Solved Google Re-direct Problem

[Resolved] Google Re-direct Problem

Thanks for your help. I am experiencing re-direct problems when running Google within Firefox. It occurs roughly 40-50% of the time to various different sites. I have run CC Cleaner, used Super Anti-Spyware Free Edition, MalwareBytes, (all have found no problems) and regularly use Aviva Anti-virus software. Logs are below. Thanks for your help.


DDS (Ver_09-12-01.01) - NTFSX64
Run by Janny at 19:10:40.73 on 16/01/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_17
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.2.1033.18.8183.6624 [GMT -5:00]

SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\ehome\ehRecvr.exe
C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe
C:\Program Files\Windows Media Player\wmprph.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Users\Janny\Desktop\dds.scr
C:\Windows\system32\conhost.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.ca/
mLocal Page = c:\windows\syswow64\blank.htm
uInternet Settings,ProxyOverride = local
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - No File
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - No File
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [Zinio DLM] c:\program files (x86)\zinio\ZinioReader.exe /autostart
uRun: [Google Update] "c:\users\janny\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [ctl3ddbgfx] rundll32.exe "c:\users\janny\appdata\local\ctl3ddbgfx\ctl3ddbgfx.dll ", DllInit
uRun: [SUPERAntiSpyware] c:\program files (x86)\superantispyware\SUPERAntiSpyware.exe
uRun: [AlcoholAutomount] "c:\program files (x86)\alcohol soft\alcohol 120\axcmd.exe" /automount
mRun: [<NO NAME>]
mRun: [Acrobat Assistant 8.0] "c:\program files (x86)\adobe\acrobat 9.0\acrobat\Acrotray.exe "
mRun: [Adobe Acrobat Speed Launcher] "c:\program files (x86)\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe "
mRun: [avgnt] "c:\program files (x86)\avira\antivir desktop\avgnt.exe" /min
mRun: [DellSupportCenter] "c:\program files (x86)\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [StartCCC] "c:\program files (x86)\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [PDVDDXSrv] "c:\program files (x86)\cyberlink\powerdvd dx\PDVDDXSrv.exe "
mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 9.0\reader\Reader_sl.exe "
mRun: [Adobe ARM] "c:\program files (x86)\common files\adobe\arm\1.0\AdobeARM.exe "
mRun: [QuickTime Task] "c:\program files (x86)\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files (x86)\itunes\iTunesHelper.exe "
mRun: [SunJavaUpdateSched] "c:\program files (x86)\java\jre6\bin\jusched.exe "
StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\delldo~1.lnk - c:\program files\dell\delldock\DellDock.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Append Link Target to Existing PDF - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~2\micros~2\office12\EXCEL.EXE/3000
IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - c:\program files (x86)\bonjour\ExplorerPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~2\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFECAFE-0013-0001-0028-ABCDEFABCDEF} - hxxp://esis.tldsb.on.ca/forms/jinitiator/jinit.exe
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~2\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files (x86)\superantispyware\SASWINLO.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files (x86)\superantispyware\SASSEH.DLL
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO-X64: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - c:\program files (x86)\hotspot shield\hssie\HssIE_64.dll
TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
TB-X64: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
mRun-x64: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
mRun-x64: [EPSON Stylus Photo R2400] c:\windows\system32\spool\drivers\x64\3\E_FATI9SA.EXE /P24 "EPSON Stylus Photo R2400" /O6 "USB002" /M "Stylus Photo R2400 "

================= FIREFOX ===================

FF - ProfilePath - c:\users\janny\appdata\roaming\mozilla\firefox\profiles\mmgf31xe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.netvibes.com/#General
FF - plugin: c:\program files (x86)\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files (x86)\google\update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\users\janny\appdata\local\google\update\1.2.183.13\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl3.rsa_seed_sha ", true);

============= SERVICES / DRIVERS ===============

R0 PxHlpa64;PxHlpa64;c:\windows\system32\drivers\PxHlpa64.sys [2009-7-16 53488]
R2 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7};Power Control [2009/10/30 00:13:52];c:\program files (x86)\cyberlink\powerdvd dx\000.fcl [2009-10-29 146928]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-10-29 202752]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files (x86)\avira\antivir desktop\sched.exe [2009-10-1 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files (x86)\avira\antivir desktop\avguard.exe [2009-10-1 185089]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2009-10-1 74880]
R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2009-6-9 155648]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\drivers\e1y60x64.sys [2009-6-10 281088]
R3 HCW85BDA;Hauppauge WinTV 885 Video Capture;c:\windows\system32\drivers\HCW85BDA.sys [2009-7-14 1708800]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\drivers\vcsvad.sys [2010-1-12 21504]
S1 SASDIFSV;SASDIFSV;c:\program files (x86)\superantispyware\sasdifsv.sys [2009-12-16 9968]
S1 SASKUTIL;SASKUTIL;c:\program files (x86)\superantispyware\SASKUTIL.SYS [2009-12-16 74480]
S2 gupdate;Google Update Service (gupdate);c:\program files (x86)\google\update\GoogleUpdate.exe [2009-12-3 135664]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\common files\macrovision shared\flexnet publisher\FNPLicensingService64.exe [2009-7-23 1038088]
S3 pbfilter;pbfilter;c:\program files\peerblock\pbfilter.sys [2009-11-21 19544]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2009-6-17 15208]
S3 SASENUM;SASENUM;c:\program files (x86)\superantispyware\SASENUM.SYS [2009-12-16 7408]
S3 SureThing Labelflash service;SureThing Labelflash service;c:\program files (x86)\common files\surething shared\stllssvr.exe [2008-3-24 74384]
S3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl64.sys [2009-8-28 49152]

=============== Created Last 30 ================

2010-01-16 22:18:19 0 d-----w- C:\Hotspot Shield
2010-01-13 01:54:43 70656 ----a-w- c:\windows\syswow64\fontsub.dll
2010-01-13 01:54:43 148480 ----a-w- c:\windows\system32\t2embed.dll
2010-01-13 01:54:43 108544 ----a-w- c:\windows\syswow64\t2embed.dll
2010-01-13 01:54:43 100864 ----a-w- c:\windows\system32\fontsub.dll
2010-01-12 23:41:46 0 d-----w- c:\program files (x86)\LimeWire
2010-01-12 21:26:14 0 d-----w- C:\AV_LOGS
2010-01-12 21:24:39 21504 ----a-w- c:\windows\system32\drivers\vcsvad.sys
2010-01-12 21:03:21 0 d-----w- c:\users\janny\appdata\roaming\Marine Aquarium 3
2010-01-12 21:03:19 6545408 ----a-w- c:\windows\system32\MarineAquarium3.scr
2010-01-12 21:03:19 0 d-----w- c:\program files\SereneScreen
2010-01-12 17:26:37 0 d-----w- c:\program files (x86)\Formosoft
2010-01-10 16:36:06 65536 --sha-w- c:\users\janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TM.blf
2010-01-10 16:36:06 524288 --sha-w- c:\users\janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
2010-01-10 16:36:06 524288 --sha-w- c:\users\janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
2010-01-09 16:00:28 65536 --sha-w- c:\users\janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TM.blf
2010-01-09 16:00:28 524288 --sha-w- c:\users\janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
2010-01-09 16:00:28 524288 --sha-w- c:\users\janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
2010-01-09 15:45:01 65536 --sha-w- c:\users\janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TM.blf
2010-01-09 15:45:01 524288 --sha-w- c:\users\janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
2010-01-09 15:45:01 524288 --sha-w- c:\users\janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
2010-01-08 21:12:00 65536 --sha-w- c:\users\janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TM.blf
2010-01-08 21:12:00 524288 --sha-w- c:\users\janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
2010-01-08 21:12:00 524288 --sha-w- c:\users\janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
2010-01-08 21:04:58 65536 --sha-w- c:\users\janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TM.blf
2010-01-08 21:04:58 524288 --sha-w- c:\users\janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
2010-01-08 21:04:58 524288 --sha-w- c:\users\janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
2010-01-08 14:16:09 524288 --sha-w- c:\users\janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
2010-01-08 14:16:08 65536 --sha-w- c:\users\janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TM.blf
2010-01-08 14:16:08 524288 --sha-w- c:\users\janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
2010-01-04 17:11:00 0 d-----w- c:\users\janny\appdata\roaming\Simply Super Software
2010-01-04 17:11:00 0 d-----w- c:\programdata\Simply Super Software
2010-01-04 17:11:00 0 d-----w- c:\program files (x86)\Trojan Remover
2010-01-03 23:39:11 0 d-----w- c:\program files (x86)\ESET
2010-01-03 22:54:17 0 d-----w- c:\program files (x86)\Trend Micro
2010-01-03 22:17:09 149280 ----a-w- c:\windows\syswow64\javaws.exe
2010-01-03 22:17:09 145184 ----a-w- c:\windows\syswow64\javaw.exe
2010-01-03 22:17:09 145184 ----a-w- c:\windows\syswow64\java.exe
2010-01-03 22:09:13 0 d-----w- c:\programdata\SUPERAntiSpyware.com
2010-01-03 22:09:04 0 d-----w- c:\users\janny\appdata\roaming\SUPERAntiSpyware.com
2010-01-03 22:09:04 0 d-----w- c:\program files (x86)\SUPERAntiSpyware
2010-01-03 21:52:04 0 d-----w- c:\program files (x86)\CCleaner
2009-12-22 01:17:10 600 ----a-w- c:\users\janny\PUTTY.RND
2009-12-22 01:13:31 31232 ----a-w- c:\windows\system32\drivers\tap0901.sys
2009-12-18 22:09:51 0 d-----w- c:\program files (x86)\DVDVideoSoft
2009-12-18 22:09:51 0 d-----w- c:\program files (x86)\common files\DVDVideoSoft
2009-12-18 22:04:15 0 d-----w- c:\program files (x86)\DVRSoft

==================== Find3M ====================

2010-01-12 04:12:36 871408 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-12-28 21:59:31 217992 ---ha-w- c:\windows\syswow64\mlfcache.dat
2009-12-07 18:00:06 74880 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-12-05 22:38:33 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2009-11-29 20:48:17 9728 ----a-w- c:\windows\syswow64\BASSMOD.dll
2009-11-22 22:37:58 120872 ----a-w- c:\windows\File Renamer - Basic Uninstaller.exe
2009-11-19 07:22:46 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll
2009-11-19 07:22:46 5958656 ----a-w- c:\windows\syswow64\mshtml.dll
2009-11-15 22:21:17 34308 ----a-w- c:\windows\syswow64\Chip.dll
2009-11-03 01:42:06 226688 ------w- c:\windows\system32\MpSigStub.exe
2009-10-30 03:28:15 22744 ----a-w- c:\windows\system32\emptyregdb.dat
2009-10-30 01:21:50 525792 ----a-w- c:\windows\DIFxAPI.dll
2009-10-29 07:48:16 2048 ----a-w- c:\windows\system32\tzres.dll
2009-10-29 07:22:37 2048 ----a-w- c:\windows\syswow64\tzres.dll
2009-10-29 03:25:38 1913 ----a-w- c:\windows\ipconfig.dat
2009-10-20 18:20:12 105488 ----a-w- c:\windows\system32\Packet.dll
2009-10-20 18:20:06 96784 ----a-w- c:\windows\syswow64\Packet.dll
2009-10-20 18:19:58 369168 ----a-w- c:\windows\system32\wpcap.dll
2009-10-20 18:19:54 281104 ----a-w- c:\windows\syswow64\wpcap.dll
2009-10-20 18:19:30 53299 ----a-w- c:\windows\syswow64\pthreadVC.dll
2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini
2009-07-14 04:54:24 174 --sha-w- c:\program files (x86)\desktop.ini
2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

============= FINISH: 19:10:50.03 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-12-01.01)

Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 29/10/2009 11:49:09 PM
System Uptime: 16/01/2010 1:02:27 PM (6 hours ago)

Motherboard: Dell Inc. | | 0R849J
Processor: Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz | CPU 1 | 2668/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 916 GiB total, 546.107 GiB free.
D: is FIXED (NTFS) - 15 GiB total, 8.374 GiB free.
E: is CDROM (UDF)
F: is FIXED (NTFS) - 466 GiB total, 270.12 GiB free.

==== Disabled Device Manager Items =============

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: sptd
Device ID: ROOT\LEGACY_SPTD\0000
Manufacturer:
Name: sptd
PNP Device ID: ROOT\LEGACY_SPTD\0000
Service: sptd

==== System Restore Points ===================

RP78: 27/12/2009 4:25:13 PM - Windows Update
RP79: 28/12/2009 10:04:24 AM - Windows Update
RP80: 31/12/2009 8:07:45 PM - Windows Update
RP81: 03/01/2010 3:10:33 PM - Revo Uninstaller's restore point - Mozilla Firefox (3.5.4)
RP82: 03/01/2010 5:01:58 PM - Revo Uninstaller's restore point - LimeWire PRO 4.18.8
RP83: 03/01/2010 5:08:50 PM - Installed SUPERAntiSpyware Free Edition
RP84: 03/01/2010 5:16:28 PM - Installed Java(TM) 6 Update 17
RP85: 03/01/2010 6:24:50 PM - Revo Uninstaller's restore point - µTorrent
RP86: 04/01/2010 11:37:34 AM - Windows Update
RP87: 06/01/2010 6:11:24 PM - Revo Uninstaller's restore point - µTorrent
RP88: 07/01/2010 10:58:23 PM - Windows Update
RP90: 08/01/2010 9:01:22 AM - SPTD setup V1.55
RP92: 08/01/2010 9:06:45 AM - SPTD setup V1.55
RP93: 08/01/2010 9:12:43 AM - Restore Operation
RP94: 08/01/2010 4:15:41 PM - Windows Update
RP95: 08/01/2010 6:36:10 PM - Before installing Alcohol 120
RP97: 08/01/2010 6:39:11 PM - SPTD setup V1.62
RP99: 09/01/2010 10:28:13 AM - SPTD setup V1.55
RP100: 09/01/2010 10:42:03 AM - Restore Operation
RP101: 09/01/2010 11:03:57 AM - Windows Update
RP102: 09/01/2010 8:43:12 PM - Windows Update
RP103: 10/01/2010 11:31:26 AM - Restore Operation
RP104: 10/01/2010 11:02:22 PM - Windows Update
RP105: 11/01/2010 6:48:50 PM - Windows Update
RP107: 11/01/2010 10:29:45 PM - SPTD setup V1.55
RP109: 11/01/2010 10:35:39 PM - SPTD setup V1.55
RP111: 11/01/2010 10:46:14 PM - SPTD setup V1.58
RP113: 11/01/2010 10:53:57 PM - SPTD setup V1.58
RP115: 11/01/2010 11:08:06 PM - SPTD setup V1.58
RP117: 11/01/2010 11:11:48 PM - SPTD setup V1.58
RP118: 12/01/2010 12:26:10 PM - Installed My Sim Aquarium
RP119: 12/01/2010 4:11:44 PM - Revo Uninstaller's restore point - My Sim Aquarium
RP120: 12/01/2010 4:12:20 PM - Removed My Sim Aquarium
RP121: 12/01/2010 4:25:28 PM - Device Driver Package Install: AVNEX Ltd. Sound, video and game controllers
RP122: 12/01/2010 4:35:33 PM - Revo Uninstaller's restore point - AV Voice Changer Software GOLD 7.0
RP123: 13/01/2010 3:00:30 AM - Windows Update
RP124: 14/01/2010 5:32:42 PM - Windows Update
RP125: 16/01/2010 4:27:51 PM - Revo Uninstaller's restore point - CloneDVD2
RP126: 16/01/2010 5:52:39 PM - Revo Uninstaller's restore point - Hotspot Shield 1.37

==== Installed Programs ======================

7-Zip 4.65
Acrobat.com
Adobe Acrobat 9 Pro - English, Français, Deutsch
Adobe Acrobat 9.1.3 - CPSID_49522
Adobe After Effects CS4 Third Party Content
Adobe AIR
Adobe Anchor Service CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe Creative Suite 4 Master Collection
Adobe CSI CS4
Adobe Default Language CS4
Adobe Dreamweaver CS4
Adobe Encore CS4 Codecs
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Illustrator CS4
Adobe Linguistics CS4
Adobe Media Encoder CS4 Exporter
Adobe Media Encoder CS4 Importer
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Premiere Pro CS4 Third Party Content
Adobe Reader 9.2
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Shockwave Player 11.5
Adobe Soundbooth CS4 Codecs
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Air Canada TravelDesk
Apple Application Support
Apple Software Update
µTorrent
Avira AntiVir Personal - Free Antivirus
AviSynth 2.5
AWC V3.0.7
Bonjour
Bookworm Deluxe 1.13
Call of Duty(R) 4 - Modern Warfare(TM)
Canon MP Navigator EX 2.0
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help English
CCC Help French
CCC Help German
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Portuguese
CCC Help Spanish
CCC Help Turkish
CCleaner
CloneDVD2
Compatibility Pack for the 2007 Office system
Connect
ConvertXtoDVD 3 english manual
ConvertXtoDVD 3.6.12.174
Dell Dock
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Video Chat
DVD-CLONER V6.00 Build 975
dvdSanta 4.50
EasyGPS 3.03
erLT
File Renamer - Basic
FlvRecorder
Foxit Reader
Free Video to iPhone Converter version 2.2
Games by Petersonic 1.00
Ghost Recon
Google Chrome
Google Earth
Google Update Helper
GoToAssist 8.0.0.514
Hauppauge MCE XP/Vista Software Encoder (2.0.27022)
Hauppauge WinTV
Hauppauge WinTV Location Manager
Hauppauge WinTV Scheduler
Hauppauge WinTV Soft PVR
HijackThis 2.0.2
InterVideo FilterSDK for Hauppauge
Ipswitch WS_FTP Pro
iTunesFolderWatch
Jalbum
Java(TM) 6 Update 17
kuler
LimeWire PRO 4.18.8
Logitech SetPoint
Lyricsnapper
Magic DVD Ripper V5.2.1 build 8
Magic ISO Maker v5.5 (build 0265)
Malwarebytes' Anti-Malware
Microsoft Choice Guard
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft WSE 3.0 Runtime
Mozilla Firefox (3.5.7)
Mozilla Thunderbird (2.0.0.23)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NEF Codec
Nero 7 Ultra Edition
neroxml
Net Meter 3.6 build 437
Oracle JInitiator 1.3.1.28
PDF Settings CS4
Photoshop Camera Raw
PowerDVD DX
QuickTime
Revo Uninstaller 1.83
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
Secunia PSI
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB973704)
Security Update for Microsoft Office Excel 2007 (KB973593)
Security Update for Microsoft Office Publisher 2007 (KB969693)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Word 2007 (KB969604)
SereneScreen Marine Aquarium 2.6
Skype™ 4.1
Sothink FLV Player
Stanza
Suite Shared Configuration CS4
SUPERAntiSpyware Free Edition
SureThing CD Labeler Deluxe 5
System Requirements Lab
The Sims™ 3
TweakNow PowerPack 2009
ubi.com
Ulead DVD PictureShow 2
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office InfoPath 2007 (KB976416)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
URL Snooper v2.25.01
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
WinPcap 4.1.1
WinRAR archiver
WinX DVD Ripper Platinum 5.1.1
Xilisoft DVD Ripper Ultimate
Zinio Reader

==== Event Viewer Messages From Past Week ========

16/01/2010 6:51:45 PM, Error: Service Control Manager [7000] - The SASKUTIL service failed to start due to the following error: This driver has been blocked from loading
16/01/2010 6:51:45 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
16/01/2010 6:51:44 PM, Error: Service Control Manager [7000] - The SASENUM service failed to start due to the following error: This driver has been blocked from loading
16/01/2010 6:51:44 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
16/01/2010 6:51:42 PM, Error: Service Control Manager [7000] - The SASDIFSV service failed to start due to the following error: This driver has been blocked from loading
16/01/2010 6:51:42 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
16/01/2010 5:52:55 PM, Error: Service Control Manager [7034] - The Hotspot Shield Monitoring Service service terminated unexpectedly. It has done this 1 time(s).
16/01/2010 5:18:36 PM, Error: Service Control Manager [7003] - The Hotspot Shield Service service depends the following service: taphss. This service might not be installed.
16/01/2010 5:18:35 PM, Error: Service Control Manager [7030] - The Hotspot Shield Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
16/01/2010 11:24:35 AM, Error: bowser [8003] - The master browser has received a server announcement from the computer BRYANNA-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{38EF3808-7B75-4E34-AAB4-BEBA8BCD1B69}. The master browser is stopping or an election is being forced.
16/01/2010 11:09:35 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SASDIFSV SASKUTIL sptd
16/01/2010 11:08:59 AM, Error: sptd [4] - Driver detected an internal error in its data structures for .
12/01/2010 12:10:42 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
11/01/2010 10:47:00 PM, Error: Service Control Manager [7023] - The Windows Update service terminated with the following error: %%-2147467243
10/01/2010 12:31:46 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments " " in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
10/01/2010 12:30:49 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
10/01/2010 12:30:47 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
10/01/2010 12:30:47 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
10/01/2010 12:30:47 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments " " in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
10/01/2010 12:30:43 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
10/01/2010 12:30:37 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments " " in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
10/01/2010 12:30:34 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache ElbyCDIO SASDIFSV SASKUTIL spldr sptd Wanarpv6

==== End Of File ===========================

 

Firefox browser - not being redirected to any particular sites. Edited logs to remove word wrap.

 

Yes, IE seems to be problem-free.

GooredFix by jpshortstuff (08.01.10.1)
Log created at 21:33 on 16/01/2010 (Janny)
Firefox version 3.5.7 (en-US)

========== GooredScan ==========


========== GooredLog ==========

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [20:23 03/01/2010]
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [22:17 03/01/2010]

C:\Users\Janny\Application Data\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\
artur.dubovoy@gmail.com [20:56 03/01/2010]
foxyproxy@eric.h.jung [22:20 16/01/2010]
personas@christopher.beard [22:15 15/01/2010]
stratareloaded@addons.mozilla.org [21:09 03/01/2010]
{0545b830-f0aa-4d7e-8820-50a4629a56fe} [20:56 03/01/2010]
{20a82645-c095-46ed-80e3-08825760534b} [20:56 03/01/2010]
{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [20:56 03/01/2010]
{77b819fa-95ad-4f2c-ac7c-486b356188a9} [20:56 03/01/2010]

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b} "= "c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [19:18 24/04/2009]

---------- Old Logs ----------
GooredFix[02.33.44_17-01-2010].txt

-=E.O.F=-

 

I changed the parameters of the search to Program Files (x86) as that is where the Firefox program is installed and the original search came up with file not found. Results:

SystemLook v1.0 by jpshortstuff (11.01.10)
Log created at 22:09 on 16/01/2010 by Janny (Administrator - Elevation successful)

========== dir ==========

C:\Program Files (x86)\Mozilla Firefox\searchplugins - Parameters: "(none) "

---Files---
amazondotcom.xml --a--- 1394 bytes [00:21 14/01/2010] [02:32 22/12/2009]
answers.xml --a--- 2193 bytes [00:21 14/01/2010] [02:32 22/12/2009]
creativecommons.xml --a--- 1534 bytes [00:21 14/01/2010] [02:32 22/12/2009]
eBay.xml --a--- 2344 bytes [00:21 14/01/2010] [02:32 22/12/2009]
google.xml --a--- 2371 bytes [00:21 14/01/2010] [02:32 22/12/2009]
wikipedia.xml --a--- 1178 bytes [00:21 14/01/2010] [02:32 22/12/2009]
yahoo.xml --a--- 792 bytes [00:21 14/01/2010] [02:32 22/12/2009]

---Folders---
None found.

C:\Program Files (x86)\Mozilla Firefox\components - Parameters: "(none) "

---Files---
aboutCertError.js --a--- 3013 bytes [20:23 03/01/2010] [02:32 22/12/2009]
aboutPrivateBrowsing.js --a--- 2645 bytes [20:23 03/01/2010] [02:32 22/12/2009]
aboutRights.js --a--- 2925 bytes [20:23 03/01/2010] [02:32 22/12/2009]
aboutRobots.js --a--- 2927 bytes [20:23 03/01/2010] [02:32 22/12/2009]
aboutSessionRestore.js --a--- 2644 bytes [20:23 03/01/2010] [02:32 22/12/2009]
browser.xpt --a--- 363533 bytes [20:23 03/01/2010] [02:32 22/12/2009]
browserdirprovider.dll --a--- 23512 bytes [20:23 03/01/2010] [17:41 22/12/2009]
brwsrcmp.dll --a--- 137176 bytes [20:23 03/01/2010] [17:41 22/12/2009]
FeedConverter.js --a--- 25783 bytes [20:23 03/01/2010] [02:32 22/12/2009]
FeedProcessor.js --a--- 66215 bytes [20:23 03/01/2010] [02:32 22/12/2009]
FeedWriter.js --a--- 49659 bytes [20:23 03/01/2010] [02:32 22/12/2009]
fuelApplication.js --a--- 39422 bytes [20:23 03/01/2010] [02:32 22/12/2009]
jsconsole-clhandler.js --a--- 1497 bytes [20:23 03/01/2010] [02:32 22/12/2009]
NetworkGeolocationProvider.js --a--- 9677 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsAddonRepository.js --a--- 11724 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsBadCertHandler.js --a--- 3104 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsBlocklistService.js --a--- 37310 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsBrowserContentHandler.js --a--- 33072 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsBrowserGlue.js --a--- 43584 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsContentDispatchChooser.js --a--- 5005 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsContentPrefService.js --a--- 30890 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsDefaultCLH.js --a--- 6345 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsDownloadManagerUI.js --a--- 5737 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsExtensionManager.js --a--- 344537 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsHandlerService.js --a--- 53725 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsHelperAppDlg.js --a--- 42953 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsIQTScriptablePlugin.xpt --a--- 2394 bytes [20:23 03/01/2010] [16:43 05/12/2009]
nsLivemarkService.js --a--- 36576 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsLoginInfo.js --a--- 4920 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsLoginManager.js --a--- 51295 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsLoginManagerPrompter.js --a--- 44596 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsMicrosummaryService.js --a--- 77053 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsPlacesDBFlush.js --a--- 13166 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsPlacesTransactionsService.js --a--- 39719 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsPostUpdateWin.js --a--- 21420 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsPrivateBrowsingService.js --a--- 17500 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsProxyAutoConfig.js --a--- 13682 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSafebrowsingApplication.js --a--- 25569 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSearchService.js --a--- 123367 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSearchSuggestions.js --a--- 24228 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSessionStartup.js --a--- 9167 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSessionStore.js --a--- 106407 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSetDefaultBrowser.js --a--- 2854 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsSidebar.js --a--- 12371 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsTaggingService.js --a--- 21084 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsTryToClose.js --a--- 3268 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsUpdateService.js --a--- 108242 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsUrlClassifierLib.js --a--- 50945 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsUrlClassifierListManager.js --a--- 20058 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsURLFormatter.js --a--- 3107 bytes [20:23 03/01/2010] [02:32 22/12/2009]
nsWebHandlerApp.js --a--- 6920 bytes [20:23 03/01/2010] [02:32 22/12/2009]
pluginGlue.js --a--- 3142 bytes [20:23 03/01/2010] [02:32 22/12/2009]
storage-Legacy.js --a--- 52873 bytes [20:23 03/01/2010] [02:32 22/12/2009]
storage-mozStorage.js --a--- 56155 bytes [20:23 03/01/2010] [02:32 22/12/2009]
txEXSLTRegExFunctions.js --a--- 6667 bytes [20:23 03/01/2010] [02:32 22/12/2009]
WebContentConverter.js --a--- 33925 bytes [20:23 03/01/2010] [02:32 22/12/2009]

---Folders---
None found.

-=End Of File=-

 

Kenco by jpshortstuff (31.12.09.1)
Log created at 22:16 on 16/01/2010 (Janny)

========== Task Unlocker ==========

========== KencoScan ==========
C:\Windows\system32\shacct.dll -> Error setting security information [5]!

========== C:\Windows\Tasks ==========
GoogleUpdateTaskMachineCore.job -> [14:49 03/12/2009] 892 bytes
GoogleUpdateTaskMachineUA.job -> [14:49 03/12/2009] 896 bytes
GoogleUpdateTaskUserS-1-5-21-2507639651-946257174-1517972956-1000Core.job -> [15:46 25/07/2009] 856 bytes
GoogleUpdateTaskUserS-1-5-21-2507639651-946257174-1517972956-1000UA.job -> [15:46 25/07/2009] 908 bytes

-=E.O.F=-

 

Stand by.

 

GMER will not work on my system. Error when trying to run is: C:\Windows\system32\config system: The system cannot find the file specified. I will run Hijack and post.

 

Tried again to run the GMER and if just hit OK to the error it lets me run a scan. Then another another error comes up about not being able to access the Windows file because it is in use. If I click okay to that error as well, the scan continues. "GMER did not find any system modification ". Log file for HiJack This below:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:37:40 PM, on 16/01/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Trend Micro\HijackThis\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/23
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - (no file)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe "
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe "
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe "
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe "
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe "
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe "
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Zinio DLM] C:\Program Files (x86)\Zinio\ZinioReader.exe /autostart
O4 - HKCU\..\Run: [Google Update] "C:\Users\Janny\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ctl3ddbgfx] rundll32.exe "C:\Users\Janny\AppData\Local\ctl3ddbgfx\ctl3ddbgfx.dll ", DllInit
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')
O4 - Global Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files (x86)\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {CAFECAFE-0013-0001-0028-ABCDEFABCDEF} (JInitiator 1.3.1.28) - http://esis.tldsb.on.ca/forms/jinitiator/jinit.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SureThing Labelflash service - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12059 bytes

 

OTL logfile created on: 16/01/2010 10:55:42 PM - Run 1
OTL by OldTimer - Version 3.1.25.2 Folder = C:\Users\Janny\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

8.00 Gb Total Physical Memory | 6.00 Gb Available Physical Memory | 80.00% Memory free
16.00 Gb Paging File | 14.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 916.44 Gb Total Space | 542.62 Gb Free Space | 59.21% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 8.37 Gb Free Space | 55.83% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465.76 Gb Total Space | 270.12 Gb Free Space | 58.00% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: DESKTOP
Current User Name: Janny
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/01/16 22:51:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Janny\Desktop\OTL.exe
PRC - [2009/11/12 16:33:10 | 00,141,600 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
PRC - [2009/10/11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe
PRC - [2009/07/21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2009/07/09 11:22:18 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/06/24 19:19:50 | 00,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/06/09 09:11:14 | 00,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2009/05/21 07:59:08 | 00,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
PRC - [2009/05/21 07:59:08 | 00,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/05/13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2009/03/02 12:08:47 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2009/02/27 11:14:26 | 00,640,376 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
PRC - [2008/12/12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe


========== Modules (SafeList) ==========

MOD - [2010/01/16 22:51:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Janny\Desktop\OTL.exe
MOD - [2009/11/17 05:43:46 | 00,073,728 | ---- | M] () -- C:\Users\Janny\AppData\Local\ctl3ddbgfx\ctl3ddbgfx.dll
MOD - [2009/07/13 20:15:07 | 00,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2009/07/13 20:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009/11/12 16:33:14 | 00,660,256 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV:64bit: - [2009/07/23 10:43:07 | 01,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2009/07/20 11:36:14 | 00,160,784 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009/07/14 22:14:38 | 00,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/13 20:41:59 | 00,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV:64bit: - [2009/07/13 20:41:56 | 00,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV:64bit: - [2009/07/13 20:41:56 | 00,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power)
SRV:64bit: - [2009/07/13 20:41:55 | 00,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2009/07/13 20:41:54 | 00,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)
SRV:64bit: - [2009/07/13 20:41:54 | 00,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV:64bit: - [2009/07/13 20:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV:64bit: - [2009/07/13 20:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV:64bit: - [2009/07/13 20:41:53 | 00,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV:64bit: - [2009/07/13 20:41:53 | 00,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV:64bit: - [2009/07/13 20:41:53 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV:64bit: - [2009/07/13 20:41:27 | 01,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:41:18 | 00,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV:64bit: - [2009/07/13 20:40:54 | 01,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2009/07/13 20:40:28 | 00,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2009/07/13 20:40:28 | 00,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV:64bit: - [2009/07/13 20:40:13 | 00,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv)
SRV:64bit: - [2009/07/13 20:40:10 | 00,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV:64bit: - [2009/07/13 20:40:05 | 00,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV:64bit: - [2009/07/13 20:40:01 | 00,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV:64bit: - [2009/07/13 20:39:51 | 01,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:64bit: - [2009/07/13 20:39:28 | 03,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV:64bit: - [2009/07/13 20:39:11 | 00,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax)
SRV:64bit: - [2009/06/09 09:11:14 | 00,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2009/11/20 08:26:26 | 00,036,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2009/10/31 10:51:32 | 00,135,664 | ---- | M] (Google Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe -- (gupdate) Google Update Service (gupdate)
SRV - [2009/10/20 13:19:48 | 00,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009/07/23 10:41:47 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/07/21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009/07/16 01:34:29 | 00,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2009/07/13 22:20:14 | 00,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS)
SRV - [2009/07/13 22:20:14 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2009/07/13 20:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 20:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 15:30:11 | 00,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2009/07/09 11:22:18 | 00,144,712 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/06/10 15:39:58 | 00,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2009/05/21 07:59:08 | 00,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
SRV - [2009/05/13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2008/12/12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/06/18 18:23:14 | 00,074,384 | ---- | M] (MicroVision Development, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe -- (SureThing Labelflash service)
SRV - [2007/06/27 18:04:00 | 00,279,848 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/23
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.netvibes.com/#General "
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.1
FF - prefs.js..extensions.enabledItems: artur.dubovoy@gmail.com:1.9.96
FF - prefs.js..extensions.enabledItems: foxyproxy@eric.h.jung:2.17
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.1
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.7
FF - prefs.js..extensions.enabledItems: stratareloaded@addons.mozilla.org:2.2.0

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/01/16 22:49:12 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/01/16 22:48:34 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.23\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2009/12/05 11:43:16 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.23\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2009/12/05 11:43:16 | 00,000,000 | ---D | M]

[2010/01/03 15:24:06 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Extensions
[2009/08/16 07:48:12 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Extensions\songbird@songbirdnest.com
[2010/01/16 21:44:31 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions
[2010/01/10 11:59:09 | 00,000,000 | ---D | M] (No name found) -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010/01/10 11:59:09 | 00,000,000 | ---D | M] (Stylish) -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
[2010/01/10 11:59:09 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\artur.dubovoy@gmail.com
[2010/01/16 17:20:48 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\foxyproxy@eric.h.jung
[2010/01/15 17:15:08 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\personas@christopher.beard
[2010/01/10 11:59:09 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\stratareloaded@addons.mozilla.org
[2010/01/03 16:10:07 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\stratareloaded@addons.mozilla.org\chrome\3.0x\mozapps\extensions
[2010/01/03 16:10:04 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\stratareloaded@addons.mozilla.org\chrome\3.5x\mozapps\extensions
[2010/01/03 16:10:05 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\stratareloaded@addons.mozilla.org\chrome\3.6x\mozapps\extensions
[2010/01/03 16:10:05 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Mozilla\Firefox\Profiles\mmgf31xe.default\extensions\stratareloaded@addons.mozilla.org\chrome\3.7x\mozapps\extensions
[2010/01/16 21:44:31 | 00,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2006/09/28 04:45:46 | 00,053,355 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPJinit13128.dll

O1 HOSTS File: ([2009/07/23 11:01:34 | 00,000,794 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\hssie\HssIE_64.dll File not found
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [EPSON Stylus Photo R2400] C:\Windows\SysNative\spool\DRIVERS\x64\3\E_FATI9SA.EXE (SEIKO EPSON CORPORATION)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [AlcoholAutomount] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe File not found
O4 - HKCU..\Run: [ctl3ddbgfx] C:\Users\Janny\AppData\Local\ctl3ddbgfx\ctl3ddbgfx.DLL ()
O4 - HKCU..\Run: [Google Update] C:\Users\Janny\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - HKCU..\Run: [Zinio DLM] C:\Program Files (x86)\Zinio\ZinioReader.exe (Zinio, LLC)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files (x86)\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFECAFE-0013-0001-0028-ABCDEFABCDEF} http://esis.tldsb.on.ca/forms/jinitiator/jinit.exe (JInitiator 1.3.1.28)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.226.1.93 24.226.10.193 24.226.10.194
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - Reg Error: Key error. - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll File not found
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O24 - Desktop WallPaper: C:\Users\Janny\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Janny\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/11/05 12:19:36 | 00,000,052 | RHS- | M] () - F:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs:64bit: Ias - C:\Windows\SysNative\ias [2009/07/13 22:20:14 | 00,000,000 | ---D | M]
NetSvcs:64bit: Irmon - C:\Windows\SysNative\irmon.dll (Microsoft Corporation)
NetSvcs:64bit: Wmi - C:\Windows\SysNative\wmi.dll (Microsoft Corporation)
NetSvcs:64bit: Themes - C:\Windows\SysNative\themeservice.dll (Microsoft Corporation)
NetSvcs:64bit: BDESVC - C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation)
NetSvcs: Ias - C:\Windows\SysWOW64\ias [2008/01/20 22:08:35 | 00,000,000 | ---D | M]
NetSvcs: Wmi - C:\Windows\SysWOW64\wmi.dll (Microsoft Corporation)
OTL cannot create restorepoints on Vista OSs!

========== Files/Folders - Created Within 14 Days ==========

[2010/01/16 22:51:15 | 00,547,328 | ---- | C] (OldTimer Tools) -- C:\Users\Janny\Desktop\OTL.exe
[2010/01/16 22:47:31 | 08,163,240 | ---- | C] (Oracle ) -- C:\Users\Janny\Desktop\jinit.exe
[2010/01/16 22:15:32 | 00,044,567 | ---- | C] (jpshortstuff) -- C:\Users\Janny\Desktop\Kenco.exe
[2010/01/16 21:43:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\OpenVPN
[2010/01/16 21:30:56 | 00,070,858 | ---- | C] (jpshortstuff) -- C:\Users\Janny\Desktop\GooredFix.exe
[2010/01/16 19:28:50 | 00,031,232 | ---- | C] (The OpenVPN Project) -- C:\Windows\SysNative\drivers\tap0901.sys
[2010/01/12 18:41:46 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\LimeWire
[2010/01/12 16:26:14 | 00,000,000 | ---D | C] -- C:\AV_LOGS
[2010/01/12 16:24:39 | 00,021,504 | ---- | C] (Avnex) -- C:\Windows\SysNative\drivers\vcsvad.sys
[2010/01/12 16:03:21 | 00,000,000 | ---D | C] -- C:\Users\Janny\AppData\Roaming\Marine Aquarium 3
[2010/01/12 16:03:19 | 06,545,408 | ---- | C] (SereneScreen) -- C:\Windows\SysNative\MarineAquarium3.scr
[2010/01/12 16:03:19 | 00,000,000 | ---D | C] -- C:\Program Files\SereneScreen
[2010/01/12 12:26:37 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Formosoft
[2010/01/10 19:06:17 | 00,000,000 | ---D | C] -- C:\Users\Janny\Desktop\Possible Framings
[2010/01/07 10:08:04 | 00,000,000 | ---D | C] -- C:\Users\Janny\Desktop\Microsoft Windows 7 Ultimate Retail(Final) x86 (32 bit) and x64 (64 bit)
[2010/01/07 10:00:59 | 00,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/01/05 22:24:19 | 00,000,000 | ---D | C] -- C:\Users\Janny\Documents\Logic Grids
[2010/01/05 20:18:14 | 00,000,000 | R--D | C] -- C:\Users\Janny\Desktop\Bug's Pictures
[2010/01/05 20:17:52 | 00,000,000 | R--D | C] -- C:\Users\Janny\Desktop\Bug's Music
[2010/01/04 12:11:21 | 00,000,000 | ---D | C] -- C:\Users\Janny\Documents\Simply Super Software
[2010/01/04 12:11:00 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Trojan Remover
[2010/01/04 12:11:00 | 00,000,000 | ---D | C] -- C:\Users\Janny\AppData\Roaming\Simply Super Software
[2010/01/04 12:11:00 | 00,000,000 | ---D | C] -- C:\ProgramData\Simply Super Software
[2010/01/03 18:39:11 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2010/01/03 17:54:17 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2010/01/03 17:09:13 | 00,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010/01/03 17:09:04 | 00,000,000 | ---D | C] -- C:\Users\Janny\AppData\Roaming\SUPERAntiSpyware.com
[2010/01/03 17:09:04 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\SUPERAntiSpyware
[2010/01/03 16:52:04 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010/01/03 15:23:19 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010/01/03 15:19:09 | 00,000,000 | ---D | C] -- C:\Users\Janny\Documents\My Wallpapers - Seasonal
[2009/07/23 21:15:08 | 00,082,816 | ---- | C] (VSO Software) -- C:\Users\Janny\AppData\Roaming\pcouffin.sys
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 14 Days ==========

[2010/01/16 22:57:35 | 04,980,736 | -HS- | M] () -- C:\Users\Janny\ntuser.dat
[2010/01/16 22:56:00 | 00,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2507639651-946257174-1517972956-1000UA.job
[2010/01/16 22:55:39 | 00,001,176 | ---- | M] () -- C:\Users\Janny\AppData\Roaming\vso_ts_preview.xml
[2010/01/16 22:54:00 | 00,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/01/16 22:51:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Janny\Desktop\OTL.exe
[2010/01/16 22:48:20 | 08,163,240 | ---- | M] (Oracle ) -- C:\Users\Janny\Desktop\jinit.exe
[2010/01/16 22:38:50 | 00,010,896 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/01/16 22:38:50 | 00,010,896 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/01/16 22:31:43 | 00,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/01/16 22:31:42 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/01/16 22:31:38 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/01/16 22:31:25 | 21,405,45023 | -HS- | M] () -- C:\hiberfil.sys
[2010/01/16 22:30:01 | 02,740,652 | -H-- | M] () -- C:\Users\Janny\AppData\Local\IconCache.db
[2010/01/16 22:26:37 | 00,293,376 | ---- | M] () -- C:\Users\Janny\Desktop\grrmzo81.exe
[2010/01/16 22:15:33 | 00,044,567 | ---- | M] (jpshortstuff) -- C:\Users\Janny\Desktop\Kenco.exe
[2010/01/16 22:07:24 | 00,100,908 | ---- | M] () -- C:\Users\Janny\Desktop\SystemLook.exe
[2010/01/16 21:43:33 | 00,001,127 | ---- | M] () -- C:\Users\Janny\Desktop\OpenVPN GUI.lnk
[2010/01/16 21:30:56 | 00,070,858 | ---- | M] (jpshortstuff) -- C:\Users\Janny\Desktop\GooredFix.exe
[2010/01/16 16:26:54 | 00,000,085 | -HS- | M] () -- C:\ProgramData\.zreglib
[2010/01/16 11:56:00 | 00,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2507639651-946257174-1517972956-1000Core.job
[2010/01/15 20:08:24 | 18,356,0192 | ---- | M] () -- C:\Users\Janny\Desktop\30.Rock.S04E10.HDTV.XviD-LOL.avi
[2010/01/15 19:36:02 | 18,355,8144 | ---- | M] () -- C:\Users\Janny\Desktop\30.Rock.S04E09.HDTV.XviD-LOL.avi
[2010/01/14 19:59:14 | 00,022,050 | ---- | M] () -- C:\Users\Janny\Desktop\image009.jpg
[2010/01/12 20:46:26 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2010/01/12 16:28:26 | 00,046,872 | ---- | M] () -- C:\Users\Janny\Documents\rec_VcsCore_16-28-18.mp3
[2010/01/11 23:12:36 | 00,871,408 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
[2010/01/10 11:52:48 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/10 11:52:48 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/10 11:52:48 | 00,065,536 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TM.blf
[2010/01/09 20:57:33 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/09 20:57:33 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/09 20:57:33 | 00,065,536 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TM.blf
[2010/01/09 10:52:56 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/09 10:52:56 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/09 10:52:56 | 00,065,536 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TM.blf
[2010/01/08 18:36:55 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/08 18:36:55 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/08 18:36:55 | 00,065,536 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TM.blf
[2010/01/08 16:08:03 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/08 16:08:03 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/08 16:08:03 | 00,065,536 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TM.blf
[2010/01/08 16:02:15 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/08 16:02:15 | 00,524,288 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/08 16:02:15 | 00,065,536 | -HS- | M] () -- C:\Users\Janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TM.blf
[2010/01/08 14:14:45 | 10,865,824 | ---- | M] () -- C:\Users\Janny\Documents\Note.pdf
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/01/16 22:26:37 | 00,293,376 | ---- | C] () -- C:\Users\Janny\Desktop\grrmzo81.exe
[2010/01/16 22:07:23 | 00,100,908 | ---- | C] () -- C:\Users\Janny\Desktop\SystemLook.exe
[2010/01/16 21:43:33 | 00,001,127 | ---- | C] () -- C:\Users\Janny\Desktop\OpenVPN GUI.lnk
[2010/01/15 19:09:54 | 18,355,8144 | ---- | C] () -- C:\Users\Janny\Desktop\30.Rock.S04E09.HDTV.XviD-LOL.avi
[2010/01/15 19:09:46 | 18,356,0192 | ---- | C] () -- C:\Users\Janny\Desktop\30.Rock.S04E10.HDTV.XviD-LOL.avi
[2010/01/14 19:59:14 | 00,022,050 | ---- | C] () -- C:\Users\Janny\Desktop\image009.jpg
[2010/01/12 16:28:23 | 00,046,872 | ---- | C] () -- C:\Users\Janny\Documents\rec_VcsCore_16-28-18.mp3
[2010/01/10 11:36:06 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/10 11:36:06 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/10 11:36:06 | 00,065,536 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{b22e4b56-fe04-11de-bb62-0024e81fa7ba}.TM.blf
[2010/01/09 11:00:28 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/09 11:00:28 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/09 11:00:28 | 00,065,536 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{2cbf3b37-fd37-11de-9ed5-0024e81fa7ba}.TM.blf
[2010/01/09 10:45:01 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/09 10:45:01 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/09 10:45:01 | 00,065,536 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{42ee50c3-fcaf-11de-a9ce-0024e81fa7ba}.TM.blf
[2010/01/08 16:12:00 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/08 16:12:00 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/08 16:12:00 | 00,065,536 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{686b9c14-fc99-11de-933a-0024e81fa7ba}.TM.blf
[2010/01/08 16:04:58 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/08 16:04:58 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/08 16:04:58 | 00,065,536 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{4a3c9ed2-fc60-11de-adc6-0024e81fa7ba}.TM.blf
[2010/01/08 14:14:42 | 10,865,824 | ---- | C] () -- C:\Users\Janny\Documents\Note.pdf
[2010/01/08 09:16:09 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TMContainer00000000000000000002.regtrans-ms
[2010/01/08 09:16:08 | 00,524,288 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TMContainer00000000000000000001.regtrans-ms
[2010/01/08 09:16:08 | 00,065,536 | -HS- | C] () -- C:\Users\Janny\ntuser.dat{8ae7e7ac-fc5f-11de-9f4e-0024e81fa7ba}.TM.blf
[2009/12/18 16:59:58 | 00,004,608 | ---- | C] () -- C:\Users\Janny\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/09 12:47:23 | 00,196,624 | ---- | C] () -- C:\ProgramData\ITFW.log
[2009/11/22 19:21:03 | 00,036,962 | ---- | C] () -- C:\Windows\SysWow64\ActPanel.dll
[2009/11/16 19:37:59 | 00,000,085 | -HS- | C] () -- C:\ProgramData\.zreglib
[2009/11/15 17:20:51 | 00,034,308 | ---- | C] () -- C:\Windows\SysWow64\Chip.dll
[2009/10/31 20:06:36 | 00,009,728 | ---- | C] () -- C:\Windows\SysWow64\BASSMOD.dll
[2009/10/29 22:50:33 | 00,001,762 | ---- | C] () -- C:\Users\Janny\AppData\Local\Win7_tmp1.htm
[2009/10/20 13:19:30 | 00,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2009/10/07 10:25:49 | 00,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2009/10/07 10:25:20 | 00,006,211 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2009/08/24 18:56:40 | 00,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2009/08/21 14:32:26 | 00,182,272 | ---- | C] () -- C:\Windows\patchw32.dll
[2009/08/04 12:17:48 | 00,000,216 | ---- | C] () -- C:\Windows\Ulead32.ini
[2009/07/29 09:41:19 | 00,002,528 | ---- | C] () -- C:\Windows\FCIC.INI
[2009/07/28 14:58:38 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009/07/26 21:41:05 | 00,000,026 | ---- | C] () -- C:\Windows\dvdSanta.INI
[2009/07/26 21:35:48 | 00,921,600 | ---- | C] () -- C:\Windows\SysWow64\vorbisenc.dll
[2009/07/26 21:35:48 | 00,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll
[2009/07/26 21:35:48 | 00,045,056 | ---- | C] () -- C:\Windows\SysWow64\ogg.dll
[2009/07/26 21:35:47 | 01,216,512 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2009/07/26 21:35:47 | 00,237,568 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009/07/26 21:35:47 | 00,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll
[2009/07/23 21:15:50 | 00,001,176 | ---- | C] () -- C:\Users\Janny\AppData\Roaming\vso_ts_preview.xml
[2009/07/23 21:15:34 | 00,000,034 | ---- | C] () -- C:\Users\Janny\AppData\Roaming\pcouffin.log
[2009/07/23 21:15:08 | 00,099,384 | ---- | C] () -- C:\Users\Janny\AppData\Roaming\inst.exe
[2009/07/23 21:15:08 | 00,007,859 | ---- | C] () -- C:\Users\Janny\AppData\Roaming\pcouffin.cat
[2009/07/23 21:15:08 | 00,001,167 | ---- | C] () -- C:\Users\Janny\AppData\Roaming\pcouffin.inf
[2009/07/23 17:58:45 | 00,000,053 | ---- | C] () -- C:\Windows\SysWow64\UNWISE.INI
[2009/07/23 17:57:34 | 00,065,536 | ---- | C] () -- C:\Windows\SysWow64\dmcrypto.dll
[2009/07/23 17:57:08 | 00,000,135 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/07/23 17:57:07 | 00,217,149 | ---- | C] () -- C:\Windows\SysWow64\hcwChDB.dll
[2009/07/23 17:56:37 | 00,003,811 | ---- | C] () -- C:\Windows\HCWPNP.INI
[2009/07/15 21:10:46 | 00,146,432 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2009/07/15 21:10:46 | 00,072,704 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2009/07/13 18:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 00,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2005/02/28 14:33:00 | 00,343,040 | R--- | C] () -- C:\Windows\SysWow64\lffpx7.dll
[2005/02/28 14:33:00 | 00,116,736 | R--- | C] () -- C:\Windows\SysWow64\lfkodak.dll
[2005/02/28 14:08:30 | 00,006,688 | ---- | C] () -- C:\Windows\SysWow64\Digita.sys

========== LOP Check ==========

[2009/08/13 12:46:44 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\BNeReader
[2009/10/29 22:19:51 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Canon
[2009/12/31 17:04:34 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\ContentGuard
[2009/11/29 15:39:06 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\DonationCoder
[2009/10/29 22:19:56 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\FirstClass
[2009/10/29 22:19:56 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Foxit
[2009/10/29 22:19:56 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\funkitron
[2009/11/26 19:25:20 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\GrabPro
[2009/10/29 22:19:56 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\HTNetMeter
[2009/10/29 22:19:56 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Imagomat
[2009/10/29 22:19:57 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\iWin
[2009/10/29 22:19:57 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\JAlbum
[2009/10/29 22:19:58 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Leadertech
[2010/01/12 19:37:23 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\LimeWire
[2009/10/29 22:20:02 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\MAGIX
[2010/01/12 16:05:51 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Marine Aquarium 3
[2009/11/27 11:13:26 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Orbit
[2010/01/04 12:11:00 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Simply Super Software
[2009/10/29 22:20:05 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Songbird2
[2009/10/29 22:20:07 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\SystemRequirementsLab
[2009/10/29 22:20:07 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\The Professional Developer
[2009/10/29 22:20:07 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Thunderbird
[2009/11/12 13:23:58 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\TweakNow PowerPack 2009
[2010/01/15 21:15:32 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\uTorrent
[2010/01/16 22:55:39 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Vso
[2009/10/29 22:20:11 | 00,000,000 | ---D | M] -- C:\Users\Janny\AppData\Roaming\Zen of Sudoku
[2009/07/14 00:08:49 | 00,020,326 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(29).TXT
[2009/07/14 00:08:49 | 00,023,610 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(41).TXT
[2009/07/14 00:08:49 | 00,026,918 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2009/07/13 20:52:21 | 00,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/13 20:52:21 | 00,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/13 20:52:21 | 00,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/13 20:52:21 | 00,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/13 20:15:06 | 00,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 20:15:06 | 00,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 20:15:06 | 00,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/13 20:40:20 | 00,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: IASTOR.SYS >
[2008/09/28 03:22:14 | 00,402,456 | ---- | M] (Intel Corporation) MD5=FC28E90F2204D8FD147FA9BFA8A51C01 -- C:\Drivers\storage\R200390\IaStor.sys
[2008/09/28 03:22:14 | 00,402,456 | ---- | M] (Intel Corporation) MD5=FC28E90F2204D8FD147FA9BFA8A51C01 -- C:\Windows\SysWow64\DriverStore\FileRepository\iaahci.inf_amd64_neutral_b713da3dc2c70b47\iaStor.sys
[2008/09/28 03:22:14 | 00,402,456 | ---- | M] (Intel Corporation) MD5=FC28E90F2204D8FD147FA9BFA8A51C01 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastor.inf_amd64_neutral_916ee8d64bb718d0\iaStor.sys

< MD5 for: IASTORV.SYS >
[2009/07/13 20:48:04 | 00,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 20:48:04 | 00,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/07/13 20:41:52 | 00,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/13 20:16:02 | 00,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 20:16:02 | 00,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 20:16:02 | 00,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2009/07/13 20:45:45 | 00,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 20:45:45 | 00,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/13 20:16:13 | 00,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 20:16:13 | 00,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 20:16:13 | 00,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/13 20:41:53 | 00,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

========== Alternate Data Streams ==========

@Alternate Data Stream - 194 bytes -> C:\ProgramData\TEMP:C265C458
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:C8B8CEBD
< End of report >

 

Extras.txt

OTL Extras logfile created on: 16/01/2010 10:55:42 PM - Run 1
OTL by OldTimer - Version 3.1.25.2 Folder = C:\Users\Janny\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

8.00 Gb Total Physical Memory | 6.00 Gb Available Physical Memory | 80.00% Memory free
16.00 Gb Paging File | 14.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 916.44 Gb Total Space | 542.62 Gb Free Space | 59.21% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 8.37 Gb Free Space | 55.83% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465.76 Gb Total Space | 270.12 Gb Free Space | 58.00% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: DESKTOP
Current User Name: Janny
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll ",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1 ",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll ",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.0+ (r223)
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2413" = CanoScan LiDE 100 Scanner Driver
"{26A24AE4-039D-4CA4-87B4-2F86416013FF}" = Java(TM) 6 Update 13 (64-bit)
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A981840-D853-E71F-04E3-717F307064E2}" = ATI Catalyst Install Manager
"{9EFC40E3-5F31-4F75-8445-286273F74D8E}" = Apple Mobile Device Support
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{B87ED12E-A95F-45AC-89E7-02CFD5BD2353}" = StudioTax 2008
"{BC635042-68D6-15AD-A0B5-6CC868D05752}" = ccc-utility64
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{C9C243B9-03BD-44BA-A592-AB09630AE2D2}" = iTunes
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DAE239CE-EB9D-4EB3-B0D4-528D6BAA48FD}" = Bonjour
"{DDD076BF-C5C3-468C-AA1B-F9A7E47446FE}" = Intel(R) Network Connections 13.1.33.0
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock
"EPSON Printer and Utilities" = EPSON Printer Software
"PROSetDX" = Intel(R) Network Connections 13.1.33.0
"SereneScreen Marine Aquarium 3_is1" = SereneScreen Marine Aquarium 3

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{002D2370-4A6A-46ED-A597-0395EFA48641}" = Jalbum
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{011D80AA-97F0-E724-AA3E-10C2416C6F12}" = CCC Help Spanish
"{03FFA3C0-E55B-F369-EABC-5481653A8380}" = CCC Help Hungarian
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0A7FF252-A027-556B-838E-DC3B19352073}" = CCC Help German
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{131D33DF-7CD2-47C6-A4F1-B3C1EFEB041B}" = Lyricsnapper
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{2227E1FA-01F5-483C-AB0E-2A308E900B3D}" = InterVideo FilterSDK for Hauppauge
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 17
"{28CBCB79-CD01-A4BE-9969-24974FF5E3BD}" = CCC Help Japanese
"{292E1FC7-C42A-5ED5-0904-94C1A0A1538A}" = Catalyst Control Center InstallProxy
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C388537-0157-2DAE-AE9D-7B5B08EC9F03}" = CCC Help French
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{45674673-4F00-9773-57C9-F96E9675D55A}" = CCC Help Korean
"{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}" = Bonjour
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4ED7D297-58F7-45C3-A9BA-A7CD6FA0D373}_is1" = SureThing CD Labeler Deluxe 5
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{524C85A9-6291-4619-EC69-D84233C6C3C0}" = CCC Help Turkish
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5DFBD30B-04B1-59CC-838F-6BF764DB9CF3}" = CCC Help English
"{5F2EA35B-A351-5E1F-6AE4-C854ED03AA24}" = ccc-core-static
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{6313CAF3-15D4-6C4C-51F4-0BF80317D178}" = Catalyst Control Center Graphics Full Existing
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6BAE6F97-FBDA-78D3-69F2-0A62BA5E6485}" = Catalyst Control Center Graphics Light
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.6.12.174
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{855AD3C2-9FB3-F641-58F1-E1C1DD3CA9A4}" = CCC Help Portuguese
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{90120000-0016-0000-0000-0000000FF1CE}" = Microsoft Office Excel 2007
"{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_EXCEL_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0000-0000-0000000FF1CE}" = Microsoft Office Publisher 2007
"{90120000-0019-0000-0000-0000000FF1CE}_PUBLISHER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0000-0000-0000000FF1CE}_PUBLISHER_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PUBLISHER_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0000-0000-0000000FF1CE}" = Microsoft Office Word 2007
"{90120000-001B-0000-0000-0000000FF1CE}_WORD_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0000-0000-0000000FF1CE}_WORD_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_WORD_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_EXCEL_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}_PUBLISHER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}_WORD_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_EXCEL_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}_PUBLISHER_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}_WORD_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_EXCEL_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}_PUBLISHER_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}_WORD_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_EXCEL_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_PUBLISHER_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_WORD_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_EXCEL_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_PUBLISHER_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_WORD_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_EXCEL_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}_PUBLISHER_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}_WORD_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_EXCEL_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}_PUBLISHER_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}_WORD_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_EXCEL_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_PUBLISHER_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_WORD_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BDEF8DF-E93A-6063-3835-0D7A4301C8B1}" = Catalyst Control Center Graphics Previews Common
"{9BFCDA7C-FEA6-D810-407C-220476FC73A2}" = Catalyst Control Center InstallProxy
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A863CAF4-D03C-79B0-ED4E-6C454473443D}" = CCC Help Chinese Standard
"{A89768CF-CD21-44FD-A723-16D5A8557415}" = NEF Codec
"{A9212616-FCA2-4173-BD99-5C741EB3A068}" = Ulead DVD PictureShow 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1033-F400-7760-000000000004}" = Adobe Acrobat 9 Pro - English, Français, Deutsch
"{AC76BA86-1033-F400-7760-000000000004}_913" = Adobe Acrobat 9.1.3 - CPSID_49522
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AD88355B-A4E0-4DA1-BAC3-EA4FEA930691}" = Ipswitch WS_FTP Pro
"{AEDDF5A3-29CE-11D5-A8C2-000102246AAE}" = ubi.com
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{BA2CF083-0A12-A84D-DD96-8B58F194898D}" = CCC Help Chinese Traditional
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Simsâ„¢ 3
"{C071FC21-2EA0-073A-30D7-7F8C56852B90}" = Catalyst Control Center Graphics Previews Vista
"{C084BC61-E537-11DE-8616-005056806466}" = Google Earth
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{CAAB0192-5704-469F-A0BE-2D842D70E93B}_is1" = Sothink FLV Player
"{CAFECAFE-0013-0001-0128-ABCDEFABCDEF}" = Oracle JInitiator 1.3.1.28
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE8559AE-B92E-BFB7-22B7-202354009480}" = Catalyst Control Center Core Implementation
"{CF097717-F174-4144-954A-FBC4BF301033}" = Nero 7 Ultra Edition
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skypeâ„¢ 4.1
"{D89EF3B3-6F17-4665-B7A9-A4235A6DC787}" = Ghost Recon
"{DEB6B4D0-5B82-4387-AA1B-9FADEF0ACCE5}" = iTunesFolderWatch
"{E2E82E5E-3C8A-9430-859E-85387B8D78D0}" = Catalyst Control Center Graphics Full New
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E481DB0E-52F2-4EE0-9BDA-9EE173FA6EA2}" = Catalyst Control Center - Branding
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{ECC740DC-4D20-60C1-FCC9-082BC87B27B2}" = CCC Help Italian
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F263B145-FC2E-DBBD-53AC-8C9E43D838F2}" = Catalyst Control Center Localization All
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FD8B3F7C-3D31-4EF3-9E71-C37E753FB8C5}_is1" = ConvertXtoDVD 3 english manual
"7-Zip" = 7-Zip 4.65
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
"Air Canada TravelDesk_is1" = Air Canada TravelDesk
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AviSynth" = AviSynth 2.5
"Bookworm Deluxe 1.13" = Bookworm Deluxe 1.13
"CCleaner" = CCleaner
"CloneDVD2" = CloneDVD2
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Dell Dock" = Dell Dock
"Dell Video Chat" = Dell Video Chat
"DVD-CLONER VI_is1" = DVD-CLONER V6.00 Build 975
"dvdSanta 4.50 - Make your own DVD movies!_is1" = dvdSanta 4.50
"EasyGPS_is1" = EasyGPS 3.03
"EXCEL" = Microsoft Office Excel 2007
"File Renamer - Basic" = File Renamer - Basic
"Flv Recorder_is1" = FlvRecorder
"Foxit Reader" = Foxit Reader
"Free Video to iPhone Converter_is1" = Free Video to iPhone Converter version 2.2
"Games by Petersonic 1.00" = Games by Petersonic 1.00
"GoToAssist" = GoToAssist 8.0.0.514
"Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.27022)
"Hauppauge WinTV" = Hauppauge WinTV
"Hauppauge WinTV Location Manager" = Hauppauge WinTV Location Manager
"Hauppauge WinTV Scheduler" = Hauppauge WinTV Scheduler
"Hauppauge WinTV Soft PVR" = Hauppauge WinTV Soft PVR
"HijackThis" = HijackThis 2.0.2
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"LimeWire" = LimeWire PRO 4.18.8
"Magic DVD Ripper_is1" = Magic DVD Ripper V5.2.1 build 8
"Magic ISO Maker v5.5 (build 0265)" = Magic ISO Maker v5.5 (build 0265)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"Mozilla Thunderbird (2.0.0.23)" = Mozilla Thunderbird (2.0.0.23)
"MP Navigator EX 2.0" = Canon MP Navigator EX 2.0
"Net Meter" = Net Meter 3.6 build 437
"OpenVPN" = OpenVPN 2.1_rc22
"PUBLISHER" = Microsoft Office Publisher 2007
"Revo Uninstaller" = Revo Uninstaller 1.83
"Secunia PSI" = Secunia PSI
"SereneScreen Marine Aquarium 2.6_is1" = SereneScreen Marine Aquarium 2.6
"Stanza" = Stanza
"Steve Murphy's Automatic Wallpaper Changer_is1" = AWC V3.0.7
"SystemRequirementsLab" = System Requirements Lab
"TweakNow PowerPack 2009_is1" = TweakNow PowerPack 2009
"Uninstall_is1" = Uninstall 1.0.0.1
"URLSnooper 2_is1" = URL Snooper v2.25.01
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR archiver
"WinX DVD Ripper Platinum_is1" = WinX DVD Ripper Platinum 5.1.1
"WORD" = Microsoft Office Word 2007
"Xilisoft DVD Ripper Ultimate 5" = Xilisoft DVD Ripper Ultimate
"Zinio Reader" = Zinio Reader

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >