Hiyall

View previous topic View next topic Go down

Hiyall

Post by trer01 on Sun 19 Dec 2010, 7:29 pm

Im here with an urgent need to get my System Restore back in operation. The NEXT button does nothing when I press it (altho a log is filed). Can anyone help me ??

Im currently running SuperAntiSpyware as someone said it helped them... it is clearly an infection issue I think. The first scan found a trojan and an ambarassingly large amount of spyware, the second only a small number of spies, and now I will begin the third Some people say the SR.inf file needs replaceing too I dont mess with my registry unless I am 100% sure of what I am doing. Problem currently persists and I wonder if there are any tips.

Cheers


P.S. GeekPolice looks cool !!


Last edited by trer01 on Sun 19 Dec 2010, 7:32 pm; edited 2 times in total (Reason for editing : typos)

trer01

Newbie Surfer
Newbie Surfer

Posts : 5
Joined : 2010-12-19
Operating System : xp x64 pro

View user profile

Back to top Go down

Re: Hiyall

Post by Belahzur on Mon 20 Dec 2010, 2:54 am

Hello.

Download OTL by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

OTL.txt

Post by trer01 on Mon 20 Dec 2010, 4:27 am

OTL logfile created on: 19/12/2010 17:23:06 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Tomorer\Desktop
64bit-Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 68.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 63.70 Gb Total Space | 14.14 Gb Free Space | 22.19% Space Free | Partition Type: NTFS
Drive D: | 234.38 Gb Total Space | 14.17 Gb Free Space | 6.05% Space Free | Partition Type: NTFS
Drive S: | 931.50 Gb Total Space | 733.11 Gb Free Space | 78.70% Space Free | Partition Type: NTFS
Drive T: | 931.50 Gb Total Space | 258.99 Gb Free Space | 27.80% Space Free | Partition Type: NTFS

Computer Name: ZOAEXUS | User Name: Tomorer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/12/19 17:22:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tomorer\Desktop\OTL.exe
PRC - [2010/08/12 14:16:26 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2010/07/12 20:11:20 | 002,326,920 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2009/09/12 15:31:36 | 000,357,384 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2009/09/12 15:30:48 | 005,048,488 | ---- | M] (Acronis) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2009/05/19 17:39:44 | 000,136,544 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - S&D\TeaTimer.exe
PRC - [2008/09/16 11:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
PRC - [2008/04/10 19:08:44 | 000,212,992 | -H-- | M] (IDT, Inc.) -- c:\WINDOWS\SoftwareDistribution\Download\Install\stacsv.exe
PRC - [2007/01/30 01:08:40 | 000,077,824 | ---- | M] () -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
PRC - [2005/09/29 16:28:22 | 000,217,088 | ---- | M] () -- C:\Program Files (x86)\GhostWall\ghostwall.exe


========== Modules (SafeList) ==========

MOD - [2010/12/19 17:22:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tomorer\Desktop\OTL.exe
MOD - [2009/07/12 00:12:06 | 000,632,656 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2009/07/12 00:09:20 | 000,554,832 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll
MOD - [2007/02/18 12:00:00 | 000,797,184 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\comres.dll
MOD - [2007/02/18 12:00:00 | 000,178,688 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\wbem\framedyn.dll
MOD - [2007/02/18 12:00:00 | 000,177,152 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\MSCTFIME.IME
MOD - [2007/02/17 05:58:24 | 001,051,648 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\wow64_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.3790.3959_x-ww_5FA17F4E\comctl32.dll
MOD - [2007/01/30 01:08:38 | 000,044,544 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\xmlprov.dll -- (xmlprov)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\wzcsvc.dll -- (WZCSVC)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\wuauserv.dll -- (wuauserv)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\advapi32.dll -- (Wmi)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\ups.exe -- (UPS)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\wdfmgr.exe -- (UMWdf)
SRV:64bit: - File not found [Disabled | Stopped] -- C:\WINDOWS\SysNative\tlntsvr.exe -- (TlntSvr)
SRV:64bit: - File not found [Auto | Stopped] -- C:\WINDOWS\SysNative\smlogsvc.exe -- (SysmonLog)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\srsvc.dll -- (srservice)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\SCardSvr.exe -- (SCardSvr)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\sessmgr.exe -- (RDSessMgr)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\services.exe -- (PlugPlay)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\ntmssvc.dll -- (NtmsSvc)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\netdde.exe -- (NetDDEdsdm)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\netdde.exe -- (NetDDE)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\mnmsrvc.exe -- (mnmsrvc)
SRV:64bit: - File not found [Disabled | Stopped] -- C:\WINDOWS\SysNative\msgsvc.dll -- (Messenger)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\imapi.exe -- (ImapiService)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\w3ssl.dll -- (HTTPFilter)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\services.exe -- (Eventlog)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\ersvc.dll -- (ERSvc)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\dmserver.dll -- (dmserver)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\dmadmin.exe -- (dmadmin)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\clipsrv.exe -- (ClipSrv)
SRV:64bit: - File not found [Disabled | Stopped] -- C:\WINDOWS\SysNative\cisvc.exe -- (CiSvc)
SRV:64bit: - File not found [Auto | Stopped] -- C:\WINDOWS\SysNative\ati2saag.exe -- (ATI Smart)
SRV:64bit: - File not found [Auto | Running] -- C:\WINDOWS\SysNative\Ati2evxx.exe -- (Ati HotKey Poller)
SRV:64bit: - File not found [On_Demand | Stopped] -- C:\WINDOWS\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - File not found [Disabled | Stopped] -- C:\WINDOWS\SysNative\alrsvc.dll -- (Alerter)
SRV:64bit: - [2010/08/12 14:18:40 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2010/08/12 14:16:26 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2010/06/29 17:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2010/05/11 21:42:42 | 002,532,680 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\Defrag\oodag.exe -- (OODefragAgent)
SRV - [2010/07/12 20:11:20 | 002,326,920 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2010/06/26 12:14:29 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/06/22 17:28:00 | 000,607,048 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files (x86)\PC TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010/03/18 12:16:28 | 000,130,384 | -H-- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/10/30 14:08:24 | 001,353,544 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\PC TuneUp Utilities 2010\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009/10/30 14:01:00 | 000,030,024 | -H-- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2009/09/12 15:32:46 | 000,891,432 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2009/07/02 11:12:00 | 000,665,088 | -H-- | M] () [Auto | Stopped] -- C:\WINDOWS\SysWOW64\ati2saag.exe -- (ATI Smart)
SRV - [2008/09/16 11:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor7.0)
SRV - [2008/07/25 10:17:02 | 000,069,632 | -H-- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/04/10 19:08:44 | 000,212,992 | -H-- | M] (IDT, Inc.) [Auto | Running] -- c:\WINDOWS\SoftwareDistribution\Download\Install\stacsv.exe -- (STacSV)
SRV - [2007/02/18 12:00:00 | 000,077,312 | -H-- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc)
SRV - [2007/02/18 12:00:00 | 000,039,424 | -H-- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\wdfmgr.exe -- (UMWdf)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\wdmaud.sys -- (wdmaud)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\update.sys -- (Update)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\timntr.sys -- (timounter)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\tdrpm251.sys -- (tdrpman251) Acronis Try&Decide and Restore Points filter (build 251)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\sysaudio.sys -- (sysaudio)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\swmidi.sys -- (swmidi)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\sthda64.sys -- (STHDA)
DRV:64bit: - File not found [File_System | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\sr.sys -- (sr)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\splitter.sys -- (splitter)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\snapman.sys -- (snapman)
DRV:64bit: - File not found [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\revoflt.sys -- (Revoflt)
DRV:64bit: - File not found [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\redbook.sys -- (redbook)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\raspti.sys -- (Raspti)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\ptilink.sys -- (Ptilink)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\psched.sys -- (PSched)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\nic1394.sys -- (NIC1394)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\Drivers\iqvw64e.sys -- (NAL)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\SysNative\Drivers\LBeepKE.sys -- (LBeepKE)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\kmixer.sys -- (kmixer)
DRV:64bit: - File not found [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\ipsec.sys -- (IPSec)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\Ip6Fw.sys -- (Ip6Fw)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R)
DRV:64bit: - File not found [Kernel | System | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\imapi.sys -- (imapi)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\igxpmp64.sys -- (ialm)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\msgpc.sys -- (Gpc)
DRV:64bit: - File not found [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\drivers\ghstwl64.sys -- (ghstwall)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\DRIVERS\ftdisk.sys -- (Ftdisk)
DRV:64bit: - File not found [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\epfwtdir.sys -- (epfwtdir)
DRV:64bit: - File not found [Kernel | System | Running] -- C:\WINDOWS\SysNative\DRIVERS\ehdrv.sys -- (ehdrv)
DRV:64bit: - File not found [File_System | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\eamon.sys -- (eamon)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\e1y51x64.sys -- (e1yexpress) Intel(R)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\dmload.sys -- (dmload)
DRV:64bit: - File not found [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\dmio.sys -- (dmio)
DRV:64bit: - File not found [Kernel | Disabled | Stopped] -- C:\WINDOWS\SysNative\drivers\dmboot.sys -- (dmboot)
DRV:64bit: - File not found [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\CdaD10BA.sys -- (CdaD10BA)
DRV:64bit: - File not found [Kernel | Auto | Running] -- C:\WINDOWS\SysNative\DRIVERS\CdaC15BA.sys -- (CdaC15BA)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\Drivers\btwusb.sys -- (BTWUSB)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\btwhid.sys -- (btwhid)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\btwdndis.sys -- (BTWDNDIS)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\btport.sys -- (BTDriver)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\btaudio.sys -- (btaudio)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\audstub.sys -- (audstub)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\DRIVERS\atmarpc.sys -- (Atmarpc)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\ati2mtag.sys -- (ati2mtag)
DRV:64bit: - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\arp1394.sys -- (Arp1394)
DRV:64bit: - File not found [File_System | On_Demand | Running] -- C:\WINDOWS\SysNative\DRIVERS\afcdp.sys -- (afcdp)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\aec.sys -- (aec)
DRV:64bit: - [2010/10/14 21:40:24 | 000,021,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\PeerBlock\pbfilter.sys -- (pbfilter)
DRV:64bit: - [2010/02/17 18:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010/02/17 18:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV - [2009/10/14 06:24:44 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\PC TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2009/07/02 16:59:06 | 000,006,144 | R--- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Tomorer\Local Settings\Temp\ATICDSDr.sys -- (ATICDSDr)
DRV - [2007/02/18 12:00:00 | 000,033,792 | -H-- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\SysWow64\mnmdd.dll -- (mnmdd)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010/12/01 06:33:11 | 000,000,000 | ---D | M]

