Redirect Virus (May block anti virus sites)

Status
Not open for further replies.
D

DarthTigger

New member
I have tried with Both Google, and Bing for search engines and both seem to redirect me. I am starting to think it is the Links and not the search engine.

More often than not now I am getting redirected to other sites.

When I try to go to most main stream Anti spyware sites, I get "Internet Explorer cannot display the webpage" or I get redirected somewhere else.

Code: 
http://www.safer-networking.org/
will not work



Code: 
http://www.malwarebytes.org/mbam-download.php
will not work



Code: 
http://www.majorgeeks.com/Malwarebytes_Anti-Malware_d5756.html
Works, but when I click on "Download now", That link will not work and the URL shows
Code: 
https://store.malwarebytes.org/342/cookie?affiliate=1879&product=29945&redirectto=http://files2.majorgeeks.com/files/d71f5142463efcf6dc7be216cf4644b5/spyware/mbam-setup-1.46.exe



Code: 
http://www.kaspersky.com/kos/eng/partner/default/pages/default/check.html?n=1287849237417
gives me an Error in the Digital Certificate



I found another thread on this Forum where someone suggested using a tool called OTL to get scan information on my computer.

I did that and it worked.

I will post that info in the reply below.
 
Otl.txt

otl logfile created on: 10/23/2010 11:34:27 am - run 1
otl by oldtimer - version 3.2.17.0 folder = c:\download
windows xp home edition service pack 3 (version = 5.1.2600) - type = ntworkstation
internet explorer (version = 8.0.6001.18702)
locale: 00000409 | country: United states | language: Enu | date format: M/d/yyyy

3.00 gb total physical memory | 2.00 gb available physical memory | 76.00% memory free
5.00 gb paging file | 4.00 gb available in paging file | 85.00% paging file free
paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%systemdrive% = c: | %systemroot% = c:\windows | %programfiles% = c:\program files
drive c: | 465.75 gb total space | 54.54 gb free space | 11.71% space free | partition type: Ntfs
drive d: | 5.52 gb total space | 0.00 gb free space | 0.00% space free | partition type: Udf

computer name: Office | user name: Robert | logged in as administrator.
Boot mode: Normal | scan mode: Current user
company name whitelist: Off | skip microsoft files: Off | no company name whitelist: On | file age = 30 days

========== processes (safelist) ==========

prc - c:\download\otl.exe (oldtimer tools)
prc - c:\program files\avg\avg9\avgtray.exe (avg technologies cz, s.r.o.)
prc - c:\program files\avg\avg9\avgnsx.exe (avg technologies cz, s.r.o.)
prc - c:\program files\common files\real\update_ob\realsched.exe (realnetworks, inc.)
prc - c:\program files\avg\avg9\avgrsx.exe (avg technologies cz, s.r.o.)
prc - c:\program files\avg\avg9\avgwdsvc.exe (avg technologies cz, s.r.o.)
prc - c:\program files\avg\avg9\avgcsrvx.exe (avg technologies cz, s.r.o.)
prc - c:\program files\avg\avg9\avgchsvx.exe (avg technologies cz, s.r.o.)
prc - c:\program files\avg\avg9\avgam.exe (avg technologies cz, s.r.o.)
prc - c:\program files\lavasoft\ad-aware\aawtray.exe (lavasoft)
prc - c:\program files\lavasoft\ad-aware\aawservice.exe (lavasoft)
prc - c:\program files\java\jre6\bin\jucheck.exe (sun microsystems, inc.)
prc - c:\windows\explorer.exe (microsoft corporation)
prc - c:\program files\analog devices\core\smax4pnp.exe (analog devices, inc.)
prc - c:\program files\analog devices\soundmax\smax4.exe (analog devices, inc.)
prc - c:\program files\disney\dreams screensaver\disney.wdpro.dreamsscreensaver.imagedownloader.exe (walt disney internet group)
prc - c:\program files\asus wifi-ap solo\rtwlan.exe (asustek computer inc.)
prc - c:\program files\sec\natural color pro\ncprotray.exe (samsung)


========== modules (safelist) ==========

mod - c:\download\otl.exe (oldtimer tools)
mod - c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (microsoft corporation)
mod - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\chrome\hook\rpchromebrowserrecordhelper.dll ()
mod - c:\windows\system32\msvbvm60.dll (microsoft corporation)
mod - c:\windows\system32\dinput.dll (microsoft corporation)


========== win32 services (safelist) ==========

srv - (appmgmt) -- c:\windows\system32\appmgmts.dll file not found
srv - (avg9wd) -- c:\program files\avg\avg9\avgwdsvc.exe (avg technologies cz, s.r.o.)
srv - (lavasoft ad-aware service) -- c:\program files\lavasoft\ad-aware\aawservice.exe (lavasoft)
srv - (daupdatersvc) -- c:\program files\dragon age\bin_ship\daupdatersvc.service.exe (bioware)


