Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Having problems removing Speedbit


  • This topic is locked This topic is locked
1 reply to this topic

#1 MarcusW

MarcusW

  • Members
  • 73 posts
  • OFFLINE
  •  
  • Local time:06:01 PM

Posted 22 February 2012 - 11:12 AM

I was requested by Beepmo to download DDS.SCR file but for some unknown reason was unable to despite several clicks on download links.
As a result I was asked to use OTL.EXE. The files that were generated for this are as shown:

Before I begin I have been instructed to say that I could not download DDS.SCR so had to use OTL.EXE as instructed. Reports generated are as shown.

Basically I cannot remove some program called Speedbit. Attempts to delete it through proper channels unsuccessful as there is no uninstall entry for the program in add/remove programs.
Attempts to remove the folder containing the program and files have not been successful. There is no uninstaller for the program, there is also no means of removing the program properly using an alternative means such as Revouninstaller or Ashampoo uninstaller. Direct removal of folder via safe mode - though not the best idea - was met with being able to appear connected to the internet, but unable to load any webpage whatsoever in normal mode.

OTL logfile created on: 22/02/2012 12:57:21 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Users\Sam\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.97 Gb Total Physical Memory | 2.87 Gb Available Physical Memory | 72.47% Memory free
7.93 Gb Paging File | 6.71 Gb Available in Paging File | 84.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74.43 Gb Total Space | 6.51 Gb Free Space | 8.74% Space Free | Partition Type: NTFS
Drive E: | 1863.01 Gb Total Space | 1396.07 Gb Free Space | 74.94% Space Free | Partition Type: NTFS
Drive F: | 3.69 Gb Total Space | 3.31 Gb Free Space | 89.91% Space Free | Partition Type: FAT32
Drive I: | 14.83 Gb Total Space | 9.50 Gb Free Space | 64.03% Space Free | Partition Type: FAT32

Computer Name: SAM-PC | User Name: Sam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Sam\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies LTD)
PRC - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
PRC - E:\Program Files (x86)\Freecorder\FLVSrvc.exe (Applian Technologies, Inc.)
PRC - C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (DT Soft Ltd)


========== Modules (No Company Name) ==========


========== Win32 Services (SafeList) ==========

SRV:64bit: - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV:64bit: - (IswSvc) -- C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe (Check Point Software Technologies)
SRV:64bit: - (TabletServicePen) -- C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.)
SRV:64bit: - (TouchServicePen) -- C:\Program Files\Tablet\Pen\Pen_TouchService.exe (Wacom Technology, Corp.)
SRV:64bit: - (ZuneWlanCfgSvc) -- C:\Program Files\Zune\ZuneWlanCfgSvc.exe (Microsoft Corporation)
SRV:64bit: - (WMZuneComm) -- C:\Program Files\Zune\WMZuneComm.exe (Microsoft Corporation)
SRV:64bit: - (ZuneNetworkSvc) -- C:\Program Files\Zune\ZuneNss.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (VideoAcceleratorService) -- C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe (SpeedBit Ltd.)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (Sony SCSI Helper Service) -- C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe (Sony Corporation)
SRV - (vsmon) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies LTD)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (UI Assistant Service) -- C:\Program Files (x86)\T-Mobile Mobile Broadband Manager\AssistantServices.exe ()
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (YahooAUService) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)


========== Driver Services (SafeList) ==========

DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr.sys (AVAST Software)
DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
DRV:64bit: - (ISWKL) -- C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys (Check Point Software Technologies)
DRV:64bit: - (SRS_AE_Service) -- C:\Windows\SysNative\drivers\SRS_AE_amd64.sys ()
DRV:64bit: - (JMCR) -- C:\Windows\SysNative\drivers\jmcr.sys (JMicron Technology Corporation)
DRV:64bit: - (wacommousefilter) -- C:\Windows\SysNative\drivers\wacommousefilter.sys (Wacom Technology)
DRV:64bit: - (wacomvhid) -- C:\Windows\SysNative\drivers\wacomvhid.sys (Wacom Technology)
DRV:64bit: - (Vsdatant) -- C:\Windows\SysNative\drivers\vsdatant.sys (Check Point Software Technologies LTD)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (rtl8192se) -- C:\Windows\SysNative\drivers\rtl8192se.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (Revoflt) -- C:\Windows\SysNative\drivers\revoflt.sys (VS Revo Group)
DRV:64bit: - (SRS_SSCFilter) SRS Labs Audio Sandbox (WDM) -- C:\Windows\SysNative\drivers\SRS_SSCFilter_amd64.sys ()
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (LPCFilter) -- C:\Windows\SysNative\drivers\LPCFilter.sys (COMPAL ELECTRONIC INC.)
DRV:64bit: - (Thpevm) -- C:\Windows\SysNative\drivers\Thpevm.sys (TOSHIBA Corporation)
DRV:64bit: - (PGEffect) -- C:\Windows\SysNative\drivers\PGEffect.sys (TOSHIBA Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (ZTEusbnmea) -- C:\Windows\SysNative\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV:64bit: - (ZTEusbser6k) -- C:\Windows\SysNative\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV:64bit: - (ZTEusbmdm6k) -- C:\Windows\SysNative\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV:64bit: - (massfilter) -- C:\Windows\SysNative\drivers\massfilter.sys (ZTE Incorporated)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation )
DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\drivers\TVALZ_O.SYS (TOSHIBA Corporation)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.my-tools-app.com/?babsrc=home&s=web&as=0&isid=9851
IE - HKLM\..\URLSearchHook: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {91da5e8a-3318-4f8c-b67e-5964de3ab546} - C:\Program Files (x86)\ZoneAlarm_Security\prxtbZone.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://uk.msn.com/?ocid=ie9fr"
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledItems: wrc@avast.com:6.0.1367


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: E:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: E:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@sony.com/ReaderDesktop: E:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.1: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Sam\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Sam\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\PROGRAM FILES\CHECKPOINT\ZAFORCEFIELD\TRUSTCHECKER [2012/02/08 22:23:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker [2011/12/23 15:50:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: E:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/01/25 09:48:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/12/23 15:02:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.27\extensions\\Components: E:\Program Files (x86)\Mozilla Firefox 3\components [2012/02/18 14:19:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.27\extensions\\Plugins: E:\Program Files (x86)\Mozilla Firefox 3\plugins [2012/02/18 14:19:36 | 000,000,000 | ---D | M]

[2012/02/18 14:19:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sam\AppData\Roaming\mozilla\Extensions
[2012/02/18 14:19:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sam\AppData\Roaming\mozilla\Firefox\Profiles\1i7zt7ae.default\extensions
[2011/12/23 15:02:13 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2012/01/25 09:48:10 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- E:\PROGRAM FILES (X86)\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Sam\AppData\Local\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Sam\AppData\Local\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Sam\AppData\Local\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: WacomTabletPlugin (Enabled) = C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
CHR - plugin: npFFApi (Enabled) = C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Sam\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = E:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = E:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Reader Application Detector (Enabled) = E:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: A Quotation = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aafpohheobbibbehfjogminpinjhlpmg\0.8_0\
CHR - Extension: Bejeweled = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm\2_0\
CHR - Extension: Radio = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\agljkoinmcdnopnlbhhjibjiablccgoh\1.0.53_0\
CHR - Extension: BIODIGITAL HUMAN = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak\0.9.5_0\
CHR - Extension: Hindu Calendar = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkomhomdfmaaepfomgajlfdinoejcom\1.0.0.4_0\
CHR - Extension: Xmarks Bookmark Sync = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla\1.0.17_0\
CHR - Extension: Theme Creator = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc\2.4_0\
CHR - Extension: Turn Off the Lights = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.0.0.53_0\
CHR - Extension: YouTube = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: My IP address = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccfphbgnmmhjfalloifioeeeokjemobf\1.24_0\
CHR - Extension: Adblock Plus (Beta) = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\
CHR - Extension: Webpage Screenshot = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki\5.4.7.4_0\
CHR - Extension: Tab Position Customizer = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\cldflinjcjehpjddjkohganfpjlnbpem\2.7_0\
CHR - Extension: Look of Disapproval = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmomlddchhdnchpieaalgkpgaafohlbn\2.2_0\
CHR - Extension: Online Guitar Tuner = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnemellbcpjiodfgadpoebbjobfaoiga\1.1.6_0\
CHR - Extension: Google Search = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: Panda Poet = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\daicmhhkdcccfobnkidlhnieapcikadf\6_0\
CHR - Extension: the quiet place = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbbkjidgehnkkhcppdpnicohbhblkfdp\1.1_0\
CHR - Extension: Fun Switcher = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddeoimiimmmfddbiggnbipkjomlalanb\0.0.0.3_0\
CHR - Extension: Guitar Tuner = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhglmpmegfnbclojedloihcbkemoiddi\2.2_0\
CHR - Extension: FlashCards = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\diejjofgldkjkhmfjagdjdodjebpglhb\2.6.8.8_0\
CHR - Extension: Gravity Guy = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmebjapjejlljdkljgalddmhkecajmga\2.0.1_0\
CHR - Extension: Solitairey = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\dofbnmhnoodmmlhflbcihicmbnhhinhp\2.2.4.16_0\
CHR - Extension: Pixlr-o-matic = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj\1.2_0\
CHR - Extension: Facebook Disconnect = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec\1.2.1_0\
CHR - Extension: MediaPlus = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\emaamodndfmmmcjepfigalbjjjemadom\2.0.418.1_0\
CHR - Extension: Skip ads on YouTube - No illegal block = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbmnbdplhcomkedpjfceakddnbgfjmf\1.42_0\
CHR - Extension: Aviary Music Creator = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\fafdknjemckbfdklihiolhgkibiedige\0.0.0.6_0\
CHR - Extension: PanicButton = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\0.14.1.2_0\
CHR - Extension: Radioplayer = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcppdfelojakeahklfgkjegnpbgndoch\0.92_0\
CHR - Extension: Tower Bloxx = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\feenhhlnoeiedpionhicchalciagjflg\1.0.3_0\
CHR - Extension: Digital Clock = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.9_0\
CHR - Extension: FakeSiri = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdpdjbjioohmgdhmegcbnodpdcamhpj\4.5_0\
CHR - Extension: Bundy Adds Character = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggmmfomlmhggbjlpdhpmedagggfldjfg\1.0.7_0\
CHR - Extension: Planetarium = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp\1.1.1_0\
CHR - Extension: Click&Clean = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod\7.8.2.0_0\
CHR - Extension: Demolition City 2 = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\giicdeippcojpajolpbpmfohcpppihll\2.0.1_0\
CHR - Extension: TinEye Reverse Image Search = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.1_0\
CHR - Extension: TweetDeck = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl\1.1.3_0\
CHR - Extension: Guitar Tuner = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbenbgblhhlecmfechhfecgioakobfdl\3.0.0.2_0\
CHR - Extension: Creatures & Castles = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpeacgpdnhofhebmincihdelcemhagd\2.0_0\
CHR - Extension: R\u00E9gis D\u00E9camps = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\hompjdfbfmmmgflfjdlnkohcplmboaeo\1.2.3_0\
CHR - Extension: Cool Clock = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\icegcmhgphfkgglbljbkdegiaaihifce\2.1_0\
CHR - Extension: MLB.com Scoreboard = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ignfgamliophfaggapcolfgjiekgppld\0.1.1_0\
CHR - Extension: Color Piano = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmigmmflfcbhdpdgbkkeojchjhhphnh\0.3.2.12_0\
CHR - Extension: Glitterboo = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikkpgihagilojnkmkkfcbhlainmnkicp\1.1.3_0\
CHR - Extension: Brain Waves = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaikojchkbhnichnjehbhbloaiapifmk\3.0_0\
CHR - Extension: Typing Test - KeyHero = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcieoaeooeidmpaopkpjpjfakidlabm\1.3.1_0\
CHR - Extension: Unblock VEVO = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmljoamgmapphjnmilmpljddaplckpmo\1.2_0\
CHR - Extension: Guitar Chords = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\khomgpcobndmjkfpoccmfnimbghlciea\0.3.6.16_0\
CHR - Extension: Chromium Wheel Smooth Scroller = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb\1.0.27_0\
CHR - Extension: Steambirds: Survival = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcdhpokmalcfjnfkjlfncgekebcojinn\1.0_0\
CHR - Extension: AudioSauna = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae\0.200_0\
CHR - Extension: FlashControl = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidmkgnfgnkihnjeklbekckimkipmoe\2.11.2_0\
CHR - Extension: DSL speedtest = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\mibbfkdeofpfmkclkgjfnjppdblhpddj\1.1_0\
CHR - Extension: Doodle God 2 = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkchmmhaombnfciggcckaknfekaneapj\2.2.2_0\
CHR - Extension: Click to activate/deactivate ProxTube = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkdbaehcjcomcnnjhlmnfddpgoafpcko\1.0.6_0\
CHR - Extension: White Noise = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\mojghcdfgefcmgfidkgcamadlmaghfcm\1.6_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Hover Zoom = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl\3.8_0\
CHR - Extension: CCTV View = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\oajmcmcpiboagipoflploplebgicaadj\1.0.9.2_0\
CHR - Extension: Nyan Cat Lost In Space = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocolcbginmpjiobmipdgimnpeplgbghg\1.2_0\
CHR - Extension: Picky Wallpapers = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\odklcfojpedohplkimfdpcamkjnhanaj\1.0.0_0\
CHR - Extension: Guitar Pro Viewer = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohfbgfemjdpbnddbahbanipoblngdpmo\0.3.100_0\
CHR - Extension: PhotoFit Me = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpbdnchfplfpdjbckgbmpnddnjdijjk\1.0.0.4_0\
CHR - Extension: Gmail = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: Wolf Toss = C:\Users\Sam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjlncddmdljpioccbmempchonhlifakc\1.1.2.6_0\