[2010/07/25 18:44:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tomorer\Application Data\Mozilla\Extensions
[2010/07/06 15:18:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tomorer\Application Data\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}

Hosts file not found
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - S&D\SDHelper.dll (Safer Networking Limited)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [GhostWall] C:\Program Files (x86)\GhostWall\ghostwall.exe ()
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKCU..\Run: [Adobe Acrobat Synchronizer] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe File not found
O4 - HKCU..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe (PeerBlock, LLC)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - S&D\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk = C:\Program Files (x86)\Windows Desktop Search\WindowsSearch.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O9:64bit: - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - S&D\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} [You must be registered and logged in to see this link.] (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [You must be registered and logged in to see this link.] (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\SysNative\wiascr.dll File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UIHost - (C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe) - C:\Documents and Settings\All Users\Application Data\TuneUp Software\TuneUp Utilities\WinStyler\tu_logonui.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: System - (lsass.exe) - File not found
O20:64bit: - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Key error. - File not found
O20:64bit: - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - File not found
O20:64bit: - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - File not found
O20:64bit: - Winlogon\Notify\cscdll: DllName - cscdll.dll - File not found
O20:64bit: - Winlogon\Notify\dimsntfy: DllName - dimsntfy.dll - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - File not found
O20:64bit: - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - File not found
O20:64bit: - Winlogon\Notify\Schedule: DllName - wlnotify.dll - File not found
O20:64bit: - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - File not found
O20:64bit: - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - File not found
O20:64bit: - Winlogon\Notify\termsrv: DllName - Reg Error: Key error. - File not found
O20:64bit: - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - File not found
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - File not found
O21:64bit: - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\SysNative\stobject.dll File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Tomorer\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Tomorer\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28:64bit: - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28:64bit: - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/21 19:09:53 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/12/19 17:22:08 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tomorer\Desktop\OTL.exe
[2010/12/19 09:00:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Free Window Registry Repair
[2010/12/18 22:10:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tomorer\Application Data\SUPERAntiSpyware.com
[2010/12/18 22:10:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2010/12/18 22:10:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\!SASCORE
[2010/12/18 22:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/12/18 21:23:23 | 000,000,000 | ---D | C] -- C:\ADOBE HFP
[2010/12/18 10:42:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
[2010/12/18 10:20:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GhostWall
[2010/12/18 10:16:46 | 000,000,000 | ---D | C] -- C:\Ghostwall
[2010/12/16 09:58:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tomorer\Application Data\vlc
[2010/12/16 09:21:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tomorer\Application Data\JGoodies
[2010/12/08 10:39:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/12/08 10:35:17 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\deployJava1.dll
[2010/12/08 10:35:17 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\javaws.exe
[2010/12/08 10:35:17 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\javaw.exe
[2010/12/08 10:35:17 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\java.exe
[2010/12/08 10:35:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010/12/08 10:20:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JGoodies
[2010/12/03 12:29:48 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Tomorer\My Documents\My Pictures
[2010/12/02 16:26:42 | 000,000,000 | ---D | C] -- C:\WinAVI
[2010/12/01 06:33:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010/11/20 14:58:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tomorer\Local Settings\Application Data\Help
[2010/11/20 14:26:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\tracing
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[10 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/12/19 17:22:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tomorer\Desktop\OTL.exe
[2010/12/19 17:06:43 | 000,000,508 | -H-- | M] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2010/12/19 15:00:58 | 000,002,563 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook 2007.lnk
[2010/12/19 11:51:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/12/19 09:36:23 | 000,000,984 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/12/19 09:02:41 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Free Window Registry Repair.lnk
[2010/12/19 07:55:30 | 000,798,000 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\RegpairSetup.exe
[2010/12/18 22:28:52 | 000,001,673 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\SUPERAntiSpyware Professional.lnk
[2010/12/18 11:54:38 | 000,002,489 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office OneNote 2007.lnk
[2010/12/18 11:53:05 | 000,144,384 | ---- | M] () -- C:\Documents and Settings\Tomorer\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/18 10:48:45 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Excel 2007.lnk
[2010/12/18 08:49:01 | 026,951,876 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\THOA.pdf
[2010/12/18 07:45:33 | 000,005,805 | -H-- | M] () -- C:\Documents and Settings\Tomorer\My Documents\My Favorite Theme.Theme
[2010/12/17 17:36:08 | 000,000,116 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\ThePrefaceToTheQueenOfEnglandByJohnFoxe.m3u
[2010/12/17 16:39:18 | 040,460,678 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\TDOW (London, 1886).pdf