========== driver services (safelist) ==========

drv - (ncpro) -- c:\windows\system32\drivers\mtictwl.sys file not found
drv - (magictune) -- c:\windows\system32\drivers\mtictwl.sys file not found
drv - (btkrnl) -- c:\windows\system32\drivers\btkrnl.sys file not found
drv - (avgtdix) -- c:\windows\system32\drivers\avgtdix.sys (avg technologies cz, s.r.o.)
drv - (avgldx86) -- c:\windows\system32\drivers\avgldx86.sys (avg technologies cz, s.r.o.)
drv - (avgmfx86) -- c:\windows\system32\drivers\avgmfx86.sys (avg technologies cz, s.r.o.)
drv - (avgrkx86) -- c:\windows\system32\drivers\avgrkx86.sys (avg technologies cz, s.r.o.)
drv - (ati2mtag) -- c:\windows\system32\drivers\ati2mtag.sys (ati technologies inc.)
drv - (lbd) -- c:\windows\system32\drivers\lbd.sys (lavasoft ab)
drv - (asio) -- c:\windows\system32\drivers\asio.sys ()
drv - (mtsensor) -- c:\windows\system32\drivers\asacpi.sys ()
drv - (rtl8023xp) -- c:\windows\system32\drivers\rtnicxp.sys (realtek semiconductor corporation )
drv - (atihdmiservice) -- c:\windows\system32\drivers\atihdmi.sys (ati research inc.)
drv - (jraid) -- c:\windows\system32\drivers\jraid.sys (jmicron technology corp.)
drv - (usbpnpa) -- c:\windows\system32\drivers\cm108.sys (c-media electronics inc)
drv - (kmwdfilter) -- c:\windows\system32\drivers\kmwdfilter.sys (windows (r) codename longhorn ddk provider)
drv - (rtlwusb) -- c:\windows\system32\drivers\rtl8187.sys (realtek semiconductor corporation )
drv - (hdaudbus) -- c:\windows\system32\drivers\hdaudbus.sys (windows (r) server 2003 ddk provider)
drv - (usbaudio) usb audio driver (wdm) -- c:\windows\system32\drivers\usbaudio.sys (microsoft corporation)
drv - (adihdaudaddservice) -- c:\windows\system32\drivers\adihdaud.sys (analog devices, inc.)
drv - (hdaudaddservice) -- c:\windows\system32\drivers\atihdaud.sys (ati research inc.)
drv - (hamachi_oem) -- c:\windows\system32\drivers\gan_adapter.sys (applied networking inc.)
drv - (yukonwxp) -- c:\windows\system32\drivers\yk51x86.sys (marvell)
drv - (xnacc) -- c:\windows\system32\drivers\xnacc.sys (microsoft corporation)
drv - (sjypkt) -- c:\windows\system32\drivers\sjypkt.sys (windows (r) 2000 ddk provider)
drv - (senfiltservice) -- c:\windows\system32\drivers\senfilt.sys (sensaura)
drv - (ubohci) -- c:\windows\system32\drivers\ubohci.sys (unibrain s.a.)
drv - (ubumapi) -- c:\windows\system32\drivers\ubumapi.sys (unibrain s.a.)
drv - (ubsbm) -- c:\windows\system32\drivers\ubsbm.sys (unibrain s.a.)
drv - (brscnusb) -- c:\windows\system32\drivers\brscnusb.sys (brother industries ltd.)
drv - (usb-100) -- c:\windows\system32\drivers\rtl8150.sys (realtek )


========== standard registry (safelist) ==========


========== internet explorer ==========

ie - hklm\software\microsoft\internet explorer\search,default_search_url = http://www.google.com/ie
ie - hklm\software\microsoft\internet explorer\search,searchassistant = http://www.google.com/ie

ie - hkcu\software\microsoft\internet explorer\main,search page = http://www.google.com
ie - hkcu\software\microsoft\internet explorer\main,searchmigrateddefaultname = google
ie - hkcu\software\microsoft\internet explorer\main,searchmigrateddefaulturl = http://www.google.com/search?q={searchterms}&sourceid=ie7&rls=com.microsoft:en-us&ie=utf8&oe=utf8
ie - hkcu\software\microsoft\internet explorer\main,start page = http://www.facebook.com/home.php
ie - hkcu\software\microsoft\internet explorer\search,searchassistant = http://www.google.com/ie
ie - hkcu\software\microsoft\windows\currentversion\internet settings: "proxyenable" = 0
ie - hkcu\software\microsoft\windows\currentversion\internet settings: "proxyoverride" = <local>
ie - hkcu\software\microsoft\windows\currentversion\internet settings: "proxyserver" = 192.104.67.250:8080

ff - hklm\software\mozilla\firefox\extensions\\{abde892b-13a8-4d1b-88e6-365a6e755758}: C:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext [2010/07/13 19:50:40 | 000,000,000 | ---d | m]


o1 hosts file: ([2008/04/14 08:00:00 | 000,000,734 | ---- | m]) - c:\windows\system32\drivers\etc\hosts
o1 - hosts: 127.0.0.1 localhost
o2 - bho: (realplayer download and record plugin for internet explorer) - {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll (realplayer)
o2 - bho: (avg safe search) - {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll (avg technologies cz, s.r.o.)
o2 - bho: (browser helper object) - {afd4ad01-58c1-47db-a404-fbe00a6c5486} - c:\program files\shared\lib.dll file not found
o3 - hklm\..\toolbar: (no name) - {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - no clsid value found.
O3 - hkcu\..\toolbar\webbrowser: (no name) - {4f11acbb-393f-4c86-a214-ff3d0d155cc3} - no clsid value found.
O3 - hkcu\..\toolbar\webbrowser: (no name) - {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - no clsid value found.
O3 - hkcu\..\toolbar\webbrowser: (no name) - {fd2fd708-1f6f-4b68-b141-c5778f0c19bb} - no clsid value found.
O4 - hklm..\run: [36x raid configurer] c:\windows\system32\xraidsetup.exe (jmicron technology corp.)
o4 - hklm..\run: [ad-watch] c:\program files\lavasoft\ad-aware\aawtray.exe (lavasoft)
o4 - hklm..\run: [avg9_tray] c:\program files\avg\avg9\avgtray.exe (avg technologies cz, s.r.o.)
o4 - hklm..\run: [cm108sound] file not found
o4 - hklm..\run: [cmusbsound] file not found
o4 - hklm..\run: [family tree builder update] c:\program files\myheritage\bin\ftbcheckupdates.exe (myheritage)
o4 - hklm..\run: [imagedownloader] c:\program files\disney\dreams screensaver\disney.wdpro.dreamsscreensaver.imagedownloader.exe (walt disney internet group)
o4 - hklm..\run: [jmb36x ide setup] c:\windows\raidtool\xinside.exe ()
o4 - hklm..\run: [nerofiltercheck] c:\program files\common files\ahead\lib\nerocheck.exe (nero ag)
o4 - hklm..\run: [soundmax] c:\program files\analog devices\soundmax\smax4.exe (analog devices, inc.)
o4 - hklm..\run: [soundmaxpnp] c:\program files\analog devices\core\smax4pnp.exe (analog devices, inc.)
o4 - hklm..\run: [startccc] c:\program files\ati technologies\ati.ace\core-static\clistart.exe (advanced micro devices, inc.)
o4 - hklm..\run: [tkbellexe] c:\program files\common files\real\update_ob\realsched.exe (realnetworks, inc.)
o4 - hklm..\run: [turbine download manager tray icon] c:\program files\turbine\turbine download manager\turbinedownloadmanagericon.exe file not found
o4 - hkcu..\run: [igndlm.exe] c:\program files\download manager\dlm.exe (ign entertainment)
o4 - hkcu..\run: [steam] c:\program files\steam\steam.exe (valve corporation)
o4 - startup: C:\documents and settings\all users\start menu\programs\startup\asus wifi-ap solo.lnk = c:\program files\asus wifi-ap solo\rtwlan.exe (asustek computer inc.)
o4 - startup: C:\documents and settings\all users\start menu\programs\startup\ncprotray.lnk = c:\program files\sec\natural color pro\ncprotray.exe (samsung)
o4 - startup: C:\documents and settings\robert\start menu\programs\startup\curseclientstartup.ccip ()
o4 - startup: C:\documents and settings\robert\start menu\programs\startup\disney vacation connection.lnk = c:\program files\disney vacation connection\disney vacation connection.exe ()
o4 - startup: C:\documents and settings\robert\start menu\programs\startup\registration .lnk = c:\program files\ubisoft\dark messiah of might and magic\registrationreminder.exe file not found
o6 - hklm\software\microsoft\windows\currentversion\policies\explorer: Honorautorunsetting = 1
o7 - hkcu\software\microsoft\windows\currentversion\policies\explorer: Nodrivetypeautorun = 145
o9 - extra button: Pokerstars - {3ad14f0c-ed16-4e43-b6d8-661b03f6a1ef} - c:\program files\pokerstars\pokerstarsupdate.exe (pokerstars)
o15 - hkcu\..trusted domains: Live.com ([login] http in trusted sites)
o15 - hkcu\..trusted domains: Youtube.com ([www] http in trusted sites)
o16 - dpf: {0d41b8c5-2599-4893-8183-00195ec8d5f9} http://support.asus.com/common/asustek_sys_ctrl.cab (asustek_sysctrl class)
o16 - dpf: {17492023-c23a-453e-a040-c7c580bbf700} http://download.microsoft.com/downl...-48d9-9b0e-1719d1177202/legitcheckcontrol.cab (windows genuine advantage validation tool)
o16 - dpf: {39b0684f-d7bf-4743-b050-fdc3f48f7e3b} http://www.fileplanet.com/fpdlmgr/cabs/fpdc_2.3.10.115.cab (cdownloadctrl object)
o16 - dpf: {4f1e5b1a-2a80-42ca-8532-2d05cb959537} http://gfx1.hotmail.com/mail/w3/resources/msnpupld.cab (msn photo upload tool)
o16 - dpf: {6218f7b5-0d3a-48ba-ae4c-49dcfa63d400} http://www.myheritage.com/genoogle/components/activex/searchenginequery.dll (csequeryobject object)
o16 - dpf: {6414512b-b978-451d-a0d8-fcfdf33e833c} http://update.microsoft.com/windowsupdate/v6/v5controls/en/x86/client/wuweb_site.cab?1240419885734 (wuwebcontrol class)
o16 - dpf: {6e32070a-766d-4ee6-879c-dc1fa91d2fc3} http://update.microsoft.com/microsoftupdate/v6/v5controls/en/x86/client/muweb_site.cab?1240419964187 (muwebcontrol class)
o16 - dpf: {8100d56a-5661-482c-bee8-afece305d968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/facebookphotouploader55.cab (facebook photo uploader 5 control)
o16 - dpf: {8ad9c840-044e-11d1-b3e9-00805f499d93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (java plug-in 1.6.0_15)
o16 - dpf: {8ffbe65d-2c9c-4669-84bd-5829dc0b603c} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (reg error: Key error.)
o16 - dpf: {cafeefac-0016-0000-0015-abcdeffedcba} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (java plug-in 1.6.0_15)
o16 - dpf: {cafeefac-ffff-ffff-ffff-abcdeffedcba} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (java plug-in 1.6.0_15)
o16 - dpf: {d27cdb6e-ae6d-11cf-96b8-444553550000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (reg error: Key error.)
o16 - dpf: {e2883e8f-472f-4fb0-9522-ac9bf37916a7} http://platformdl.adobe.com/nos/getplusplus/1.6/gp.cab (reg error: Key error.)
o17 - hklm\system\ccs\services\tcpip\parameters: Dhcpnameserver = 192.168.2.1
o17 - hklm\system\ccs\services\tcpip\parameters: Nameserver = 93.188.162.249,93.188.160.59
o18 - protocol\handler\linkscanner {f274614c-63f8-47d5-a4d1-fbdde494f8d1} - c:\program files\avg\avg9\avgpp.dll (avg technologies cz, s.r.o.)
o18 - protocol\handler\skype4com {ffc8b962-9b40-4dff-9458-1830c7dd7f5d} - c:\program files\common files\skype\skype4com.dll (skype technologies)
o20 - hklm winlogon: Shell - (explorer.exe) - c:\windows\explorer.exe (microsoft corporation)
o20 - winlogon\notify\atiextevent: Dllname - ati2evxx.dll - c:\windows\system32\ati2evxx.dll (ati technologies inc.)
o20 - winlogon\notify\avgrsstarter: Dllname - avgrsstx.dll - c:\windows\system32\avgrsstx.dll (avg technologies cz, s.r.o.)
o24 - desktop wallpaper: C:\documents and settings\robert\application data\microsoft\internet explorer\internet explorer wallpaper.bmp
o24 - desktop backupwallpaper: C:\documents and settings\robert\application data\microsoft\internet explorer\internet explorer wallpaper.bmp
o32 - hklm cdrom: Autorun - 1
o32 - autorun file - [2009/04/22 11:25:19 | 000,000,000 | ---- | m] () - c:\autoexec.bat -- [ ntfs ]
o32 - autorun file - [2008/09/08 17:13:25 | 000,000,058 | r--- | m] () - d:\autorun.inf -- [ udf ]
o33 - mountpoints2\##vikki#vikki\shell - "" = autorun
o33 - mountpoints2\##vikki#vikki\shell\autorun - "" = auto&play
o33 - mountpoints2\##vikki#vikki\shell\autorun\command - "" = z:\x3xh.exe -- file not found
o33 - mountpoints2\##vikki#vikki\shell\open\command - "" = z:\x3xh.exe -- file not found
o33 - mountpoints2\{55f4f74d-4c4a-11df-be04-001d60b163ce}\shell\autorun\command - "" = h:\get_started_for_win.exe -- file not found
o33 - mountpoints2\{877f949f-4016-11df-be02-001d60b163ce}\shell\autorun\command - "" = i:\scct_launcher.exe -- file not found
o33 - mountpoints2\{ac1848c2-2f2d-11de-aea4-806d6172696f}\shell - "" = autorun
o33 - mountpoints2\{ac1848c2-2f2d-11de-aea4-806d6172696f}\shell\autorun - "" = auto&play
o33 - mountpoints2\{ac1848c2-2f2d-11de-aea4-806d6172696f}\shell\autorun\command - "" = d:\falloutlauncher.exe -- [2008/09/18 14:38:35 | 006,981,048 | r--- | m] (bethesda softworks)
o33 - mountpoints2\{c54e4336-21e3-11df-bdfc-001d60b163ce}\shell\autorun\command - "" = 9qqigqwf.exe
o33 - mountpoints2\{c54e4336-21e3-11df-bdfc-001d60b163ce}\shell\open\command - "" = 9qqigqwf.exe
o34 - hklm bootexecute: (autocheck autochk *) - file not found
o34 - hklm bootexecute: (lsdelete) - c:\windows\system32\lsdelete.exe ()
o35 - hklm\..comfile [open] -- "%1" %*
o35 - hklm\..exefile [open] -- "%1" %*
o37 - hklm\...com [@ = comfile] -- "%1" %*
o37 - hklm\...exe [@ = exefile] -- "%1" %*

netsvcs: 6to4 - file not found
netsvcs: Appmgmt - c:\windows\system32\appmgmts.dll file not found
netsvcs: Ias - file not found
netsvcs: Iprip - file not found
netsvcs: Irmon - file not found
netsvcs: Nwcworkstation - file not found
netsvcs: Nwsapagent - file not found
netsvcs: Wmdmpmsp - file not found

drivers32: Msacm.ac3acm - c:\windows\system32\ac3acm.acm (fcchandler)
drivers32: Msacm.alf2cd - c:\windows\system32\alf2cd.acm (nct company)
drivers32: Msacm.iac2 - c:\windows\system32\iac25_32.ax (intel corporation)
drivers32: Msacm.l3acm - c:\windows\system32\l3codeca.acm (fraunhofer institut integrierte schaltungen iis)
drivers32: Msacm.scg726 - c:\windows\system32\scg726.acm (sharp corporation)
drivers32: Msacm.sl_anet - c:\windows\system32\sl_anet.acm (sipro lab telecom inc.)
drivers32: Msacm.trspch - c:\windows\system32\tssoft32.acm (dsp group, inc.)
drivers32: Msacm.voxacm160 - c:\windows\system32\vct3216.acm (voxware, inc.)
drivers32: Vidc.cvid - c:\windows\system32\iccvid.dll (radius inc.)
drivers32: Vidc.divx - c:\windows\system32\divx.dll (divx, inc.)
drivers32: Vidc.dvsd - c:\windows\system32\mcdvd_32.dll (mainconcept)
drivers32: Vidc.ffds - c:\windows\system32\ff_vfw.dll ()
drivers32: Vidc.fps1 - c:\windows\system32\frapsvid.dll (beepa p/l)
drivers32: Vidc.iv31 - c:\windows\system32\ir32_32.dll ()
drivers32: Vidc.iv32 - c:\windows\system32\ir32_32.dll ()
drivers32: Vidc.iv41 - c:\windows\system32\ir41_32.ax ()
drivers32: Vidc.iv50 - c:\windows\system32\ir50_32.dll ()
drivers32: Vidc.xvid - c:\windows\system32\xvidvfw.dll ()
drivers32: Vidc.yv12 - c:\windows\system32\divx.dll (divx, inc.)

createrestorepoint
restore point set: Otl restore point (81641353997451264)

========== files/folders - created within 30 days ==========

[2010/09/29 20:16:06 | 000,000,000 | ---d | c] -- c:\program files\starcraft ii
[2010/09/29 20:16:06 | 000,000,000 | ---d | c] -- c:\documents and settings\robert\my documents\starcraft ii
[5 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
[1 c:\windows\system32\*.tmp files -> c:\windows\system32\*.tmp -> ]

========== files - modified within 30 days ==========

[2010/10/23 11:34:07 | 000,000,288 | ---- | m] () -- c:\windows\tasks\realupgradescheduledtasks-1-5-21-746137067-1229272821-1801674531-1004.job
[2010/10/23 11:34:07 | 000,000,280 | ---- | m] () -- c:\windows\tasks\realupgradelogontasks-1-5-21-746137067-1229272821-1801674531-1004.job
[2010/10/23 11:24:58 | 000,000,424 | -h-- | m] () -- c:\windows\tasks\user_feed_synchronization-{828a94af-0ac4-4ae2-9d22-849cac953923}.job
[2010/10/23 11:15:00 | 000,000,982 | ---- | m] () -- c:\windows\tasks\googleupdatetaskusers-1-5-21-746137067-1229272821-1801674531-1004ua.job
[2010/10/23 11:09:16 | 000,000,310 | ---- | m] () -- c:\windows\tasks\orb index when idle.job
[2010/10/23 11:06:00 | 000,000,886 | ---- | m] () -- c:\windows\tasks\googleupdatetaskmachineua.job
[2010/10/23 09:06:00 | 000,000,882 | ---- | m] () -- c:\windows\tasks\googleupdatetaskmachinecore.job
[2010/10/23 08:28:18 | 066,727,532 | ---- | m] () -- c:\windows\system32\drivers\avg\incavi.avm
[2010/10/23 05:15:00 | 000,000,930 | ---- | m] () -- c:\windows\tasks\googleupdatetaskusers-1-5-21-746137067-1229272821-1801674531-1004core.job
[2010/10/22 23:04:54 | 000,012,656 | ---- | m] () -- c:\windows\system32\wpa.dbl
[2010/10/22 19:33:02 | 000,000,472 | ---- | m] () -- c:\windows\tasks\ad-aware update (weekly).job
[2010/10/21 21:48:31 | 000,002,048 | --s- | m] () -- c:\windows\bootstat.dat
[2010/10/20 19:38:00 | 000,012,598 | ---- | m] () -- c:\windows\system32\wpa.bak
[2010/10/20 11:08:01 | 000,000,284 | ---- | m] () -- c:\windows\tasks\applesoftwareupdate.job
[2010/10/19 00:16:04 | 000,000,000 | ---- | m] () -- c:\documents and settings\robert\application data\avsdvdplayer.m3u
[2010/10/14 23:11:53 | 000,003,063 | ---- | m] () -- c:\documents and settings\robert\.recently-used.xbel
[2010/10/14 18:43:58 | 000,032,768 | ---- | m] () -- c:\documents and settings\robert\my documents\dis meals.xls
[2010/10/14 18:21:36 | 000,089,088 | ---- | m] () -- c:\documents and settings\robert\local settings\application data\dcbc2a71-70d8-4dan-ehr8-e0d61dea3fdf.ini
[2010/10/14 16:54:03 | 000,195,368 | ---- | m] () -- c:\windows\system32\fntcache.dat
[2010/10/14 03:14:20 | 000,001,393 | ---- | m] () -- c:\windows\imsins.bak
[2010/10/14 00:02:33 | 000,000,650 | ---- | m] () -- c:\windows\pagebreeze.ini
[2010/10/13 21:05:06 | 000,000,048 | ---- | m] () -- c:\windows\.prj
[2010/10/10 11:48:50 | 000,001,539 | ---- | m] () -- c:\documents and settings\all users\desktop\vuze.lnk
[2010/10/08 03:05:13 | 000,444,358 | ---- | m] () -- c:\windows\system32\perfh009.dat
[2010/10/08 03:05:13 | 000,072,108 | ---- | m] () -- c:\windows\system32\perfc009.dat
[2010/10/03 20:20:21 | 000,000,069 | ---- | m] () -- c:\windows\nerodigital.ini
[2010/10/03 16:51:58 | 000,039,424 | ---- | m] () -- c:\documents and settings\robert\my documents\robert w taylor.doc
[2010/10/03 15:45:56 | 000,266,752 | ---- | m] () -- c:\documents and settings\robert\my documents\vikki licence.doc
[2010/09/30 13:21:48 | 000,000,664 | ---- | m] () -- c:\windows\system32\d3d9caps.dat
[2010/09/29 21:48:10 | 000,000,802 | ---- | m] () -- c:\documents and settings\all users\desktop\starcraft ii.lnk
[2010/09/25 20:04:06 | 000,001,949 | ---- | m] () -- c:\documents and settings\all users\desktop\google earth.lnk
[5 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
[1 c:\windows\system32\*.tmp files -> c:\windows\system32\*.tmp -> ]

========== files created - no company name ==========

[2010/10/18 21:10:39 | 000,001,884 | ---- | c] () -- c:\documents and settings\robert\desktop\fallout 3.lnk
[2010/10/14 23:11:53 | 000,003,063 | ---- | c] () -- c:\documents and settings\robert\.recently-used.xbel
[2010/10/14 18:43:58 | 000,032,768 | ---- | c] () -- c:\documents and settings\robert\my documents\dis meals.xls
[2010/10/10 11:48:50 | 000,001,539 | ---- | c] () -- c:\documents and settings\all users\desktop\vuze.lnk
[2010/10/03 16:51:58 | 000,039,424 | ---- | c] () -- c:\documents and settings\robert\my documents\robert w taylor.doc
[2010/10/03 15:45:55 | 000,266,752 | ---- | c] () -- c:\documents and settings\robert\my documents\vikki licence.doc
[2010/09/29 20:16:06 | 000,000,802 | ---- | c] () -- c:\documents and settings\all users\desktop\starcraft ii.lnk
[2010/09/25 20:04:06 | 000,001,949 | ---- | c] () -- c:\documents and settings\all users\desktop\google earth.lnk
[2010/08/30 19:19:20 | 000,000,650 | ---- | c] () -- c:\windows\pagebreeze.ini
[2010/08/30 19:19:20 | 000,000,044 | ---- | c] () -- c:\windows\formbreeze.ini
[2010/07/13 19:51:32 | 000,000,025 | ---- | c] () -- c:\windows\cdplayer.ini
[2010/04/02 17:17:34 | 000,179,091 | ---- | c] () -- c:\windows\system32\xlive.dll.cat
[2010/03/31 17:24:22 | 000,000,674 | ---- | c] () -- c:\documents and settings\robert\application data\mympq.ini
[2010/01/28 21:10:29 | 000,000,600 | ---- | c] () -- c:\documents and settings\robert\application data\winscp.rnd
[2010/01/28 20:38:42 | 000,000,251 | ---- | c] () -- c:\windows\myheritage.ini
[2010/01/28 20:36:53 | 000,454,656 | ---- | c] () -- c:\windows\system32\paintx.dll
[2009/10/19 10:55:31 | 000,138,464 | ---- | c] () -- c:\windows\system32\drivers\pnkbstrk.sys
[2009/10/19 10:55:30 | 000,022,328 | ---- | c] () -- c:\documents and settings\robert\application data\pnkbstrk.sys
[2009/09/16 17:19:38 | 000,000,129 | ---- | c] () -- c:\documents and settings\robert\local settings\application data\fusioncache.dat
[2009/05/29 21:56:45 | 000,000,376 | ---- | c] () -- c:\windows\odbc.ini
[2009/05/19 19:43:02 | 000,089,088 | ---- | c] () -- c:\documents and settings\robert\local settings\application data\dcbc2a71-70d8-4dan-ehr8-e0d61dea3fdf.ini
[2009/05/03 21:52:57 | 000,000,062 | ---- | c] () -- c:\windows\cm108.ini.cfl
[2009/05/03 21:52:37 | 000,000,939 | r--- | c] () -- c:\windows\cm108.ini.cfg
[2009/05/03 21:52:36 | 000,001,096 | r--- | c] () -- c:\windows\cm108.ini
[2009/04/30 22:40:14 | 000,000,000 | ---- | c] () -- c:\documents and settings\robert\application data\avsdvdplayer.m3u
[2009/04/30 22:37:11 | 000,524,288 | ---- | c] () -- c:\windows\system32\xvidcore.dll
[2009/04/30 22:37:11 | 000,139,264 | ---- | c] () -- c:\windows\system32\xvidvfw.dll
[2009/04/30 22:30:43 | 000,084,480 | ---- | c] () -- c:\windows\system32\ff_vfw.dll
[2009/04/30 22:22:10 | 000,000,069 | ---- | c] () -- c:\windows\nerodigital.ini
[2009/04/28 21:53:09 | 000,000,262 | ---- | c] () -- c:\windows\{789289ca-f73a-4a16-a331-54d498ce069f}_wisefw.ini
[2009/04/28 00:11:36 | 000,354,816 | ---- | c] () -- c:\windows\system32\psisdecd.dll
[2009/04/27 20:12:52 | 000,045,056 | ---- | c] () -- c:\windows\system32\cmdrvrmu.dll
[2009/04/27 20:12:52 | 000,004,899 | ---- | c] () -- c:\windows\cmudau.ini
[2009/04/27 17:15:18 | 000,000,044 | ---- | c] () -- c:\windows\system32\msssc.dll
[2009/04/27 16:28:55 | 000,000,419 | ---- | c] () -- c:\windows\brwmark.ini
[2009/04/27 16:28:55 | 000,000,027 | ---- | c] () -- c:\windows\brpp2ka.ini
[2009/04/22 12:41:01 | 000,024,576 | ---- | c] () -- c:\windows\system32\asio.dll
[2009/04/22 12:41:01 | 000,012,400 | ---- | c] () -- c:\windows\system32\drivers\asio.sys
[2009/04/22 07:09:43 | 000,004,161 | ---- | c] () -- c:\windows\odbcinst.ini
[2009/03/03 12:18:04 | 000,073,728 | ---- | c] () -- c:\windows\system32\rtnicprop32.dll
[2008/10/07 10:13:30 | 000,197,912 | ---- | c] () -- c:\windows\system32\physxcudart_20.dll
[2008/10/07 10:13:22 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpaneltraditionalchinese.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelswedish.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelspanish.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelsimplifiedchinese.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelportugese.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelkorean.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpaneljapanese.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelgerman.dll
[2008/10/07 10:13:20 | 000,058,648 | ---- | c] () -- c:\windows\system32\agcpanelfrench.dll
[2008/04/14 08:00:00 | 000,755,200 | ---- | c] () -- c:\windows\system32\ir50_32.dll
[2008/04/14 08:00:00 | 000,338,432 | ---- | c] () -- c:\windows\system32\ir41_qcx.dll
[2008/04/14 08:00:00 | 000,200,192 | ---- | c] () -- c:\windows\system32\ir50_qc.dll
[2008/04/14 08:00:00 | 000,183,808 | ---- | c] () -- c:\windows\system32\ir50_qcx.dll
[2008/04/14 08:00:00 | 000,120,320 | ---- | c] () -- c:\windows\system32\ir41_qc.dll
[2007/05/24 12:20:34 | 000,014,848 | ---- | c] () -- c:\windows\system32\disney.wdpro.dreamsscreensaver.directshow.dll
[2004/08/13 18:56:20 | 000,005,810 | ---- | c] () -- c:\windows\system32\drivers\asacpi.sys

========== custom scans ==========


< %systemdrive%\*.* >
[2010/10/21 21:48:23 | 000,028,668 | ---- | m] () -- c:\aaw7boot.log
[2009/04/22 11:25:19 | 000,000,000 | ---- | m] () -- c:\autoexec.bat
[2009/04/22 11:20:40 | 000,000,211 | -hs- | m] () -- c:\boot.ini
[2009/04/22 11:25:19 | 000,000,000 | ---- | m] () -- c:\config.sys
[2010/02/03 20:06:14 | 000,031,232 | ---- | m] () -- c:\copy of movies.xls
[2009/04/22 11:25:19 | 000,000,000 | rhs- | m] () -- c:\io.sys
[2009/04/22 11:25:19 | 000,000,000 | rhs- | m] () -- c:\msdos.sys
[2008/04/14 08:00:00 | 000,047,564 | rhs- | m] () -- c:\ntdetect.com
[2008/04/14 08:00:00 | 000,250,048 | rhs- | m] () -- c:\ntldr
[2010/07/15 14:32:31 | 000,000,689 | ---- | m] () -- c:\output.log
[2010/10/21 21:48:27 | 2145,386,496 | -hs- | m] () -- c:\pagefile.sys

< %systemroot%\*. /mp /s >

< %systemroot%\system32\config\*.sav >
[2009/04/22 07:06:04 | 000,094,208 | ---- | m] () -- c:\windows\system32\config\default.sav
[2009/04/22 07:06:04 | 001,064,960 | ---- | m] () -- c:\windows\system32\config\software.sav
[2009/04/22 07:06:04 | 000,942,080 | ---- | m] () -- c:\windows\system32\config\system.sav

< hkey_local_machine\software\policies\microsoft\windows\windowsupdate\au >

< hkey_local_machine\software\microsoft\windows\currentversion\windowsupdate\auto update\results\install|lastsuccesstime /rs >
hkey_local_machine\software\microsoft\windows\currentversion\windowsupdate\auto update\results\install\\lastsuccesstime: 2010-10-14 07:14:33

< end of report >
Click to expand...
 
Extras.txt

regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"6112:TCP" = 6112:TCP:*:Enabled:Blizard downloader 6112
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\DATA BACKUP\Program Files\World of Warcraft\Launcher.exe" = C:\DATA BACKUP\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- File not found
"C:\Program Files\World of Warcraft\Launcher.exe" = C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\Program Files\Ventrilo\Ventrilo.exe" = C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe -- (Flagship Industries, Inc.)
"C:\Charon\Charon.exe" = C:\Charon\Charon.exe:*:Enabled:Charon - A proxy checking / scanning program. -- ()
"C:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-enUS-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- File not found
"C:\Program Files\AVG\AVG8\avgnsx.exe" = C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- File not found
"C:\Program Files\Turbine\Turbine Download Manager\TurbineDownloadManagerGui.exe" = C:\Program Files\Turbine\Turbine Download Manager\TurbineDownloadManagerGui.exe:*:Enabled:TurbineDownloadManagerGui -- File not found
"C:\Program Files\Turbine\Dungeons and Dragons Online - Eberron Unlimited\dndclient.exe" = C:\Program Files\Turbine\Dungeons and Dragons Online - Eberron Unlimited\dndclient.exe:*:Enabled:dndclient -- (Turbine, Inc.)
"C:\Program Files\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-enUS-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Program Files\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-enUS-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Aspyr\Guitar Hero Aerosmith\Guitar Hero Aerosmith.exe" = C:\Program Files\Aspyr\Guitar Hero Aerosmith\Guitar Hero Aerosmith.exe:*:Enabled:Guitar Hero: Aerosmith -- (Aspyr Media, Inc.)
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe" = C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4 -- (Firaxis Games)
"C:\Program Files\StarCraft II Beta\StarCraft II.exe" = C:\Program Files\StarCraft II Beta\StarCraft II.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\Program Files\StarCraft II Beta\Versions\Base14621\SC2.exe" = C:\Program Files\StarCraft II Beta\Versions\Base14621\SC2.exe:*:Disabled:StarCraft II -- (Blizzard Entertainment)
"C:\Documents and Settings\Robert\Local Settings\Apps\2.0\9O1EW83Q.1HV\ZE8VA85W.EVO\curs..tion_eee711038731a406_0004.0000_152ef8e82e8f5a48\CurseClient.exe" = C:\Documents and Settings\Robert\Local Settings\Apps\2.0\9O1EW83Q.1HV\ZE8VA85W.EVO\curs..tion_eee711038731a406_0004.0000_152ef8e82e8f5a48\CurseClient.exe:*:Enabled:Curse Client 4.0 -- File not found
"C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe" = C:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe:*:Enabled:Mass Effect 2 Game -- (BioWare)
"C:\Program Files\Mass Effect 2\MassEffect2Launcher.exe" = C:\Program Files\Mass Effect 2\MassEffect2Launcher.exe:*:Enabled:Mass Effect 2 Launcher -- (BioWare)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\Steam\SteamApps\common\mass effect\Binaries\MassEffect.exe" = C:\Program Files\Steam\SteamApps\common\mass effect\Binaries\MassEffect.exe:*:Enabled:Mass Effect -- (BioWare)
"C:\Program Files\Steam\SteamApps\common\mass effect\docs\EA Help\Electronic_Arts_Technical_Support.htm" = C:\Program Files\Steam\SteamApps\common\mass effect\docs\EA Help\Electronic_Arts_Technical_Support.htm:*:Enabled:Mass Effect -- ()
"C:\Program Files\Orb Networks\Orb\bin\OrbjetManager.exe" = C:\Program Files\Orb Networks\Orb\bin\OrbjetManager.exe:*:Enabled:Orb -- ()
"C:\Program Files\Orb Networks\Orb\bin\Orb.exe" = C:\Program Files\Orb Networks\Orb\bin\Orb.exe:*:Enabled:Orb -- File not found
"C:\Program Files\Orb Networks\Orb\bin\OrbLauncher.exe" = C:\Program Files\Orb Networks\Orb\bin\OrbLauncher.exe:*:Enabled:OrbLauncher -- File not found
"C:\Program Files\Orb Networks\Orb\bin\OrbSetupWizard.exe" = C:\Program Files\Orb Networks\Orb\bin\OrbSetupWizard.exe:*:Enabled:OrbSetupWizard -- File not found
"C:\Program Files\Orb Networks\Orb\bin\OrbControlPanel.exe" = C:\Program Files\Orb Networks\Orb\bin\OrbControlPanel.exe:*:Enabled:OrbControlPanel -- File not found
"C:\Program Files\Orb Networks\Orb\bin\OrbStreamerClient.exe" = C:\Program Files\Orb Networks\Orb\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client -- File not found
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\Turbine\Turbine Download Manager\TurbineMessageService.exe" = C:\Program Files\Turbine\Turbine Download Manager\TurbineMessageService.exe:*:Enabled:TurbineMessageService -- File not found
"C:\Program Files\Turbine\Turbine Download Manager\TurbineNetworkService.exe" = C:\Program Files\Turbine\Turbine Download Manager\TurbineNetworkService.exe:*:Enabled:TurbineNetworkService -- File not found
"C:\Program Files\Dragon Age\bin_ship\daorigins.exe" = C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game -- (BioWare)
"C:\Program Files\Dragon Age\DAOriginsLauncher.exe" = C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher -- (BioWare)
"C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater -- (BioWare)
"C:\Program Files\PageBreeze\pagebreeze.exe" = C:\Program Files\PageBreeze\pagebreeze.exe:*:Enabled:pagebreeze -- (Solutionsoft)
"C:\Program Files\Steam\SteamApps\common\dawn of war 2\DOW2.exe" = C:\Program Files\Steam\SteamApps\common\dawn of war 2\DOW2.exe:*:Enabled:Warhammer® 40,000™: Dawn of War® II – Chaos Rising™ -- (THQ Canada Inc.)
"C:\Program Files\StarCraft II\StarCraft II.exe" = C:\Program Files\StarCraft II\StarCraft II.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01840D1A-3B62-1E2A-9997-C9B9007F1E5F}" = Catalyst Control Center Core Implementation
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{186A63A2-4256-43C6-8061-95EF77A5CDB6}" = Sid Meier's Civilization 4
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1d1c4bab-632b-432c-a606-a939add320f5}" = Disney Dreams Screensaver
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{2133CB3F-F891-4081-8681-FEE2B2419FF4}" = Orb Runtime libraries
"{2158685C-E2B3-4026-B0A1-0FFE31837AFD}" = PlayLinc
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 15
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2C0A655C-61E7-428A-8ED2-23A3D20E7DD2}" = Data Lifeguard Tools
"{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}" = Microsoft Games for Windows - LIVE Redistributable
"{32BAA79B-CBB2-3693-A0E3-71EA4A1E9761}" = ccc-core-static
"{33BA828D-CF19-0B52-8483-61FCFD83F75D}" = Catalyst Control Center HydraVision Full
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{362CCC45-63D1-9688-C74D-F32F1B0CD919}" = CCC Help English
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4183E4E3-F943-416C-D4E1-0673F1CBA6E1}" = ccc-utility
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{46F42615-BA31-45A0-BE10-2D2119749E95}" = Guitar Hero: Aerosmith
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{66B6D13A-9CC1-417D-B6F2-58AA539D1033}" = Nero 7 Essentials
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FAC221-570C-A7A2-10FF-30F3BDDED603}" = Catalyst Control Center Graphics Light
"{6E06FC10-2DA5-42AA-A1E5-2D8AEF651033}" = SecurDisc Viewer
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7395D650-AE5D-4D68-B8FE-D3FA6B51467F}" = Driver Detective
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77C4F53F-8618-B4AC-A54D-694CA504BC2E}" = Catalyst Control Center Graphics Full Existing
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B3F4499-32E6-470D-8586-E6C03420F889}" = ASUS WiFi-AP Solo
"{8C5FAD77-F678-4758-A296-C12F08D179E0}" = Microsoft IntelliPoint 6.2
"{8CAE7CB3-B7C0-41A2-B2E3-9BD16124A091}" = EasyInfo
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (French) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISE_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5B7CF940-7823-462E-89BE-01E2E91BC04E}" =
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007
"{90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-040C-0000-0000000FF1CE}" = Microsoft Office Groove MUI (French) 2007
"{90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{9D6B057C-96B5-3437-9692-7B9C401C498E}" = Disney Vacation Connection
"{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A52C4BAB-E8E7-906E-EF34-91EA765505BE}" = ccc-core-preinstall
"{A778A787-08A4-4089-CB68-02A9737DE532}" = Catalyst Control Center InstallProxy
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.4
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{EB2E2ED5-DE74-F09D-3B23-0C4BA51D8C60}" = Catalyst Control Center Graphics Previews Common
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F65FE148-FCF5-42F7-8803-FA0B7DA8B8A4}" = ubCore
"{FC2C7405-BC58-4E11-8F51-29671BEAC06B}" = Natural Color Pro
"{FD3D9B16-44E4-4231-E1E2-85C40A115F87}" = ATI Catalyst Install Manager
"{FDE0EEEA-B1CD-BFED-22BB-AD87B886CC47}" = Catalyst Control Center Graphics Full New
"15b35190-c6f9-11d9-9669-0800200c9a66_is1" = Dungeons and Dragons Online™ - Eberron Unlimited™ - Live
"8461-7759-5462-8226" = Vuze
"Ad-Aware" = Ad-Aware
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ATI Display Driver" = ATI Display Driver
"AVG9Uninstall" = AVG 9.0
"AVS DVD Player_is1" = AVS DVD Player version 2.4
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"BookSmart® 2.9.1 2.9.1" = BookSmart® 2.9.1 2.9.1
"C-Media USB Sound" = C-Media USB Sound
"C-Media USB Sound Driver" = C-Media USB Sound Driver
"Disney.Vacation.Connection.460.73ACE317F4A7B83CB919AF282FBA5D3D96899CDE.1" = Disney Vacation Connection
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Download Manager" = Download Manager 2.3.10
"DVD Flick_is1" = DVD Flick 1.3.0.7
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Family Tree Builder" = MyHeritage Family Tree Builder
"ffdshow_is1" = ffdshow [rev 2844] [2009-03-30]
"FileZilla Client" = FileZilla Client 3.3.4.1
"Fraps" = Fraps
"Generic USB 108 Sound" = USB PnP Sound Device
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Inkscape" = Inkscape 0.47
"InstallShield_{7395D650-AE5D-4D68-B8FE-D3FA6B51467F}" = Driver Detective
"InstallShield_{F65FE148-FCF5-42F7-8803-FA0B7DA8B8A4}" = ubCore
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PageBreeze Free HTML Editor" = PageBreeze Free HTML Editor
"PokerStars" = PokerStars
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 12.0" = RealPlayer
"Star Trek Online" = Star Trek Online
"StarCraft II" = StarCraft II
"StarCraft II Beta" = StarCraft II Beta
"Steam App 15620" = Warhammer 40,000: Dawn of War II
"Steam App 17460" = Mass Effect
"Steam App 20570" = Warhammer® 40,000™: Dawn of War® II – Chaos Rising™
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR archiver
"winscp3_is1" = WinSCP 4.2.5
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"Xfire" = Xfire (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >
 
Hello DarthTigger,

Due to the volume of posts to your own topic, it would appear to volunteer analysts that you were already being assisted as they look for topics with no response.

Please start a new topic providing the DDS log only as per forum FAQ, "BEFORE you POST"(READ this Procedure BEFORE Requesting Assistance)

If the infection prevents DDS from running, please start a topic, make note of the situation and wait for a response. Please do not add logs from other scans.
Click to expand...
Also provide a link back to this thread.

Best regards.
 
Status
Not open for further replies.
Back
Top