O1 HOSTS File: ([2012/01/31 19:24:42 | 000,002,395 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 3dns.adobe.com
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-5.adobe.com
O1 - Hosts: 127.0.0.1 hh-software.com
O1 - Hosts: 127.0.0.1 www.hh-software.com
O1 - Hosts: 127.0.0.1 activate.adobe.de
O1 - Hosts: 30 more lines...
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (ZoneAlarm Security Engine Registrar) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O2 - BHO: (Freecorder Toolbar) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll (Conduit Ltd.)
O2 - BHO: (myYearbook Toolbar BHO) - {180E37B8-072D-48E4-800D-F353EE800672} - C:\Program Files (x86)\myYearbook Toolbar\Toolbar.dll File not found
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - E:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (ZoneAlarm Security Engine Registrar) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (ZoneAlarm Security Toolbar) - {91da5e8a-3318-4f8c-b67e-5964de3ab546} - C:\Program Files (x86)\ZoneAlarm_Security\prxtbZone.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKLM\..\Toolbar: (Freecorder Toolbar) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (ZoneAlarm Security Toolbar) - {91da5e8a-3318-4f8c-b67e-5964de3ab546} - C:\Program Files (x86)\ZoneAlarm_Security\prxtbZone.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (myYearbook Toolbar) - {B05CABA4-89F3-410B-8471-6BC0EDC8C91F} - C:\Program Files (x86)\myYearbook Toolbar\Toolbar.dll File not found
O3 - HKLM\..\Toolbar: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\..\Toolbar\WebBrowser: (Freecorder Toolbar) - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - C:\Program Files (x86)\Freecorder\prxtbFree.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\..\Toolbar\WebBrowser: (ZoneAlarm Security Toolbar) - {91DA5E8A-3318-4F8C-B67E-5964DE3AB546} - C:\Program Files (x86)\ZoneAlarm_Security\prxtbZone.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\..\Toolbar\WebBrowser: (myYearbook Toolbar) - {B05CABA4-89F3-410B-8471-6BC0EDC8C91F} - C:\Program Files (x86)\myYearbook Toolbar\Toolbar.dll File not found
O3:64bit: - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\..\Toolbar\WebBrowser: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\..\Toolbar\WebBrowser: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Freecorder FLV Service] E:\Program Files (x86)\Freecorder\FLVSrvc.exe (Applian Technologies, Inc.)
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe (TOSHIBA Electronics, Inc.)
O4 - HKLM..\Run: [ZoneAlarm] C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMorePrograms = 0
O7 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCloseDragDropBands = 0
O7 - HKU\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {99FE5072-78AA-4FEE-89BA-69A5FA55343F} http://download.microsoft.com/download/B/3/A/B3A2EA73-793D-4ABE-992D-C81140384044/igdtoolx.cab (IGDTester Class)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E6A490CC-CCA1-402E-93CB-BF58BC615DDA}: DhcpNameServer = 192.168.22.22 192.168.22.23
O18:64bit: - Protocol\Handler\gopher - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/22 10:29:15 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Users\Sam\Desktop\OTL.exe
[2012/02/22 01:50:32 | 000,000,000 | ---D | C] -- C:\Users\Sam\Desktop\Can't remove Rootkit.Win32.TDSS.d virus AVForums.com - UK Online_files
[2012/02/22 01:07:30 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{0D4E62CE-BC19-4E78-87D8-8D145A3BE7B6}
[2012/02/22 01:07:22 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{65A045E1-1FAD-4346-A260-30FA638C43B2}
[2012/02/22 01:03:33 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{DF152C52-9B2B-4DF5-9350-BAC55D1A68BE}
[2012/02/22 00:53:17 | 000,000,000 | ---D | C] -- C:\Users\Sam\Desktop\Qubadboybleep
[2012/02/22 00:11:50 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\VS Revo Group
[2012/02/22 00:11:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2012/02/22 00:11:43 | 000,031,800 | ---- | C] (VS Revo Group) -- C:\Windows\SysNative\drivers\revoflt.sys
[2012/02/21 19:22:13 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\CrashDumps
[2012/02/21 12:49:46 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{9791232C-CFD0-4B9E-9480-B398D5A4D0CA}
[2012/02/21 12:49:42 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{20925A52-81A2-4B7F-9EA7-1A372F2B14B4}
[2012/02/21 10:07:50 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\Freecorder
[2012/02/21 08:55:09 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\Notes
[2012/02/21 00:01:25 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{45820AA9-5A58-47F7-9EA5-69F073DB786C}
[2012/02/21 00:01:20 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{F74794D6-04F1-44E9-AF26-46FEB0920D4C}
[2012/02/20 21:04:20 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\MAGIX downloads
[2012/02/20 21:02:06 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\MAGIX_Screenshare
[2012/02/20 21:01:24 | 000,917,504 | ---- | C] (MAGIX AG) -- C:\Windows\SysWow64\MXRestore.exe
[2012/02/20 21:01:10 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\MAGIX_Speed2_burnR_mxcdr
[2012/02/20 21:00:42 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml4a.dll
[2012/02/20 21:00:30 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\MAGIX_MusicMaker16Premium_Download_Version
[2012/02/20 20:59:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MAGIX
[2012/02/20 20:58:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MAGIX Services
[2012/02/20 09:32:28 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{7EAE42DA-396E-46A5-8334-FCFCB55F8084}
[2012/02/20 09:32:22 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{D77D1452-950C-457A-BE33-F6DB72AC5486}
[2012/02/19 21:04:39 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Pixlromatic
[2012/02/19 21:04:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixlr
[2012/02/19 17:35:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MidiNotate Player for HitTrax
[2012/02/19 17:35:55 | 000,284,032 | ---- | C] (Xceed Software Inc (450) 442-2626 zip@xceedsoft.com www.xceedsoft.com) -- C:\Windows\SysWow64\XceedZip.dll
[2012/02/19 17:27:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photopixar
[2012/02/19 15:48:45 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{812D8C39-21B8-4127-9175-651D24F084EA}
[2012/02/19 15:48:34 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{DCCEA612-0441-45FB-9C0F-BF491CC41984}
[2012/02/19 10:05:11 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{35B631AE-B6A1-4EF2-9F31-971165135A0F}
[2012/02/19 04:23:59 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\SeriousBit
[2012/02/19 04:23:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnhanceMySe7en
[2012/02/19 00:56:47 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Speedbit
[2012/02/19 00:56:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedBit Video Accelerator
[2012/02/18 18:49:53 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{25624672-A28B-46B0-8643-67970A3B3F60}
[2012/02/18 18:49:49 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{ADCC08FA-EEA5-43F7-83DC-3EF124D82031}
[2012/02/18 14:24:26 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{5BA26D12-FEAC-4E6A-BE37-27CB57BBFF73}
[2012/02/18 14:19:41 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Mozilla
[2012/02/18 14:19:41 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Mozilla
[2012/02/18 12:06:03 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{023CDA12-D120-4765-B264-021D428C0594}
[2012/02/18 05:24:36 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/02/18 05:24:36 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/02/18 05:24:36 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012/02/18 05:24:36 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012/02/18 05:24:36 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012/02/18 05:24:36 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012/02/18 05:24:36 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/02/18 05:24:36 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012/02/18 05:24:36 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012/02/18 05:24:36 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012/02/18 05:24:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012/02/18 05:24:35 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012/02/18 05:24:35 | 002,308,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/02/18 05:24:35 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/02/18 05:24:35 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/02/18 05:24:35 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012/02/18 05:24:35 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012/02/18 05:24:35 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2012/02/18 05:24:35 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/02/18 05:24:35 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012/02/18 05:24:35 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2012/02/18 05:24:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2012/02/18 05:24:35 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/02/18 05:24:35 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012/02/18 05:24:35 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2012/02/18 05:24:35 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012/02/18 05:24:35 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012/02/18 05:24:35 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2012/02/18 05:24:35 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2012/02/18 05:24:35 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/02/18 05:24:35 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2012/02/18 05:24:35 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012/02/18 05:24:35 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2012/02/18 05:24:35 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012/02/18 05:24:35 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2012/02/18 05:24:35 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012/02/18 05:24:35 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/02/18 05:24:35 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012/02/18 05:24:35 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/02/18 05:24:35 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012/02/18 05:24:35 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2012/02/18 05:24:35 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012/02/18 05:24:35 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012/02/18 05:24:35 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2012/02/18 05:24:35 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/02/18 05:24:35 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012/02/18 05:24:35 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2012/02/18 05:24:35 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2012/02/18 05:24:34 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2012/02/18 05:24:34 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/02/18 05:24:34 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/02/18 05:24:34 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/02/18 05:24:34 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2012/02/18 05:24:34 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2012/02/18 05:24:34 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2012/02/18 05:24:34 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2012/02/18 05:24:34 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/02/18 05:24:34 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/02/18 05:24:34 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2012/02/18 05:24:34 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2012/02/18 05:24:34 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2012/02/18 05:24:34 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/02/18 05:24:34 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2012/02/18 05:24:34 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/02/18 05:24:34 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2012/02/18 05:24:34 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/02/18 05:24:34 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/02/18 05:24:34 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2012/02/18 05:24:34 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2012/02/18 05:24:34 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2012/02/18 05:24:34 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/02/18 05:24:34 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2012/02/18 00:06:23 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\SpeedMaxPc
[2012/02/18 00:06:23 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\DriverCure
[2012/02/18 00:02:36 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{463C83BB-7DD2-48A7-BAA7-9E6A587E1B4A}
[2012/02/18 00:02:30 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{6CF59C7B-D486-4238-B10B-0D8A66B704D8}
[2012/02/17 09:14:53 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012/02/17 09:14:44 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012/02/17 09:14:44 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012/02/17 09:14:36 | 000,634,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012/02/17 09:02:17 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{F3658F74-F763-4EE5-8441-02827F4940A0}
[2012/02/17 09:02:12 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{6CB24D6F-5DAE-42C2-B0F1-E4C53F36D491}
[2012/02/16 12:39:43 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{CC75EB40-F494-4067-BAEE-2FA510477C14}
[2012/02/16 12:39:34 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{0FD6CF78-73B6-45B5-A94F-AD5176AEBA9A}
[2012/02/16 11:09:32 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Stardock
[2012/02/16 11:09:22 | 000,000,000 | -H-D | C] -- C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
[2012/02/16 11:09:00 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\PackageAware
[2012/02/16 00:39:12 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{1FDFC051-6991-4321-9479-1393C54B45C0}
[2012/02/16 00:39:09 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{F881F5CA-DA8D-4665-AA69-C21F5D291D43}
[2012/02/15 08:30:22 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{5A9C6853-E1A1-4DB5-876A-2AF04FF15B61}
[2012/02/15 08:30:19 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{ACA6AA5E-7683-4F9E-9A51-8A81EEBA1790}
[2012/02/15 08:30:19 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{8AC3B80E-20FD-4738-9A6F-655DD8BCE609}
[2012/02/15 06:08:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker
[2012/02/15 00:40:32 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\CursorArts
[2012/02/14 23:49:02 | 000,328,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM_backup_w7abt.dll
[2012/02/14 23:49:02 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwm_backup_w7abt.exe
[2012/02/14 15:51:44 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2012/02/14 15:51:44 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2012/02/14 15:51:43 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2012/02/14 15:51:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012
[2012/02/14 15:51:25 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\TuneUp Software
[2012/02/14 15:51:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2012
[2012/02/14 15:50:23 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2012/02/14 15:50:08 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2012/02/14 14:54:02 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{85AED3C5-C635-4531-8C3B-3C4279935CA1}
[2012/02/14 14:53:57 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{00961FC5-6DF0-4F10-B4E7-9F73614F21AF}
[2012/02/14 09:13:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Service
[2012/02/14 07:37:26 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\MyMetro Designs
[2012/02/14 07:16:43 | 006,791,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspaint.exe
[2012/02/14 07:16:41 | 002,902,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/02/14 07:16:39 | 001,058,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\calc.exe
[2012/02/14 07:16:38 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2012/02/14 07:16:37 | 001,925,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2012/02/14 07:16:36 | 001,952,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagesp1.dll
[2012/02/14 07:16:15 | 041,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imageres.dll
[2012/02/14 07:16:14 | 002,256,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2012/02/14 07:16:14 | 002,256,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.backup.dll
[2012/02/14 07:16:13 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2012/02/14 07:16:11 | 001,717,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
[2012/02/14 07:16:11 | 000,748,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2012/02/14 07:16:10 | 000,805,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2012/02/14 06:47:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/02/14 06:47:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/02/14 06:46:52 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012/02/14 06:46:51 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/02/14 06:46:51 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/02/14 06:46:51 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012/02/14 06:46:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/02/14 06:14:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2012/02/14 06:04:49 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Codea
[2012/02/14 05:47:10 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\MetroTwit
[2012/02/14 05:47:05 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pixel Tucker Pty Ltd
[2012/02/14 00:35:53 | 000,035,008 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\drivers\PGEffect.sys
[2012/02/14 00:33:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TOSHIBA
[2012/02/14 00:00:46 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{672FE44A-1A1D-42DD-8C30-735C52E85F2B}
[2012/02/14 00:00:39 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{0C300173-696F-414B-A02D-5AB45D4D473A}
[2012/02/13 16:54:12 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{79CBDF1F-2107-4F5A-A2F2-D21B6B43F6F6}
[2012/02/13 05:07:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Freecorder
[2012/02/13 04:03:02 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{E6B774CF-20E8-4A6C-B964-1E60D87FD0D5}
[2012/02/13 04:02:51 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{DF85C073-C9F2-4F3B-8F17-4807365FDE92}
[2012/02/13 02:35:56 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\Rainmeter
[2012/02/13 02:35:56 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Rainmeter
[2012/02/13 02:35:48 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rainmeter
[2012/02/13 01:51:18 | 002,782,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer_backup.exe
[2012/02/13 00:43:35 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\MigWiz
[2012/02/12 16:02:25 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{E1A830E7-E60A-412E-9F96-91B2E646701A}
[2012/02/12 16:02:19 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{1332B6B9-46B7-40DC-93AF-E869BA8952AC}
[2012/02/12 09:45:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Little Piano
[2012/02/12 09:45:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Little Piano
[2012/02/12 09:45:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Little Piano
[2012/02/12 09:39:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guitar and Bass
[2012/02/12 09:39:25 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\Guitar and Bass
[2012/02/12 09:39:25 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Guitar and Bass
[2012/02/12 09:39:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Guitar and Bass
[2012/02/12 09:39:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Guitar and Bass
[2012/02/12 09:24:59 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\VolumeConcierge
[2012/02/12 09:24:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Volume Concierge
[2012/02/12 09:24:58 | 000,000,000 | ---D | C] -- C:\Program Files\Volume Concierge
[2012/02/12 09:23:34 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\FolderColorize
[2012/02/12 09:23:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Colorizer
[2012/02/12 09:23:22 | 000,000,000 | ---D | C] -- C:\Program Files\Folder Colorizer
[2012/02/12 09:04:49 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
[2012/02/12 04:53:23 | 000,000,000 | R--D | C] -- C:\Users\Sam\Podcasts
[2012/02/12 04:47:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Logs
[2012/02/12 04:24:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zune
[2012/02/12 04:23:46 | 000,000,000 | ---D | C] -- C:\Program Files\Zune
[2012/02/12 04:22:29 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
[2012/02/12 02:37:39 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{AED0F645-472D-4EED-B524-3E8D2A46CF9E}
[2012/02/12 02:37:35 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\{94891176-A556-4B60-8136-DC6F41B07F30}
[2012/02/12 02:23:04 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Windows Live
[2012/02/11 19:41:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\MetroClock
[2012/02/11 19:41:02 | 002,782,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.old
[2012/02/11 19:41:00 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2012/02/11 19:40:54 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
[2012/02/11 19:40:50 | 020,268,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imageres.dll
[2012/02/11 19:40:48 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2012/02/11 19:40:46 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2012/02/11 17:39:21 | 000,000,000 | ---D | C] -- C:\Users\Sam\Documents\EA Games
[2012/02/11 11:40:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MetroClock
[2012/02/11 11:32:59 | 000,000,000 | R--D | C] -- C:\Users\Sam\Documents\My Books
[2012/02/11 11:26:45 | 000,000,000 | R--D | C] -- C:\Users\Sam\Documents\ForceField Shared Files
[2012/02/11 09:33:56 | 000,000,000 | R--D | C] -- C:\Users\Sam\Documents\My Received Files
[2012/02/11 05:36:44 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Stardock
[2012/02/11 03:36:57 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Applian FLV and Media Player
[2012/02/11 03:36:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies
[2012/02/11 03:36:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Applian Technologies
[2012/02/10 02:07:36 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012/02/10 02:07:35 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012/02/10 02:07:34 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/02/10 02:07:33 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/02/10 02:07:04 | 001,739,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012/02/10 02:05:39 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012/02/10 02:05:39 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012/02/10 00:52:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack
[2012/02/10 00:52:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\C2MP
[2012/02/10 00:08:01 | 000,009,488 | ---- | C] (DSP GROUP, INC.) -- C:\Windows\SysWow64\tssoft32.acm
[2012/02/10 00:08:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bytescribe
[2012/02/09 04:43:19 | 000,107,864 | ---- | C] (TechSmith Corporation) -- C:\Windows\SysWow64\tsccvid.dll
[2012/02/09 04:43:17 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\QuickTime
[2012/02/09 04:43:09 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2012/02/09 04:43:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/02/09 04:43:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camtasia Studio 6
[2012/02/09 04:42:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\TechSmith Shared
[2012/02/09 02:57:29 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\SRS Labs
[2012/02/09 02:57:16 | 000,000,000 | ---D | C] -- C:\ProgramData\SRS Labs
[2012/02/09 02:52:03 | 000,000,000 | ---D | C] -- C:\Program Files\SRS Labs
[2012/02/09 01:03:04 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\DFX
[2012/02/09 01:02:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer
[2012/02/09 01:02:40 | 000,000,000 | ---D | C] -- C:\ProgramData\DFX
[2012/02/09 01:02:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DFX
[2012/02/08 03:42:06 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Police Force
[2012/02/07 02:39:02 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\DivX
[2012/02/07 02:38:32 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Babylon
[2012/02/07 02:38:30 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Babylon
[2012/02/07 02:38:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/02/07 02:37:20 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2012/02/04 21:33:14 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Animated Wallpaper Maker
[2012/02/04 18:03:21 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Animated Screensaver Maker
[2012/02/04 18:03:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Thraex Software
[2012/02/04 01:05:46 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\PriceGong
[2012/02/04 01:05:28 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\FCTB000059563
[2012/02/03 00:56:34 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Film Tools
[2012/02/03 00:56:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Digital Film Tools
[2012/02/03 00:56:31 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Film Tools
[2012/02/02 18:23:15 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Freecorder
[2012/02/02 07:30:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TablEdit 2
[2012/01/31 15:53:10 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\NCH Software
[2012/01/31 15:53:10 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Software
[2012/01/31 14:53:38 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Swift Sound
[2012/01/31 14:53:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PitchPerfect Musical Instrument Tuner
[2012/01/31 14:53:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs
[2012/01/28 19:13:20 | 000,586,240 | ---- | C] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysNative\LAVVideo.ax
[2012/01/28 19:13:20 | 000,552,448 | ---- | C] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysNative\LAVSplitter.ax
[2012/01/28 19:13:16 | 000,243,712 | ---- | C] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysNative\LAVAudio.ax
[2012/01/28 19:11:22 | 000,463,360 | ---- | C] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysWow64\LAVVideo.ax
[2012/01/28 19:11:22 | 000,460,800 | ---- | C] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysWow64\LAVSplitter.ax
[2012/01/28 19:11:18 | 000,213,504 | ---- | C] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysWow64\LAVAudio.ax
[2012/01/28 19:10:00 | 000,143,872 | ---- | C] (Intel Corp.) -- C:\Windows\SysWow64\IntelQuickSyncDecoder.dll
[2012/01/28 19:09:36 | 000,176,640 | ---- | C] (Intel Corp.) -- C:\Windows\SysNative\IntelQuickSyncDecoder.dll
[2012/01/28 11:20:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMR Player
[2012/01/28 11:20:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMR Player
[2012/01/27 14:17:40 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Yahoo!
[2012/01/27 09:04:19 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Roaming\Sony Corporation
[2012/01/27 09:04:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2012/01/27 09:04:12 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\kinoma
[2012/01/27 09:03:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reader for PC
[2012/01/27 09:03:17 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\Sony Corporation
[2012/01/27 09:03:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sony Shared
[2012/01/27 07:19:42 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/01/25 09:53:48 | 000,000,000 | ---D | C] -- C:\Users\Sam\AppData\Local\DDMSettings
[2012/01/25 09:48:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DivX
[2012/01/25 09:47:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2012/01/25 09:47:35 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2012/01/25 09:47:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DivX Shared
[2012/01/25 09:34:06 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/02/22 12:32:00 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1774957920-544101310-2912468747-1000UA.job
[2012/02/22 10:29:21 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Users\Sam\Desktop\OTL.exe
[2012/02/22 03:17:16 | 000,000,000 | ---- | M] () -- C:\Users\Sam\defogger_reenable
[2012/02/22 02:12:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/22 01:50:32 | 000,497,026 | ---- | M] () -- C:\Users\Sam\Desktop\Can't remove Rootkit.Win32.TDSS.d virus AVForums.com - UK Online.htm
[2012/02/22 00:11:44 | 000,000,800 | ---- | M] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2012/02/21 20:46:35 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/21 20:46:35 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/21 20:39:23 | 000,000,848 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1774957920-544101310-2912468747-1000Core.job
[2012/02/20 21:00:40 | 000,001,319 | ---- | M] () -- C:\Users\Public\Desktop\MAGIX Music Maker 16 Premium Download Version.lnk
[2012/02/19 21:07:05 | 000,878,751 | ---- | M] () -- C:\Users\Sam\Desktop\o-matic.jpg
[2012/02/19 21:04:34 | 000,000,775 | ---- | M] () -- C:\Users\Public\Desktop\Pixlr-o-matic.lnk
[2012/02/19 17:27:43 | 000,000,886 | ---- | M] () -- C:\Users\Public\Desktop\Photopixar.lnk
[2012/02/19 04:23:57 | 000,000,745 | ---- | M] () -- C:\Users\Public\Desktop\EnhanceMySe7en.lnk
[2012/02/19 03:29:35 | 000,000,193 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
[2012/02/18 14:19:43 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2012/02/18 11:33:00 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/02/18 05:24:36 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/02/18 05:24:36 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/02/18 05:24:36 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012/02/18 05:24:36 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012/02/18 05:24:36 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012/02/18 05:24:36 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012/02/18 05:24:36 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/02/18 05:24:36 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012/02/18 05:24:36 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012/02/18 05:24:36 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012/02/18 05:24:36 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012/02/18 05:24:36 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012/02/18 05:24:35 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012/02/18 05:24:35 | 002,308,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/02/18 05:24:35 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/02/18 05:24:35 | 000,818,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/02/18 05:24:35 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012/02/18 05:24:35 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012/02/18 05:24:35 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2012/02/18 05:24:35 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/02/18 05:24:35 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012/02/18 05:24:35 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2012/02/18 05:24:35 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2012/02/18 05:24:35 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/02/18 05:24:35 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012/02/18 05:24:35 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2012/02/18 05:24:35 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012/02/18 05:24:35 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012/02/18 05:24:35 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2012/02/18 05:24:35 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2012/02/18 05:24:35 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/02/18 05:24:35 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2012/02/18 05:24:35 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012/02/18 05:24:35 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2012/02/18 05:24:35 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012/02/18 05:24:35 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2012/02/18 05:24:35 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012/02/18 05:24:35 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/02/18 05:24:35 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012/02/18 05:24:35 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/02/18 05:24:35 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/02/18 05:24:35 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012/02/18 05:24:35 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2012/02/18 05:24:35 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012/02/18 05:24:35 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2012/02/18 05:24:35 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/02/18 05:24:35 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012/02/18 05:24:35 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2012/02/18 05:24:35 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2012/02/18 05:24:34 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2012/02/18 05:24:34 | 001,493,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/02/18 05:24:34 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/02/18 05:24:34 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/02/18 05:24:34 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2012/02/18 05:24:34 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2012/02/18 05:24:34 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2012/02/18 05:24:34 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2012/02/18 05:24:34 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/02/18 05:24:34 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/02/18 05:24:34 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2012/02/18 05:24:34 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2012/02/18 05:24:34 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2012/02/18 05:24:34 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/02/18 05:24:34 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2012/02/18 05:24:34 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/02/18 05:24:34 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2012/02/18 05:24:34 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/02/18 05:24:34 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/02/18 05:24:34 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2012/02/18 05:24:34 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2012/02/18 05:24:34 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2012/02/18 05:24:34 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2012/02/18 05:24:34 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/02/18 05:24:34 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2012/02/17 14:27:13 | 000,002,371 | ---- | M] () -- C:\Users\Sam\Desktop\Google Chrome.lnk
[2012/02/17 11:17:52 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/02/17 10:00:34 | 004,937,440 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/17 09:28:15 | 000,784,532 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/02/17 09:28:15 | 000,651,968 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/02/17 09:28:15 | 000,120,900 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/02/17 09:25:25 | 000,764,378 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/16 20:58:19 | 000,001,456 | ---- | M] () -- C:\Users\Sam\AppData\Local\Adobe Save for Web 12.0 Prefs
[2012/02/16 13:12:48 | 000,002,751 | ---- | M] () -- C:\Users\Sam\Desktop\TO DO LISTS.lnk
[2012/02/16 11:23:35 | 000,001,958 | ---- | M] () -- C:\Users\Sam\Desktop\Zune.lnk
[2012/02/16 11:19:49 | 000,002,589 | ---- | M] () -- C:\Users\Sam\Desktop\Messenger.lnk
[2012/02/15 14:51:14 | 000,002,423 | ---- | M] () -- C:\Users\Sam\Desktop\Airborne.lnk
[2012/02/15 10:22:16 | 000,001,966 | ---- | M] () -- C:\Users\Sam\Desktop\Police Force.lnk
[2012/02/15 09:31:49 | 000,002,160 | ---- | M] () -- C:\Users\Sam\Desktop\Notepad.lnk
[2012/02/15 08:44:01 | 000,000,308 | ---- | M] () -- C:\Users\Sam\Desktop\MetroTwit.appref-ms
[2012/02/14 16:41:41 | 000,001,164 | ---- | M] () -- C:\Users\Sam\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/02/14 13:12:49 | 000,001,767 | ---- | M] () -- C:\Users\Sam\Desktop\Reader for PC.lnk
[2012/02/14 06:46:36 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/02/14 06:46:36 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/02/14 06:46:36 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012/02/14 06:46:35 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012/02/13 08:36:37 | 000,184,844 | ---- | M] () -- C:\Users\Sam\Documents\complaintform_energy[1].pdf
[2012/02/13 01:51:07 | 000,035,046 | ---- | M] () -- C:\Windows\temp.bmp
[2012/02/10 03:34:17 | 000,001,437 | ---- | M] () -- C:\Users\Sam\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/02/09 09:08:55 | 000,034,308 | ---- | M] () -- C:\Windows\SysWow64\BASSMOD.dll
[2012/02/09 07:44:19 | 000,006,656 | ---- | M] () -- C:\Users\Sam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/09 03:41:48 | 000,000,017 | ---- | M] () -- C:\Users\Sam\AppData\Local\resmon.resmoncfg
[2012/02/05 23:26:10 | 004,207,104 | ---- | M] () -- C:\Windows\SysNative\ffdshow.ax
[2012/02/05 23:25:14 | 003,350,528 | ---- | M] () -- C:\Windows\SysWow64\ffdshow.ax
[2012/02/05 23:24:08 | 004,505,088 | ---- | M] () -- C:\Windows\SysNative\ffmpeg.dll
[2012/02/05 23:22:10 | 004,423,168 | ---- | M] () -- C:\Windows\SysWow64\ffmpeg.dll
[2012/02/04 21:33:14 | 000,161,523 | ---- | M] () -- C:\Windows\Animated Wallpaper Maker Uninstaller.exe
[2012/02/04 18:03:21 | 000,162,012 | ---- | M] () -- C:\Windows\Animated Screensaver Maker Uninstaller.exe
[2012/02/02 07:32:50 | 000,002,192 | ---- | M] () -- C:\Windows\tabled32.ini
[2012/01/31 19:24:42 | 000,002,395 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/01/28 19:13:20 | 000,586,240 | ---- | M] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysNative\LAVVideo.ax
[2012/01/28 19:13:20 | 000,552,448 | ---- | M] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysNative\LAVSplitter.ax
[2012/01/28 19:13:16 | 000,243,712 | ---- | M] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysNative\LAVAudio.ax
[2012/01/28 19:13:14 | 000,202,240 | ---- | M] () -- C:\Windows\SysNative\libbluray.dll
[2012/01/28 19:13:08 | 006,600,253 | ---- | M] () -- C:\Windows\SysNative\avcodec-lav-53.dll
[2012/01/28 19:13:08 | 001,023,175 | ---- | M] () -- C:\Windows\SysNative\avformat-lav-53.dll
[2012/01/28 19:13:08 | 000,386,864 | ---- | M] () -- C:\Windows\SysNative\swscale-lav-2.dll
[2012/01/28 19:13:08 | 000,209,331 | ---- | M] () -- C:\Windows\SysNative\avutil-lav-51.dll
[2012/01/28 19:13:08 | 000,126,340 | ---- | M] () -- C:\Windows\SysNative\avfilter-lav-2.dll
[2012/01/28 19:11:22 | 000,463,360 | ---- | M] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysWow64\LAVVideo.ax
[2012/01/28 19:11:22 | 000,460,800 | ---- | M] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysWow64\LAVSplitter.ax
[2012/01/28 19:11:18 | 000,213,504 | ---- | M] (1f0.de - Hendrik Leppkes) -- C:\Windows\SysWow64\LAVAudio.ax
[2012/01/28 19:11:16 | 000,172,032 | ---- | M] () -- C:\Windows\SysWow64\libbluray.dll
[2012/01/28 19:11:10 | 006,414,616 | ---- | M] () -- C:\Windows\SysWow64\avcodec-lav-53.dll
[2012/01/28 19:11:10 | 001,009,392 | ---- | M] () -- C:\Windows\SysWow64\avformat-lav-53.dll
[2012/01/28 19:11:10 | 000,360,729 | ---- | M] () -- C:\Windows\SysWow64\swscale-lav-2.dll
[2012/01/28 19:11:10 | 000,203,818 | ---- | M] () -- C:\Windows\SysWow64\avutil-lav-51.dll
[2012/01/28 19:11:10 | 000,138,774 | ---- | M] () -- C:\Windows\SysWow64\avfilter-lav-2.dll
[2012/01/28 19:10:00 | 000,143,872 | ---- | M] (Intel Corp.) -- C:\Windows\SysWow64\IntelQuickSyncDecoder.dll
[2012/01/28 19:09:36 | 000,176,640 | ---- | M] (Intel Corp.) -- C:\Windows\SysNative\IntelQuickSyncDecoder.dll
[2012/01/27 23:54:44 | 000,079,360 | ---- | M] () -- C:\Windows\SysWow64\ff_vfw.dll
[2012/01/27 23:53:00 | 000,260,608 | ---- | M] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
[2012/01/27 23:52:46 | 000,158,720 | ---- | M] () -- C:\Windows\SysWow64\ff_unrar.dll
[2012/01/27 23:52:44 | 000,099,840 | ---- | M] () -- C:\Windows\SysWow64\ff_wmv9.dll
[2012/01/27 23:52:42 | 001,525,248 | ---- | M] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2012/01/27 23:52:42 | 000,328,704 | ---- | M] () -- C:\Windows\SysWow64\ff_libfaad2.dll
[2012/01/27 23:52:42 | 000,146,944 | ---- | M] () -- C:\Windows\SysWow64\ff_libmad.dll
[2012/01/27 23:52:40 | 000,212,480 | ---- | M] () -- C:\Windows\SysWow64\ff_libdts.dll
[2012/01/27 23:52:40 | 000,115,200 | ---- | M] () -- C:\Windows\SysWow64\ff_liba52.dll
[2012/01/27 23:52:38 | 000,137,728 | ---- | M] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/02/22 03:17:16 | 000,000,000 | ---- | C] () -- C:\Users\Sam\defogger_reenable
[2012/02/22 01:50:28 | 000,497,026 | ---- | C] () -- C:\Users\Sam\Desktop\Can't remove Rootkit.Win32.TDSS.d virus AVForums.com - UK Online.htm
[2012/02/22 00:11:44 | 000,000,800 | ---- | C] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2012/02/20 21:00:40 | 000,001,319 | ---- | C] () -- C:\Users\Public\Desktop\MAGIX Music Maker 16 Premium Download Version.lnk
[2012/02/19 21:07:03 | 000,878,751 | ---- | C] () -- C:\Users\Sam\Desktop\o-matic.jpg
[2012/02/19 21:04:34 | 000,000,775 | ---- | C] () -- C:\Users\Public\Desktop\Pixlr-o-matic.lnk
[2012/02/19 17:27:43 | 000,000,886 | ---- | C] () -- C:\Users\Public\Desktop\Photopixar.lnk
[2012/02/19 04:23:57 | 000,000,745 | ---- | C] () -- C:\Users\Public\Desktop\EnhanceMySe7en.lnk
[2012/02/18 14:19:43 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2012/02/18 05:24:35 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/02/18 05:24:34 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2012/02/16 13:12:12 | 000,002,751 | ---- | C] () -- C:\Users\Sam\Desktop\TO DO LISTS.lnk
[2012/02/16 11:18:44 | 000,002,589 | ---- | C] () -- C:\Users\Sam\Desktop\Messenger.lnk
[2012/02/15 08:44:01 | 000,000,308 | ---- | C] () -- C:\Users\Sam\Desktop\MetroTwit.appref-ms
[2012/02/15 08:10:15 | 000,001,966 | ---- | C] () -- C:\Users\Sam\Desktop\Police Force.lnk
[2012/02/15 05:58:17 | 000,002,757 | ---- | C] () -- C:\Users\Sam\Desktop\Search.lnk
[2012/02/14 15:51:39 | 000,002,195 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012.lnk
[2012/02/14 13:27:10 | 000,002,423 | ---- | C] () -- C:\Users\Sam\Desktop\Airborne.lnk
[2012/02/14 13:12:49 | 000,001,767 | ---- | C] () -- C:\Users\Sam\Desktop\Reader for PC.lnk
[2012/02/14 13:10:45 | 000,001,958 | ---- | C] () -- C:\Users\Sam\Desktop\Zune.lnk
[2012/02/14 13:09:36 | 000,002,371 | ---- | C] () -- C:\Users\Sam\Desktop\Google Chrome.lnk
[2012/02/14 08:46:09 | 000,002,160 | ---- | C] () -- C:\Users\Sam\Desktop\Notepad.lnk
[2012/02/14 06:22:05 | 000,000,193 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
[2012/02/13 08:36:37 | 000,184,844 | ---- | C] () -- C:\Users\Sam\Documents\complaintform_energy[1].pdf
[2012/02/13 01:51:07 | 000,035,046 | ---- | C] () -- C:\Windows\temp.bmp
[2012/02/12 08:31:30 | 000,764,378 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/12 02:30:23 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2012/02/10 00:08:01 | 000,016,144 | ---- | C] () -- C:\Windows\SysWow64\tsd32.dll
[2012/02/09 09:08:29 | 000,034,308 | ---- | C] () -- C:\Windows\SysWow64\BASSMOD.dll
[2012/02/09 03:41:48 | 000,000,017 | ---- | C] () -- C:\Users\Sam\AppData\Local\resmon.resmoncfg
[2012/02/09 02:52:08 | 000,346,992 | ---- | C] () -- C:\Windows\SysNative\drivers\SRS_SSCFilter_amd64.sys
[2012/02/05 23:26:10 | 004,207,104 | ---- | C] () -- C:\Windows\SysNative\ffdshow.ax
[2012/02/05 23:25:14 | 003,350,528 | ---- | C] () -- C:\Windows\SysWow64\ffdshow.ax
[2012/02/05 23:24:08 | 004,505,088 | ---- | C] () -- C:\Windows\SysNative\ffmpeg.dll
[2012/02/05 23:22:10 | 004,423,168 | ---- | C] () -- C:\Windows\SysWow64\ffmpeg.dll
[2012/02/04 21:33:14 | 000,161,523 | ---- | C] () -- C:\Windows\Animated Wallpaper Maker Uninstaller.exe
[2012/02/04 18:03:21 | 000,162,012 | ---- | C] () -- C:\Windows\Animated Screensaver Maker Uninstaller.exe
[2012/02/02 07:30:06 | 000,002,192 | ---- | C] () -- C:\Windows\tabled32.ini
[2012/02/01 21:04:34 | 000,001,456 | ---- | C] () -- C:\Users\Sam\AppData\Local\Adobe Save for Web 12.0 Prefs
[2012/02/01 13:45:02 | 000,001,134 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switch Sound File Converter.lnk
[2012/01/31 15:53:04 | 000,001,130 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WavePad Sound Editor.lnk
[2012/01/31 13:31:43 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/01/28 19:13:14 | 000,202,240 | ---- | C] () -- C:\Windows\SysNative\libbluray.dll
[2012/01/28 19:13:08 | 006,600,253 | ---- | C] () -- C:\Windows\SysNative\avcodec-lav-53.dll
[2012/01/28 19:13:08 | 001,023,175 | ---- | C] () -- C:\Windows\SysNative\avformat-lav-53.dll
[2012/01/28 19:13:08 | 000,386,864 | ---- | C] () -- C:\Windows\SysNative\swscale-lav-2.dll
[2012/01/28 19:13:08 | 000,209,331 | ---- | C] () -- C:\Windows\SysNative\avutil-lav-51.dll
[2012/01/28 19:13:08 | 000,126,340 | ---- | C] () -- C:\Windows\SysNative\avfilter-lav-2.dll
[2012/01/28 19:11:16 | 000,172,032 | ---- | C] () -- C:\Windows\SysWow64\libbluray.dll
[2012/01/28 19:11:10 | 006,414,616 | ---- | C] () -- C:\Windows\SysWow64\avcodec-lav-53.dll
[2012/01/28 19:11:10 | 001,009,392 | ---- | C] () -- C:\Windows\SysWow64\avformat-lav-53.dll
[2012/01/28 19:11:10 | 000,360,729 | ---- | C] () -- C:\Windows\SysWow64\swscale-lav-2.dll
[2012/01/28 19:11:10 | 000,203,818 | ---- | C] () -- C:\Windows\SysWow64\avutil-lav-51.dll
[2012/01/28 19:11:10 | 000,138,774 | ---- | C] () -- C:\Windows\SysWow64\avfilter-lav-2.dll
[2012/01/27 23:54:44 | 000,079,360 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2012/01/27 23:53:00 | 000,260,608 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
[2012/01/27 23:52:46 | 000,158,720 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
[2012/01/27 23:52:44 | 000,099,840 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll
[2012/01/27 23:52:42 | 001,525,248 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2012/01/27 23:52:42 | 000,328,704 | ---- | C] () -- C:\Windows\SysWow64\ff_libfaad2.dll
[2012/01/27 23:52:42 | 000,146,944 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
[2012/01/27 23:52:40 | 000,212,480 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
[2012/01/27 23:52:40 | 000,115,200 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
[2012/01/27 23:52:38 | 000,137,728 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
[2012/01/08 15:44:22 | 000,001,549 | ---- | C] () -- C:\Windows\tefview.ini
[2012/01/04 14:53:41 | 000,002,048 | ---- | C] () -- C:\Windows\SysWow64\winver.exe
[2011/12/27 17:51:48 | 000,000,064 | ---- | C] () -- C:\Windows\GPlrLanc.dat
[2011/12/25 21:22:14 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat
[2011/12/23 09:37:33 | 000,056,320 | ---- | C] () -- C:\Windows\SysWow64\iyvu9_32.dll
[2011/12/22 19:57:28 | 000,006,656 | ---- | C] () -- C:\Users\Sam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/07 19:32:24 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\Lagarith.dll
[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/09/08 14:00:52 | 000,150,528 | ---- | C] () -- C:\Windows\SysWow64\mkx.dll
[2011/09/08 14:00:48 | 000,142,336 | ---- | C] () -- C:\Windows\SysWow64\mp4.dll
[2011/09/08 14:00:42 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\ogm.dll
[2011/09/08 14:00:38 | 000,249,856 | ---- | C] () -- C:\Windows\SysWow64\dxr.dll
[2011/09/08 14:00:34 | 000,113,152 | ---- | C] () -- C:\Windows\SysWow64\dsmux.exe
[2011/09/08 14:00:24 | 000,154,624 | ---- | C] () -- C:\Windows\SysWow64\ts.dll
[2011/09/08 14:00:10 | 000,137,728 | ---- | C] () -- C:\Windows\SysWow64\mkv2vfr.exe
[2011/09/08 14:00:06 | 000,358,400 | ---- | C] () -- C:\Windows\SysWow64\gdsmux.exe
[2011/09/08 13:59:54 | 000,080,384 | ---- | C] () -- C:\Windows\SysWow64\mkzlib.dll
[2011/09/08 13:59:52 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\mkunicode.dll
[2011/05/30 13:42:50 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011/05/23 07:46:30 | 000,645,632 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/03/03 11:39:56 | 000,109,568 | ---- | C] () -- C:\Windows\SysWow64\avi.dll
[2011/03/03 11:38:10 | 000,097,792 | ---- | C] () -- C:\Windows\SysWow64\avs.dll
[2011/03/03 11:37:50 | 000,093,184 | ---- | C] () -- C:\Windows\SysWow64\avss.dll
[2010/12/30 22:27:27 | 030,494,720 | ---- | C] () -- C:\Windows\SysWow64\common_res.dll
[2010/08/18 19:56:38 | 000,000,151 | ---- | C] () -- C:\Windows\SysWow64\Registration.ini

< End of report >

OTL Extras logfile created on: 22/02/2012 12:57:22 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Users\Sam\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.97 Gb Total Physical Memory | 2.87 Gb Available Physical Memory | 72.47% Memory free
7.93 Gb Paging File | 6.71 Gb Available in Paging File | 84.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74.43 Gb Total Space | 6.51 Gb Free Space | 8.74% Space Free | Partition Type: NTFS
Drive E: | 1863.01 Gb Total Space | 1396.07 Gb Free Space | 74.94% Space Free | Partition Type: NTFS
Drive F: | 3.69 Gb Total Space | 3.31 Gb Free Space | 89.91% Space Free | Partition Type: FAT32
Drive I: | 14.83 Gb Total Space | 9.50 Gb Free Space | 64.03% Space Free | Partition Type: FAT32

Computer Name: SAM-PC | User Name: Sam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --playlist-enqueue "%1" ()
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- E:\Adobe Illustrator\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --no-playlist-enqueue "%1" ()
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [runas] -- cmd.exe /c takeown /f "%1" && icacls "%1" /grant administrators:F (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --playlist-enqueue "%1" ()
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- E:\Adobe Illustrator\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithApplianMP] -- "C:\Program Files (x86)\Applian Technologies\Applian FLV and Media Player\amp.exe" -I skins2 --started-from-file --no-playlist-enqueue "%1" ()
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [runas] -- cmd.exe /c takeown /f "%1" && icacls "%1" /grant administrators:F (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{07EEE598-5F21-4B57-B40B-46592625B3D9}" = Zune Language Pack (PTB)
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86416027FF}" = Java™ 6 Update 27 (64-bit)
"{2A9DFFD8-4E09-4B91-B957-454805B0D7C4}" = Zune Language Pack (CHS)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{3589A659-F732-4E65-A89A-5438C332E59D}" = Zune Language Pack (ELL)
"{51C839E1-2BE4-4E77-A1BA-CCEA5DAFA741}" = Zune Language Pack (KOR)
"{57C51D56-B287-4C11-9192-EC3C46EF76A4}" = Zune Language Pack (RUS)
"{5C93E291-A1CC-4E51-85C6-E194209FCDB4}" = Zune Language Pack (PTG)
"{5DEFD397-4012-46C3-B6DA-E8013E660772}" = Zune Language Pack (NOR)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6740BCB0-5863-47F4-80F4-44F394DE4FE2}" = Zune Language Pack (NLD)
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.2.3
"{6B33492E-FBBC-4EC3-8738-09E16E395A10}" = Zune Language Pack (ESP)
"{6EB931CD-A7DA-4A44-B74A-89C8EB50086F}" = Zune Language Pack (SVE)
"{76BA306B-2AA0-47C0-AB6B-F313AB56C136}" = Zune Language Pack (MSL)
"{8960A0A1-BB5A-479E-92CF-65AB9D684B43}" = Zune Language Pack (PLK)
"{8B112338-2B08-4851-AF84-E7CAD74CEB32}" = Zune Language Pack (DAN)
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{92ECE3F9-591E-4C12-8A62-B9FCE38BF646}" = Zune Language Pack (IND)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B75648B-6C30-4A0D-9DE6-0D09D20AF5A5}" = Zune
"{A133E9CD-2879-4F30-87D4-1604AFD5C5CC}_is1" = Folder Colorizer version 1.0.1
"{A5A53EA8-A11E-49F0-BDF5-AE536426A31A}" = Zune Language Pack (CHT)
"{A8F2E50B-86E2-4D96-9BD2-9758BCC6F9B3}" = Zune Language Pack (CSY)
"{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP)
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B4870774-5F3A-46D9-9DFE-06FB5599E26B}" = Zune Language Pack (FIN)
"{BE236D9A-52EC-4A17-82DA-84B5EAD31E3E}" = Zune Language Pack (DEU)
"{C2823CAB-D64D-4AF6-8595-8B39400B6C01}_is1" = Volume Concierge version 1.0.1
"{C5D37FFA-7483-410B-982B-91E93FD3B7DA}" = Zune Language Pack (ITA)
"{C68D33B1-0204-4EBE-BC45-A6E432B1D13A}" = Zune Language Pack (FRA)
"{C6BE19C6-B102-4038-B2A6-1C313872DBB4}" = Zune Language Pack (HUN)
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240CB}" = WinZip 16.0
"{D8A781C9-3892-4E2E-9320-480CF896CFBB}" = Zune Language Pack (JPN)
"{F2CB8C3C-9C9E-4FAB-9067-655601C5F748}" = Windows Mobile Device Updater Component
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
"Digital Film Tools-Rays 1.0" = Rays
"EnhanceMySe7en_is1" = EnhanceMySe7en
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"NVIDIA Drivers" = NVIDIA Drivers
"Pen Tablet Driver" = Bamboo
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"ZoneAlarm Toolbar" = ZoneAlarm Toolbar
"Zune" = Zune

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}" = Utility Common Driver
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{25F28E39-FDBB-11DB-8314-0800200C9A66}" = Medal of Honor Airborne
"{26A24AE4-039D-4CA4-87B4-2F83216030FF}" = Java™ 6 Update 30
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2B120B1D-1908-4FB3-8C9D-72128A74E80A}" = ZoneAlarm Security
"{2F881B56-CBDF-4EC6-A8D2-6412A879C66A}_is1" = AMR Player 1.3
"{32364CEA-7855-4A3C-B674-53D8E9B97936}" = TuneUp Utilities 2012
"{3AF8C37F-696E-871C-0851-CDE980FD665E}" = Bamboo Dock
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D3DA153-548D-4D7F-B62B-653D845169D3}" = Reader for PC
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}" = Medal of Honor Pacific Assault™
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5E6F6CF3-BACC-4144-868C-E14622C658F3}" = TOSHIBA Web Camera Application
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6E0C3C3D-CF8A-4AEC-AD6C-B4486A96BE8E}" = Bamboo Tablets Tutorial
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8DB22BF1-1630-4039-986E-EFE54AA556E3}" = MidiNotate Player for HitTrax
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9530AE42-DAE1-4619-9594-B23487285D17}" = NVIDIA PhysX
"{96A628B7-93D6-46CC-9E74-02F7D2E21E96}" = Major League Baseball 2K11
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B97EC91-B3FD-4BFF-88FC-5345A26AC2E7}" = Adobe Illustrator CS5
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A386CC19-1E79-4D4C-A54B-C8747871E4AD}" = ZoneAlarm Firewall
"{A589DA26-51BD-475D-8C32-E19E34145842}" = Camtasia Studio 6
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A90C03D6-08E1-4C59-B93B-6919A6C0AC19}" = TSP_CODEC
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}" = T-Mobile Mobile Broadband Manager
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.2)
"{BC4F13D1-3167-4B85-BF25-70C42B4FCD95}" = TuneUp Utilities Language Pack (en-GB)
"{C7A4F26F-F9B0-41B2-8659-99181108CDE3}" = TOSHIBA Media Controller
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7D50E0C-27DD-4999-BC05-E026B580F93A}" = Electronic Arts Product Registration
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1EBB854-B20A-4824-A747-AC02C1E7F0EE}_is1" = Photopixar Version 1.1
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE168BEC-3EB9-23A3-92DB-8827E5E2665D}" = Pixlr-o-matic
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FD271FAB-2F69-6983-A6A4-828F357940C4}" = Livebrush Mini
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Animated Screensaver Maker" = Animated Screensaver Maker
"Animated Wallpaper Maker" = Animated Wallpaper Maker
"Applian FLV and Media Player" = Applian FLV and Media Player 3.1.1.12
"avast" = avast! Free Antivirus
"Bamboo Dock" = Bamboo Dock
"com.livebrush.2205ABAA7E8202CDC1251B1FA1E879364B7BAB52.1" = Livebrush Mini
"DAEMON Tools Pro" = DAEMON Tools Pro
"DFX" = DFX
"Die Polizei" = Police Force
"DivX Setup" = DivX Setup
"Free YouTube Download_is1" = Free YouTube Download version 3.0.20.1228
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.14.1206
"Freecorder Toolbar" = Freecorder Toolbar
"Freecorder5.02" = Freecorder 5
"Freecorder5.11" = Freecorder 5
"Guitar and Bass_is1" = Guitar and Bass
"Indeo® Software" = Indeo® Software
"InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"InstallShield_{D7D50E0C-27DD-4999-BC05-E026B580F93A}" = Electronic Arts Product Registration
"Little Piano_is1" = Little Piano
"MAGIX Music Maker 16 Premium Download Version UK" = MAGIX Music Maker 16 Premium Download Version
"MAGIX Screenshare UK" = MAGIX Screenshare
"MAGIX Speed burnR UK" = MAGIX Speed burnR
"Mozilla Firefox (3.6.27)" = Mozilla Firefox (3.6.27)
"myYearbook Toolbar" = myYearbook Toolbar
"PitchPerfect" = PitchPerfect Musical Instrument Tuner
"Pixlromatic" = Pixlr-o-matic
"Privacy Mantra 3.00" = Privacy Mantra 3.00
"Rainmeter" = Rainmeter
"ResourceHacker_is1" = Resource Hacker Version 3.6.0
"Steam App 34030" = Napoleon: Total War
"Steam App 39800" = Nation Red
"Switch" = Switch Sound File Converter
"SystemRequirementsLab" = System Requirements Lab
"TablEdit_is1" = TablEdit 2.71
"TuneUp Utilities 2012" = TuneUp Utilities 2012
"VLC media player" = VLC media player 1.1.11
"Wacom WebTabletPlugin for IE" = WebTablet IE Plugin
"Wacom WebTabletPlugin for Internet Explorer and Netscape" = WebTablet FB Plugin
"wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1" = Bamboo Dock
"WavePad" = WavePad Sound Editor
"Windows 7 - Codec Pack" = Windows 7 Codec Pack 3.8.0
"WinLiveSuite" = Windows Live Essentials
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update
"ZoneAlarm Free" = ZoneAlarm Free
"ZoneAlarm_Security Toolbar" = ZoneAlarm Security Toolbar

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1774957920-544101310-2912468747-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"171469f70e846007" = MetroTwit
"C8F31CA0-0667-467c-B205-B0A0291603E6" = GeeTeeDee
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19/02/2012 17:46:11 | Computer Name = Sam-PC | Source = Winlogon | ID = 4103
Description = Windows license activation failed. Error 0x00000000.

Error - 19/02/2012 17:50:04 | Computer Name = Sam-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddWin32ServiceFiles: Unable to back up image
of service Windows Presentation Foundation Font Cache 3.0.0.0 since QueryServiceConfig
API failed System Error: The system cannot find the file specified. .

Error - 20/02/2012 01:03:16 | Computer Name = Sam-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddWin32ServiceFiles: Unable to back up image
of service Windows Presentation Foundation Font Cache 3.0.0.0 since QueryServiceConfig
API failed System Error: The system cannot find the file specified. .

Error - 20/02/2012 01:03:39 | Computer Name = Sam-PC | Source = VSS | ID = 12310
Description =

Error - 20/02/2012 01:03:45 | Computer Name = Sam-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddWin32ServiceFiles: Unable to back up image
of service Windows Presentation Foundation Font Cache 3.0.0.0 since QueryServiceConfig
API failed System Error: The system cannot find the file specified. .

Error - 21/02/2012 15:21:51 | Computer Name = Sam-PC | Source = Application Error | ID = 1000
Description = Faulting application name: MOHA.exe, version: 1.0.1030.0, time stamp:
0x46c2c5c0 Faulting module name: MOHA.exe, version: 1.0.1030.0, time stamp: 0x46c2c5c0
Exception
code: 0xc0000005 Fault offset: 0x00007984 Faulting process id: 0x1660 Faulting application
start time: 0x01ccf0ccc4777a37 Faulting application path: C:\Program Files (x86)\Electronic
Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe Faulting module path:
C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe
Report
Id: 4e449146-5cc1-11e1-82d0-002622395390

Error - 21/02/2012 20:13:01 | Computer Name = Sam-PC | Source = VSS | ID = 8194
Description =

Error - 21/02/2012 20:56:43 | Computer Name = Sam-PC | Source = TabletServicePen | ID = 1
Description =

Error - 21/02/2012 22:11:25 | Computer Name = Sam-PC | Source = Microsoft-Windows-CAPI2 | ID = 512
Description = The Cryptographic Services service failed to initialize the VSS backup
"System Writer" object. Details: Could not query the status of the EventSystem service.

System
Error: A system shutdown is in progress. .

Error - 21/02/2012 22:13:12 | Computer Name = Sam-PC | Source = TabletServicePen | ID = 1
Description =

[ System Events ]
Error - 21/02/2012 22:08:01 | Computer Name = Sam-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 21/02/2012 22:08:01 | Computer Name = Sam-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 21/02/2012 22:08:07 | Computer Name = Sam-PC | Source = DCOM | ID = 10005
Description =

Error - 21/02/2012 22:08:17 | Computer Name = Sam-PC | Source = DCOM | ID = 10005
Description =

Error - 21/02/2012 22:08:19 | Computer Name = Sam-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 21/02/2012 22:08:19 | Computer Name = Sam-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 21/02/2012 22:08:19 | Computer Name = Sam-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 21/02/2012 22:08:22 | Computer Name = Sam-PC | Source = DCOM | ID = 10005
Description =

Error - 21/02/2012 22:08:22 | Computer Name = Sam-PC | Source = DCOM | ID = 10005
Description =

Error - 21/02/2012 23:50:13 | Computer Name = Sam-PC | Source = volsnap | ID = 393252
Description = The shadow copies of volume C: were aborted because the shadow copy
storage could not grow due to a user imposed limit.


< End of report >

Edited by boopme, 23 February 2012 - 09:48 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:01 PM

Posted 24 February 2012 - 10:13 AM

From PM,
It appears I no longer need any help at all. I have managed to fix the damn thing with the simplest of methods. Re-installing the program seemed to provide an uninstall located in the add/remove programs panel.


Thanks for the update. As topic is resolved I am closing it.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users