[2010/12/17 16:38:42 | 004,570,774 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\TLOHTF (London, 1875).pdf
[2010/12/17 08:22:44 | 000,002,557 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2010/12/15 21:07:00 | 000,001,536 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Magnifier.lnk
[2010/12/08 10:35:07 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\deployJava1.dll
[2010/12/08 10:35:07 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\javaws.exe
[2010/12/08 10:35:07 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\javaw.exe
[2010/12/08 10:35:07 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\SysWow64\java.exe
[2010/12/07 18:34:25 | 028,655,784 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\theodoricgothbar00hodguoft.pdf
[2010/12/07 18:32:19 | 024,724,786 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\earlychurchhisto00back.pdf
[2010/12/06 22:02:23 | 000,001,536 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Notepad.lnk
[2010/12/06 09:09:12 | 003,055,272 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\26_Jim_Marrs___The_Rise_of_the_Fourth_Reich_The_Secret_Societies_That_Threaten_to_Take_Over_America.pdf
[2010/12/06 08:46:48 | 000,060,775 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\Sidonius Apollinarius brief life doc.pdf
[2010/12/06 08:42:53 | 000,098,358 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\Romans and Barbarians in Gaul.pdf
[2010/12/05 22:57:29 | 000,002,525 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office PowerPoint 2007.lnk
[2010/11/30 08:04:06 | 018,457,861 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\historyofislando00blasrich.pdf
[2010/11/30 07:31:10 | 024,303,241 | ---- | M] () -- C:\Documents and Settings\Tomorer\Desktop\veniceitsstory00okeyuoft.pdf
[2010/11/22 08:59:51 | 000,001,621 | ---- | M] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\PeerBlock.lnk
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[10 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/12/19 09:02:41 | 000,000,759 | ---- | C] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\Free Window Registry Repair.lnk
[2010/12/19 07:55:29 | 000,798,000 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\RegpairSetup.exe
[2010/12/18 22:28:52 | 000,001,673 | ---- | C] () -- C:\Documents and Settings\Tomorer\Application Data\Microsoft\Internet Explorer\Quick Launch\SUPERAntiSpyware Professional.lnk
[2010/12/18 08:49:00 | 026,951,876 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\THOA.pdf
[2010/12/18 07:45:33 | 000,005,805 | -H-- | C] () -- C:\Documents and Settings\Tomorer\My Documents\My Favorite Theme.Theme
[2010/12/17 17:36:08 | 000,000,116 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\ThePrefaceToTheQueenOfEnglandByJohnFoxe.m3u
[2010/12/17 16:39:18 | 040,460,678 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\TDOW (London, 1886).pdf
[2010/12/17 16:38:42 | 004,570,774 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\TLOHTF (London, 1875).pdf
[2010/12/07 18:34:25 | 028,655,784 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\theodoricgothbar00hodguoft.pdf
[2010/12/07 18:32:19 | 024,724,786 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\earlychurchhisto00back.pdf
[2010/12/06 09:08:46 | 003,055,272 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\26_Jim_Marrs___The_Rise_of_the_Fourth_Reich_The_Secret_Societies_That_Threaten_to_Take_Over_America.pdf
[2010/12/06 08:46:48 | 000,060,775 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\Sidonius Apollinarius brief life doc.pdf
[2010/12/06 08:42:53 | 000,098,358 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\Romans and Barbarians in Gaul.pdf
[2010/11/30 08:04:06 | 018,457,861 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\historyofislando00blasrich.pdf
[2010/11/30 07:31:10 | 024,303,241 | ---- | C] () -- C:\Documents and Settings\Tomorer\Desktop\veniceitsstory00okeyuoft.pdf
[2010/07/10 02:31:11 | 000,120,200 | -H-- | C] () -- C:\WINDOWS\SysWow64\DLLDEV32i.dll
[2010/07/10 02:25:24 | 000,611,840 | -H-- | C] () -- C:\WINDOWS\SysWow64\DVD43.dll
[2010/06/27 00:34:55 | 000,043,520 | -H-- | C] () -- C:\WINDOWS\SysWow64\CmdLineExt03.dll
[2010/06/25 12:30:18 | 000,165,376 | -H-- | C] () -- C:\WINDOWS\SysWow64\unrar.dll
[2010/06/25 12:30:18 | 000,000,038 | -H-- | C] () -- C:\WINDOWS\avisplitter.ini
[2010/06/25 12:30:14 | 002,990,080 | -H-- | C] () -- C:\WINDOWS\SysWow64\x264vfw.dll
[2010/06/25 12:30:13 | 000,790,528 | -H-- | C] () -- C:\WINDOWS\SysWow64\xvidcore.dll
[2010/06/25 12:30:13 | 000,134,144 | -H-- | C] () -- C:\WINDOWS\SysWow64\xvidvfw.dll
[2010/06/25 12:30:07 | 000,108,032 | -H-- | C] () -- C:\WINDOWS\SysWow64\ff_vfw.dll
[2010/06/22 12:46:28 | 000,634,462 | -H-- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2010/06/22 09:01:12 | 000,144,384 | ---- | C] () -- C:\Documents and Settings\Tomorer\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/21 19:51:03 | 000,004,161 | -H-- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/02/05 12:28:20 | 000,000,051 | ---- | C] () -- C:\Documents and Settings\Tomorer\Local Settings\Application Data\setup.txt
[2007/02/18 12:00:00 | 001,278,464 | -H-- | C] () -- C:\WINDOWS\SysWow64\quartz.dll
[2007/02/18 12:00:00 | 000,733,696 | -H-- | C] () -- C:\WINDOWS\SysWow64\qedwipes.dll
[2007/02/18 12:00:00 | 000,512,512 | -H-- | C] () -- C:\WINDOWS\SysWow64\qedit.dll
[2007/02/18 12:00:00 | 000,498,742 | -H-- | C] () -- C:\WINDOWS\SysWow64\dxmasf.dll
[2007/02/18 12:00:00 | 000,396,288 | -H-- | C] () -- C:\WINDOWS\SysWow64\encdec.dll
[2007/02/18 12:00:00 | 000,385,536 | -H-- | C] () -- C:\WINDOWS\SysWow64\qdvd.dll
[2007/02/18 12:00:00 | 000,355,112 | -H-- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2007/02/18 12:00:00 | 000,279,040 | -H-- | C] () -- C:\WINDOWS\SysWow64\qdv.dll
[2007/02/18 12:00:00 | 000,276,992 | -H-- | C] () -- C:\WINDOWS\SysWow64\sbe.dll
[2007/02/18 12:00:00 | 000,199,168 | -H-- | C] () -- C:\WINDOWS\SysWow64\ir32_32.dll
[2007/02/18 12:00:00 | 000,192,512 | -H-- | C] () -- C:\WINDOWS\SysWow64\qcap.dll
[2007/02/18 12:00:00 | 000,114,688 | -H-- | C] () -- C:\WINDOWS\SysWow64\msencode.dll
[2007/02/18 12:00:00 | 000,072,704 | -H-- | C] () -- C:\WINDOWS\SysWow64\amstream.dll
[2007/02/18 12:00:00 | 000,062,464 | -H-- | C] () -- C:\WINDOWS\SysWow64\mciqtz32.dll
[2007/02/18 12:00:00 | 000,061,440 | -H-- | C] () -- C:\WINDOWS\SysWow64\devenum.dll
[2007/02/18 12:00:00 | 000,016,896 | -H-- | C] () -- C:\WINDOWS\SysWow64\tsd32.dll
[2007/02/18 12:00:00 | 000,014,336 | -H-- | C] () -- C:\WINDOWS\SysWow64\msdmo.dll
[2007/02/18 12:00:00 | 000,004,126 | -H-- | C] () -- C:\WINDOWS\SysWow64\msdxmlc.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 194 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C265C458
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0CFF5F08

