extension DLL" "Nogatech Ltd." "c:\windows\system32\nuvision.ax"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\program files\realmedia\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\program files\realmedia\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\program files\realmedia\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\program files\realmedia\realmediasplitter.ax"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "rmbeep" "DV Beep Filter" "MGI Software Corp." "c:\program files\mgi\videowave\rmbeep.dll"
+ "Sewer" "VWcDSutil" "MGI Software Corp." "c:\program files\mgi\videowave\vwcdsutil.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files\k-lite codec pack\filters\vp7dec.ax"
+ "Track1Filter" "" "" "c:\program files\adobe\photoshop elements 5.0\track1filter.dll"
+ "Track1Filter" "Adobe Photoshop Elements 8.0 (component)" "Adobe Systems Incorporated" "c:\program files\adobe\elements organizer 8.0\track1filter.dll"
+ "Track2Filter" "Adobe Photoshop Elements 8.0 (component)" "Adobe Systems Incorporated" "c:\program files\adobe\elements organizer 8.0\track2filter.dll"
+ "Track2Filter" "" "" "c:\program files\adobe\photoshop elements 5.0\track2filter.dll"
+ "TrueMotion 2.0 Decompressor" "TrueMotion 2.0 Decompressor" "The Duck Corporation" "c:\windows\system32\tm20dec.ax"
+ "VideoWave Audio Grab" "VideoWave Frame Grabber" "MGI Software Corp." "c:\program files\mgi\videowave\fsource.dll"
+ "VideoWave AWR Filter" "VideoWave AWR" "MGI Software Corp" "c:\program files\mgi\videowave\mvwawr.ax"
+ "VideoWave ImgCap Source Filter" "VideoWave SeqCap Dropper" "MGI Software Corp." "c:\program files\mgi\videowave\vwseqcap.dll"
+ "VideoWave Quick Grab" "VideoWave Frame Grabber" "MGI Software Corp." "c:\program files\mgi\videowave\fsource.dll"
+ "VideoWave SeqCap Filter" "VideoWave SeqCap Dropper" "MGI Software Corp." "c:\program files\mgi\videowave\vwseqcap.dll"
+ "VideoWave SeqCap Source Filter" "VideoWave SeqCap Dropper" "MGI Software Corp." "c:\program files\mgi\videowave\vwseqcap.dll"
+ "VideoWave Video Grab" "VideoWave Frame Grabber" "MGI Software Corp." "c:\program files\mgi\videowave\fsource.dll"
+ "VW Scene Detector" "Video Filter" "MGI Software Corp" "c:\program files\mgi\videowave\scenedetectfilt.dll"
+ "VW4 MediaPlacer" "VW4 MediaPlacer Filter" "MGI Software Corp" "c:\program files\mgi\videowave\mediaplacer.dll"
+ "VW4 MJPEG Decoder" "VW4 MJPEG Decoder" "MGI Software Corp" "c:\program files\mgi\videowave\mjpeg.dll"
+ "VW4 Video Scale Filter" "Video Scale Filter" "MGI Software Corp" "c:\program files\mgi\videowave\vidscalefilt.dll"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files\k-lite codec pack\filters\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files\k-lite codec pack\filters\wavpackdssplitter.ax"
+ "WebM VP8 Decoder Filter" "WebM VP8 Decoder Filter" "Google" "c:\program files\k-lite codec pack\filters\vp8decoder.dll"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute" "" "" ""
+ "lsdelete" "" "" "c:\windows\system32\lsdelete.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "LogMeInCredProv" "LogMeIn Remote Control Helper" "LogMeIn, Inc." "c:\windows\system32\lmiinit.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Bluetooth Printer Port" "bthcrp DLL" "Broadcom Corporation." "c:\windows\system32\bthcrp.dll"
+ "LogMeIn Printer Port Monitor" "RemotelyAnywhere Printer Port Monitor" "LogMeIn, Inc." "c:\windows\system32\lmiport.dll"
+ "PCL hpz3l5ha" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3l5ha.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "LMIRfsClientNP" "LogMeIn Virtual Disk Network" "LogMeIn, Inc." "c:\windows\system32\lmirfsclientnp.dll"
"C:\Users\Matt\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.gadget\en-US\Gadget.xml"
+ "Feed Headlines" "Track the latest news, sports, and entertainment headlines." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\RSSFeeds.Gadget\en-US\Gadget.xml"
+ "Slide Show" "Show a continuous slide show of your pictures." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\SlideShow.Gadget\en-US\Gadget.xml"

#10 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:09 PM

Posted 16 January 2012 - 05:52 AM

Please edit your hosts file and remove the entries for Adobe so you can successfully update your adobe products.

Please remove the Ask Toolbar as well

Edited by cryptodan, 16 January 2012 - 05:54 AM.


#11 dobbins92

dobbins92
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:09 AM

Posted 17 January 2012 - 11:26 PM

Ok I removed the Ask toolbar. It wasnt listed in the program list but I used the cleanup tool in the link and it removed the remnants of it. Also reset hosts file with Microsoft Fit It. Any other suggetions? It still has the growing memory usage fot iexplore. Btw thanks for all the help. I really appreciate it.

#12 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:09 AM

Posted 18 January 2012 - 09:08 AM

Having two antivirus products installed running real time protection can actually reduce the level of protection. Additionally, there is the real possibility of data loss from a system crash which could result. I recommend uninstalling one of these:
Ad-Aware...or
Microsoft Security Essentials
...if it were my system, I would opt to keep the Microsoft Security Essentials and uninstall the Ad-Aware. MSE has a much smaller foot print yet is fully automated and does as good, if not better, than Ad-aware.

You've no doubt seen the out dated software mentioned in the log. Those sparse few mentioned are but the beginning. The system has other out dated and exploited software installed. Just for example, the Adobe products...of which you have at least two readers. The Adobe Reader 4 is 13 years old. You can see Here just how far down the list it is. It's a daunting task, but you could find any of the security bulletins issued over the years, for the adobe products you have installed Here. More specifically, you can read Here just how many security bulletins for Adobe reader 4 were issued over the years.

All that said, it's my expressed opinion that the system is infected...and I believe your issue relates to the presence of:
LimeWire 5.5.16 (Version: 5.5.16)
...that alone can certainly cause the issue you have described just from having it installed using it's default settings, not to mention the wide variety of possible infections that result from it's use.

All this, combined with the presence of this program:
LogMeIn (Version: 4.1.1558)
...especially if you didn't install it, is like advertising, "here is my pc, come and get it if you want it".

The program LogMeIn, by itself, is not malicious in the least. However, one can reason from what happened to the user in This Thread, that having it installed and unprotected, the system then belongs to someone else. The best practice for the use of such programs as LogMeIn, is to create Strong Passwords.

My suggestion for you is to follow the guidance Here and post the recommended logs. You should include a link to this thread so your helper can see what has already been recommended for you. Someone will come along to assist you as time permits.

Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users