New
#1
Sluggish
heres my OTL report, could someone please give it the once over and advise if anymore information is required. my system is running ok'ish but its sluggish, I understand my system specs are not exactly up-to-date but its still able to run win7. I've disabled many services via blackviper and personal knowledge, the system is wired up to a router, no sharing going on, its a stand alone system.
is there anything I can disable, get rid of which I don't use or need?
OTL.Txt
Code:OTL logfile created on: 01/03/2011 03:06:25 PM - Run 1 OTL by OldTimer - Version 3.2.22.2 Folder = C:\Users\-~-\Desktop Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 67.00% Memory free 5.00 Gb Paging File | 5.00 Gb Available in Paging File | 85.00% Paging File free Paging file location(s): C:\pagefile.sys 3070 3070 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 149.05 Gb Total Space | 91.39 Gb Free Space | 61.32% Space Free | Partition Type: NTFS Computer Name: --~-- | User Name: -~- | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\-~-\Desktop\OTL.scr (OldTimer Tools) PRC - C:\Program Files\NetWorx\networx.exe (SoftPerfect Research) PRC - C:\Program Files\Opera\opera.exe (Opera Software) PRC - C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) PRC - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO) PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET) PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.) ========== Modules (SafeList) ========== MOD - C:\Users\-~-\Desktop\OTL.scr (OldTimer Tools) MOD - C:\Windows\System32\guard32.dll (COMODO) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (cmdAgent) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO) SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET) SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET) SRV - (Cleaner_Validator) -- C:\Program Files\COMODO\COMODO System-Cleaner\Cleaner_Validator.exe () SRV - (ASO3DiskOptimizer) -- C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe (Systweak Inc., (Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free)) SRV - (RoxWatch12) -- C:\Program Files\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe (Sonic Solutions) SRV - (RoxMediaDB12) -- C:\Program Files\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe (Sonic Solutions) SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation) SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation) SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269) -- C:\Program Files\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe () ========== Driver Services (SafeList) ========== DRV - (networx) -- C:\Windows\System32\drivers\networx.sys (NetFilterSDK.com) DRV - (inspect) -- C:\Windows\System32\drivers\inspect.sys (COMODO) DRV - (cmdHlp) -- C:\Windows\System32\drivers\cmdhlp.sys (COMODO) DRV - (cmdGuard) -- C:\Windows\System32\drivers\cmdGuard.sys (COMODO) DRV - (eamonm) -- C:\Windows\System32\drivers\eamonm.sys (ESET) DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET) DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET) DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys () DRV - (CFRPD) -- C:\Windows\System32\drivers\CFRPD.sys (Windows (R) Win 7 DDK provider) DRV - (ADASPROT) -- C:\Program Files\Advanced System Optimizer 3\adasprot32.sys () DRV - (FETNDIS) -- C:\Windows\System32\drivers\FETN62.sys (VIA Technologies, Inc. ) DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation) DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation) DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation) DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation) DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation) DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation) DRV - (SrvHsfPCI) -- C:\Windows\System32\drivers\VSTBS23.SYS (Conexant Systems, Inc.) DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\Windows\System32\drivers\RTKVAC.SYS (Realtek Semiconductor Corp.) DRV - (SaibVd32) -- C:\Windows\System32\drivers\SaibVd32.sys (Sonic Solutions) DRV - (SahdIa32) -- C:\Windows\System32\Drivers\SahdIa32.sys (Sonic Solutions) DRV - (SaibIa32) -- C:\Windows\System32\Drivers\SaibIa32.sys (Sonic Solutions) DRV - (WEBNTACCESS) -- C:\Windows\System32\Ntaccess.sys (Your Corporation) DRV - (DM1105CAP) -- C:\Windows\System32\drivers\DM1105Cap.sys () DRV - (ati2mtag) -- C:\Windows\System32\drivers\ati2mtag.sys (ATI Technologies Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = Hotmail, Messenger, Free Online News, Sport, Music, Movies, Money and Cars from MSN UK IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C6 99 44 36 8E 2A CA 01 [binary data] IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.--~--s..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 FF - prefs.--~--s..extensions.enabledItems: --~--sdeobfuscator@adblockplus.org:1.5.6 FF - prefs.--~--s..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/02/05 02:03:55 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/02/10 07:31:35 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011/02/13 12:57:48 | 000,000,000 | ---D | M] [2011/02/06 16:36:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\-~-\AppData\Roaming\Mozilla\Extensions [2011/02/28 23:24:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\-~-\AppData\Roaming\Mozilla\Firefox\Profiles\94zdq75a.default\extensions [2011/02/28 23:24:26 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Users\-~-\AppData\Roaming\Mozilla\Firefox\Profiles\94zdq75a.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} [2011/01/29 00:25:59 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\-~-\AppData\Roaming\Mozilla\Firefox\Profiles\94zdq75a.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2011/02/28 23:24:28 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\-~-\AppData\Roaming\Mozilla\Firefox\Profiles\94zdq75a.default\extensions\engine@conduit.com [2011/01/29 00:25:59 | 000,000,000 | ---D | M] (--~--avaScript Deobfuscator) -- C:\Users\-~-\AppData\Roaming\Mozilla\Firefox\Profiles\94zdq75a.default\extensions\--~--sdeobfuscator@adblockplus.org [2011/02/18 19:45:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011/01/28 21:42:22 | 000,000,000 | ---D | M] (--~--ava Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011/01/28 21:42:08 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploy--~--ava1.dll [2010/09/27 16:07:22 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml [2010/09/27 16:07:22 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml [2010/09/27 16:07:22 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml [2010/09/27 16:07:23 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml O1 HOSTS File: ([2010/12/06 18:20:08 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\HOSTS O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {00000000-0000-0000-0000-000000000000} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.) O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [NetWorx] C:\Program Files\NetWorx\networx.exe (SoftPerfect Research) O4 - HKLM..\Run: [SoundMan] C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: UseDefaultTile = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideShutdownScripts = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DelayedDesktopSwitchTimeout = 5 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Feed Discovery present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Feeds present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Infodelivery present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\PhishingFilter present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Privacy present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Security present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\ZOOM present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AlwaysShowClassicMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClearRecentProgForNewUserInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableThumbnails = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableThumbnailsOnNetworkFolders = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowCpl = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DontSetAutoplayCheckbox = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DontShowSuperHidden = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnforceShellExtensionSecurity = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceCopyAclwithFile = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceMaxRecentDocs = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceStartMenuLogoff = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: GreyMSIAds = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCABattery = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCANetwork = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAPower = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAVolume = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LockTaskbar = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCustomizeThisFolder = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCustomizeWebView = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDisconnect = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrivesInSendToMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileUrl = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHelp = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInplaceSharing = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetIcon = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetConnectDisconnect = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNtSecurity = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoOnlinePrintsWizard = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPreviewPane = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyComputer = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyDocuments = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesRecycleBin = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPublishingWizard = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoReadingPane = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecycleFiles = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSearchCommInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSearchComputerLinkInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSearchFilesInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSearchInternetInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSearchProgramsInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSecurityTab = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTips = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoS-~-elp = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuE--~--ectPC = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMorePrograms = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyGames = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuNetworkPlaces = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTaskGrouping = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThumbnailCache = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarsOnTaskbar = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserFolderInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWebServices = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWebView = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWinKeys = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: PreventItemCreationInUsersFilesFolder = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: PromptRunasInstallNetPath = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictCpl = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictWelcomeCenter = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: SpecifyDefaultButtons = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartRunNoHOMEPATH = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarLockAll = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoAddRemoveToolbar = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoDragToolbar = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoRedock = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoResize = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoThumbnail = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TurnOffSPIAnimations = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: UseFoldersInStartMenu = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 0? = egui.exe O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 1? = soundman.exe (Realtek Semiconductor Corp.) O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 2? = --~--usched.exe O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 3? = cfp.exe O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 4? = msnmsgr.exe O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 5? = newadmin.exe O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\RestrictRun: 6? = newlock.exe O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogonScripts = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoColorChoice = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0 O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: com.tw ([asia.msi] http in Trusted sites) O15 - HKCU\..Trusted Domains: com.tw ([global.msi] http in Trusted sites) O15 - HKCU\..Trusted Domains: com.tw ([www.msi] http in Trusted sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://--~--ava.sun.com/update/1.6.0/--~--install-1_6_0_23-windows-i586.cab (--~--ava Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://--~--ava.sun.com/update/1.6.0/--~--install-1_6_0_23-windows-i586.cab (--~--ava Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://--~--ava.sun.com/update/1.6.0/--~--install-1_6_0_23-windows-i586.cab (--~--ava Plug-in 1.6.0_23) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O20 - AppInit_DLLs: (C:\Windows\system32\guard32.dll) - C:\Windows\System32\guard32.dll (COMODO) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\Windows\System32\ati2evxx.dll (ATI Technologies Inc.) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/06/10 21:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sasnative32) - C:\Windows\System32\sasnative32.exe () O34 - HKLM BootExecute: (Execute settings...) - File not found O34 - HKLM BootExecute: (ountPoints) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011/03/01 15:04:56 | 000,581,120 | ---- | C] (OldTimer Tools) -- C:\Users\-~-\Desktop\OTL.scr [2011/03/01 14:38:13 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{34AEA853-B5E9-4E6C-88B5-F5DEC5387F70} [2011/03/01 14:33:23 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{8F5FC92E-B2AB-414A-8955-3F57616E880D} [2011/02/28 23:24:51 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2011/02/28 23:24:40 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine [2011/02/28 23:24:34 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrentBar [2011/02/28 15:58:42 | 000,000,000 | ---D | C] -- C:\Users\-~-\Desktop\Microsoft Professional [2011/02/28 15:53:22 | 000,000,000 | ---D | C] -- [2011/02/28 13:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\ReviverSoft [2011/02/28 13:25:38 | 000,000,000 | ---D | C] -- C:\ProgramData\ReviverSoft [2011/02/28 12:52:25 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{0824DAAB-7E86-4837-AB31-1B618330809E} [2011/02/27 18:11:21 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{1A99E4C8-EA24-4EA1-AB85-0ECD4495F2D3} [2011/02/27 12:25:56 | 000,051,640 | ---- | C] (NetFilterSDK.com) -- C:\Windows\System32\drivers\networx.sys [2011/02/27 12:25:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetWorx [2011/02/27 12:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\SoftPerfect [2011/02/27 12:25:55 | 000,000,000 | ---D | C] -- C:\Program Files\NetWorx [2011/02/24 13:56:14 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{67FDC0A0-2FB2-4174-BB2B-55C9D8D31363} [2011/02/23 15:31:57 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\f-secure [2011/02/23 15:31:37 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure [2011/02/22 10:51:13 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{8456C68C-66D8-4FD3-B0FD-2FAFBAAD3145} [2011/02/21 10:47:46 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{CBC71E93-3B3B-46B1-9677-EDD5EAAD1878} [2011/02/19 23:11:57 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{6483AF14-F2E5-4DA7-8801-C574E9C24678} [2011/02/19 12:58:44 | 000,000,000 | -H-D | C] -- C:\Users\-~-\InstallAnywhere [2011/02/19 10:07:11 | 000,000,000 | ---D | C] -- C:\Users\-~-\Desktop\open [2011/02/19 09:43:43 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{9E80B0A4-1158-49EA-8294-F65B368F223D} [2011/02/17 13:00:09 | 000,016,184 | ---- | C] (Systweak Inc., (Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free)) -- C:\Windows\System32\ROBoot.exe [2011/02/17 12:49:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Optimizer 3 [2011/02/17 12:49:02 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced System Optimizer 3 [2011/02/17 12:27:06 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\Systweak [2011/02/17 12:27:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak [2011/02/17 09:33:19 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{EB2714F7-5F5D-4CA1-AE3C-E9BA101F92B2} [2011/02/16 10:28:12 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{30356FB8-9B7F-44F9-ACA0-AC44E0999F2E} [2011/02/15 07:31:38 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{30EDB84E-829D-45ED-9189-064227F3BEF8} [2011/02/13 12:57:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2011/02/13 12:57:40 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET [2011/02/13 12:09:53 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{397959A5-6D2E-4499-B339-15C5DDB1BB35} [2011/02/12 17:16:20 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{67885067-6206-47FB-A420-3408C387C981} [2011/02/11 21:51:59 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{2AC20DF0-4C9C-449B-B38B-358F7160324C} [2011/02/11 05:36:37 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{FDA01A73-E3B3-4DDA-A13F-18120A0C979E} [2011/02/10 07:02:15 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{A4D8A921-32E0-48F7-A5FC-D397AEBF9926} [2011/02/09 06:02:16 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{B8E49181-5B10-4BD6-B122-03DC54E0EAE1} [2011/02/08 21:49:48 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\--~--script.dll [2011/02/08 21:49:48 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011/02/08 21:49:45 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2011/02/08 21:49:45 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2011/02/08 21:49:44 | 002,329,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011/02/08 21:49:27 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011/02/08 21:49:26 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011/02/08 21:49:25 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2011/02/08 21:49:25 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011/02/08 21:49:24 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011/02/08 21:49:24 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011/02/08 21:49:24 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\--~--sproxy.dll [2011/02/08 21:49:24 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011/02/08 21:49:23 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011/02/08 21:49:23 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011/02/08 21:49:23 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011/02/08 21:49:14 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2011/02/08 21:49:13 | 003,957,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2011/02/08 21:13:03 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{F6E0CA65-B913-48B6-905E-43E463140925} [2011/02/08 01:19:25 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{E05082E8-E7BB-4D57-B10B-C427E35F7E27} [2011/02/07 21:08:11 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{B62C9377-AB3B-4E3F-A465-9153BB83AE46} [2011/02/06 17:20:36 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{BE23765B-3739-49BD-81D3-7757EC095F60} [2011/02/05 21:40:07 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{0FA98EAB-7F1B-4008-97F4-72A327B96A15} [2011/02/05 04:46:08 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2011/02/05 03:35:15 | 000,000,000 | ---D | C] -- C:\Users\-~-\Documents\Adobe [2011/02/05 01:51:09 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\Apple Computer [2011/02/05 01:51:09 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\Apple Computer [2011/02/05 01:49:48 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2011/02/05 01:48:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer [2011/02/05 01:48:16 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\Apple [2011/02/05 01:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple [2011/02/05 01:23:57 | 000,000,000 | ---D | C] -- C:\Users\-~-\Desktop\Pod Copied [2011/02/04 17:03:54 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2011/02/04 16:52:38 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\WindSolutions [2011/02/04 16:48:38 | 000,000,000 | ---D | C] -- C:\ProgramData\WindSolutions [2011/02/04 16:26:28 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{5AC36207-3ECE-4F24-AE9F-2D89A38C782C} [2011/02/03 21:25:21 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\Sports Interactive [2011/02/03 21:23:10 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{5D79F6A5-887E-443E-B2C6-33C51B471D58} [2011/02/03 20:07:17 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{17E82A09-E840-4B93-962B-B172C729119F} [2011/02/01 17:27:17 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{DAFA46D5-EA45-4312-9586-0799D8B4DA67} [2011/02/01 17:22:17 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/02/01 17:15:46 | 000,000,000 | ---D | C] -- C:\ProgramData\SASCORE [2011/02/01 17:01:09 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\Thinstall [2011/02/01 16:59:26 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{A81898D2-C6C1-4DC2-8B79-F5678B72666B} [2011/02/01 16:53:46 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{90FF5B24-3BEC-45D7-B4A4-ABBC9AE4E3C2} [2011/02/01 16:45:24 | 000,000,000 | ---D | C] -- C:\Program Files\RegCleaner [2011/02/01 16:12:25 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Local\{5DA69E7E-A812-4330-A288-207EEC87A4E6} [2011/02/01 15:56:58 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\TuneAid [2011/02/01 14:56:40 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\Media Player Classic [2011/02/01 14:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Mediafour [2011/02/01 14:31:26 | 000,000,000 | ---D | C] -- C:\Program Files\Mediafour [2011/02/01 14:10:57 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\SharePod [2011/01/31 20:53:03 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2011/01/31 20:39:30 | 000,000,000 | ---D | C] -- C:\Users\-~-\Tracing [2011/01/31 20:36:11 | 000,000,000 | ---D | C] -- C:\Users\-~-\AppData\Roaming\PC Tools Performance Toolkit [2011/01/31 20:32:42 | 000,000,000 | -H-D | C] -- C:\VritualRoot [2011/01/31 20:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\PC Tools Utilities [2011/01/31 20:30:55 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Tools [2011/01/31 20:30:29 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2010/02/04 00:00:00 | 000,139,264 | ---- | C] ( ) -- C:\Windows\sipr3260.dll ========== Files - Modified Within 30 Days ========== [2011/03/01 15:05:04 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Users\-~-\Desktop\OTL.scr [2011/03/01 14:42:00 | 000,013,232 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011/03/01 14:42:00 | 000,013,232 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011/03/01 14:34:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat -- C:\Windows\System32\FNTCACHE.DAT [2011/02/28 16:42:43 | 000,116,552 | ---- | M] () -- C:\Windows\CSC_ServiceDump.dat [2011/02/28 16:42:43 | 000,101,634 | ---- | M] () -- C:\Windows\CSC_ActiveCleanLog.dat [2011/02/27 12:09:40 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\Start System Protector.--~--ob [2011/02/23 15:20:29 | 000,000,036 | ---- | M] () -- C:\Users\-~-\AppData\Local\housecall.guid.cache [2011/02/22 18:59:25 | 000,628,024 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011/02/22 18:59:25 | 000,110,208 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011/02/17 13:03:48 | 000,001,820 | ---- | M] () -- C:\Windows\System32\ASOROSet.bin [2011/02/17 12:13:06 | 000,000,306 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.--~--ob [2011/02/08 01:07:22 | 000,051,640 | ---- | M] (NetFilterSDK.com) -- C:\Windows\System32\drivers\networx.sys [2011/02/04 16:55:10 | 000,003,584 | ---- | M] () -- C:\Users\-~-\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ========== Files Created - No Company Name ========== [2011/02/27 12:09:40 | 000,000,308 | ---- | C] () -- C:\Windows\tasks\Start System Protector.--~--ob [2011/02/23 15:20:29 | 000,000,036 | ---- | C] () -- C:\Users\-~-\AppData\Local\housecall.guid.cache [2011/02/17 13:00:09 | 000,001,820 | ---- | C] () -- C:\Windows\System32\ASOROSet.bin [2011/02/17 12:49:15 | 000,017,136 | ---- | C] () -- C:\Windows\System32\sasnative32.exe [2011/02/04 17:04:59 | 000,001,515 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2011/02/04 16:55:10 | 000,003,584 | ---- | C] () -- C:\Users\-~-\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/01/12 01:31:09 | 000,025,296 | ---- | C] () -- C:\Users\-~-\AppData\Local\rx_audio.Cache [2011/01/12 01:30:58 | 000,000,000 | ---- | C] () -- C:\Users\-~-\AppData\Local\rx_image32.Cache [2010/12/06 17:04:22 | 000,000,164 | ---- | C] () -- C:\Windows\install.dat [2010/11/18 18:17:12 | 000,116,552 | ---- | C] () -- C:\Windows\CSC_ServiceDump.dat [2010/11/18 18:17:12 | 000,101,634 | ---- | C] () -- C:\Windows\CSC_ActiveCleanLog.dat [2010/10/28 19:00:37 | 000,000,006 | ---- | C] () -- C:\Windows\System32\drivers\halMac.ini [2010/10/28 19:00:03 | 000,022,272 | ---- | C] () -- C:\Windows\System32\drivers\DM1105Cap.sys [2010/10/28 18:52:39 | 000,000,000 | ---- | C] () -- C:\Windows\graphedt.INI [2010/10/06 08:42:38 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE [2010/09/02 00:53:48 | 000,108,032 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll [2010/06/23 12:35:52 | 000,790,528 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2010/06/23 12:35:52 | 000,134,144 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2010/05/20 13:53:11 | 000,000,029 | ---- | C] () -- C:\Windows\DEBUGSM.INI [2010/04/19 04:53:49 | 000,001,322 | ---- | C] () -- C:\Windows\ntbackup.ini [2010/04/14 16:34:35 | 000,007,593 | ---- | C] () -- C:\Users\-~-\AppData\Local\Resmon.ResmonCfg [2010/04/03 03:45:04 | 000,017,032 | ---- | C] () -- C:\Users\-~-\AppData\Roaming\UserTile.png [2010/04/03 03:31:36 | 000,520,192 | ---- | C] () -- C:\Windows\System32\ati2sgag.exe [2010/04/02 22:38:53 | 000,000,812 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2010/03/01 16:22:39 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat [2010/03/01 16:22:39 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini [2010/03/01 16:22:38 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat [2010/03/01 16:22:38 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat [2010/03/01 16:22:38 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat [2010/03/01 16:22:38 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat [2010/03/01 16:22:38 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat [2010/03/01 16:22:38 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat [2010/03/01 16:22:38 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat [2010/03/01 16:22:37 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat [2010/03/01 16:22:37 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat [2010/03/01 16:22:37 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat [2010/03/01 16:22:37 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat [2010/03/01 16:22:37 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat [2010/03/01 16:22:37 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat [2010/03/01 16:22:37 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat [2010/03/01 16:22:37 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat [2010/03/01 16:22:36 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat [2010/03/01 16:22:36 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat [2010/03/01 16:07:38 | 000,000,025 | ---- | C] () -- C:\Windows\CDE SX200DEFGIPS.ini [2010/02/16 14:16:20 | 000,000,196 | ---- | C] () -- C:\Windows\ulead32.ini [2010/02/13 13:30:37 | 000,026,282 | ---- | C] () -- C:\Windows\maxlink.ini [2010/02/13 13:30:37 | 000,000,020 | ---- | C] () -- C:\Windows\calera.ini [2010/02/13 13:30:20 | 000,269,312 | ---- | C] () -- C:\Windows\System32\FPXIG.DLL [2010/02/13 13:30:20 | 000,068,096 | ---- | C] () -- C:\Windows\System32\IGFPX32P.DLL [2010/02/13 13:30:20 | 000,065,024 | ---- | C] () -- C:\Windows\System32\--~--PEGACC.DLL [2010/02/13 13:29:52 | 000,101,376 | ---- | C] () -- C:\Windows\System32\WELSOF32.DLL [2010/01/13 14:59:51 | 000,129,313 | ---- | C] () -- C:\Windows\cscmon.bin [2009/11/05 21:40:58 | 000,000,031 | -H-- | C] () -- C:\Windows\UKCpInfo.sys [2009/10/27 09:53:24 | 000,012,552 | ---- | C] () -- C:\Windows\System32\CSC.exe [2009/10/08 13:39:12 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI [2009/09/07 17:21:45 | 000,074,703 | ---- | C] () -- C:\Windows\System32\mfc45.dll [2009/08/16 10:08:36 | 000,178,176 | ---- | C] () -- C:\Windows\System32\unrar.dll [2009/07/14 04:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009/07/14 04:33:53 | 000,392,752 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2009/07/14 02:05:48 | 000,628,024 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2009/07/14 02:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2009/07/14 02:05:48 | 000,110,208 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2009/07/14 02:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2009/07/14 02:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2009/07/14 02:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2009/07/14 00:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe [2009/07/13 23:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009/07/13 23:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009/07/13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2009/06/10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2009/04/14 06:43:32 | 000,154,144 | ---- | C] () -- C:\Windows\System32\RTLCPAPI.dll [2008/02/01 07:18:14 | 000,009,216 | ---- | C] () -- C:\Windows\System32\drivers\FlashSys.sys [2007/02/05 20:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI [2005/12/08 22:01:06 | 000,112,421 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2004/01/30 15:07:46 | 000,245,408 | ---- | C] () -- C:\Windows\System32\unicows.dll ========== LOP Check ========== [2010/05/19 22:43:56 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Atari [2010/05/09 12:02:50 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Avanquest [2010/04/02 22:18:10 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2011/01/31 20:19:07 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\DAEMON Tools Lite [2010/05/20 13:53:10 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\EPSON [2011/02/23 15:31:57 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\f-secure [2011/02/01 16:50:57 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\GlarySoft [2010/04/30 23:01:10 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\MxBoost [2010/04/26 01:20:49 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Opera [2010/08/15 13:07:03 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\PC Suite [2010/09/12 17:48:40 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Radialpoint [2010/09/02 16:36:32 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Registry Mechanic [2010/10/05 19:59:13 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\RegistryDefense [2011/02/01 14:10:57 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\SharePod [2010/04/02 22:18:18 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Simple Star [2010/11/06 02:25:03 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Sports Interactive [2011/02/17 12:51:01 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Systweak [2010/05/20 15:24:40 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\TeamViewer [2011/02/01 17:01:10 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Thinstall [2011/02/01 15:56:59 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\TuneAid [2010/10/29 07:04:27 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\TuneUp Software [2010/05/20 21:29:28 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Uniblue [2011/03/01 01:35:26 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\uTorrent [2010/09/12 17:45:54 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\Virgin Media [2011/02/04 16:57:53 | 000,000,000 | ---D | M] -- C:\Users\-~-\AppData\Roaming\WindSolutions [2010/04/26 00:54:19 | 000,000,214 | ---- | M] () -- C:\Windows\Tasks\CreateChoiceProcessTask.--~--ob [2011/02/17 12:13:06 | 000,000,306 | ---- | M] () -- C:\Windows\Tasks\GlaryInitialize.--~--ob [2011/01/12 00:02:46 | 000,000,248 | ---- | M] () -- C:\Windows\Tasks\RMSchedule.--~--ob [2011/03/01 14:34:43 | 000,032,644 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2011/02/27 12:09:40 | 000,000,308 | ---- | M] () -- C:\Windows\Tasks\Start System Protector.--~--ob [2010/10/29 07:10:38 | 000,000,228 | ---- | M] () -- C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011.--~--ob ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 200 bytes -> C:\ProgramData\TEMP:D1B5B4F1 @Alternate Data Stream - 154 bytes -> C:\ProgramData\TEMP:0D786AE3 @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:8CE646EE < End of report >
Extras.Txt
Code:OTL Extras logfile created on: 01/03/2011 03:06:26 PM - Run 1 OTL by OldTimer - Version 3.2.22.2 Folder = C:\Users\---\Desktop Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 67.00% Memory free 5.00 Gb Paging File | 5.00 Gb Available in Paging File | 85.00% Paging File free Paging file location(s): C:\pagefile.sys 3070 3070 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 149.05 Gb Total Space | 91.39 Gb Free Space | 61.32% Space Free | Partition Type: NTFS Computer Name: --~-- | User Name: --- | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 ========== Authorized Applications List ========== ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{121C477C-5B7B-44E3-B621-BDDB542AE8FD}" = TuneUp Utilities Language Pack (en-GB) "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email "{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US) "{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 23 "{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant "{32343DB6-9A52-40C9-87E4-5E7C79791C87}" = MSXML 4.0 SP2 and SOAP Toolkit 3.0 "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{42EDF895-158C-484E-A7F2-42B90759F281}" = Camera RAW Plug-In for EPSON Creativity Suite "{46578609-AD6D-4E69-AC8F-28B89C090F3B}" = Roxio Creator 2010 Pro "{46CBBDF8-55B5-40DB-B459-7B848394309C}" = EPSON File Manager "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin "{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0 "{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack "{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack "{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup "{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{733CDF24-0A93-426E-AA89-DF281EB54793}" = Roxio CinePlayer "{74DC8A26-4E05-40B6-AD11-C9428A1AE150}" = Roxio Creator 2010 Pro "{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{83E3E4FD-1C5F-BB72-1118-799EC15CB30B}" = ATI Catalyst Install Manager "{8469D7C4-1A95-4CE2-BA8D-123C39FCFD9C}" = Network+ Premium "{86DDDAAD-AEB9-42E5-BE01-0E8FABD2BB29}" = Roxio Video Capture USB "{87A83C6F-F53C-448A-B078-FF00E3EAEB29}" = Roxio Disaster Recovery "{89A15676-78AE-4D51-BF5B-DEE3E0D46C94}" = Roxio Creator 2010 Pro "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A8F8391-4C2C-4BE1-A984-CD4A5A546467}" = EPSON Easy Photo Print "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Roxio CinePlayer Decoder Pack "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module "{A1E21995-127E-4B7F-8C4D-CB04AA8A58EF}_is1" = Advanced System Optimizer "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn "{A66242A1-9101-425D-9BE5-D19A50E1D0D8}" = ESET NOD32 Antivirus "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.2 "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86 "{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo "{C4039DC0-905D-4372-8B20-120F0B6CF283}" = COMODO System-Cleaner "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D1725D54-279A-40C5-A70D-23C1785DB920}_is1" = AoA Audio Extractor "{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security "{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "Adobe AIR" = Adobe AIR "Adobe Audition 3.0" = Adobe Audition 3.0 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "ATI Display Driver" = ATI Display Driver "CCleaner" = CCleaner "Comodo Dragon" = Comodo Dragon "conduitEngine" = Conduit Engine "Defraggler" = Defraggler "Driving Theory Test Express v2.7.0.0_is1" = Driving Theory Test Express v2.7.0.0 "EPSON Scanner" = EPSON Scan "EPSON Stylus SX200 Series" = EPSON Stylus SX200 Series Printer Uninstall "EPSON Stylus SX200_SX400_TX200_TX400 User’s Guide" = EPSON Stylus SX200_SX400_TX200_TX400 Manual "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30 "Glary Utilities_is1" = Glary Utilities Pro 2.32.0.1126 "InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email "InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "NetWorx_is1" = NetWorx 5.1.7 "Opera 11.01.1190" = Opera 11.01 "ProgDVB" = ProgDVB "Roxio PhotoShow" = Roxio PhotoShow "SetEditHD100" = SetEditHD100 (remove only) "Speccy" = Speccy "Tag&Rename_is1" = Tag&Rename 3.5.5 "ULive" = ULive1.4 "uTorrent" = µTorrent "uTorrentBar Toolbar" = uTorrentBar Toolbar "ViviCam 5010 Digital Camera Driver" = ViviCam 5010 Digital Camera Driver "WinLiveSuite" = Windows Live Essentials "Winrar 3.93" = Winrar 3.93 "WinRAR archiver" = WinRAR archiver ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 05/07/2010 03:07:02 PM | Computer Name = -PC | Source = Schedule | ID = 0 Description = Error - 05/07/2010 05:04:05 PM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 06/07/2010 04:23:40 AM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 06/07/2010 07:47:38 AM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 06/07/2010 08:52:38 AM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 06/07/2010 11:25:04 AM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 07/07/2010 06:11:45 AM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 07/07/2010 11:14:09 AM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 07/07/2010 01:14:36 PM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = Error - 07/07/2010 03:20:50 PM | Computer Name = -~-~--PC | Source = Schedule | ID = 0 Description = [ System Events ] Error - 28/02/2011 05:37:53 PM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 Error - 28/02/2011 05:47:15 PM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 Error - 28/02/2011 06:47:38 PM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 Error - 28/02/2011 07:08:06 PM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 Error - 01/03/2011 06:33:27 AM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 Error - 01/03/2011 10:31:25 AM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 Error - 01/03/2011 10:33:37 AM | Computer Name = --~-- | Source = Microsoft-Windows-Bits-Client | ID = 16392 Description = The BITS service failed to start. Error 2147942450. Error - 01/03/2011 10:33:37 AM | Computer Name = --~-- | Source = Service Control Manager | ID = 7024 Description = The Background Intelligent Transfer Service service terminated with service-specific error %%-2147024846. Error - 01/03/2011 10:33:38 AM | Computer Name = --~-- | Source = Service Control Manager | ID = 7023 Description = The Windows Update service terminated with the following error: %%-2147467243 Error - 01/03/2011 10:34:44 AM | Computer Name = --~-- | Source = Service Control Manager | ID = 7000 Description = The DM713S DVB Device Video Capture service failed to start due to the following error: %%1058 < End of report >
Last edited by Airbot; 01 Mar 2011 at 12:33.