< End of report >

trer01

Newbie Surfer
Newbie Surfer

Posts : 5
Joined : 2010-12-19
Operating System : xp x64 pro

View user profile

Back to top Go down

EXTRAS.txt

Post by trer01 on Mon 20 Dec 2010, 4:29 am

OTL Extras logfile created on: 19/12/2010 17:23:06 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Tomorer\Desktop
64bit-Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 68.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 63.70 Gb Total Space | 14.14 Gb Free Space | 22.19% Space Free | Partition Type: NTFS
Drive D: | 234.38 Gb Total Space | 14.17 Gb Free Space | 6.05% Space Free | Partition Type: NTFS
Drive S: | 931.50 Gb Total Space | 733.11 Gb Free Space | 78.70% Space Free | Partition Type: NTFS
Drive T: | 931.50 Gb Total Space | 258.99 Gb Free Space | 27.80% Space Free | Partition Type: NTFS

Computer Name: ZOAEXUS | User Name: Tomorer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url[@ = InternetShortcut] -- C:\WINDOWS\system32\ieframe.DLL (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.url [@ = InternetShortcut] -- C:\WINDOWS\system32\ieframe.DLL (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* File not found
exefile [open] -- "%1" %* File not found
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 File not found
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1

========== System Restore Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- File not found
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\uTorrent\uTorrent.exe" = C:\Program Files (x86)\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe" = C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files (x86)\uTorrent\uTorrent.exe" = C:\Program Files (x86)\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe" = C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.0+ (r484)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series" = Canon MP640 series MP Drivers
"{186D2CCE-DEFE-4188-AB44-62008E9BC3E0}" = O&O Defrag Professional
"{2223FC2F-B862-4F83-BC9E-DDF2DADF2859}" = Intel(R) Network Connections 13.0.44.0
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.2.3
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6EE201F8-D9D1-2D19-CBDA-1031E767B46A}" = ccc-utility64
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5F268F1-0856-43E2-B6F1-2470EEE48D2A}" = ESET NOD32 Antivirus
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"HECI" = Intel(R) Management Engine Interface
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WIC" = Windows Imaging Component
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0468A4CF-069D-86B6-84BD-F8E4F86E2631}" = Catalyst Control Center Graphics Previews Common
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{1632FD86-1BA4-4FC4-8B25-A8C655D63F68}" = Sid Meier's Pirates!
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{25B9C7BE-5CFD-6173-D3E1-6E4C9EBD8658}" = Catalyst Control Center Graphics Light
"{26999308-FF96-5FBF-B2DB-12E66346FA3A}" = CCC Help German
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{2927733E-A961-BA53-03C5-03774A081030}" = ccc-core-static
"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = Logitech SetPoint
"{30148775-0642-7507-58EA-3CDB7E828BA2}" = Catalyst Control Center Core Implementation
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3972209B-4946-9B49-1911-0AC122FB8073}" = CCC Help Russian
"{3E4B349F-10B5-4586-9D99-489A90A8B228}" = Sid Meier's Civilization 4 - Warlords
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{43165058-0CD3-F336-0B4E-879A03DC8F50}" = Catalyst Control Center Graphics Full Existing
"{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}" = Sid Meier's Civilization 4
"{43F18082-D8A1-5A37-829D-CF1C4ED9ED2A}" = CCC Help Portuguese
"{4905D4CA-7295-F988-AE8A-B04675295133}" = CCC Help Thai
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{55A83F62-4CC7-8A5F-0FB0-FE55B53B3ED1}" = CCC Help Finnish
"{5B31B7DD-ED2E-F515-C900-B2E91138A34F}" = ccc-core-preinstall
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F032DC8-A020-D42E-F2E6-41C748A92A06}" = Catalyst Control Center Graphics Full New
"{618A812B-3099-8DB2-C8E4-95D15A7B7CD5}" = Catalyst Control Center HydraVision Full
"{6A7E75AF-C2C7-4B1E-FE46-E0979833D6D5}" = CCC Help Spanish
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{71AFFCBF-0864-C19D-0C07-5DF67BA0382D}" = CCC Help Turkish
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8425081E-FEFF-6E4B-408E-53345859896C}" = CCC Help English
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C52A46C-7961-4A81-AB4B-92CF65CB4772}_is1" = Sothink Web Video Downloader
"{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}" = CDDRV_Installer
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90FE2C60-A4C3-D61D-790A-9493EE405AEA}" = CCC Help Swedish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0B0BCE9-2994-36F2-BE66-D23C884372E8}" = Visual C++ 9.0 OpenMP (x86) WinSXS MSM
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{AA2EBBCC-4E3B-3442-865E-7BB3E9F45F0C}" = Visual C++ 9.0 CRT (x86) WinSXS MSM
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{ADAA5D11-5D8F-31EC-1992-693239110308}" = CCC Help French
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B21C00B6-2B53-BB00-B4FE-27316019A9C5}" = CCC Help Chinese Traditional
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BD7CDF5A-315E-A085-CF42-921B37D7A507}" = CCC Help Hungarian
"{BE9269F2-562B-7BC7-9BE9-16EF8B52B403}" = Catalyst Control Center Localization All
"{BF243C52-D0D2-A777-D388-DFCCF00FFC23}" = CCC Help Dutch
"{C2D129C0-7508-11DF-9F1B-005056806466}" = Google Earth
"{C2F1F96A-057E-5819-B52E-FEA1D1D2933B}" = Acronis True Image Home
"{C7370250-3AA3-23F8-DE52-21701C911BBD}" = CCC Help Korean
"{C7DA1638-A3B9-0AF6-B1B3-5ACBC08E7204}" = CCC Help Polish
"{CAAB0192-5704-469F-A0BE-2D842D70E93B}_is1" = Sothink FLV Player
"{CB6075D9-F912-40AE-BEA6-E590DA24F16B}" = Adobe Photoshop Elements 7.0
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D472CC91-8FFC-B07C-F755-363498CF7724}" = CCC Help Danish
"{D68E33C8-F508-F069-FF15-59B2BF50B0D3}" = CCC Help Japanese
"{E236A12C-FE29-49C4-C10C-F9AFF2EE8D39}" = CCC Help Chinese Standard
"{EB5BA578-FF7F-3863-8E53-7A003222B7FC}" = Visual C++ 9.0 CRT (x86) WinSXS MSM
"{EB6C11E5-449C-3BA3-9086-80B18BCFF947}" = Visual C++ 9.0 OpenMP (x86) WinSXS MSM
"{EFA83B92-06EA-D90D-1342-A7872D97B89F}" = CCC Help Italian
"{FAFD1909-311F-2035-6C97-7151A3B485C5}" = CCC Help Greek
"{FD433CFA-5819-54FC-005C-140926CDBB6F}" = CCC Help Czech
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"{FF97034A-E1FE-CC80-E5D4-549796B72E36}" = CCC Help Norwegian
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 7" = Adobe Photoshop Elements 7.0
"All ATI Software" = ATI - Software Uninstall Utility
"AVS Video Editor 4_is1" = AVS Video Editor 4
"AVS Video Recorder_is1" = AVS Video Recorder 2.4
"AVS YouTube Uploader 2.1_is1" = AVS YouTube Uploader version 2.1
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3
"AVS4YOU Video Converter 6_is1" = AVS Video Converter 6
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"DVD43 Plug-in_is1" = DVD43 Plug-in v1.0.0.5
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Free Window Registry Repair" = Free Window Registry Repair
"GhostWall_is1" = GhostWall v1.150
"ImageConverter Plus_is1" = ImageConverter Plus 7.1
"InstallShield_{1632FD86-1BA4-4FC4-8B25-A8C655D63F68}" = Sid Meier's Pirates!
"JDiskReport 1.3.1" = JGoodies JDiskReport 1.3.1
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.0.9
"TuneUp Utilities" = TuneUp Utilities
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.5
"WinAVI Video Converter 10.1_is1" = WinAVI Video Converter

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19/12/2010 06:30:06 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3013
Description = Unable to update the performance counter strings of the 009 language
ID. The Win32 status returned by the call is the first DWORD in Data section.

Error - 19/12/2010 06:30:06 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3009
Description = Installing the performance counter strings for service WmiApRpl (WmiApRpl)
failed. The Error code is the first DWORD in Data section.

Error - 19/12/2010 07:06:58 | Computer Name = ZOAEXUS | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 19/12/2010 07:07:01 | Computer Name = ZOAEXUS | Source = Application Hang | ID = 1001
Description = Fault bucket 1180947459.

Error - 19/12/2010 07:26:15 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3013
Description = Unable to update the performance counter strings of the 009 language
ID. The Win32 status returned by the call is the first DWORD in Data section.

Error - 19/12/2010 07:26:15 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3009
Description = Installing the performance counter strings for service WmiApRpl (WmiApRpl)
failed. The Error code is the first DWORD in Data section.

Error - 19/12/2010 07:37:25 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3013
Description = Unable to update the performance counter strings of the 009 language
ID. The Win32 status returned by the call is the first DWORD in Data section.

Error - 19/12/2010 07:37:25 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3009
Description = Installing the performance counter strings for service WmiApRpl (WmiApRpl)
failed. The Error code is the first DWORD in Data section.

Error - 19/12/2010 07:56:26 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3013
Description = Unable to update the performance counter strings of the 009 language
ID. The Win32 status returned by the call is the first DWORD in Data section.

Error - 19/12/2010 07:56:26 | Computer Name = ZOAEXUS | Source = LoadPerf | ID = 3009
Description = Installing the performance counter strings for service WmiApRpl (WmiApRpl)
failed. The Error code is the first DWORD in Data section.

[ OSession Events ]
Error - 09/08/2010 18:41:21 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session
lasted 2 seconds with 0 seconds of active time. This session ended with a crash.

Error - 09/08/2010 18:43:56 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session
lasted 2 seconds with 0 seconds of active time. This session ended with a crash.

Error - 09/08/2010 18:45:08 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2
seconds with 0 seconds of active time. This session ended with a crash.

Error - 11/08/2010 10:25:57 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 8
seconds with 0 seconds of active time. This session ended with a crash.

Error - 30/11/2010 17:11:51 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11
seconds with 0 seconds of active time. This session ended with a crash.

Error - 07/12/2010 15:48:37 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 55
seconds with 0 seconds of active time. This session ended with a crash.

Error - 14/12/2010 09:35:20 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 95
seconds with 60 seconds of active time. This session ended with a crash.

Error - 14/12/2010 09:35:41 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8
seconds with 0 seconds of active time. This session ended with a crash.

Error - 18/12/2010 17:13:13 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 14
seconds with 0 seconds of active time. This session ended with a crash.

Error - 18/12/2010 17:14:08 | Computer Name = ZOAEXUS | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 15
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 19/12/2010 06:26:02 | Computer Name = ZOAEXUS | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service WSearch with
arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 19/12/2010 06:26:19 | Computer Name = ZOAEXUS | Source = Service Control Manager | ID = 7000
Description = The Logitech Beep Suppression Driver service failed to start due to
the following error: %%2

Error - 19/12/2010 07:21:30 | Computer Name = ZOAEXUS | Source = ACPI | ID = 327692
Description =

Error - 19/12/2010 07:22:04 | Computer Name = ZOAEXUS | Source = Service Control Manager | ID = 7000
Description = The Logitech Beep Suppression Driver service failed to start due to
the following error: %%2

Error - 19/12/2010 07:22:25 | Computer Name = ZOAEXUS | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service WSearch with
arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 19/12/2010 07:48:39 | Computer Name = ZOAEXUS | Source = ACPI | ID = 327692
Description =

Error - 19/12/2010 07:48:50 | Computer Name = ZOAEXUS | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service WSearch with
arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 19/12/2010 07:51:33 | Computer Name = ZOAEXUS | Source = ACPI | ID = 327692
Description =

Error - 19/12/2010 07:52:04 | Computer Name = ZOAEXUS | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service WSearch with
arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 19/12/2010 07:52:25 | Computer Name = ZOAEXUS | Source = Service Control Manager | ID = 7000
Description = The Logitech Beep Suppression Driver service failed to start due to
the following error: %%2


< End of report >

trer01

Newbie Surfer
Newbie Surfer

Posts : 5
Joined : 2010-12-19
Operating System : xp x64 pro

View user profile

Back to top Go down

RegistryBooster ERRORS !!!

Post by trer01 on Tue 21 Dec 2010, 4:31 am

Scan date: 2010-12-20 17:08:00.968000
Total problems found: 78
System related errors
Errors affecting all users on this computer.

Scan subsection: Application paths
Entries found: 0
Entries:
Scan subsection: System software settings
Entries found: 0
Entries:

Scan subsection: ActiveX, OLE, COM sections
Entries found: 28
Entries:
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95d7-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95d7-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95fc-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95fc-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95d8-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95d8-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95fa-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95fa-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95d5-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {5408b2f0-c816-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95d5-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {5408b2f0-c816-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95d6-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95d6-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95a2-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95a2-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95a6-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95a6-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95a7-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95a7-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95d4-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {5408b2f0-c816-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95d4-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {5408b2f0-c816-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95f4-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95f4-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95f0-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {5408b2f0-c816-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95f0-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {5408b2f0-c816-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{7087ebd6-b9ce-11d1-8f62-00c04fb611c7}\ProxyStubClsid32
Value name:
Value: {842d84c9-c347-11d1-8f64-00c04fb611c7}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{7087ebd6-b9ce-11d1-8f62-00c04fb611c7}/ProxyStubClsid32 points to a missing reference {842d84c9-c347-11d1-8f64-00c04fb611c7}
Entry: HKEY_CLASSES_ROOT\Interface\{18d56a91-974a-11d1-8f48-00c04fb611c7}\ProxyStubClsid32
Value name:
Value: {842d84c9-c347-11d1-8f64-00c04fb611c7}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{18d56a91-974a-11d1-8f48-00c04fb611c7}/ProxyStubClsid32 points to a missing reference {842d84c9-c347-11d1-8f64-00c04fb611c7}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95f9-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95f9-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95fd-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95fd-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95f3-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95f3-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8da-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{4b9e4130-ef87-11d1-8faf-00600895e7d5}\ProxyStubClsid32
Value name:
Value: {842d84c9-c347-11d1-8f64-00c04fb611c7}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{4b9e4130-ef87-11d1-8faf-00600895e7d5}/ProxyStubClsid32 points to a missing reference {842d84c9-c347-11d1-8f64-00c04fb611c7}
Entry: HKEY_CLASSES_ROOT\Interface\{18d56a8f-974a-11d1-8f48-00c04fb611c7}\ProxyStubClsid32
Value name:
Value: {842d84c9-c347-11d1-8f64-00c04fb611c7}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{18d56a8f-974a-11d1-8f48-00c04fb611c7}/ProxyStubClsid32 points to a missing reference {842d84c9-c347-11d1-8f64-00c04fb611c7}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95dc-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {5408b2f0-c816-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95dc-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {5408b2f0-c816-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\Interface\{3bbe95a1-c53f-11d1-b3a2-00a0c9083365}\ProxyStubClsid32
Value name:
Value: {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Reason: The default value in HKEY_CLASSES_ROOT/Interface/{3bbe95a1-c53f-11d1-b3a2-00a0c9083365}/ProxyStubClsid32 points to a missing reference {ca38d8db-c75d-11d1-8f99-00600895e7d5}
Entry: HKEY_CLASSES_ROOT\TypeLib\{C9E0F815-DD95-11DD-A6A2-000FFE7FA963}\1.0\HELPDIR
Value name:
Value:
Reason: The key HKEY_CLASSES_ROOT/TypeLib/{C9E0F815-DD95-11DD-A6A2-000FFE7FA963}/1.0/HELPDIR is empty
Entry: HKEY_CLASSES_ROOT\CLSID\{2933BF91-7B36-11D2-B20E-00C04F983E60}\TypeLib
Value name:
Value: {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{2933BF91-7B36-11D2-B20E-00C04F983E60}/TypeLib points to missing TypeLib {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Entry: HKEY_CLASSES_ROOT\CLSID\{CFC399AF-D876-11D0-9C10-00C04FC99C8E}\TypeLib
Value name:
Value: {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{CFC399AF-D876-11D0-9C10-00C04FC99C8E}/TypeLib points to missing TypeLib {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Entry: HKEY_CLASSES_ROOT\CLSID\{550DDA30-0541-11D2-9CA9-0060B0EC3D39}\TypeLib
Value name:
Value: {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{550DDA30-0541-11D2-9CA9-0060B0EC3D39}/TypeLib points to missing TypeLib {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Entry: HKEY_CLASSES_ROOT\CLSID\{ED8C108E-4349-11D2-91A4-00C04F7969E8}\TypeLib
Value name:
Value: {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{ED8C108E-4349-11D2-91A4-00C04F7969E8}/TypeLib points to missing TypeLib {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Entry: HKEY_CLASSES_ROOT\CLSID\{2933BF90-7B36-11d2-B20E-00C04F983E60}\TypeLib
Value name:
Value: {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{2933BF90-7B36-11d2-B20E-00C04F983E60}/TypeLib points to missing TypeLib {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Entry: HKEY_CLASSES_ROOT\CLSID\{379E501F-B231-11D1-ADC1-00805FC752D8}\TypeLib
Value name:
Value: {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}
Reason: The default value in HKEY_CLASSES_ROOT/CLSID/{379E501F-B231-11D1-ADC1-00805FC752D8}/TypeLib points to missing TypeLib {D63E0CE2-A0A2-11D0-9C02-00C04FC99C8E}

Scan subsection: Invalid file associations
Entries found: 23
Entries:
Entry: HKEY_CLASSES_ROOT\filetype\{00020821-0000-0000-C000-000000000046}
Value name:
Value:
Reason: The key {00020821-0000-0000-C000-000000000046} under HKEY_CLASSES_ROOT\filetype is empty
Entry: HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.MUClientUIPlugin\CLSID
Value name:
Value: {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.MUClientUIPlugin\CLSID points to a missing CLSID {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\JavaPlugin.FamilyVersionSupport\CLSID
Value name:
Value: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\JavaPlugin.FamilyVersionSupport\CLSID points to a missing CLSID {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn\CLSID
Value name:
Value: {314111db-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn\CLSID points to a missing CLSID {314111db-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters\CLSID
Value name:
Value: {314111e2-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters\CLSID points to a missing CLSID {314111e2-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters.1\CLSID
Value name:
Value: {314111e2-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters.1\CLSID points to a missing CLSID {314111e2-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn.1\CLSID
Value name:
Value: {314111db-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn.1\CLSID points to a missing CLSID {314111db-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister\CLSID
Value name:
Value: {314111bd-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister\CLSID points to a missing CLSID {314111bd-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister.1\CLSID
Value name:
Value: {314111bd-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister.1\CLSID points to a missing CLSID {314111bd-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.MUClientUIPlugin.1\CLSID
Value name:
Value: {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.MUClientUIPlugin.1\CLSID points to a missing CLSID {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.WUClientUIPlugin\CLSID
Value name:
Value: {AE097EE9-9AB5-4999-95F7-200F862661F9}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.WUClientUIPlugin\CLSID points to a missing CLSID {AE097EE9-9AB5-4999-95F7-200F862661F9}
Entry: HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.WUClientUIPlugin.1\CLSID
Value name:
Value: {AE097EE9-9AB5-4999-95F7-200F862661F9}
Reason: The key HKEY_CLASSES_ROOT\Wow6432Node\SoftwareDistribution.WUClientUIPlugin.1\CLSID points to a missing CLSID {AE097EE9-9AB5-4999-95F7-200F862661F9}
Entry: HKEY_CLASSES_ROOT\SoftwareDistribution.MUClientUIPlugin\CLSID
Value name:
Value: {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Reason: The key HKEY_CLASSES_ROOT\SoftwareDistribution.MUClientUIPlugin\CLSID points to a missing CLSID {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Entry: HKEY_CLASSES_ROOT\JavaPlugin.FamilyVersionSupport\CLSID
Value name:
Value: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Reason: The key HKEY_CLASSES_ROOT\JavaPlugin.FamilyVersionSupport\CLSID points to a missing CLSID {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Entry: HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn\CLSID
Value name:
Value: {314111db-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn\CLSID points to a missing CLSID {314111db-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters\CLSID
Value name:
Value: {314111e2-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters\CLSID points to a missing CLSID {314111e2-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters.1\CLSID
Value name:
Value: {314111e2-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxFilters.1\CLSID points to a missing CLSID {314111e2-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn.1\CLSID
Value name:
Value: {314111db-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\Hxds.HxPlugIn.1\CLSID points to a missing CLSID {314111db-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister\CLSID
Value name:
Value: {314111bd-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister\CLSID points to a missing CLSID {314111bd-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister.1\CLSID
Value name:
Value: {314111bd-a502-11d2-bbca-00c04f8ec294}
Reason: The key HKEY_CLASSES_ROOT\Software\Microsoft\HTMLHelp\2.0\LocalReg\HxDs.HxRegister.1\CLSID points to a missing CLSID {314111bd-a502-11d2-bbca-00c04f8ec294}
Entry: HKEY_CLASSES_ROOT\SoftwareDistribution.MUClientUIPlugin.1\CLSID
Value name:
Value: {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Reason: The key HKEY_CLASSES_ROOT\SoftwareDistribution.MUClientUIPlugin.1\CLSID points to a missing CLSID {3809920F-B9D4-42DA-92E0-E26265E0FB89}
Entry: HKEY_CLASSES_ROOT\SoftwareDistribution.WUClientUIPlugin\CLSID
Value name:
Value: {AE097EE9-9AB5-4999-95F7-200F862661F9}
Reason: The key HKEY_CLASSES_ROOT\SoftwareDistribution.WUClientUIPlugin\CLSID points to a missing CLSID {AE097EE9-9AB5-4999-95F7-200F862661F9}
Entry: HKEY_CLASSES_ROOT\SoftwareDistribution.WUClientUIPlugin.1\CLSID
Value name:
Value: {AE097EE9-9AB5-4999-95F7-200F862661F9}
Reason: The key HKEY_CLASSES_ROOT\SoftwareDistribution.WUClientUIPlugin.1\CLSID points to a missing CLSID {AE097EE9-9AB5-4999-95F7-200F862661F9}

Scan subsection: System drivers
Entries found: 3
Entries:
Entry: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SASKUTIL
Value name: ImagePath
Value: \??\C:\System Volume Information\_restore{29A1EF8F-844F-45A2-A1BF-3DD43DACDF8C}\RP258\SASKUTIL64.SYS
Reason: The value ImagePath in HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SASKUTIL contains an invalid path /??/C:/System Volume Information/_restore{29A1EF8F-844F-45A2-A1BF-3DD43DACDF8C}/RP258/SASKUTIL64.SYS
Entry: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SASDIFSV
Value name: ImagePath
Value: \??\C:\System Volume Information\_restore{29A1EF8F-844F-45A2-A1BF-3DD43DACDF8C}\RP258\SASDIFSV64.SYS
Reason: The value ImagePath in HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SASDIFSV contains an invalid path /??/C:/System Volume Information/_restore{29A1EF8F-844F-45A2-A1BF-3DD43DACDF8C}/RP258/SASDIFSV64.SYS
Entry: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mnmsrvc
Value name: ImagePath
Value: C:\WINDOWS\system32\mnmsrvc.exe
Reason: The value ImagePath in HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/mnmsrvc contains an invalid path C:/WINDOWS/system32/mnmsrvc.exe

Scan subsection: Startup section
Entries found: 0
Entries:
Scan subsection: Shared DLLs
Entries found: 0
Entries:
Scan subsection: Fonts section
Entries found: 0
Entries:
Scan subsection: Help section
Entries found: 0
Entries:
Scan subsection: Shared folders
Entries found: 0
Entries:
User related errors
Errors specific to your Windows account.

Scan subsection: Invalid shortcuts
Entries found: 10
Entries:
Entry: C:/Documents and Settings/Administrator/Recent/ESET Uninstaller.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Administrator/Recent/ESET Uninstaller.lnk
Entry: C:/Documents and Settings/Tomorer/Application Data/IObit/Advanced SystemCare/Uninstall Unwanted Apps.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Application Data/IObit/Advanced SystemCare/Uninstall Unwanted Apps.lnk
Entry: C:/Documents and Settings/Tomorer/Application Data/Microsoft/Internet Explorer/Quick Launch/EMCO MoveOnBoot v2.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Application Data/Microsoft/Internet Explorer/Quick Launch/EMCO MoveOnBoot v2.lnk
Entry: C:/Documents and Settings/Tomorer/Application Data/Microsoft/Office/Recent/This program cannot be run in DOS mode INF.LNK
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Application Data/Microsoft/Office/Recent/This program cannot be run in DOS mode INF.LNK
Entry: C:/Documents and Settings/Tomorer/Recent/APCS5 - Crack Read Me.txt.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Recent/APCS5 - Crack Read Me.txt.lnk
Entry: C:/Documents and Settings/Tomorer/Recent/Brzezinski - The Grand Chessboard - American Primacy and Its Geostrategic Imperatives (1997).pdf.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Recent/Brzezinski - The Grand Chessboard - American Primacy and Its Geostrategic Imperatives (1997).pdf.lnk
Entry: C:/Documents and Settings/Tomorer/Recent/Into the Wild.avi.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Recent/Into the Wild.avi.lnk
Entry: C:/Documents and Settings/Tomorer/Recent/This program cannot be run in DOS mode INF.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Recent/This program cannot be run in DOS mode INF.lnk
Entry: C:/Documents and Settings/Tomorer/Recent/Treating Yourself.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Recent/Treating Yourself.lnk
Entry: C:/Documents and Settings/Tomorer/Recent/WMPInfo.xml.lnk
Value name:
Value:
Reason: Invalid shortcut C:/Documents and Settings/Tomorer/Recent/WMPInfo.xml.lnk

Scan subsection: User software settings
Entries found: 14
Entries:
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\12.0\Outlook\Journal
Value name: Item Log File
Value: C:\Documents and Settings\Tomorer\Application Data\Microsoft\Outlook\offitems.log
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Office/12.0/Outlook/Journal contains an invalid path C:/Documents and Settings/Tomorer/Application Data/Microsoft/Outlook/offitems.log
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\12.0\Outlook\Security
Value name: OutlookSecureTempFolder
Value: C:\Documents and Settings\Tomorer\Local Settings\Temporary Internet Files\Content.Outlook\Y4UDG728\
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Office/12.0/Outlook/Security contains an invalid path C:/Documents and Settings/Tomorer/Local Settings/Temporary Internet Files/Content.Outlook/Y4UDG728/
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\exe
Value name: a
Value: C:\Documents and Settings\Tomorer\Desktop\SecurityTaskManager_Setup.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/exe contains an invalid path C:/Documents and Settings/Tomorer/Desktop/SecurityTaskManager_Setup.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\exe
Value name: b
Value: C:\Documents and Settings\Tomorer\Desktop\registrybooster.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/exe contains an invalid path C:/Documents and Settings/Tomorer/Desktop/registrybooster.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\exe
Value name: c
Value: C:\Documents and Settings\Tomorer\Desktop\SpywareDoctor.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/exe contains an invalid path C:/Documents and Settings/Tomorer/Desktop/SpywareDoctor.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\exe
Value name: d
Value: C:\Documents and Settings\Tomorer\Desktop\STOPzilla_Setup.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/exe contains an invalid path C:/Documents and Settings/Tomorer/Desktop/STOPzilla_Setup.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*
Value name: a
Value: C:\Documents and Settings\Tomorer\Desktop\SecurityTaskManager_Setup.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/* contains an invalid path C:/Documents and Settings/Tomorer/Desktop/SecurityTaskManager_Setup.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*
Value name: b
Value: C:\Documents and Settings\Tomorer\Desktop\registrybooster.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/* contains an invalid path C:/Documents and Settings/Tomorer/Desktop/registrybooster.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*
Value name: c
Value: C:\Documents and Settings\Tomorer\Desktop\SpywareDoctor.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/* contains an invalid path C:/Documents and Settings/Tomorer/Desktop/SpywareDoctor.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*
Value name: d
Value: C:\Documents and Settings\Tomorer\Desktop\STOPzilla_Setup.exe
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/ComDlg32/OpenSaveMRU/* contains an invalid path C:/Documents and Settings/Tomorer/Desktop/STOPzilla_Setup.exe
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main
Value name: Local Page
Value: C:\WINDOWS\system32\blank.htm
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Internet Explorer/Main contains an invalid path C:/WINDOWS/system32/blank.htm
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows Media\WMSDK\Namespace
Value name: LocalDelta
Value: C:\Documents and Settings\Tomorer\Local Settings\Application Data\Microsoft\Windows Media\10.0\WMSDKNSD.XML
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows Media/WMSDK/Namespace contains an invalid path C:/Documents and Settings/Tomorer/Local Settings/Application Data/Microsoft/Windows Media/10.0/WMSDKNSD.XML
Entry: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows Media\WMSDK\Namespace
Value name: RemoteDelta
Value: C:\Documents and Settings\Tomorer\Local Settings\Application Data\Microsoft\Windows Media\10.0\WMSDKNSR.XML
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/Microsoft/Windows Media/WMSDK/Namespace contains an invalid path C:/Documents and Settings/Tomorer/Local Settings/Application Data/Microsoft/Windows Media/10.0/WMSDKNSR.XML
Entry: HKEY_CURRENT_USER\SOFTWARE\SUPERAntiSpyware.com\SUPERAntiSpyware
Value name: NotifyAdBlockSoundPath
Value: C:\System Volume Information\_restore{29A1EF8F-844F-45A2-A1BF-3DD43DACDF8C}\RP258\detect.wav
Reason: The value PackagePath in HKEY_CURRENT_USER/SOFTWARE/SUPERAntiSpyware.com/SUPERAntiSpyware contains an invalid path C:/System Volume Information/_restore{29A1EF8F-844F-45A2-A1BF-3DD43DACDF8C}/RP258/detect.wav

Scan subsection: File extensions
Entries found: 0
Entries:
Scan subsection: Sound and app events
Entries found: 0
Entries:
Third party related errors
Errors affecting programs installed on your PC.
Scan subsection: Uninstall section
Entries found: 0
Entries:
Scan Results

Inserted from

trer01

Newbie Surfer
Newbie Surfer

Posts : 5
Joined : 2010-12-19
Operating System : xp x64 pro

View user profile

Back to top Go down

Re: Hiyall

Post by Belahzur on Tue 21 Dec 2010, 9:47 am

Please download and run this tool.

Download Malwarebytes' Anti-Malware from Here

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Installer Folders !?!

Post by trer01 on Thu 23 Dec 2010, 9:12 am

Cheers for the malware tool link, altho I went ahead with a reinstall afterall. I'll call it a Christmas present to myself. Nothing like a clean install, huh ?

One thing though; those folders that the windows update installer uses really bug me. Epecially as now they appear in one of my, shall we say sanctuary 1TB HDDs. My C:/ drive is now my E:/ drive due to some formatting hick-up in the reinstall process, and my D:/ drive is now my CD/DVD ROM hook-up... bla bla bla. Bottom line is: Is there a way to get these folders to appear in a folder especially for them, on the system disk ???



Cheers

trer01

Newbie Surfer
Newbie Surfer

Posts : 5
Joined : 2010-12-19
Operating System : xp x64 pro

View user profile

Back to top Go down

Re: Hiyall

Post by Belahzur on Thu 23 Dec 2010, 11:16 am

The My Computer system only does things in alphabetical order, so probably not.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Re: Hiyall

Post by Sponsored content Today at 1:15 pm


Sponsored content


Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum