Thank you...
OTL logfile created on: 04/07/2012 14:01:47 - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\user\Desktop
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
7.99 Gb Total Physical Memory | 6.60 Gb Available Physical Memory | 82.62% Memory free
15.98 Gb Paging File | 14.52 Gb Available in Paging File | 90.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297.99 Gb Total Space | 117.11 Gb Free Space | 39.30% Space Free | Partition Type: NTFS
Computer Name: LCC-VIDEO_1 | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\user\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\user\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Windows\SysWOW64\XSrvSetup.exe ()
PRC - C:\Program Files (x86)\Belkin\F7D4101\V1\wlansrv.exe ()
PRC - C:\Program Files (x86)\Belkin\F7D4101\V1\PBN.exe ()
PRC - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
PRC - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (DeviceVM, Inc.)
PRC - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
========== Modules (No Company Name) ==========
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\Belkin\F7D4101\V1\PBN.exe ()
MOD - C:\Program Files (x86)\Belkin\F7D4101\V1\BelkinwcuiDLL.dll ()
MOD - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll ()
========== Win32 Services (SafeList) ==========
SRV:
64bit: - (NisSrv) -- c:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:
64bit: - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:
64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Flexera Software, Inc.)
SRV:
64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:
64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:
64bit: - (AppleChargerSrv) -- C:\Windows\SysNative\AppleChargerSrv.exe ()
SRV:
64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:
64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:
64bit: - (msvsmon90) -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe (Microsoft Corporation)
SRV - (Akamai) -- c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll ()
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (JMB36X) -- C:\Windows\SysWOW64\XSrvSetup.exe ()
SRV - (WLANBelkinService) -- C:\Program Files (x86)\Belkin\F7D4101\V1\wlansrv.exe ()
SRV - (BCUService) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (DeviceVM, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV:
64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:
64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:
64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:
64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:
64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:
64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:
64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:
64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:
64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:
64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:
64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:
64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:
64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:
64bit: - (VMHybrid64) -- C:\Windows\SysNative\drivers\VMHybr64.sys (Compro Technology, Inc.)
DRV:
64bit: - (AppleCharger) -- C:\Windows\SysNative\drivers\AppleCharger.sys ()
DRV:
64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:
64bit: - (JRAID) -- C:\Windows\SysNative\drivers\jraid.sys (JMicron Technology Corp.)
DRV:
64bit: - (BCMH43XX) -- C:\Windows\SysNative\drivers\bcmwlhigh664.sys (Broadcom Corporation)
DRV:
64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (NEC Electronics Corporation)
DRV:
64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (NEC Electronics Corporation)
DRV:
64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:
64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:
64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:
64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:
64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:
64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:
64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:
64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:
64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows ® Server 2003 DDK provider)
DRV - (GVTDrv64) -- C:\Windows\GVTDrv64.sys ()
DRV - (etdrv) -- C:\Windows\etdrv.sys (Windows ® Server 2003 DDK provider)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (VMHybrid64) -- C:\Windows\SysWOW64\drivers\VMHybr64.sys (Compro Technology, Inc.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:
64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:
64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...ms}&FORM=IE8SRC
IE:
64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...mp;sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://uk.woofi.info
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...mp;sourceid=ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://uk.woofi.info
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://uk.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = FD 06 C1 27 46 9C CB 01 [binary data]
IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {6B93639D-C227-4dab-984A-8BCD0D10F1C4}
IE - HKCU\..\SearchScopes\{03D7941B-84E7-485e-A4A2-83C062D4F876}: "URL" =
http://www.google.co...q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...amp;FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...;rlz=1I7ADRA_en
IE - HKCU\..\SearchScopes\{6B93639D-C227-4dab-984A-8BCD0D10F1C4}: "URL" =
http://uk.search.yah...c...m&type=IEBD
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ==========
FF:
64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\user\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\user\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\user\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{googl
e:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\20.0.1132.47\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\user\AppData\Local\Google\Chrome\Application\20.0.1132.47\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\user\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.1.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\user\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Users\user\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: YouTube = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: AdBlock = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.37_0\
CHR - Extension: Gmail = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O4:
64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:
64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:
64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11 SE DVD\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\user\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKCU..\Run: [Facebook Update] C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:
64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13
64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E717C68-F3EC-49DD-891B-57364EFDB878}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3098A6C7-CF10-425B-B210-67F00CB9CDEF}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{623D1261-4F65-4B72-B0EB-8865ACB93F23}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DCB1CBB1-18D6-4851-8D4C-A788DB03F18A}: DhcpNameServer = 192.168.16.2
O18:
64bit: - Protocol\Handler\livecall - No CLSID value found
O18:
64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:
64bit: - Protocol\Handler\msnim - No CLSID value found
O18:
64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:
64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:
64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:
64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/08/06 19:40:15 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O33 - MountPoints2\{a29a1207-082c-11e0-90fb-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{a29a1207-082c-11e0-90fb-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Run.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:
64bit: - HKLM\..comfile [open] -- "%1" %*
O35:
64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:
64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
NetSvcs:
64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2012/07/04 13:58:32 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2012/07/04 11:45:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/07/04 11:45:38 | 000,227,720 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/07/04 11:45:29 | 000,174,024 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/07/04 11:45:29 | 000,174,024 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/07/04 11:45:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/07/04 11:23:40 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F2DC8370-7758-4B54-8325-5645EDE71A9E}
[2012/07/04 11:23:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{002CF473-ACEF-455A-B804-2BF9E49922F1}
[2012/07/04 10:18:41 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Malwarebytes
[2012/07/04 10:18:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/07/04 10:18:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/07/04 10:18:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/07/04 10:05:53 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{6CB3E2F0-091D-40A6-9B7D-F0CE71C38BB6}
[2012/07/04 10:05:19 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{37BA5B0E-FAB9-495E-AEE0-62055B412CC1}
[2012/07/03 12:20:38 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{70DB038F-5458-4C4D-A4C1-96F9980A6F22}
[2012/07/03 12:20:26 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{4C0233AC-440C-4230-80A1-D4CD887EFE33}
[2012/07/02 13:49:45 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{9FD98AD1-9356-4D1D-9C4F-D109BB3A4E62}
[2012/07/02 13:49:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{8E6365F4-FC93-4099-B790-0FD906D73565}
[2012/07/01 10:42:03 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F6F9C506-6652-4FB2-8B72-7AC9648A1BBD}
[2012/07/01 10:41:51 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{4E0B36B4-5F5D-431C-A8F3-7726ADFC2D27}
[2012/06/30 22:14:23 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{D9C1DDAD-6CF5-4229-8AB5-6FBAE4F809E5}
[2012/06/30 22:14:13 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{CD420528-96AF-4B2D-8852-B33B76E21B43}
[2012/06/30 17:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/06/30 10:43:20 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Ilivid Player
[2012/06/30 10:41:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Searchqu Toolbar
[2012/06/30 10:13:46 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A5607101-B679-4353-B79E-25F31B6C0B2F}
[2012/06/30 10:13:34 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{57BB3110-6D7B-4E13-A660-F2E685C82E22}
[2012/06/29 16:50:24 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{DD89ABDA-614B-4802-8DAE-55AB808A5257}
[2012/06/29 16:50:13 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{2D01D596-E415-43C7-AA37-40C961BE5569}
[2012/06/28 22:59:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Windows Live Writer
[2012/06/28 22:59:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Windows Live Writer
[2012/06/28 22:22:37 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{53040D9E-3D02-4636-B4B2-10E62DBF0943}
[2012/06/28 22:22:27 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{40EC0E87-A637-469C-9912-513B637A2C81}
[2012/06/28 10:22:01 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{DA1164BF-DF63-45AA-9729-A7FF15373D8F}
[2012/06/28 10:21:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{4C1A8A44-D9FB-4589-AB17-097625B384B2}
[2012/06/27 10:51:18 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{553DBDB4-E29A-452E-89B7-96833E56AD1A}
[2012/06/27 10:51:03 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{4B290A75-692C-4DF4-BC46-5D0D57524671}
[2012/06/26 15:50:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5801D035-323A-41B5-970D-3B290CAE7FFB}
[2012/06/26 15:50:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{B22D288B-3723-47D0-9CD7-861E6F457902}
[2012/06/26 15:39:23 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{3A9748A5-436E-4D25-B472-757638C2E830}
[2012/06/26 15:39:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A2A60B2C-B8A0-4B53-8911-34CA47BDFE58}
[2012/06/24 12:01:07 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C08B9F3F-F8E2-4697-95ED-7F3849207467}
[2012/06/24 12:00:55 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{76151AF7-3E2F-45BB-8891-8D93CF0FC550}
[2012/06/23 22:51:54 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{B3DA0C7A-4F7A-4749-A182-3499DEEC7C0C}
[2012/06/23 22:51:42 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{B9554DF6-CBAD-44B2-B894-1414B8C51DB5}
[2012/06/22 16:02:08 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{CCBE497B-7D9A-4A09-93EB-A99FA04D56D6}
[2012/06/22 16:01:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C44B90A0-AB3C-4862-B0B3-21EC65484311}
[2012/06/21 16:02:28 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/06/21 16:02:28 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/06/21 16:02:28 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/06/21 16:02:02 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/06/21 16:02:02 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/06/21 16:02:02 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/06/21 16:01:44 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/06/21 16:01:44 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/06/21 15:58:32 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{CD7D3071-4E56-4EDC-BD22-1FB00F9D3E14}
[2012/06/21 15:58:16 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{3B0B8957-FFB1-4584-AB80-276F408EE6AD}
[2012/06/20 19:02:45 | 000,000,000 | ---D | C] -- C:\Windows\en
[2012/06/20 19:00:06 | 000,048,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fssfltr.sys
[2012/06/20 18:44:31 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{53385518-1286-4156-B62C-2B20EAD4C209}
[2012/06/20 18:44:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{9090A116-48F6-41C0-AB7B-77C84109D1BE}
[2012/06/19 18:32:07 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{D4FCA0FB-9003-4E9C-961A-C79037563568}
[2012/06/19 18:31:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{66140E19-806A-4CFE-B72C-712A76832D4C}
[2012/06/18 14:17:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/06/18 14:16:52 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/06/18 14:16:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012/06/18 14:16:52 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/06/18 12:40:06 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E033BEC1-4B17-4078-92F5-C855DC35F188}
[2012/06/17 08:01:19 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{D94EB641-B4BC-4371-A2B8-172CCA3DEC66}
[2012/06/16 11:32:00 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C5FAE651-1CBD-48E1-8870-FE79E85D9F82}
[2012/06/15 17:08:27 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{8AE37342-EA54-4E79-8FB8-EED9FE84925E}
[2012/06/14 23:29:45 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{754DC6B9-A1D9-40E9-A4BA-B465A5350C50}
[2012/06/14 23:29:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A9C27E0D-29A0-4016-813C-059267F3832E}
[2012/06/14 21:35:18 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{8524EE98-E4E3-47D1-A531-70511F3A68D1}
[2012/06/14 21:35:08 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{BA2A2330-AE8A-4F89-97C8-B1FC8CF739B4}
[2012/06/14 17:39:54 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{824DB0AB-2EC5-41B7-93A8-F97C78483589}
[2012/06/14 17:39:42 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{4BF158FA-4E79-4921-9FEB-BDCC900965A0}
[2012/06/14 12:20:53 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{1ECCBF8D-9723-4BB7-8CCC-C8471F3FB64F}
[2012/06/14 12:20:42 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{8F7418C4-B722-48E4-B94A-82EC50AD960F}
[2012/06/14 01:38:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A6BA742D-7965-4539-BE96-3B7D32DB742D}
[2012/06/14 01:38:40 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C606996A-A76C-4542-BE28-AF3733BDC478}
[2012/06/13 19:44:21 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A5092E57-1EB2-4FE8-BC88-E6352DD103D8}
[2012/06/13 19:43:40 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{0F4E503D-0FFA-48BF-A82F-3B0C288991C7}
[2012/06/13 18:02:57 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/06/13 18:02:56 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/06/13 18:02:54 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/06/13 18:02:54 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/06/13 18:02:53 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/06/13 18:02:53 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/06/13 18:02:52 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/06/13 18:02:52 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/06/13 18:02:50 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/06/13 18:02:50 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/06/13 18:02:49 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/06/13 18:02:49 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/06/13 18:02:48 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/06/13 17:30:23 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/06/13 17:30:23 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/06/13 17:30:23 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/06/13 17:30:17 | 005,505,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/06/13 17:30:15 | 003,902,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/06/13 17:30:14 | 003,958,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/06/13 17:30:01 | 003,213,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/06/13 17:29:54 | 001,460,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/06/13 17:29:54 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/06/13 16:15:56 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{915E01FD-48E5-448D-BA9F-B2F6F681465F}
[2012/06/13 16:15:45 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E1915B6D-5FDB-4296-9A67-2FE6FF18D8DD}
[2012/06/13 13:43:38 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{91361D04-AEF1-4913-AEE8-7AE267F4D1DD}
[2012/06/13 13:43:24 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{88C5DD77-CF25-4344-B245-95F0B6B6FE34}
[2012/06/12 16:37:58 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{C5921FFD-6082-4133-8AA1-6B8153E5A1D3}
[2012/06/12 16:37:35 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{9B3F89DF-DF9F-4291-823B-92846B36E43A}
[2012/06/12 13:36:14 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F8663077-C225-4565-982D-9A2827A9518A}
[2012/06/12 13:36:04 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{DB70B8A1-5560-4DA1-8006-7078C076690F}
[2012/06/12 13:14:38 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5686343B-077F-47FE-90E4-634AC2A550F6}
[2012/06/12 13:14:28 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{ABB6F872-33D2-4A22-B9FE-187F118D2C00}
[2012/06/11 20:59:16 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5103F600-62BE-4C72-A16C-EAD33F97AC91}
[2012/06/11 20:59:00 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5CA8579F-5C6A-45C5-9AD3-ACC3B39865B8}
[2012/06/11 18:02:26 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{6A3A8F95-C89F-47F2-8775-0629C7AF7AEF}
[2012/06/11 18:02:16 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{28A8EE8C-DBF5-4F53-B139-A4DD347AFF22}
[2012/06/11 00:37:36 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F82E1266-E5ED-4A72-B29A-EF02EE4EFE3D}
[2012/06/11 00:37:23 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F56F23AC-6B24-4FDB-B3FF-C10F58A3BFF5}
[2012/06/10 22:29:04 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5A34FE98-90F2-4963-8B46-0D16D3485CAC}
[2012/06/10 22:28:53 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{0A0C0814-2339-4BA9-8924-48FF35BDDBB5}
[2012/06/10 15:27:47 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{2E335F81-452D-4F2B-A138-892D19EC1F47}
[2012/06/10 15:27:37 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{EC6A8D02-3797-4A0C-B319-14F02FEA731F}
[2012/06/10 11:44:25 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E48AFCA4-C87C-4AEC-942B-A5F1DFD91D59}
[2012/06/10 11:44:13 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{D81E6693-3260-4081-A0BF-BA4458FDE8FC}
[2012/06/09 12:00:48 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{8C762EC8-FDB8-400B-B233-207DFF50CA44}
[2012/06/09 12:00:37 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5564D022-BDD6-4F79-BD89-1E8D2E231A55}
[2012/06/08 20:25:15 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{5F74169C-518C-4FAF-9CF8-81A762BA122F}
[2012/06/08 20:24:58 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{22EA74B3-FEDF-4C8D-BC87-A92FC610F7C8}
[2012/06/08 14:04:41 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{135222A9-EEE8-4D39-8595-E849455C175C}
[2012/06/08 14:04:30 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{AD7E68E5-82BC-479F-829B-8F43BC80249E}
[2012/06/07 22:31:02 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{B46C7CAA-BFE9-4BA9-A705-10AE337EB582}
[2012/06/07 22:30:47 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F8F2C0D9-9F11-4526-B13F-C98CB06A37CA}
[2012/06/07 14:04:53 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{4FADB071-2391-47DC-9447-F4CEDC4B2918}
[2012/06/07 14:04:28 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{96EB8F6B-6AFE-4332-A4FC-B8957C769680}
[2012/06/07 11:29:56 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{0513C505-72B0-479C-A3D0-3EDD878BEB3D}
[2012/06/07 11:29:29 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{1D67728E-10BF-4727-9E33-B342F20819FC}
[2012/06/06 14:01:24 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{A36E2971-6C3E-44F5-95E4-5C12BB7562ED}
[2012/06/06 14:01:10 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{11315094-1492-4960-813E-9EBFD5DB7972}
[2012/06/06 09:27:09 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{E5249F7C-12AD-470C-9B5E-EDBE771F6EAA}
[2012/06/06 09:26:57 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{AB43CD55-8B8D-41A5-BB7F-F514A7D97042}
[2012/06/05 14:44:32 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{2869C400-401D-4265-AD6E-CBCD65155E04}
[2012/06/05 14:44:19 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{58A2C191-8434-4834-91E2-123CCDD53CFD}
[2012/06/04 23:45:03 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{9784DF2E-7103-42FB-AC70-AA49B82BCD0E}
[2012/06/04 23:44:50 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\{F3EB88B5-603C-4215-A27C-46D701E6AB1C}
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/07/04 14:04:33 | 000,015,040 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/07/04 14:04:31 | 000,015,040 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/07/04 14:01:24 | 000,783,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/07/04 14:01:24 | 000,667,112 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/07/04 14:01:24 | 000,126,490 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/07/04 13:58:35 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2012/07/04 13:56:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/07/04 13:56:01 | 2140,741,631 | -HS- | M] () -- C:\hiberfil.sys
[2012/07/04 12:16:04 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2717902124-3435144791-1319755808-1000UA.job
[2012/07/04 11:45:13 | 000,174,024 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/07/04 11:45:13 | 000,174,024 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/07/04 11:42:10 | 000,002,358 | ---- | M] () -- C:\Users\user\Desktop\Google Chrome.lnk
[2012/07/03 23:57:57 | 000,070,428 | ---- | M] () -- C:\Users\user\Desktop\180216_3444788560184_1999421635_n.jpg
[2012/07/03 14:05:59 | 339,115,891 | ---- | M] () -- C:\Users\user\Desktop\campkitchenercircle.psd
[2012/07/02 23:27:54 | 196,065,173 | ---- | M] () -- C:\Users\user\Desktop\campkitchener.psd
[2012/06/30 13:39:44 | 000,001,456 | ---- | M] () -- C:\Users\user\AppData\Local\Adobe Save for Web 12.0 Prefs
[2012/06/30 13:39:43 | 000,378,096 | ---- | M] () -- C:\Users\user\Desktop\kitchener.jpg
[2012/06/29 20:10:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2717902124-3435144791-1319755808-1000UA.job
[2012/06/28 23:10:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2717902124-3435144791-1319755808-1000Core.job
[2012/06/18 14:17:59 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/06/17 21:20:37 | 000,037,272 | ---- | M] () -- C:\Users\user\Desktop\148329_10150102247886177_3169603_n.jpg
[2012/06/17 09:16:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2717902124-3435144791-1319755808-1000Core.job
[2012/06/13 19:42:24 | 004,944,352 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/06/11 23:15:05 | 000,065,340 | ---- | M] () -- C:\Users\user\Desktop\diamond.png
[2012/06/06 18:14:14 | 000,007,664 | ---- | M] () -- C:\Users\user\Desktop\216148_21759331176_2669379_n.jpg
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/07/03 23:57:57 | 000,070,428 | ---- | C] () -- C:\Users\user\Desktop\180216_3444788560184_1999421635_n.jpg
[2012/07/02 23:41:03 | 339,115,891 | ---- | C] () -- C:\Users\user\Desktop\campkitchenercircle.psd
[2012/06/30 13:39:43 | 000,378,096 | ---- | C] () -- C:\Users\user\Desktop\kitchener.jpg
[2012/06/27 15:31:21 | 196,065,173 | ---- | C] () -- C:\Users\user\Desktop\campkitchener.psd
[2012/06/18 14:17:59 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/06/17 21:20:43 | 000,037,272 | ---- | C] () -- C:\Users\user\Desktop\148329_10150102247886177_3169603_n.jpg
[2012/06/11 23:15:05 | 000,065,340 | ---- | C] () -- C:\Users\user\Desktop\diamond.png
[2012/06/06 18:14:19 | 000,007,664 | ---- | C] () -- C:\Users\user\Desktop\216148_21759331176_2669379_n.jpg
[2011/03/28 22:34:45 | 000,001,456 | ---- | C] () -- C:\Users\user\AppData\Local\Adobe Save for Web 12.0 Prefs
[2010/12/16 11:31:17 | 000,210,192 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeW7.dll
[2010/12/16 11:31:17 | 000,206,096 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeA6.dll
[2010/12/16 11:31:17 | 000,197,904 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeP6.dll
[2010/12/16 11:31:17 | 000,197,904 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeM6.dll
[2010/12/16 11:31:17 | 000,193,808 | ---- | C] () -- C:\Windows\SysWow64\IVIresizePX.dll
[2010/12/16 11:31:17 | 000,025,872 | ---- | C] () -- C:\Windows\SysWow64\IVIresize.dll
[2010/12/15 15:56:23 | 000,007,597 | ---- | C] () -- C:\Users\user\AppData\Local\Resmon.ResmonCfg
[2010/12/15 12:03:27 | 000,788,994 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/12/15 11:16:57 | 000,030,528 | ---- | C] () -- C:\Windows\GVTDrv64.sys
[2010/12/15 10:36:22 | 000,072,304 | R--- | C] () -- C:\Windows\SysWow64\XSrvSetup.exe
[2010/12/15 10:33:58 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2010/12/15 10:22:55 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/09/17 19:17:02 | 000,002,888 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
========== LOP Check ==========
[2012/01/30 00:53:45 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Audacity
[2011/08/06 20:12:37 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Autodesk
[2011/08/10 01:46:57 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011/03/22 20:01:43 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\PACE Anti-Piracy
[2010/12/16 13:44:18 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Publish Providers
[2012/06/21 17:05:59 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\SoftGrid Client
[2010/12/16 13:44:17 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Sony
[2011/03/22 20:33:53 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010/12/15 12:04:25 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\TP
[2010/12/16 13:06:37 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Ulead Systems
[2012/06/28 22:59:30 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Windows Live Writer
[2012/06/28 23:10:00 | 000,000,902 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2717902124-3435144791-1319755808-1000Core.job
[2012/06/29 20:10:00 | 000,000,924 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2717902124-3435144791-1319755808-1000UA.job
[2012/05/29 10:56:00 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
< MD5 for: EXPLORER.EXE >
[2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\explorer.exe
[2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SysWOW64\explorer.exe
[2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SoftwareDistribution\Download\488053cdbca3231eeb2c2af7236d09ed\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009/08/03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009/10/31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\SoftwareDistribution\Download\488053cdbca3231eeb2c2af7236d09ed\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011/02/26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009/08/03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: USERINIT.EXE >
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SoftwareDistribution\Download\488053cdbca3231eeb2c2af7236d09ed\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010/11/20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SoftwareDistribution\Download\488053cdbca3231eeb2c2af7236d09ed\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010/11/20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SoftwareDistribution\Download\488053cdbca3231eeb2c2af7236d09ed\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< C:\Windows\assembly\tmp\U\*.* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 1214 bytes -> C:\Users\user\AppData\Local\rWoMYtleaQdbt:Ve8skSUv2DU5VESfNRBUHWs
< End of report >
OTL Extras logfile created on: 04/07/2012 14:01:47 - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\user\Desktop
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
7.99 Gb Total Physical Memory | 6.60 Gb Available Physical Memory | 82.62% Memory free
15.98 Gb Paging File | 14.52 Gb Available in Paging File | 90.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297.99 Gb Total Space | 117.11 Gb Free Space | 39.30% Space Free | Partition Type: NTFS
Computer Name: LCC-VIDEO_1 | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{06A6F3B4-8DAD-4009-B461-3FB07438F526}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0D2E2712-AB93-4EDE-BAE1-E99653D03156}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{0DF72CAB-5426-4847-AF99-8A4E3C2117C9}" = lport=137 | protocol=17 | dir=in | app=system |
"{173363E6-309F-4E37-B732-E4CAB32FA83C}" = rport=137 | protocol=17 | dir=out | app=system |
"{27517DF2-8379-4360-901A-A7D7F9C95F62}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{32C98062-DF21-44D5-A8C0-59B8E0495620}" = rport=445 | protocol=6 | dir=out | app=system |
"{40FF6DA0-37CD-4BCC-8FFF-A8183F6AF919}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{42243DB4-16C7-45B9-972C-10266D94A3C6}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{53D0F96B-D0B0-4266-8F5C-C9AD97CD2971}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{60B24758-C835-4B81-90D5-C4CDF155A8D4}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6298D1F6-FC23-471C-AC8E-C12B66B74D18}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{63B4E2C1-415D-4EEB-BCF3-9684E18BD33F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6EB9FD65-409D-4731-B4E2-FFC7BF88A7D7}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{89098CE3-783F-4C8D-AA72-C3A24E22965E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{939D9D5B-A8E7-46C1-8EAB-A273598A5404}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{949EEEA8-9148-4D3A-88AC-79BD0ADBAB1A}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{97039142-1D76-4EDE-8FE4-8B6A34DD0630}" = lport=445 | protocol=6 | dir=in | app=system |
"{A31B3A54-DCF0-4B68-9F88-B72E25691032}" = lport=139 | protocol=6 | dir=in | app=system |
"{A6637AD1-0B75-4719-9D12-05D92179BB19}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{AB2A6F9C-42A4-4431-8613-7AFDDFF9D92D}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{C71D0B54-A637-4242-878E-8CAD770E40DD}" = lport=49161 | protocol=6 | dir=in | name=akamai netsession interface |
"{CF3BEFB5-CE58-4C48-A78F-B470D9753DB6}" = lport=49160 | protocol=6 | dir=in | name=akamai netsession interface |
"{D505199F-FA56-4A94-9290-09B3496E9B07}" = rport=138 | protocol=17 | dir=out | app=system |
"{DB23F415-5B35-490F-A606-534E696925DB}" = lport=138 | protocol=17 | dir=in | app=system |
"{DB4800CF-7AAD-4A7A-846A-3B9FAA0EB261}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E6F9ECBC-B7BC-4F40-B00D-4EFD1A490269}" = rport=139 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2572F243-B2EB-4B4E-A873-72385981F82B}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{56AB940C-279A-4F76-A2C1-867D7636981E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{6110DB18-62A0-4789-BAEF-316C1D590108}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{86CF469D-964A-4469-BD23-056B827FA0B8}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A1F363F8-78CC-40A5-AAE8-26717F18EAA1}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A9AD901F-7EB1-42C9-8A2F-8389008F214F}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{AB60F18E-DC38-4645-9FD8-A77E4DDC410B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AEBB0950-5357-43C5-ABBA-58D0756AC52B}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{B2C88281-97F5-48A0-9F16-B2D1985A1CD9}" = dir=in | app=c:\users\user\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{B650149F-6391-4E74-830C-D921B5AC7A3B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{C69A4201-8DEF-417C-93DA-BBBFF0F01A5D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D0FE9061-D54E-4AB0-AA58-1B933D8D443D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{F4DD4022-D22A-4817-B21E-71883B9064E1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{FC8C230A-76CC-447D-8F17-6F9450333369}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{FFCC427E-D649-4052-9583-F73264E26CC9}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"TCP Query User{062716DC-3AA2-4075-8232-D943C31A54B1}C:\users\user\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\user\appdata\local\akamai\netsession_win.exe |
"TCP Query User{A365C64C-1D08-4D18-82F7-1FD84BA62EA5}C:\users\user\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\user\appdata\local\akamai\netsession_win.exe |
"UDP Query User{488F4398-B9D9-41AE-9102-94D58909A4A0}C:\users\user\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\user\appdata\local\akamai\netsession_win.exe |
"UDP Query User{C9C93921-749B-48EE-BA95-84228C19CBC6}C:\users\user\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\user\appdata\local\akamai\netsession_win.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{02A5BD31-16AC-45DF-BE9F-A3167BC4AFB2}" = Windows Live Family Safety
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}" = Apple Mobile Device Support
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7346B4A0-1200-0110-0409-705C0D862004}" = Revit Architecture 2012
"{7346B4A0-1200-0111-0409-705C0D862004}" = Revit Architecture 2012 Language Pack - English
"{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}" = iTunes
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{90A80D89-A0E4-33C1-B13D-B93CB3496867}" = Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Autodesk Revit Architecture 2012" = Autodesk Revit Architecture 2012
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU" = Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU
"WinRAR archiver" = WinRAR 4.00 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}" = Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1111706F-666A-4037-7777-210328764D10}" = JavaFX 2.1.0
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{14866AAD-1F23-39AC-A62B-7091ED1ADE64}" = Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{24FF088D-CDCF-480C-8A4B-98F14A54CAA8}" = Autodesk Material Library Low Resolution Image Library 2012
"{26A24AE4-039D-4CA4-87B4-2F83217004FF}" = Java™ 7 Update 4
"{288DB08D-0708-4A94-B055-55B99E39EB62}" = Adobe Creative Suite 5 Master Collection
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{41E340F0-0BD6-4A87-AF29-E9E584471756}" = VideoMate C Series PCI Driver
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}" = Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65420DC9-306E-4371-905F-F4DC3B418E52}" = Autodesk Material Library Base Resolution Image Library 2012
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6DA2B636-698A-3294-BF4A-B5E11B238CDD}" = Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729
"{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}" = Adobe Flash Player 10 ActiveX
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7CAC6A44-C3DE-4153-ACA6-7524602C789E}" = Facebook Video Calling 1.2.0.159
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{88E62BD7-A532-48F6-8428-D949BB93A2D7}" = Play Wireless USB Adapter
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}" = Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}" = Autodesk Material Library 2012
"{90140011-0062-0409-0000-0000000FF1CE}" = Microsoft Office Home and Business 2010 - English
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-007A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007D-0409-0000-0000000FF1CE}" = Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A49BDCBE-590E-43A6-AB77-7C40E499B7C1}" = Autodesk Design Review 2012
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{ABC887FA-1BAC-411B-9F0F-21BA16702F15}" = VideoStudio
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}" = Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729
"{B5751715-EC10-43D9-8C95-62E1368433EF}" = Autodesk Material Library Medium Resolution Image Library 2012
"{BC41C09D-FAA9-4346-9FE6-1E0017BC551A}" = Adobe Flash Player 10 Plugin
"{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}" = Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D9E52CD1-9DF1-4A8A-9BDC-1E5E53982F2B}" = Black & White® 2
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}" = QuickTime
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}" = Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Akamai" = Akamai NetSession Interface Service
"Autodesk Design Review 2012" = Autodesk Design Review 2012
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"ffvfw" = ffvfw (uninstall only)
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{88E62BD7-A532-48F6-8428-D949BB93A2D7}" = Play Wireless USB Adapter
"InstallShield_{ABC887FA-1BAC-411B-9F0F-21BA16702F15}" = Ulead VideoStudio 11 SE DVD
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"WavePad" = WavePad Sound Editor
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinLiveSuite" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 10/05/2012 17:04:41 | Computer Name = LCC-Video_1 | Source = Application Virtualization Client | ID = 3008
Description = {hap=19:app=Microsoft Excel 2010 9014006204090000:tid=1304:usr=user}
The
client was unable to connect to an Application Virtualization Server (rc 24604E0A-40000193)
Error - 10/05/2012 17:05:15 | Computer Name = LCC-Video_1 | Source = Application Virtualization Client | ID = 5009
Description = {hap=1A:app=Microsoft Excel 2010 9014006204090000:tid=10C0:usr=user}
The
Application Virtualization Client could not connect to stream URL '
http://c2r.microsoft...0.5138.5002.sft'
(rc 24604E0A-40000193, original rc 24604E0A-40000193).
Error - 10/05/2012 17:05:15 | Computer Name = LCC-Video_1 | Source = Application Virtualization Client | ID = 3008
Description = {hap=1A:app=Microsoft Excel 2010 9014006204090000:tid=10C0:usr=user}
The
client was unable to connect to an Application Virtualization Server (rc 24604E0A-40000193)
Error - 10/05/2012 17:08:49 | Computer Name = LCC-Video_1 | Source = Application Virtualization Client | ID = 5009
Description = {hap=1B:app=Microsoft Excel 2010 9014006204090000:tid=13D0:usr=user}
The
Application Virtualization Client could not connect to stream URL '
http://c2r.microsoft...0.5138.5002.sft'
(rc 24604E0A-40000193, original rc 24604E0A-40000193).
Error - 10/05/2012 17:08:49 | Computer Name = LCC-Video_1 | Source = Application Virtualization Client | ID = 3008
Description = {hap=1B:app=Microsoft Excel 2010 9014006204090000:tid=13D0:usr=user}
The
client was unable to connect to an Application Virtualization Server (rc 24604E0A-40000193)
Error - 25/05/2012 15:34:24 | Computer Name = LCC-Video_1 | Source = CVHSVC | ID = 100
Description = Information only. (Patch task for {90140011-0062-0409-0000-0000000FF1CE}):
DownloadLatest Failed:
Error - 07/06/2012 14:37:51 | Computer Name = LCC-Video_1 | Source = Application Hang | ID = 1002
Description = The program iTunes.exe version 10.6.1.7 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: ef4 Start Time:
01cd44d9fd4a044e Termination Time: 6 Application Path: C:\Program Files (x86)\iTunes\iTunes.exe
Report
Id:
Error - 12/06/2012 08:35:43 | Computer Name = LCC-Video_1 | Source = Application Hang | ID = 1002
Description = The program wmplayer.exe version 12.0.7600.16667 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: f98 Start
Time: 01cd4896b2061049 Termination Time: 60000 Application Path: C:\Program Files
(x86)\Windows Media Player\wmplayer.exe Report Id: f21359a7-b48a-11e1-b9c0-1c6f653d42f3
Error - 17/06/2012 16:19:38 | Computer Name = LCC-Video_1 | Source = Application Hang | ID = 1002
Description = The program WINWORD.EXE version 0.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: 1344 Start Time:
01cd4ca491ba62db Termination Time: 10 Application Path: Q:\140062.enu\Office14\WINWORD.EXE
Report
Id:
Error - 04/07/2012 05:27:19 | Computer Name = LCC-Video_1 | Source = Application Error | ID = 1000
Description = Faulting application name: notepad.exe, version: 6.1.7600.16385, time
stamp: 0x4a5bc9b3 Faulting module name: ntdll.dll, version: 6.1.7600.16915, time
stamp: 0x4ec4b137 Exception code: 0xc0000005 Fault offset: 0x000000000009c524 Faulting
process id: 0x46c Faulting application start time: 0x01cd59c7346979f1 Faulting application
path: C:\Windows\notepad.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 7351d0b7-c5ba-11e1-a690-1c6f653d42f3
[ System Events ]
Error - 30/06/2012 05:54:14 | Computer Name = LCC-Video_1 | Source = cdrom | ID = 262155
Description = The driver detected a controller error on \Device\CdRom0.
Error - 02/07/2012 17:59:38 | Computer Name = LCC-Video_1 | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 02/07/2012 17:59:38 | Computer Name = LCC-Video_1 | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 02/07/2012 17:59:39 | Computer Name = LCC-Video_1 | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 02/07/2012 17:59:39 | Computer Name = LCC-Video_1 | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 02/07/2012 17:59:40 | Computer Name = LCC-Video_1 | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 04/07/2012 06:22:18 | Computer Name = LCC-Video_1 | Source = Microsoft Antimalware | ID = 2004
Description = %%860 has encountered an error trying to load signatures and will
attempt reverting back to a known-good set of signatures. Signatures Attempted: %%824
Error
Code: 0x80070002 Error description: The system cannot find the file specified. Signature
version: 1.129.640.0;1.129.640.0 Engine version: 1.1.8502.0
Error - 04/07/2012 08:57:24 | Computer Name = LCC-Video_1 | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Application
Virtualization Client service to connect.
Error - 04/07/2012 08:57:24 | Computer Name = LCC-Video_1 | Source = Service Control Manager | ID = 7000
Description = The Application Virtualization Client service failed to start due
to the following error: %%1053
Error - 04/07/2012 08:57:25 | Computer Name = LCC-Video_1 | Source = Service Control Manager | ID = 7001
Description = The Client Virtualization Handler service depends on the Application
Virtualization Client service which failed to start because of the following error:
%%1053
< End of report >
Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 
This topic is locked
