startsearcher removal help

View previous topic View next topic Go down

startsearcher removal help

Post by life4blood on 8th December 2011, 10:10 pm

i have some problem where whenever i open up the firefox browser, the homepage is redirected to startsearcher. how do i remove it?

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by Belahzur on 9th December 2011, 2:02 pm

Hello.

Please see this topic here: [You must be registered and logged in to see this link.]

Run through the instructions and post the required logs in your next post, you may need to use more than 1 post to get them all posted.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 10th December 2011, 6:41 am

OTL Extras logfile created on: 12/9/2011 10:14:01 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Takhisis\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19154)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.03 Gb Available Physical Memory | 67.59% Memory free
6.19 Gb Paging File | 5.35 Gb Available in Paging File | 86.33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 220.87 Gb Total Space | 109.48 Gb Free Space | 49.57% Space Free | Partition Type: NTFS
Drive D: | 12.01 Gb Total Space | 1.88 Gb Free Space | 15.67% Space Free | Partition Type: NTFS

Computer Name: TAKHISIS-PC | User Name: Takhisis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"" =

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"" =
"C:\Program Files\Vongo\VongoService.exe" = C:\Program Files\Vongo\VongoService.exe:*:enabled:VongoService -- (Starz Entertainment Group LLC)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04A80B67-D7C4-4DF9-8BA9-B11875BA3EE8}" = lport=8381 | protocol=17 | dir=in | name=league of legends launcher |
"{0BCC0EEB-52B6-4A94-B84F-34FA0914762F}" = lport=8379 | protocol=17 | dir=in | name=league of legends launcher |
"{139CC689-3E37-40FB-A392-3A0B74726860}" = lport=8378 | protocol=6 | dir=in | name=league of legends launcher |
"{1713F1AE-2E06-4486-AD13-07BED4154ACC}" = lport=8379 | protocol=6 | dir=in | name=league of legends launcher |
"{1B681834-A889-4FFA-A6C3-6860745C9B32}" = lport=8381 | protocol=6 | dir=in | name=league of legends launcher |
"{A38412A2-10DB-4F8C-8C90-5EDD6031EB6D}" = lport=8380 | protocol=17 | dir=in | name=league of legends launcher |
"{A55C307F-9C16-43C2-A676-D27589B0643E}" = lport=8380 | protocol=6 | dir=in | name=league of legends launcher |
"{A7AD6529-9D94-469E-97A6-C339103B3A2B}" = lport=8378 | protocol=17 | dir=in | name=league of legends launcher |
"{CB2A868C-3D99-4FD9-BA57-1387F9040F8D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{024EC2AC-121D-42C7-B3BF-433BBDDF1748}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{07D94903-4F49-4327-9FC8-F14704EC0E30}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{12A33C56-BC39-4393-9EA8-AA460E7E4CE1}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{1B0947C3-D9CD-49E7-8C48-5F31261418CC}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{21697448-11E8-4D7A-83F9-BDE6ACF3391D}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{2DBD5073-6CFF-4D40-8EBF-221D6FC6FC18}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{334D7D46-1D66-4022-9908-87E1DE0A7302}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{35E4E737-64A0-4639-8DEF-C3505D43C360}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{391B6388-EF39-4888-80F0-848D80BEDBAC}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{3AED01E6-1697-4297-B89B-1F9D658AC8C3}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{3B9403C9-A8B5-45F2-AFED-24039DE88B2E}" = protocol=6 | dir=in | app=c:\riot games\league of legends\air\lolclient.exe |
"{53397252-2968-4F9A-89A4-2A934D4E5455}" = dir=in | app=c:\program files\hp\quickplay\qpservice.exe |
"{547192FF-6A40-4864-9D00-AFECDB174310}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{5E402435-B0D6-4BE0-8691-55D8DE8FDCA8}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{660F6616-96E9-4130-8778-454704166403}" = protocol=6 | dir=in | app=c:\program files\starcraft ii\starcraft ii.exe |
"{694DF908-08E5-4066-8EDA-F652624BF41B}" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"{7B6D07C2-A286-4C45-AE9F-E973566CA4DD}" = protocol=6 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"{7B7D14B1-C7CA-4E65-A56B-B4E6D0B1FF4B}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{82F9A417-9F55-43A3-9955-E87C3963003A}" = protocol=17 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"{839D45AA-8838-4C37-95FF-C4D056502FFC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{83C3586C-66B5-4931-BFDD-44D97CCBE7FF}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{8710145A-FE5D-41F3-B058-BB37B4B6A38C}" = protocol=17 | dir=in | app=c:\riot games\league of legends\game\league of legends.exe |
"{88901493-73B5-4508-B2C1-6B1321D319F1}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{A61FFC8C-9F51-4B08-85B3-F734AEE8DD31}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{A6CFE4D9-FAAA-4D67-8343-52AB596F832C}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{AEA6FFDF-5D6E-4C88-928E-40CA775EF358}" = dir=in | app=c:\program files\hp\quickplay\qp.exe |
"{BB94DB1A-C77D-4DCA-92AD-54C57CE00BEE}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{BDC51788-B476-4772-82EC-0062FBB7F744}" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"{C85BA05C-3549-4D3D-A43D-7D5FC65428EB}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{C8E99025-BF6C-467A-B6B0-E821B5F5C269}" = protocol=17 | dir=in | app=c:\riot games\league of legends\air\lolclient.exe |
"{D65CD136-A5D5-49B5-B5C2-01B13D3DDCC9}" = protocol=17 | dir=in | app=c:\program files\starcraft ii\starcraft ii.exe |
"{DF2EDA64-85DA-467C-BDC4-FAD8D5A430E2}" = protocol=6 | dir=in | app=c:\riot games\league of legends\game\league of legends.exe |
"{F03776F8-FA59-4F49-A87C-38E4C8EA9856}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{F4518B2D-FB2E-46EF-BD4B-D38363C53626}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"TCP Query User{2AC8ECF8-5345-4C73-A1E2-D1E18C482A33}C:\program files\starcraft\starcraft.exe" = protocol=6 | dir=in | app=c:\program files\starcraft\starcraft.exe |
"TCP Query User{2DF6FDFE-0D4A-4523-9828-F725BE486D59}C:\program files\turbine\the lord of the rings online\lotroclient.exe" = protocol=6 | dir=in | app=c:\program files\turbine\the lord of the rings online\lotroclient.exe |
"TCP Query User{2F1EBB94-FED2-4881-8E42-494E55B23915}C:\program files\aim6\aim6.exe" = protocol=6 | dir=in | app=c:\program files\aim6\aim6.exe |
"TCP Query User{30F241FE-10B0-4F79-821D-CC8CCE6D36AA}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{3D0D171E-4615-436E-9203-209FE518A4B4}C:\program files\veoh networks\veoh\veohclient.exe" = protocol=6 | dir=in | app=c:\program files\veoh networks\veoh\veohclient.exe |
"TCP Query User{41E56711-87F8-4791-8AAB-295CF4F0AD65}C:\program files\microsoft games\halo\halo.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\halo\halo.exe |
"TCP Query User{4D3B6992-6A96-4365-8D57-3406356BF3A0}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{55630E13-0CE1-4C0C-A763-1B84C604D941}C:\program files\ibm\spss\statistics\19\jre\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\ibm\spss\statistics\19\jre\bin\javaw.exe |
"TCP Query User{5819DBD6-A040-4C75-A702-36362D37AAB4}C:\program files\sony\station\launchpad\launchpad.exe" = protocol=6 | dir=in | app=c:\program files\sony\station\launchpad\launchpad.exe |
"TCP Query User{6551493A-4EAC-422E-8451-E6111FBE6E36}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{6D1CFE15-B46E-49FE-B0D4-48088293C496}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" = protocol=6 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"TCP Query User{6DA39D2F-569D-4FAA-B84B-F5EF2A58C79A}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{7109BF30-D663-4D7D-8A6E-9CD2D2D2440F}C:\program files\ibm\spss\statistics\19\stats.exe" = protocol=6 | dir=in | app=c:\program files\ibm\spss\statistics\19\stats.exe |
"TCP Query User{845704AE-D6CD-48EE-88D0-533039A32E3B}C:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe |
"TCP Query User{84653835-B3C4-46AB-9A17-F4C6F8C7935E}C:\program files\microsoft games\halo\halo.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\halo\halo.exe |
"TCP Query User{984F530C-43F5-49D6-B7E6-595B180AE5DD}C:\program files\veoh networks\veoh\veohclient.exe" = protocol=6 | dir=in | app=c:\program files\veoh networks\veoh\veohclient.exe |
"TCP Query User{C28D7D95-038E-486B-AEAD-615E67B7FCC1}C:\program files\aim\aim.exe" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"TCP Query User{D1A347E0-AB8F-47E5-92D0-38B7B71D2371}C:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe |
"TCP Query User{D8BFC2CF-BC6F-403B-A3FF-BF008ADCC876}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe |
"UDP Query User{1A3905C1-FB82-400C-BD7D-BC25D0D8F953}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{2EA43AF6-99C5-4F27-A2E3-EB6398ECFAFE}C:\program files\sony\station\launchpad\launchpad.exe" = protocol=17 | dir=in | app=c:\program files\sony\station\launchpad\launchpad.exe |
"UDP Query User{31340462-ED75-41BA-A834-682C7E823791}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{36EDEAC9-AB84-4FE0-A53D-05721676AA23}C:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe |
"UDP Query User{3719F01E-07A7-4DBB-BDD4-F2BCFD4CF54D}C:\program files\ibm\spss\statistics\19\jre\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\ibm\spss\statistics\19\jre\bin\javaw.exe |
"UDP Query User{4383F431-F590-4FE9-8A5E-EEFA9258443D}C:\program files\turbine\the lord of the rings online\lotroclient.exe" = protocol=17 | dir=in | app=c:\program files\turbine\the lord of the rings online\lotroclient.exe |
"UDP Query User{49ECDE68-AE97-497C-BFBD-CAE2DB791285}C:\program files\aim6\aim6.exe" = protocol=17 | dir=in | app=c:\program files\aim6\aim6.exe |
"UDP Query User{4BD34846-D2E5-4031-8F66-8EB946A702D0}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" = protocol=17 | dir=in | app=c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe |
"UDP Query User{5C535186-D98C-4A4C-8BFD-2DD086B0B7A7}C:\program files\ibm\spss\statistics\19\stats.exe" = protocol=17 | dir=in | app=c:\program files\ibm\spss\statistics\19\stats.exe |
"UDP Query User{7205618A-6C6C-4206-BEC1-8908FFD69E97}C:\program files\microsoft games\halo\halo.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\halo\halo.exe |
"UDP Query User{7744DCC1-69F6-46E4-9849-31CBBC8D03B0}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{7E6BCDEF-FBA9-4807-BAB7-FA56E7255F04}C:\program files\starcraft\starcraft.exe" = protocol=17 | dir=in | app=c:\program files\starcraft\starcraft.exe |
"UDP Query User{89494CA3-724D-47D1-B537-6778A7EE5CE0}C:\program files\aim\aim.exe" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"UDP Query User{964B169A-445C-4B0E-9662-99FA985CAA23}C:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe |
"UDP Query User{A5895B82-00C6-450D-96AD-5A643F0923B8}C:\program files\veoh networks\veoh\veohclient.exe" = protocol=17 | dir=in | app=c:\program files\veoh networks\veoh\veohclient.exe |
"UDP Query User{B86890D8-36C6-41F4-84FA-518AEC81F9B5}C:\program files\veoh networks\veoh\veohclient.exe" = protocol=17 | dir=in | app=c:\program files\veoh networks\veoh\veohclient.exe |
"UDP Query User{BF4EE4D1-C151-4EEE-B9F1-2A7BC34C0780}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{D3C36BD2-E69B-4DB1-85A4-F216F48C8D09}C:\program files\microsoft games\halo\halo.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\halo\halo.exe |
"UDP Query User{E530A1A5-423D-4CE0-87E4-19113469432F}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{06C43FAA-7226-41EF-A05E-9AE0AA849FFE}" = IBM SPSS Statistics 19
"{06E74B9B-631F-4378-BF3A-40D868450C05}" = HPPhotoSmartPhotobookHolidayPack1
"{07EEE598-5F21-4B57-B40B-46592625B3D9}" = Zune Language Pack (PTB)
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{0915B10F-8597-4FE7-BC4D-EA3E2FDA646A}" = PS_AIO_03_C4400_Software_Min
"{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{172AEB5E-CBB2-4CDD-A4CF-388600825839}" = HPPhotoSmartPhotobookPlayfulPack1
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}" = Adobe Shockwave Player
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
"{209CDA54-D390-46A2-A97C-7BF61734418D}" = WeatherBug Gadget
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{250E9609-E830-43EB-B379-DAB7546A2422}" = muvee autoProducer 6.1
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{25613C10-27D2-410B-942B-D922D5C3A7BE}" = Interlok driver setup x32
"{2614F54E-A828-49FA-93BA-45A3F756BFAA}" = 32 Bit HP CIO Components Installer
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 29
"{2C4E2E4E-A7C9-4CCB-BF03-FE6EBD5D4AB7}" = Windows Mobile Device Updater Component
"{31216452-5540-4C96-B754-94890A63D5AB}" = HP Help and Support
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.30 E1
"{379BD39E-F13E-458F-96D8-56BD7F2CC516}" = Series II MIDI
"{38EAC694-0D90-445F-8C17-8B50ADFE3162}" = Slingbox Flash Tour
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.6
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
"{4D49757C-367A-4333-BDB3-68966162B14E}" = HP User Guides 0087
"{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
"{5C93E291-A1CC-4E51-85C6-E194209FCDB4}" = Zune Language Pack (PTG)
"{5DAA9C36-8F8B-462F-8CCA-E205BC3751F5}" = HP Active Support Library
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{6740BCB0-5863-47F4-80F4-44F394DE4FE2}" = Zune Language Pack (NLD)
"{67D15B01-9A6B-0397-002A-D2A015212748}" = FlipShare
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B33492E-FBBC-4EC3-8738-09E16E395A10}" = Zune Language Pack (ESP)
"{6CCC133E-9A2F-4CAA-8866-75D029CD3AB3}" = Digital Voice Editor 3
"{7006ED29-58F2-40C3-AE87-039287AD20B6}" = Zune
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7DC4A410-9986-4329-9E5D-687B2C42CA39}" = HP QuickTouch 1.00 C4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{865DB1C9-D5E4-408B-B37D-9927E605BD2D}" = ESU for Microsoft Vista
"{86732AE7-CB91-4f15-B091-FBA3D3926CD6}" = HP Photosmart C4400 All-In-One Driver 11.0 Rel .3
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista
"{89E052B2-5CA5-4B7A-AF0C-28CA2836B030}" = HPPhotoSmartPhotobookModernPack1
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C3AE2D1-854D-4650-A73D-C7CC7EE36B80}" = Vongo
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}" = Microsoft Games for Windows - LIVE Redistributable
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9811A185-3D3D-11D6-9E14-00036D172B00}" = Adobe MPEG Encoder
"{98177940-C048-4831-A279-F3888B1E2C7F}" = InstallMgr
"{9885A11E-60E4-417C-B58B-8B31B21C0B8A}" = HP Easy Setup - Frontend
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
"{A8AC89BA-D8CB-4372-9743-1C54D23286B0}" = MSN Toolbar
"{A8B94669-8654-4126-BD28-D0D2412CDED6}" = TI Connect 1.6
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A83000000003}" = Adobe Reader 8.3.1
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AC76BA86-7AD7-5760-0000-800000000003}" = Japanese Fonts Support For Adobe Reader 8
"{AC95121F-1576-45B8-82F7-3911D27882E6}" = HPPhotoSmartPhotobookScrapbookPack1
"{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
"{b02df929-29a7-4fd2-9a70-81a644b635f7}" = HP Total Care Advisor
"{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Toolbars
"{B6EF6DCE-078E-4952-A7FA-352A9C349EB0}" = MSN Toolbar
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7148D71-0A8F-4501-96B4-4E1CC67F874E}" = Microsoft Default Manager
"{B9CA59A0-3B70-48F8-9054-67595DE6E72B}" = League of Legends
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{BD0E2B92-3814-46F0-893B-4612EA010C7E}" = HP Customer Experience Enhancements
"{BE236D9A-52EC-4A17-82DA-84B5EAD31E3E}" = Zune Language Pack (DEU)
"{BE9880CD-73A9-4EFD-83E5-4BB38D48E2BD}" = HP Smart Web Printing
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C5D37FFA-7483-410B-982B-91E93FD3B7DA}" = Zune Language Pack (ITA)
"{C68D33B1-0204-4EBE-BC45-A6E432B1D13A}" = Zune Language Pack (FRA)
"{C89B5E3A-690F-4CEE-909A-BF869E198B0A}" = Scan
"{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}" = HP Update
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant
"{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software 1.10.13.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFADE4AF-C0CF-4A04-A776-741318F1658F}" = Content Transfer
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E96B0085-6659-486b-A221-5042A042728D}" = Toolbox
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F636EE9A-F9EC-4606-BCFA-77DD0E210788}" = HPPhotoSmartDiscLabel_Tattoo
"{F7F3B252-E772-48AA-93EB-7964BC326067}" = MSCU for Microsoft Vista
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"12bbe590-c890-11d9-9669-0800200c9a66_is1" = The Lord of the Rings Online™ v03.03.05.8039
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AIM Toolbar" = AIM Toolbar
"AIM_7" = AIM 7
"ASIO4ALL" = ASIO4ALL
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.9 (Unicode)
"avast" = avast! Free Antivirus
"Collab" = Collab
"Debut" = Debut Video Capture Software
"Edirol HQ Orchestral VSTi v1.03" = Edirol HQ Orchestral VSTi v1.03
"facetheme-apl" = Facetheme
"FL Studio 7" = FL Studio 7
"FL Studio_is1" = FL Studio v7.0
"Freecorder4.1" = Freecorder
"Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.25149)
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Photosmart Essential" = HP Photosmart Essential 2.5
"HP Smart Web Printing" = HP Smart Web Printing
"IL Download Manager" = IL Download Manager
"InstallShield_{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"Linplug Albino v2.1" = Linplug Albino v2.1
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 8.0 (x86 en-US)" = Mozilla Firefox 8.0 (x86 en-US)
"NVIDIA Drivers" = NVIDIA Drivers
"Picasa2" = Picasa 2
"PROPLUS" = Microsoft Office Professional Plus 2007
"RC_Vista.exe" = RC_Vista.exe
"RealPlayer 12.0" = RealPlayer
"SMSERIAL" = Motorola SM56 Data Fax Modem
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"Starcraft" = Starcraft
"Syncrosoft License Control" = Syncrosoft License Control
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"ViewpointMediaPlayer" = Viewpoint Media Player
"WildTangent hp Master Uninstall" = My HP Games
"WinRAR archiver" = WinRAR archiver
"Zune" = Zune

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Move Media Player" = Move Media Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11/14/2011 12:39:59 AM | Computer Name = Takhisis-PC | Source = BugSplat | ID = 1
Description =

Error - 11/23/2011 2:29:13 AM | Computer Name = Takhisis-PC | Source = ZuneDriver | ID = 80837
Description =

Error - 11/24/2011 5:11:47 PM | Computer Name = Takhisis-PC | Source = System Restore | ID = 8193
Description =

Error - 11/24/2011 5:11:47 PM | Computer Name = Takhisis-PC | Source = System Restore | ID = 8210
Description =

Error - 11/24/2011 5:11:57 PM | Computer Name = Takhisis-PC | Source = VSS | ID = 12298
Description =

Error - 11/24/2011 11:21:45 PM | Computer Name = Takhisis-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 11/24/2011 11:21:45 PM | Computer Name = Takhisis-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 11/25/2011 4:54:21 PM | Computer Name = Takhisis-PC | Source = Application Error | ID = 1000
Description = Faulting application MsiExec.exe, version 4.5.6002.18005, time stamp
0x49e01c42, faulting module MSI5136.tmp, version 16.0.0.328, time stamp 0x4a2febfa,
exception code 0xc0000005, fault offset 0x000a3399, process id 0x14c8, application
start time 0x01ccabb3dac81d86.

Error - 11/27/2011 8:19:13 PM | Computer Name = Takhisis-PC | Source = Application Hang | ID = 1002
Description = The program firefox.exe version 8.0.0.4325 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 1044 Start Time: 01ccad5fe6d1bda4 Termination Time: 19

Error - 11/30/2011 8:52:10 PM | Computer Name = Takhisis-PC | Source = WPDMTPDriver | ID = 80836
Description =

[ Media Center Events ]
Error - 4/16/2008 2:47:07 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 4/30/2008 2:54:07 AM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 5/25/2008 4:37:32 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 5/30/2008 11:55:40 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 6/4/2008 8:39:46 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.

Error - 10/29/2008 9:42:34 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 2/1/2009 3:22:50 AM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 8/17/2010 10:05:49 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = Failed to wait on MCUpdate mutex with exception: 'The wait completed
due to an abandoned mutex.'.

Error - 2/1/2011 4:19:45 PM | Computer Name = Takhisis-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

[ OSession Events ]
Error - 4/19/2009 2:37:59 PM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 172
seconds with 120 seconds of active time. This session ended with a crash.

Error - 4/21/2009 11:17:13 PM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 90
seconds with 60 seconds of active time. This session ended with a crash.

Error - 4/27/2009 12:52:26 AM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 741
seconds with 420 seconds of active time. This session ended with a crash.

Error - 4/27/2009 1:13:22 AM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1244
seconds with 600 seconds of active time. This session ended with a crash.

Error - 5/1/2009 3:27:26 PM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1876
seconds with 960 seconds of active time. This session ended with a crash.

Error - 5/6/2009 2:52:30 AM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1179
seconds with 540 seconds of active time. This session ended with a crash.

Error - 5/6/2009 5:15:22 AM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8518
seconds with 780 seconds of active time. This session ended with a crash.

Error - 5/13/2009 5:45:20 AM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 6239
seconds with 600 seconds of active time. This session ended with a crash.

Error - 5/25/2009 9:51:51 PM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 352
seconds with 300 seconds of active time. This session ended with a crash.

Error - 5/25/2009 9:53:32 PM | Computer Name = Takhisis-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 81
seconds with 60 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 12/8/2011 12:21:51 PM | Computer Name = Takhisis-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 12/8/2011 10:50:44 PM | Computer Name = Takhisis-PC | Source = bowser | ID = 8003
Description =

Error - 12/9/2011 1:55:31 AM | Computer Name = Takhisis-PC | Source = bowser | ID = 8003
Description =

Error - 12/9/2011 1:59:26 AM | Computer Name = Takhisis-PC | Source = BROWSER | ID = 8032
Description =

Error - 12/10/2011 1:47:56 AM | Computer Name = Takhisis-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 12/10/2011 1:47:56 AM | Computer Name = Takhisis-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 12/10/2011 1:49:22 AM | Computer Name = Takhisis-PC | Source = BROWSER | ID = 8032
Description =

Error - 12/10/2011 2:03:59 AM | Computer Name = Takhisis-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 10:02:48 PM on 12/9/2011 was unexpected.

Error - 12/10/2011 2:04:37 AM | Computer Name = Takhisis-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 12/10/2011 2:04:37 AM | Computer Name = Takhisis-PC | Source = Service Control Manager | ID = 7000
Description =


< End of report >

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 10th December 2011, 6:42 am

OTL logfile created on: 12/9/2011 10:14:01 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Takhisis\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19154)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.03 Gb Available Physical Memory | 67.59% Memory free
6.19 Gb Paging File | 5.35 Gb Available in Paging File | 86.33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 220.87 Gb Total Space | 109.48 Gb Free Space | 49.57% Space Free | Partition Type: NTFS
Drive D: | 12.01 Gb Total Space | 1.88 Gb Free Space | 15.67% Space Free | Partition Type: NTFS

Computer Name: TAKHISIS-PC | User Name: Takhisis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/12/09 22:12:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Takhisis\Downloads\OTL.com
PRC - [2011/11/28 10:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/11/28 10:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011/09/30 13:29:05 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
PRC - [2010/11/11 13:55:46 | 000,159,472 | ---- | M] (Microsoft Corporation) -- C:\Program Files\ZuneLauncher.exe
PRC - [2010/09/17 21:14:22 | 000,460,144 | ---- | M] () -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
PRC - [2010/06/26 10:09:18 | 000,167,936 | ---- | M] (Applian Technologies, Inc.) -- C:\Program Files\Freecorder\FLVSrvc.exe
PRC - [2010/04/02 21:38:06 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/07/30 16:05:58 | 000,497,000 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
PRC - [2009/04/10 22:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/04/15 16:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/15 16:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/01/29 16:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2008/01/18 23:38:38 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007/09/15 00:29:10 | 000,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2007/03/09 16:50:02 | 004,390,912 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/01/17 05:34:18 | 000,634,880 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe


========== Modules (No Company Name) ==========

MOD - [2009/08/16 16:06:02 | 000,141,312 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (LiveUpdate)
SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- -- (Automatic LiveUpdate Scheduler)
SRV - [2011/11/28 10:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/11/11 13:57:04 | 000,268,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\WMZuneComm.exe -- (WMZuneComm)
SRV - [2010/11/11 13:57:02 | 000,444,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV - [2010/11/11 13:55:56 | 006,351,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\ZuneNss.exe -- (ZuneNetworkSvc)
SRV - [2010/09/17 21:14:22 | 000,460,144 | ---- | M] () [Auto | Running] -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe -- (FlipShare Service)
SRV - [2008/04/15 16:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008/01/29 16:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2008/01/18 23:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/08/31 11:15:06 | 000,176,128 | ---- | M] (Starz Entertainment Group LLC) [On_Demand | Stopped] -- C:\Program Files\Vongo\VongoService.exe -- (Vongo Service)
SRV - [2007/03/05 10:30:06 | 000,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb)


========== Driver Services (SafeList) ==========

DRV - [2011/11/28 09:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/11/28 09:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/11/28 09:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/11/28 09:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/11/28 09:52:07 | 000,055,128 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/11/28 09:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009/10/03 05:02:06 | 009,905,096 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/05/21 14:39:54 | 000,090,472 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TPkd.sys -- (TPkd)
DRV - [2009/04/10 20:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2008/09/21 16:16:56 | 000,033,736 | ---- | M] (Yamaha Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ymidusbw.sys -- (YMIDUSBW) Yamaha USB-MIDI Driver (WDM)
DRV - [2008/08/18 11:01:06 | 000,011,264 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ICDUSB3.sys -- (ICDUSB3)
DRV - [2008/02/24 17:17:54 | 000,008,413 | ---- | M] (RealNetworks, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mcstrm.sys -- (MCSTRM)
DRV - [2007/11/14 15:20:04 | 000,031,752 | ---- | M] (M-Audio) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MA_CMIDI.SYS -- (MA_CMIDI)
DRV - [2007/09/26 13:12:22 | 002,251,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel(R)
DRV - [2007/09/17 15:17:36 | 000,098,816 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2007/07/11 10:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqRemHid.sys -- (HpqRemHid)
DRV - [2007/06/18 17:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007/03/21 22:02:04 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/02/24 14:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007/01/23 16:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007/01/17 05:38:52 | 000,983,936 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2006/11/23 16:20:06 | 000,018,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\synasUSB.sys -- (SynasUSB)
DRV - [2004/02/04 09:27:56 | 000,049,536 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tiehdusb.sys -- (TIEHDUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [You must be registered and logged in to see this link.]
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = [You must be registered and logged in to see this link.]
IE - HKCU\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Internet Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Internet Search"
FF - prefs.js..browser.search.defaulturl: "http://www.startsearcher.com/?q="
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "http://www.startsearcher.com"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.5.200812101546
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.3
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:3.2.1.3
FF - prefs.js..extensions.enabledItems: {1392b8d2-5c05-419f-a8f6-b9f15a596612}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:3.6
FF - prefs.js..extensions.enabledItems: {5b175400-2368-11de-8c30-0800200c9a66}:1.9
FF - prefs.js..keyword.URL: "chrome://browser-region/locale/region.properties"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.732: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.732: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=1.0.0.0: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.732: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Takhisis\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009/04/01 19:59:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/04/02 21:39:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{EB132DB0-A4CA-11DF-9732-0E29E0D72085}: C:\Program Files\Object\facetheme [2011/11/25 12:40:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{fe091d01-1668-48f4-8f27-244dc71f6a76}: C:\Program Files\SSearch\InternetSearch [2011/11/30 16:53:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/10 08:10:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/16 17:38:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009/04/01 19:59:28 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Users\Takhisis\AppData\Roaming\Move Networks [2010/06/13 18:36:42 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{EB132DB0-A4CA-11DF-9732-0E29E0D72085}: C:\Program Files\Object\facetheme [2011/11/25 12:40:00 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{fe091d01-1668-48f4-8f27-244dc71f6a76}: C:\Program Files\SSearch\InternetSearch [2011/11/30 16:53:45 | 000,000,000 | ---D | M]

[2008/12/16 21:09:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Extensions
[2011/12/07 17:11:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions
[2011/12/06 14:40:41 | 000,000,000 | ---D | M] (Freecorder Community Toolbar) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
[2010/12/30 10:28:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/12/04 11:53:19 | 000,000,000 | ---D | M] (Oskar) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions\{5b175400-2368-11de-8c30-0800200c9a66}
[2011/12/07 17:11:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/11/25 12:40:02 | 000,000,000 | ---D | M] (ShopToWin22) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions\{7cd0c597-24e0-45b0-8bde-2e79b3fc0499}
[2010/12/04 11:51:28 | 000,000,000 | ---D | M] (BloodFire 3) -- C:\Users\Takhisis\AppData\Roaming\mozilla\Firefox\Profiles\ibq4yrvq.default\extensions\bloodfire@example.com
[2010/03/30 20:13:38 | 000,002,267 | ---- | M] () -- C:\Users\Takhisis\AppData\Roaming\Mozilla\Firefox\Profiles\ibq4yrvq.default\searchplugins\aim-search.xml
[2010/10/20 14:40:12 | 000,000,923 | ---- | M] () -- C:\Users\Takhisis\AppData\Roaming\Mozilla\Firefox\Profiles\ibq4yrvq.default\searchplugins\conduit.xml
[2011/11/10 08:10:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/12 22:19:15 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/11/06 10:45:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011/11/25 12:40:00 | 000,000,000 | ---D | M] (FaceTheme - Change your Facebook layout!) -- C:\PROGRAM FILES\OBJECT\FACETHEME
[2011/11/30 16:53:45 | 000,000,000 | ---D | M] (InternetSearch) -- C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH
() (No name found) -- C:\USERS\TAKHISIS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IBQ4YRVQ.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011/11/10 08:10:19 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/10/02 09:23:05 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/11/10 08:10:19 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2006/09/18 13:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (Facetheme) - {9193fbaf-bdaf-4751-a99a-1f5ef255c35b} - C:\Program Files\Object\bho_project.dll (InternetEngine)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll (Google Inc.)
O2 - BHO: (AIM Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O2 - BHO: (MSN Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1125.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (MSN Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1125.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (AIM Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AIM Toolbar) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL Inc.)
O4 - HKLM..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALuNotify.exe File not found
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe (Sony Corporation)
O4 - HKLM..\Run: [Freecorder FLV Service] C:\Program Files\Freecorder\FLVSrvc.exe (Applian Technologies, Inc.)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" File not found
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Zune Launcher] C:\Program Files\ZuneLauncher.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1
O8 - Extra context menu item: E&xport to Microsoft Excel - [You must be registered and logged in to see this link.] File not found
O9 - Extra Button: HP Smart Select - {58ECB495-38F0-49cb-A538-10282ABF65E7} - Reg Error: Value error. File not found
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} [You must be registered and logged in to see this link.] (DivXBrowserPlugin Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_29)
O16 - DPF: Geni Publisher [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A4A8EF8C-62C5-4288-8DB7-29EB88D8E3FE}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Takhisis\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Takhisis\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/11/25 20:52:25 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005/09/11 07:18:54 | 000,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - StartUpReg: OnScreenDisplay - hkey= - key= - C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe ( Hewlett-Packard Development Company, L.P.)
MsConfig - StartUpReg: QlbCtrl - hkey= - key= - File not found
MsConfig - StartUpReg: QPService - hkey= - key= - C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)
MsConfig - State: "startup" - 2

SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files\Common

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 10th December 2011, 6:43 am

continued from the top post (couldnt fit it all)



Files\LightScribe\LSRunOnce.exe"
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 10.1
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CB86EC62-CEA7-4C82-9EBA-B7A5E410E54C} - Reg Error: Value error.
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EFCE7BE0-510E-4932-9475-F44CD90DE16A} - Microsoft .NET Framework 1.1 Security Update (KB2572067)
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32: midi1 - C:\Windows\System32\MA_CMIDN.DLL (M-Audio)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.vorbis - C:\Windows\System32\vorbis.acm (HMS [You must be registered and logged in to see this link.]
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.XVID - C:\Windows\System32\xvidvfw.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011/12/08 13:27:44 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2011/12/08 13:27:44 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2011/12/05 14:25:46 | 000,435,032 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/11/30 16:53:45 | 000,000,000 | ---D | C] -- C:\Program Files\SSearch
[2011/11/25 13:05:01 | 000,000,000 | ---D | C] -- C:\Users\Takhisis\Documents\SPSSInc
[2011/11/25 12:58:17 | 000,000,000 | ---D | C] -- C:\Users\Takhisis\.spss
[2011/11/25 12:58:10 | 000,000,000 | ---D | C] -- C:\Users\Takhisis\AppData\Roaming\Eclipse
[2011/11/25 12:58:04 | 000,000,000 | ---D | C] -- C:\Users\Takhisis\AppData\Local\javasharedresources
[2011/11/25 12:56:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SafeNet Sentinel
[2011/11/25 12:55:25 | 000,000,000 | -H-D | C] -- C:\Program Files\Zero G Registry
[2011/11/25 12:55:23 | 000,000,000 | -H-D | C] -- C:\Users\Takhisis\InstallAnywhere
[2011/11/25 12:53:59 | 000,000,000 | ---D | C] -- C:\ProgramData\SPSS
[2011/11/25 12:53:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics
[2011/11/25 12:51:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\IBM
[2011/11/25 12:50:26 | 000,000,000 | ---D | C] -- C:\Program Files\IBM
[2011/11/25 12:40:15 | 000,000,000 | ---D | C] -- C:\Users\Takhisis\Documents\ShopToWin
[2011/11/25 12:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\Object
[2011/11/25 12:39:57 | 000,000,000 | ---D | C] -- C:\Program Files\Shop To Win
[2010/11/11 13:59:22 | 001,530,608 | ---- | C] (Microsoft Corporation) -- C:\Program Files\UIX.dll
[2010/11/11 13:59:22 | 001,395,440 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneShell.dll
[2010/11/11 13:59:22 | 001,288,944 | ---- | C] (Microsoft Corporation) -- C:\Program Files\UIXcontrols.dll
[2010/11/11 13:59:22 | 001,052,400 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneDBApi.dll
[2010/11/11 13:59:22 | 000,645,872 | ---- | C] (Microsoft Corporation) -- C:\Program Files\UIX.renderapi.dll
[2010/11/11 13:57:04 | 000,684,272 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneWmdu.dll
[2010/11/11 13:57:04 | 000,300,784 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneSrcWrp.dll
[2010/11/11 13:57:04 | 000,268,528 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WMZuneComm.exe
[2010/11/11 13:57:04 | 000,131,824 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneZMDB.Library.dll
[2010/11/11 13:57:04 | 000,130,800 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneZMDB.ZuneHD.dll
[2010/11/11 13:57:04 | 000,126,192 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneZMDB.Classic.dll
[2010/11/11 13:57:04 | 000,026,352 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WMZuneTCP2UDP.dll
[2010/11/11 13:57:04 | 000,019,696 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WMZuneDTPTDNS.dll
[2010/11/11 13:57:04 | 000,017,136 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WMZuneCommProxyStub.dll
[2010/11/11 13:57:04 | 000,009,456 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneWmduResources.dll
[2010/11/11 13:57:02 | 000,444,656 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneWlanCfgSvc.exe
[2010/11/11 13:57:02 | 000,406,256 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneSP.dll
[2010/11/11 13:57:02 | 000,156,400 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneZMDB.Mobile.dll
[2010/11/11 13:57:02 | 000,084,720 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneTaskbar.dll
[2010/11/11 13:57:00 | 000,059,632 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneShellExt.dll
[2010/11/11 13:56:56 | 016,873,712 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneShellResources.dll
[2010/11/11 13:56:56 | 000,836,848 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneService.dll
[2010/11/11 13:56:56 | 000,609,520 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneSH.dll
[2010/11/11 13:56:56 | 000,016,624 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneShare.exe
[2010/11/11 13:56:54 | 001,446,640 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneSetup.exe
[2010/11/11 13:56:54 | 001,404,144 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneResources.dll
[2010/11/11 13:56:54 | 000,376,560 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneSE.dll
[2010/11/11 13:56:54 | 000,123,120 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneSA.dll
[2010/11/11 13:56:52 | 000,679,152 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneQP.dll
[2010/11/11 13:56:00 | 000,816,880 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneMde.dll
[2010/11/11 13:56:00 | 000,018,672 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZunePS.dll
[2010/11/11 13:55:58 | 000,173,296 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneDB.dll
[2010/11/11 13:55:58 | 000,056,560 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneDXVA2.dll
[2010/11/11 13:55:56 | 007,401,712 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneNativeLib.dll
[2010/11/11 13:55:56 | 006,351,600 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneNss.exe
[2010/11/11 13:55:56 | 001,716,976 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneEncEng.dll
[2010/11/11 13:55:56 | 001,351,408 | ---- | C] (Microsoft Corporation) -- C:\Program Files\UIXrender.dll
[2010/11/11 13:55:56 | 001,027,824 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneCore.dll
[2010/11/11 13:55:56 | 001,000,688 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneH264Dec.dll
[2010/11/11 13:55:56 | 000,615,664 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneMBR.dll
[2010/11/11 13:55:56 | 000,298,736 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneEvr.dll
[2010/11/11 13:55:56 | 000,206,576 | ---- | C] (Microsoft Corporation) -- C:\Program Files\Zune.exe
[2010/11/11 13:55:56 | 000,111,856 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneEffects.dll
[2010/11/11 13:55:54 | 000,036,080 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneEnc.exe
[2010/11/11 13:55:50 | 000,628,976 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZUNEMP4SDECD.dll
[2010/11/11 13:55:50 | 000,268,016 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneNssci.dll
[2010/11/11 13:55:50 | 000,176,880 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneHost.exe
[2010/11/11 13:55:46 | 000,159,472 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneLauncher.exe
[2010/11/11 13:55:46 | 000,120,560 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZunePresenter.dll
[2010/11/11 13:55:46 | 000,110,320 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneAACDec.dll
[2010/11/11 13:55:46 | 000,030,960 | ---- | C] (Microsoft Corporation) -- C:\Program Files\UIXsup.dll
[2010/11/11 13:55:44 | 001,084,144 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneMarketplaceResources.dll
[2010/11/11 13:55:42 | 000,050,928 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneCfg.dll
[2010/11/11 13:55:42 | 000,044,272 | ---- | C] (Microsoft Corporation) -- C:\Program Files\ZuneConfig.exe
[2010/09/24 11:11:36 | 000,222,720 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Program Files\l3codecp.acm
[2010/09/24 10:30:50 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcr90.dll
[2010/09/24 10:30:50 | 000,572,928 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcp90.dll
[2010/09/24 10:30:50 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvcm90.dll
[2007/08/27 15:56:58 | 001,089,440 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msidcrl40.dll
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Takhisis\Documents\*.tmp files -> C:\Users\Takhisis\Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/12/09 22:19:53 | 000,000,424 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{47E5087E-7FD3-4D11-816E-0153900B6B86}.job
[2011/12/09 22:12:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/12/09 22:04:31 | 000,063,544 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/12/09 22:04:23 | 000,063,544 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/12/09 22:04:20 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/12/09 22:04:06 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/12/09 22:04:06 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/12/09 22:03:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/12/07 17:41:44 | 001,127,289 | ---- | M] () -- C:\Users\Takhisis\Desktop\Final Song.mp3
[2011/12/05 14:25:46 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/12/01 20:38:09 | 000,000,680 | ---- | M] () -- C:\Users\Takhisis\AppData\Local\d3d9caps.dat
[2011/11/28 10:01:25 | 000,041,184 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/11/28 10:01:23 | 000,199,816 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/11/28 09:53:53 | 000,435,032 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/11/28 09:53:35 | 000,314,456 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/11/28 09:52:19 | 000,034,392 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/11/28 09:52:16 | 000,052,952 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/11/28 09:52:07 | 000,055,128 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/11/28 09:51:50 | 000,020,568 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/11/26 19:31:00 | 000,405,496 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/11/26 19:29:45 | 267,516,453 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/11/25 12:49:18 | 000,001,025 | ---- | M] () -- C:\Windows\System32\sysprs7.tgz
[2011/11/25 12:49:18 | 000,001,025 | ---- | M] () -- C:\Windows\System32\sysprs7.dll
[2011/11/25 12:49:18 | 000,000,219 | ---- | M] () -- C:\Windows\System32\lsprst7.tgz
[2011/11/25 12:49:18 | 000,000,205 | ---- | M] () -- C:\Windows\System32\lsprst7.dll
[2011/11/25 12:49:18 | 000,000,016 | -H-- | M] () -- C:\Windows\System32\servdat.slm
[2011/11/23 07:47:10 | 000,101,376 | ---- | M] () -- C:\Users\Takhisis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/12 09:55:31 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/11/10 16:48:42 | 000,613,270 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/11/10 16:48:42 | 000,108,196 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Takhisis\Documents\*.tmp files -> C:\Users\Takhisis\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/12/07 17:41:37 | 001,127,289 | ---- | C] () -- C:\Users\Takhisis\Desktop\Final Song.mp3
[2011/11/25 12:49:18 | 000,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.tgz
[2011/11/25 12:49:18 | 000,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.dll
[2011/11/25 12:49:18 | 000,000,219 | ---- | C] () -- C:\Windows\System32\lsprst7.tgz
[2011/11/25 12:49:18 | 000,000,205 | ---- | C] () -- C:\Windows\System32\lsprst7.dll
[2011/11/25 12:49:18 | 000,000,016 | -H-- | C] () -- C:\Windows\System32\servdat.slm
[2011/08/17 16:08:48 | 000,000,096 | ---- | C] () -- C:\Users\Takhisis\AppData\Local\fusioncache.dat
[2011/04/21 20:07:16 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2011/03/07 21:21:10 | 000,758,018 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/03/07 21:21:10 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/02/21 21:52:26 | 000,013,086 | ---- | C] () -- C:\Windows\scunin.dat
[2011/01/25 19:49:12 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/09/24 10:32:26 | 000,000,659 | ---- | C] () -- C:\Program Files\Zune.exe.config
[2010/09/24 10:32:18 | 000,138,893 | ---- | C] () -- C:\Program Files\quickplaymap_nld.png
[2010/09/24 10:32:18 | 000,138,241 | ---- | C] () -- C:\Program Files\quickplaymap_ptb.png
[2010/09/24 10:32:18 | 000,138,239 | ---- | C] () -- C:\Program Files\quickplaymap_por.png
[2010/09/24 10:32:18 | 000,124,277 | ---- | C] () -- C:\Program Files\quickplaymap_deu.png
[2010/09/24 10:32:18 | 000,124,066 | ---- | C] () -- C:\Program Files\quickplaymap_ita.png
[2010/09/24 10:32:18 | 000,122,665 | ---- | C] () -- C:\Program Files\quickplaymap_frc.png
[2010/09/24 10:32:18 | 000,121,667 | ---- | C] () -- C:\Program Files\quickplaymap_esm.png
[2010/09/24 10:32:18 | 000,121,034 | ---- | C] () -- C:\Program Files\quickplaymap.png
[2010/09/24 10:32:18 | 000,118,456 | ---- | C] () -- C:\Program Files\softwaremap_ptb.png
[2010/09/24 10:32:18 | 000,113,696 | ---- | C] () -- C:\Program Files\softwaremap_por.png
[2010/09/24 10:32:18 | 000,112,268 | ---- | C] () -- C:\Program Files\softwaremap_nld.png
[2010/09/24 10:32:18 | 000,104,707 | ---- | C] () -- C:\Program Files\softwaremap_esm.png
[2010/09/24 10:32:18 | 000,103,753 | ---- | C] () -- C:\Program Files\softwaremap_deu.png
[2010/09/24 10:32:18 | 000,103,128 | ---- | C] () -- C:\Program Files\softwaremap_frc.png
[2010/09/24 10:32:18 | 000,102,831 | ---- | C] () -- C:\Program Files\softwaremap_ita.png
[2010/09/24 10:32:18 | 000,100,035 | ---- | C] () -- C:\Program Files\softwaremap.png
[2010/09/24 10:32:18 | 000,001,922 | ---- | C] () -- C:\Program Files\TopBar.gif
[2010/09/24 10:32:18 | 000,000,988 | ---- | C] () -- C:\Program Files\ZuneLogo.gif
[2010/09/24 10:32:18 | 000,000,631 | ---- | C] () -- C:\Program Files\Background.jpg
[2010/09/24 10:32:18 | 000,000,054 | ---- | C] () -- C:\Program Files\Arrow.gif
[2010/01/15 19:50:29 | 000,005,120 | ---- | C] () -- C:\Windows\System32\IcdSptSvps.dll
[2010/01/15 19:50:28 | 000,118,784 | ---- | C] () -- C:\Windows\System32\mp3dec.dll
[2010/01/15 19:50:28 | 000,081,920 | ---- | C] () -- C:\Windows\System32\dsp_trc.dll
[2009/12/03 08:20:51 | 000,063,544 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009/12/03 08:20:34 | 000,063,544 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009/11/28 14:58:46 | 000,006,523 | ---- | C] () -- C:\Users\Takhisis\AppData\Roaming\UserTile.png
[2009/09/23 17:35:09 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/09/23 17:35:08 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/04/16 08:27:58 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/04/06 17:23:42 | 000,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini
[2009/04/01 19:22:39 | 000,163,137 | ---- | C] () -- C:\Windows\hpoins29.dat.temp
[2009/04/01 19:22:39 | 000,000,799 | ---- | C] () -- C:\Windows\hpomdl29.dat.temp
[2009/04/01 18:41:43 | 000,163,137 | ---- | C] () -- C:\Windows\hpoins29.dat
[2009/04/01 18:41:43 | 000,000,799 | ---- | C] () -- C:\Windows\hpomdl29.dat
[2009/03/29 19:23:55 | 000,007,661 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2009/03/22 12:36:43 | 000,000,000 | ---- | C] () -- C:\Windows\System32\MSVolume.dll
[2008/09/21 16:27:28 | 000,002,892 | ---- | C] () -- C:\Windows\System32\audcon.sys
[2008/09/01 10:58:45 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2008/07/10 21:36:23 | 000,000,680 | ---- | C] () -- C:\Users\Takhisis\AppData\Local\d3d9caps.dat
[2008/02/06 19:17:42 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/01/22 20:07:56 | 000,000,484 | ---- | C] () -- C:\Windows\eReg.dat
[2008/01/22 19:50:45 | 000,000,550 | ---- | C] () -- C:\Users\Takhisis\AppData\Roaming\wklnhst.dat
[2008/01/21 20:07:39 | 000,101,376 | ---- | C] () -- C:\Users\Takhisis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/01/21 19:49:22 | 000,028,124 | ---- | C] () -- C:\Users\Takhisis\AppData\Roaming\nvModes.001
[2008/01/21 19:48:02 | 000,028,124 | ---- | C] () -- C:\Users\Takhisis\AppData\Roaming\nvModes.dat
[2007/12/17 12:21:51 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat
[2007/12/17 12:21:51 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.dat
[2007/12/17 12:21:16 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2007/11/26 21:56:28 | 000,151,415 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2007/11/25 21:08:03 | 000,101,605 | ---- | C] () -- C:\Windows\hpqins13.dat
[2006/11/02 04:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 04:47:37 | 000,405,496 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 04:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 02:33:01 | 000,613,270 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 02:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 02:33:01 | 000,108,196 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 02:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 02:25:21 | 000,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006/11/02 02:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 00:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 00:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/01 23:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/01 23:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/03/09 14:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[1996/04/03 11:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== Custom Scans ==========


< %APPDATA%\Microsoft\*.* >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %USERPROFILE%\Desktop\*.exe >
[2010/08/25 19:25:21 | 002,181,120 | ---- | M] () -- C:\Users\Takhisis\Desktop\LeagueofLegends.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\winn32\*.* >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2011/11/10 08:10:19 | 000,125,912 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2011/11/10 08:10:18 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
[2011/11/10 08:10:18 | 000,269,272 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe

< %ProgramFiles%\TinyProxy. >

< %systemroot%\system32\*.* /lockedfiles >
[2011/12/09 22:04:06 | 000,003,296 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/12/09 22:04:06 | 000,003,296 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2006/11/01 23:29:16 | 000,016,896 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\stdole2.tlb

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.* /lockedfiles >

< %PROGRAMFILES%\*. >
[2008/02/10 17:05:27 | 000,000,000 | ---D | M] -- C:\Program Files\7-Zip
[2007/11/25 21:05:42 | 000,000,000 | ---D | M] -- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[2011/06/18 12:32:55 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2009/12/12 22:40:26 | 000,000,000 | ---D | M] -- C:\Program Files\Age of Wonders Shadow Magic
[2011/02/12 19:11:35 | 000,000,000 | ---D | M] -- C:\Program Files\AIM
[2010/03/30 20:13:24 | 000,000,000 | ---D | M] -- C:\Program Files\AIM Toolbar
[2010/02/28 11:50:36 | 000,000,000 | ---D | M] -- C:\Program Files\Alwil Software
[2008/02/13 23:56:38 | 000,000,000 | ---D | M] -- C:\Program Files\ASIO4ALL v2
[2009/01/19 07:25:34 | 000,000,000 | ---D | M] -- C:\Program Files\ATT
[2009/11/07 12:06:19 | 000,000,000 | ---D | M] -- C:\Program Files\Audacity 1.3 Beta (Unicode)
[2007/11/25 21:21:40 | 000,000,000 | ---D | M] -- C:\Program Files\AWS
[2010/12/10 20:25:10 | 000,000,000 | ---D | M] -- C:\Program Files\Bethesda Softworks
[2011/11/25 12:51:33 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2007/12/17 12:34:32 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2010/12/02 14:14:57 | 000,000,000 | ---D | M] -- C:\Program Files\de-DE
[2008/03/30 19:25:35 | 000,000,000 | ---D | M] -- C:\Program Files\directx
[2009/07/25 16:18:59 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2010/12/02 14:11:46 | 000,000,000 | ---D | M] -- C:\Program Files\Drivers
[2007/11/25 21:20:32 | 000,000,000 | ---D | M] -- C:\Program Files\earthlink totalaccess
[2011/02/19 21:36:44 | 000,000,000 | ---D | M] -- C:\Program Files\EchelonWW
[2009/02/02 00:08:52 | 000,000,000 | ---D | M] -- C:\Program Files\EDIROL
[2010/12/02 14:14:41 | 000,000,000 | ---D | M] -- C:\Program Files\en-US
[2011/12/08 13:27:44 | 000,000,000 | ---D | M] -- C:\Program Files\Enigma Software Group
[2010/12/02 14:14:44 | 000,000,000 | ---D | M] -- C:\Program Files\es-ES
[2010/12/10 15:25:33 | 000,000,000 | ---D | M] -- C:\Program Files\Flip Video
[2010/12/02 14:14:53 | 000,000,000 | ---D | M] -- C:\Program Files\fr-FR
[2010/12/21 09:29:22 | 000,000,000 | ---D | M] -- C:\Program Files\Freecorder
[2010/03/21 20:16:13 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2009/04/13 13:06:26 | 000,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard
[2009/04/01 20:01:03 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2007/12/17 12:37:36 | 000,000,000 | ---D | M] -- C:\Program Files\HP Games
[2008/01/21 19:28:36 | 000,000,000 | ---D | M] -- C:\Program Files\HPQ
[2011/11/25 12:50:26 | 000,000,000 | ---D | M] -- C:\Program Files\IBM
[2008/02/14 00:00:56 | 000,000,000 | ---D | M] -- C:\Program Files\Image-Line
[2011/05/25 12:57:05 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2007/12/17 12:23:16 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2009/11/27 22:28:07 | 000,000,000 | ---D | M] -- C:\Program Files\InterLok
[2011/11/24 19:15:09 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2010/12/02 14:15:05 | 000,000,000 | ---D | M] -- C:\Program Files\it-IT
[2011/11/06 10:45:30 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2010/03/21 20:13:21 | 000,000,000 | ---D | M] -- C:\Program Files\M-Audio
[2009/09/06 20:36:03 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2011/02/19 21:34:08 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2009/01/31 12:32:53 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2010/10/13 21:47:18 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2009/01/31 12:33:46 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2009/01/31 12:30:14 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 8
[2007/11/25 20:41:01 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2010/06/26 08:20:56 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2009/01/19 07:27:06 | 000,000,000 | ---D | M] -- C:\Program Files\MotiveVNC
[2007/12/17 12:20:56 | 000,000,000 | ---D | M] -- C:\Program Files\Motorola
[2010/08/13 00:19:28 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2011/11/10 08:10:20 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2009/01/31 12:33:58 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2009/09/06 20:34:59 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2008/01/23 23:46:00 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2007/11/25 20:51:58 | 000,000,000 | ---D | M] -- C:\Program Files\muvee Technologies
[2009/06/16 17:08:05 | 000,000,000 | ---D | M] -- C:\Program Files\NCH Software
[2010/12/02 14:11:53 | 000,000,000 | ---D | M] -- C:\Program Files\Network Sharing
[2010/12/02 14:15:11 | 000,000,000 | ---D | M] -- C:\Program Files\nl-NL
[2010/04/30 19:28:55 | 000,000,000 | ---D | M] -- C:\Program Files\Norton Security Scan
[2011/11/25 12:40:01 | 000,000,000 | ---D | M] -- C:\Program Files\Object
[2008/01/21 19:36:57 | 000,000,000 | R--D | M] -- C:\Program Files\Online Services
[2010/08/25 19:26:00 | 000,000,000 | ---D | M] -- C:\Program Files\Pando Networks
[2009/01/26 21:24:52 | 000,000,000 | ---D | M] -- C:\Program Files\Project64 1.6
[2010/12/02 14:15:22 | 000,000,000 | ---D | M] -- C:\Program Files\pt-BR
[2010/12/02 14:15:17 | 000,000,000 | ---D | M] -- C:\Program Files\pt-PT
[2010/04/02 21:38:40 | 000,000,000 | ---D | M] -- C:\Program Files\Real
[2008/05/17 11:55:17 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2006/11/02 04:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2011/11/26 19:38:39 | 000,000,000 | ---D | M] -- C:\Program Files\Shop To Win
[2011/05/12 22:19:14 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2007/11/25 21:06:56 | 000,000,000 | ---D | M] -- C:\Program Files\Sling Media
[2010/01/15 19:53:50 | 000,000,000 | ---D | M] -- C:\Program Files\Sony
[2011/11/30 16:53:45 | 000,000,000 | ---D | M] -- C:\Program Files\SSearch
[2011/02/21 22:25:07 | 000,000,000 | ---D | M] -- C:\Program Files\Starcraft
[2009/03/29 19:26:27 | 000,000,000 | ---D | M] -- C:\Program Files\Symantec
[2007/12/17 12:20:14 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2009/04/11 18:03:01 | 000,000,000 | ---D | M] -- C:\Program Files\Syncrosoft
[2011/06/21 12:13:40 | 000,000,000 | ---D | M] -- C:\Program Files\SystemRequirementsLab
[2009/07/15 21:17:57 | 000,000,000 | ---D | M] -- C:\Program Files\TI Education
[2011/08/17 15:23:15 | 000,000,000 | ---D | M] -- C:\Program Files\Turbine
[2006/11/02 05:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2010/01/03 20:25:51 | 000,000,000 | ---D | M] -- C:\Program Files\Unlocker
[2011/04/21 20:07:18 | 000,000,000 | ---D | M] -- C:\Program Files\Ventrilo
[2007/11/25 20:28:40 | 000,000,000 | ---D | M] -- C:\Program Files\Viewpoint
[2007/11/25 21:22:13 | 000,000,000 | ---D | M] -- C:\Program Files\Vongo
[2011/02/19 21:31:31 | 000,000,000 | ---D | M] -- C:\Program Files\VstPlugins
[2009/10/12 21:22:53 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2009/10/12 21:22:53 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2009/10/12 21:22:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/10/12 21:22:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2011/11/28 22:40:22 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2010/10/13 14:59:09 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2006/11/02 04:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/10/12 21:22:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2009/11/03 23:15:16 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/11/14 13:09:45 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2009/10/31 15:28:41 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2007/12/17 12:24:59 | 000,000,000 | ---D | M] -- C:\Program Files\WinTV
[2009/03/29 19:28:03 | 000,000,000 | ---D | M] -- C:\Program Files\Yahoo!
[2011/11/25 12:55:44 | 000,000,000 | -H-D | M] -- C:\Program Files\Zero G Registry


< MD5 for: AGP440.SYS >
[2008/01/18 23:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/18 23:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/18 23:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/18 23:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2007/11/25 21:26:58 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=313FF294978EA6AF715722D708FB249F -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.20494_none_b858f78adaed51b3\AGP440.sys
[2007/11/25 21:26:58 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=CE71AFD6738AA025D742CDBCFBDC8B9C -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f2490cb0\AGP440.sys
[2007/11/25 21:26:58 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=CE71AFD6738AA025D742CDBCFBDC8B9C -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.16399_none_b7d45c31c1cb309c\AGP440.sys
[2006/11/02 01:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006/11/02 01:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/04/10 22:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/10 22:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/10 22:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/02/10 18:46:03 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=224505155EC3E36D7A1F36E446F04C2A -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_ecc53ff9\atapi.sys
[2008/02/10 18:46:03 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=224505155EC3E36D7A1F36E446F04C2A -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16584_none_daff695624a08568\atapi.sys
[2008/01/18 23:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/18 23:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 01:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008/02/10 18:46:02 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=BFD3DF48C9ED81934FE21E8E3CFC2496 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20707_none_dbe288453d7a8ed6\atapi.sys

< MD5 for: DISK.SYS >
[2009/04/10 22:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\drivers\disk.sys
[2009/04/10 22:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_5c850fad\disk.sys
[2009/04/10 22:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6002.18005_none_fbb1faf0714e4ea6\disk.sys
[2008/01/18 23:42:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_90722180\disk.sys
[2008/01/18 23:42:20 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6001.18000_none_f9c681e4742c835a\disk.sys
[2006/11/02 01:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) MD5=841AF4C4D41D3E3B2F244E976B0F7963 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_e0b0b355\disk.sys

< MD5 for: IASTOR.SYS >
[2007/07/12 20:35:02 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\SWSETUP\Drivers\ITM\Winall\Driver\iastor.sys
[2007/07/12 20:35:02 | 000,305,176 | ---- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_cfa1dde4\iaStor.sys
[2008/04/15 16:54:16 | 000,388,120 | ---- | M] (Intel Corporation) MD5=8D58627FEF3F8767665D9F4DC91CBD97 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\iastor.sys
[2007/07/12 20:35:44 | 000,381,976 | ---- | M] (Intel Corporation) MD5=CEB53BB804B41C52AB0782505C8E2994 -- C:\SWSETUP\Drivers\ITM\Winall\Driver64\iastor.sys
[2008/04/15 16:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\iastor.sys
[2008/04/15 16:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\drivers\iaStor.sys
[2008/04/15 16:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_77c04a30\iaStor.sys

< MD5 for: NETLOGON.DLL >
[2006/11/02 01:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009/04/10 22:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/10 22:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/18 23:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2006/11/02 01:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006/11/02 01:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/18 23:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/18 23:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-11-29 06:40:53

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/11/10 08:10:18 | 000,713,560 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/11/10 08:10:18 | 000,713,560 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/11/10 08:10:18 | 000,713,560 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/09/30 13:29:44 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/09/30 13:29:44 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/09/30 13:29:44 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/09/30 15:07:49 | 000,638,216 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/09/30 15:07:49 | 000,638,216 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/11/10 08:10:18 | 000,713,560 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/11/10 08:10:18 | 000,713,560 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/11/10 08:10:18 | 000,713,560 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/11/10 08:10:19 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/09/30 13:29:44 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/09/30 13:29:44 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/09/30 13:29:44 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/09/30 15:07:49 | 000,638,216 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/09/30 15:07:49 | 000,638,216 | ---- | M] (Microsoft Corporation)

========== Alternate Data Streams ==========

@Alternate Data Stream - 1356 bytes -> C:\Users\Takhisis\AppData\Local\90dHIT8l6bJPx:47hF0o1kjcwvHXKJhU
@Alternate Data Stream - 1242 bytes -> C:\Users\Takhisis\AppData\Local\2NgKlxygesGG3F:lWxUQPQRsLkhE77wrojXXZ5z

< End of report >

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 10th December 2011, 6:54 am

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-12-09 22:45:16
-----------------------------
22:45:16.749 OS Version: Windows 6.0.6002 Service Pack 2
22:45:16.749 Number of processors: 2 586 0xF0D
22:45:16.751 ComputerName: TAKHISIS-PC UserName: Takhisis
22:45:44.538 Initialize success
22:45:45.062 AVAST engine defs: 11120902
22:46:16.058 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
22:46:16.062 Disk 0 Vendor: WDC_WD25 01.0 Size: 238475MB BusType: 3
22:46:16.117 Disk 0 MBR read successfully
22:46:16.120 Disk 0 MBR scan
22:46:16.126 Disk 0 unknown MBR code
22:46:16.132 Disk 0 scanning sectors +488392065
22:46:16.216 Disk 0 scanning C:\Windows\system32\drivers
22:46:32.431 Service scanning
22:46:34.564 Modules scanning
22:46:45.202 Disk 0 trace - called modules:
22:46:45.225 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll iaStor.sys
22:46:45.231 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x87670ac8]
22:46:45.237 3 CLASSPNP.SYS[8b99e8b3] -> nt!IofCallDriver -> [0x85b7b3b0]
22:46:45.244 5 acpi.sys[836966bc] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x85b86028]
22:46:46.173 AVAST engine scan C:\Windows
22:46:49.433 AVAST engine scan C:\Windows\system32
22:49:00.426 AVAST engine scan C:\Windows\system32\drivers
22:49:12.912 AVAST engine scan C:\Users\Takhisis
22:51:46.002 Disk 0 MBR has been saved successfully to "C:\Users\Takhisis\Documents\MBR.dat"
22:51:46.016 The log file has been saved successfully to "C:\Users\Takhisis\Documents\startsearcher.txt"


.






ok so the problem i'm having is basically everytime i open firefox, my home page is some url called startsearcher.com. I try to change the home page in the options menu of firefox but it gets reset to startsearcher all the time. I tried deleting cookies and doing something related to about:config and hitting reset on the startsearcher stuff, that didnt work either.

how do i remove it?

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 11th December 2011, 7:35 am

Results of screen317's Security Check version 0.99.28
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
avast! Free Antivirus
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Java(TM) 6 Update 29
Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Java version out of date!
Adobe Flash Player 11.1.102.55
Adobe Reader 8 Adobe Reader out of date!
Mozilla Firefox (8.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

Windows Defender MSASCui.exe
Windows Defender MSASCui.exe
Alwil Software Avast5 AvastSvc.exe
Alwil Software Avast5 AvastUI.exe
``````````End of Log````````````

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by Belahzur on 12th December 2011, 12:28 am

Hello.

Please download TDSSKiller from [You must be registered and logged in to see this link.] and save it to your Desktop.

  • Doubleclick TDSSKiller.exe to run the tool
  • Click the Start Scan button
  • After the scan has finished, click the Close button
  • Click the Report button and copy/paste the contents of it into your next reply
Note:It will also create a log in the C:\ directory.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 12th December 2011, 1:14 am

17:12:15.0803 3588 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
17:12:16.0371 3588 ============================================================
17:12:16.0371 3588 Current date / time: 2011/12/11 17:12:16.0371
17:12:16.0371 3588 SystemInfo:
17:12:16.0371 3588
17:12:16.0371 3588 OS Version: 6.0.6002 ServicePack: 2.0
17:12:16.0371 3588 Product type: Workstation
17:12:16.0371 3588 ComputerName: TAKHISIS-PC
17:12:16.0372 3588 UserName: Takhisis
17:12:16.0372 3588 Windows directory: C:\Windows
17:12:16.0372 3588 System windows directory: C:\Windows
17:12:16.0372 3588 Processor architecture: Intel x86
17:12:16.0372 3588 Number of processors: 2
17:12:16.0372 3588 Page size: 0x1000
17:12:16.0372 3588 Boot type: Normal boot
17:12:16.0372 3588 ============================================================
17:12:17.0284 3588 Initialize success
17:12:53.0879 4864 ============================================================
17:12:53.0879 4864 Scan started
17:12:53.0879 4864 Mode: Manual;
17:12:53.0879 4864 ============================================================
17:12:55.0289 4864 61883 (585e64bb6dfbc0a2f1f0b554ded012df) C:\Windows\system32\DRIVERS\61883.sys
17:12:55.0290 4864 61883 - ok
17:12:55.0579 4864 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
17:12:55.0582 4864 ACPI - ok
17:12:55.0740 4864 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
17:12:55.0745 4864 adp94xx - ok
17:12:55.0800 4864 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
17:12:55.0804 4864 adpahci - ok
17:12:56.0127 4864 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
17:12:56.0129 4864 adpu160m - ok
17:12:56.0288 4864 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
17:12:56.0289 4864 adpu320 - ok
17:12:56.0388 4864 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
17:12:56.0391 4864 AFD - ok
17:12:56.0467 4864 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
17:12:56.0468 4864 agp440 - ok
17:12:56.0846 4864 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:12:56.0848 4864 aic78xx - ok
17:12:57.0269 4864 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
17:12:57.0270 4864 aliide - ok
17:12:57.0331 4864 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
17:12:57.0332 4864 amdagp - ok
17:12:57.0658 4864 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
17:12:57.0659 4864 amdide - ok
17:12:57.0886 4864 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
17:12:57.0887 4864 AmdK7 - ok
17:12:58.0228 4864 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
17:12:58.0229 4864 AmdK8 - ok
17:12:58.0435 4864 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
17:12:58.0436 4864 arc - ok
17:12:58.0661 4864 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
17:12:58.0662 4864 arcsas - ok
17:12:59.0177 4864 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\Windows\system32\drivers\aswFsBlk.sys
17:12:59.0179 4864 aswFsBlk - ok
17:12:59.0243 4864 aswMonFlt (258143605e77e4008f1758481d6a977d) C:\Windows\system32\drivers\aswMonFlt.sys
17:12:59.0246 4864 aswMonFlt - ok
17:12:59.0286 4864 aswRdr (352d5a48ebab35a7693b048679304831) C:\Windows\system32\drivers\aswRdr.sys
17:12:59.0287 4864 aswRdr - ok
17:12:59.0368 4864 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\Windows\system32\drivers\aswSnx.sys
17:12:59.0372 4864 aswSnx - ok
17:12:59.0567 4864 aswSP (010012597333da1f46c3243f33f8409e) C:\Windows\system32\drivers\aswSP.sys
17:12:59.0570 4864 aswSP - ok
17:12:59.0841 4864 aswTdi (f9f84364416658e9786235904d448d37) C:\Windows\system32\drivers\aswTdi.sys
17:12:59.0842 4864 aswTdi - ok
17:13:00.0009 4864 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:13:00.0010 4864 AsyncMac - ok
17:13:00.0277 4864 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
17:13:00.0278 4864 atapi - ok
17:13:00.0429 4864 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) C:\Windows\system32\DRIVERS\avc.sys
17:13:00.0430 4864 Avc - ok
17:13:00.0737 4864 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
17:13:00.0740 4864 BCM43XV - ok
17:13:00.0880 4864 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:13:00.0880 4864 Beep - ok
17:13:00.0991 4864 blbdrive - ok
17:13:01.0188 4864 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
17:13:01.0189 4864 bowser - ok
17:13:01.0281 4864 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:13:01.0282 4864 BrFiltLo - ok
17:13:01.0768 4864 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:13:01.0769 4864 BrFiltUp - ok
17:13:02.0091 4864 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:13:02.0092 4864 Brserid - ok
17:13:02.0271 4864 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:13:02.0272 4864 BrSerWdm - ok
17:13:02.0300 4864 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:13:02.0301 4864 BrUsbMdm - ok
17:13:02.0834 4864 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:13:02.0835 4864 BrUsbSer - ok
17:13:03.0316 4864 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:13:03.0317 4864 BTHMODEM - ok
17:13:03.0799 4864 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:13:03.0801 4864 cdfs - ok
17:13:04.0218 4864 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
17:13:04.0219 4864 cdrom - ok
17:13:04.0774 4864 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
17:13:04.0775 4864 circlass - ok
17:13:05.0305 4864 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
17:13:05.0309 4864 CLFS - ok
17:13:05.0792 4864 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
17:13:05.0793 4864 CmBatt - ok
17:13:06.0276 4864 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
17:13:06.0277 4864 cmdide - ok
17:13:06.0787 4864 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
17:13:06.0788 4864 Compbatt - ok
17:13:07.0310 4864 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
17:13:07.0312 4864 crcdisk - ok
17:13:07.0787 4864 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
17:13:07.0788 4864 Crusoe - ok
17:13:08.0331 4864 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
17:13:08.0332 4864 DfsC - ok
17:13:08.0844 4864 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
17:13:08.0846 4864 disk - ok
17:13:09.0368 4864 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:13:09.0369 4864 drmkaud - ok
17:13:10.0121 4864 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
17:13:10.0127 4864 DXGKrnl - ok
17:13:10.0309 4864 E100B (c0b00e55cf82d122d25983c7a6a53dea) C:\Windows\system32\DRIVERS\e100b325.sys
17:13:10.0311 4864 E100B - ok
17:13:10.0641 4864 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:13:10.0643 4864 E1G60 - ok
17:13:11.0169 4864 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
17:13:11.0171 4864 Ecache - ok
17:13:11.0294 4864 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
17:13:11.0297 4864 elxstor - ok
17:13:11.0426 4864 esgiguard - ok
17:13:11.0856 4864 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
17:13:11.0858 4864 exfat - ok
17:13:12.0343 4864 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
17:13:12.0346 4864 fastfat - ok
17:13:12.0700 4864 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
17:13:12.0701 4864 fdc - ok
17:13:13.0018 4864 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:13:13.0019 4864 FileInfo - ok
17:13:13.0145 4864 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:13:13.0146 4864 Filetrace - ok
17:13:13.0325 4864 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
17:13:13.0326 4864 flpydisk - ok
17:13:13.0404 4864 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
17:13:13.0407 4864 FltMgr - ok
17:13:14.0056 4864 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
17:13:14.0057 4864 Fs_Rec - ok
17:13:14.0570 4864 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
17:13:14.0572 4864 gagp30kx - ok
17:13:15.0292 4864 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
17:13:15.0294 4864 HdAudAddService - ok
17:13:15.0872 4864 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:13:15.0877 4864 HDAudBus - ok
17:13:16.0092 4864 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:13:16.0093 4864 HidBth - ok
17:13:16.0163 4864 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
17:13:16.0164 4864 HidIr - ok
17:13:16.0254 4864 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
17:13:16.0255 4864 HidUsb - ok
17:13:16.0339 4864 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
17:13:16.0340 4864 HpCISSs - ok
17:13:16.0413 4864 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
17:13:16.0414 4864 HpqKbFiltr - ok
17:13:16.0474 4864 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
17:13:16.0475 4864 HpqRemHid - ok
17:13:16.0555 4864 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
17:13:16.0558 4864 HSFHWAZL - ok
17:13:17.0045 4864 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
17:13:17.0057 4864 HSF_DPV - ok
17:13:17.0415 4864 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
17:13:17.0419 4864 HTTP - ok
17:13:17.0749 4864 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
17:13:17.0750 4864 i2omp - ok
17:13:18.0062 4864 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:13:18.0063 4864 i8042prt - ok
17:13:18.0255 4864 ialm (496db78e6a0c4c44023d9a92b4a7ac31) C:\Windows\system32\DRIVERS\igdkmd32.sys
17:13:18.0266 4864 ialm - ok
17:13:18.0342 4864 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
17:13:18.0345 4864 iaStor - ok
17:13:18.0380 4864 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
17:13:18.0383 4864 iaStorV - ok
17:13:18.0470 4864 ICDUSB3 (4b9f5768f6da1fd247198d91a07328d9) C:\Windows\system32\Drivers\ICDUSB3.sys
17:13:18.0471 4864 ICDUSB3 - ok
17:13:18.0549 4864 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:13:18.0551 4864 iirsp - ok
17:13:18.0826 4864 IntcAzAudAddService (8d7eb1fd498fd0a34c95a298685ec1c7) C:\Windows\system32\drivers\RTKVHDA.sys
17:13:18.0847 4864 IntcAzAudAddService - ok
17:13:19.0031 4864 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:13:19.0033 4864 intelide - ok
17:13:19.0250 4864 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:13:19.0252 4864 intelppm - ok
17:13:19.0464 4864 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:13:19.0465 4864 IpFilterDriver - ok
17:13:19.0604 4864 IpInIp - ok
17:13:20.0066 4864 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
17:13:20.0068 4864 IPMIDRV - ok
17:13:20.0246 4864 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:13:20.0249 4864 IPNAT - ok
17:13:20.0399 4864 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:13:20.0401 4864 IRENUM - ok
17:13:20.0583 4864 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
17:13:20.0584 4864 isapnp - ok
17:13:20.0835 4864 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
17:13:20.0837 4864 iScsiPrt - ok
17:13:21.0065 4864 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:13:21.0066 4864 iteatapi - ok
17:13:21.0248 4864 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:13:21.0250 4864 iteraid - ok
17:13:21.0356 4864 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:13:21.0358 4864 kbdclass - ok
17:13:21.0493 4864 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
17:13:21.0494 4864 kbdhid - ok
17:13:21.0925 4864 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
17:13:21.0929 4864 KSecDD - ok
17:13:22.0172 4864 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:13:22.0174 4864 lltdio - ok
17:13:22.0328 4864 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
17:13:22.0330 4864 LSI_FC - ok
17:13:22.0455 4864 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
17:13:22.0457 4864 LSI_SAS - ok
17:13:22.0771 4864 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
17:13:22.0773 4864 LSI_SCSI - ok
17:13:23.0009 4864 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:13:23.0011 4864 luafv - ok
17:13:23.0181 4864 MA_CMIDI (6b5d093711eadd77c789b0150dc4879c) C:\Windows\system32\drivers\ma_cmidi.sys
17:13:23.0182 4864 MA_CMIDI - ok
17:13:23.0407 4864 MCSTRM (5bb01b9f582259d1fb7653c5c1da3653) C:\Windows\system32\drivers\MCSTRM.sys
17:13:23.0408 4864 MCSTRM - ok
17:13:23.0526 4864 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
17:13:23.0529 4864 megasas - ok
17:13:23.0783 4864 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:13:23.0784 4864 Modem - ok
17:13:23.0958 4864 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:13:23.0960 4864 monitor - ok
17:13:24.0180 4864 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:13:24.0181 4864 mouclass - ok
17:13:24.0354 4864 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
17:13:24.0355 4864 mouhid - ok
17:13:24.0568 4864 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:13:24.0570 4864 MountMgr - ok
17:13:24.0716 4864 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
17:13:24.0718 4864 mpio - ok
17:13:24.0853 4864 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:13:24.0857 4864 mpsdrv - ok
17:13:25.0063 4864 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:13:25.0066 4864 Mraid35x - ok
17:13:25.0231 4864 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
17:13:25.0233 4864 MRxDAV - ok
17:13:25.0377 4864 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:13:25.0378 4864 mrxsmb - ok
17:13:25.0606 4864 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:13:25.0608 4864 mrxsmb10 - ok
17:13:26.0065 4864 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:13:26.0067 4864 mrxsmb20 - ok
17:13:26.0324 4864 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
17:13:26.0326 4864 msahci - ok
17:13:26.0894 4864 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
17:13:26.0896 4864 msdsm - ok
17:13:27.0152 4864 MSDV (343291a4dfd7c923c3f71f550830ec1c) C:\Windows\system32\DRIVERS\msdv.sys
17:13:27.0153 4864 MSDV - ok
17:13:27.0271 4864 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:13:27.0273 4864 Msfs - ok
17:13:27.0388 4864 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:13:27.0389 4864 msisadrv - ok
17:13:27.0649 4864 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:13:27.0651 4864 MSKSSRV - ok
17:13:28.0034 4864 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:13:28.0036 4864 MSPCLOCK - ok
17:13:28.0256 4864 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:13:28.0258 4864 MSPQM - ok
17:13:28.0423 4864 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
17:13:28.0426 4864 MsRPC - ok
17:13:28.0653 4864 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:13:28.0655 4864 mssmbios - ok
17:13:28.0901 4864 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:13:28.0903 4864 MSTEE - ok
17:13:29.0160 4864 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
17:13:29.0161 4864 Mup - ok
17:13:29.0340 4864 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
17:13:29.0342 4864 NativeWifiP - ok
17:13:29.0605 4864 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
17:13:29.0613 4864 NDIS - ok
17:13:29.0842 4864 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:13:29.0844 4864 NdisTapi - ok
17:13:30.0006 4864 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:13:30.0008 4864 Ndisuio - ok
17:13:30.0362 4864 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:13:30.0364 4864 NdisWan - ok
17:13:30.0661 4864 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:13:30.0663 4864 NDProxy - ok
17:13:30.0863 4864 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:13:30.0864 4864 NetBIOS - ok
17:13:31.0177 4864 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
17:13:31.0181 4864 netbt - ok
17:13:31.0541 4864 NETw4v32 (6522dd40a5f67ced020bd81b856613fb) C:\Windows\system32\DRIVERS\NETw4v32.sys
17:13:31.0558 4864 NETw4v32 - ok
17:13:31.0850 4864 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:13:31.0852 4864 nfrd960 - ok
17:13:32.0022 4864 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
17:13:32.0024 4864 Npfs - ok
17:13:32.0204 4864 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:13:32.0208 4864 nsiproxy - ok
17:13:32.0367 4864 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
17:13:32.0380 4864 Ntfs - ok
17:13:32.0592 4864 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:13:32.0593 4864 ntrigdigi - ok
17:13:32.0839 4864 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:13:32.0840 4864 Null - ok
17:13:33.0483 4864 nvlddmkm (24000b817cc84ac1555f41929879af5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:13:33.0572 4864 nvlddmkm - ok
17:13:33.0769 4864 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
17:13:33.0771 4864 nvraid - ok
17:13:34.0057 4864 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
17:13:34.0059 4864 nvstor - ok
17:13:34.0267 4864 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
17:13:34.0269 4864 nv_agp - ok
17:13:34.0492 4864 NwlnkFlt - ok
17:13:34.0681 4864 NwlnkFwd - ok
17:13:34.0992 4864 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
17:13:34.0993 4864 ohci1394 - ok
17:13:35.0209 4864 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:13:35.0211 4864 Parport - ok
17:13:35.0409 4864 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
17:13:35.0412 4864 partmgr - ok
17:13:35.0672 4864 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:13:35.0674 4864 Parvdm - ok
17:13:35.0878 4864 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
17:13:35.0882 4864 pci - ok
17:13:36.0119 4864 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
17:13:36.0120 4864 pciide - ok
17:13:36.0267 4864 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:13:36.0269 4864 pcmcia - ok
17:13:36.0623 4864 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:13:36.0632 4864 PEAUTH - ok
17:13:36.0873 4864 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:13:36.0875 4864 PptpMiniport - ok
17:13:37.0105 4864 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
17:13:37.0106 4864 Processor - ok
17:13:37.0322 4864 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
17:13:37.0324 4864 PSched - ok
17:13:37.0473 4864 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\Windows\system32\Drivers\PxHelp20.sys
17:13:37.0474 4864 PxHelp20 - ok
17:13:37.0985 4864 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
17:13:37.0994 4864 ql2300 - ok
17:13:38.0186 4864 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:13:38.0188 4864 ql40xx - ok
17:13:38.0348 4864 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:13:38.0350 4864 QWAVEdrv - ok
17:13:38.0581 4864 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:13:38.0583 4864 RasAcd - ok
17:13:38.0883 4864 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:13:38.0886 4864 Rasl2tp - ok
17:13:39.0320 4864 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
17:13:39.0323 4864 RasPppoe - ok
17:13:39.0591 4864 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
17:13:39.0593 4864 RasSstp - ok
17:13:39.0770 4864 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
17:13:39.0772 4864 rdbss - ok
17:13:40.0323 4864 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:13:40.0325 4864 RDPCDD - ok
17:13:40.0859 4864 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
17:13:40.0862 4864 rdpdr - ok
17:13:41.0170 4864 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:13:41.0172 4864 RDPENCDD - ok
17:13:41.0299 4864 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
17:13:41.0302 4864 RDPWD - ok
17:13:41.0541 4864 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
17:13:41.0542 4864 rimmptsk - ok
17:13:41.0613 4864 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
17:13:41.0615 4864 rimsptsk - ok
17:13:41.0815 4864 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
17:13:41.0816 4864 rismxdp - ok
17:13:42.0371 4864 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:13:42.0372 4864 rspndr - ok
17:13:43.0025 4864 RTL8169 (9a929308a64183d3d9dccbb6df4badae) C:\Windows\system32\DRIVERS\Rtlh86.sys
17:13:43.0027 4864 RTL8169 - ok
17:13:43.0329 4864 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:13:43.0331 4864 sbp2port - ok
17:13:43.0853 4864 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
17:13:43.0855 4864 sdbus - ok
17:13:44.0341 4864 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:13:44.0343 4864 Serenum - ok
17:13:44.0445 4864 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:13:44.0447 4864 Serial - ok
17:13:44.0639 4864 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:13:44.0640 4864 sermouse - ok
17:13:45.0030 4864 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
17:13:45.0032 4864 sffdisk - ok
17:13:45.0395 4864 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
17:13:45.0396 4864 sffp_mmc - ok
17:13:45.0713 4864 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys
17:13:45.0716 4864 sffp_sd - ok
17:13:45.0888 4864 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:13:45.0889 4864 sfloppy - ok
17:13:46.0562 4864 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
17:13:46.0563 4864 sisagp - ok
17:13:46.0797 4864 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
17:13:46.0798 4864 SiSRaid2 - ok
17:13:47.0260 4864 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
17:13:47.0261 4864 SiSRaid4 - ok
17:13:47.0579 4864 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
17:13:47.0580 4864 Smb - ok
17:13:48.0180 4864 smserial (63b3b77bdb67ee674771c0e6fb96da9e) C:\Windows\system32\DRIVERS\smserial.sys
17:13:48.0190 4864 smserial - ok
17:13:48.0335 4864 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:13:48.0336 4864 spldr - ok
17:13:48.0887 4864 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
17:13:48.0890 4864 srv - ok
17:13:49.0352 4864 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
17:13:49.0355 4864 srv2 - ok
17:13:49.0684 4864 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
17:13:49.0687 4864 srvnet - ok
17:13:49.0893 4864 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:13:49.0895 4864 swenum - ok
17:13:50.0152 4864 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:13:50.0154 4864 Symc8xx - ok
17:13:50.0383 4864 SymIM - ok
17:13:50.0547 4864 SymIMMP - ok
17:13:50.0782 4864 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:13:50.0784 4864 Sym_hi - ok
17:13:50.0980 4864 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:13:50.0982 4864 Sym_u3 - ok
17:13:51.0257 4864 SynasUSB (418bd80a7fefaa3fcbd3dcfc021cb294) C:\Windows\system32\drivers\SynasUSB.sys
17:13:51.0259 4864 SynasUSB - ok
17:13:51.0425 4864 SynTP (3d6316279c3540aa268bf025f4621ef3) C:\Windows\system32\DRIVERS\SynTP.sys
17:13:51.0428 4864 SynTP - ok
17:13:51.0913 4864 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
17:13:51.0921 4864 Tcpip - ok
17:13:52.0237 4864 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
17:13:52.0246 4864 Tcpip6 - ok
17:13:52.0330 4864 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
17:13:52.0332 4864 tcpipreg - ok
17:13:52.0625 4864 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:13:52.0627 4864 TDPIPE - ok
17:13:53.0013 4864 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:13:53.0015 4864 TDTCP - ok
17:13:53.0408 4864 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
17:13:53.0411 4864 tdx - ok
17:13:53.0707 4864 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
17:13:53.0709 4864 TermDD - ok
17:13:54.0185 4864 TIEHDUSB (a1124ebc672aa3ae1b327096c1dcc346) C:\Windows\system32\drivers\tiehdusb.sys
17:13:54.0187 4864 TIEHDUSB - ok
17:13:54.0734 4864 TPkd (5815ae5ef8519066f19e575d67f6f191) C:\Windows\system32\drivers\TPkd.sys
17:13:54.0735 4864 TPkd - ok
17:13:54.0979 4864 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:13:54.0980 4864 tssecsrv - ok
17:13:55.0259 4864 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:13:55.0260 4864 tunmp - ok
17:13:55.0447 4864 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
17:13:55.0449 4864 tunnel - ok
17:13:55.0618 4864 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
17:13:55.0620 4864 uagp35 - ok
17:13:55.0965 4864 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
17:13:55.0967 4864 udfs - ok
17:13:56.0171 4864 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
17:13:56.0173 4864 uliagpkx - ok
17:13:56.0291 4864 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
17:13:56.0294 4864 uliahci - ok
17:13:56.0430 4864 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:13:56.0433 4864 UlSata - ok
17:13:56.0585 4864 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:13:56.0587 4864 ulsata2 - ok
17:13:56.0782 4864 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:13:56.0783 4864 umbus - ok
17:13:56.0923 4864 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
17:13:56.0924 4864 usbaudio - ok
17:13:57.0164 4864 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
17:13:57.0167 4864 usbccgp - ok
17:13:57.0389 4864 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:13:57.0391 4864 usbcir - ok
17:13:57.0529 4864 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
17:13:57.0531 4864 usbehci - ok
17:13:57.0634 4864 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
17:13:57.0637 4864 usbhub - ok
17:13:57.0727 4864 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
17:13:57.0728 4864 usbohci - ok
17:13:57.0997 4864 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
17:13:57.0998 4864 usbprint - ok
17:13:58.0235 4864 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:13:58.0237 4864 USBSTOR - ok
17:13:58.0350 4864 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
17:13:58.0351 4864 usbuhci - ok
17:13:58.0618 4864 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
17:13:58.0621 4864 usbvideo - ok
17:13:58.0905 4864 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
17:13:58.0907 4864 vga - ok
17:13:59.0167 4864 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:13:59.0169 4864 VgaSave - ok
17:13:59.0344 4864 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
17:13:59.0346 4864 viaagp - ok
17:13:59.0569 4864 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
17:13:59.0571 4864 ViaC7 - ok
17:13:59.0991 4864 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
17:13:59.0992 4864 viaide - ok
17:14:00.0142 4864 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:14:00.0143 4864 volmgr - ok
17:14:00.0277 4864 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
17:14:00.0281 4864 volmgrx - ok
17:14:00.0502 4864 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
17:14:00.0505 4864 volsnap - ok
17:14:00.0715 4864 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
17:14:00.0717 4864 vsmraid - ok
17:14:01.0070 4864 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:14:01.0072 4864 WacomPen - ok
17:14:01.0194 4864 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:14:01.0197 4864 Wanarp - ok
17:14:01.0283 4864 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:14:01.0286 4864 Wanarpv6 - ok
17:14:02.0486 4864 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
17:14:02.0488 4864 Wd - ok
17:14:03.0076 4864 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
17:14:03.0081 4864 Wdf01000 - ok
17:14:03.0395 4864 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
17:14:03.0401 4864 winachsf - ok
17:14:03.0859 4864 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
17:14:03.0860 4864 WinUSB - ok
17:14:04.0087 4864 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:14:04.0089 4864 WmiAcpi - ok
17:14:04.0294 4864 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
17:14:04.0296 4864 WpdUsb - ok
17:14:04.0466 4864 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:14:04.0468 4864 ws2ifsl - ok
17:14:04.0719 4864 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
17:14:04.0721 4864 WudfPf - ok
17:14:05.0118 4864 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:14:05.0121 4864 WUDFRd - ok
17:14:05.0355 4864 YMIDUSBW (57bdc2ab62167b88e08faf1a5ed575ba) C:\Windows\system32\drivers\ymidusbw.sys
17:14:05.0357 4864 YMIDUSBW - ok
17:14:05.0389 4864 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
17:14:05.0549 4864 \Device\Harddisk0\DR0 - ok
17:14:05.0592 4864 Boot (0x1200) (f11c5d3254e85e61404a7f1f3af34445) \Device\Harddisk0\DR0\Partition0
17:14:05.0644 4864 \Device\Harddisk0\DR0\Partition0 - ok
17:14:05.0670 4864 Boot (0x1200) (7f0c69180c0ef82af5cb0e1fa742e962) \Device\Harddisk0\DR0\Partition1
17:14:05.0779 4864 \Device\Harddisk0\DR0\Partition1 - ok
17:14:05.0780 4864 ============================================================
17:14:05.0781 4864 Scan finished
17:14:05.0781 4864 ============================================================
17:14:05.0797 4212 Detected object count: 0
17:14:05.0797 4212 Actual detected object count: 0

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 13th December 2011, 5:18 am

bump.

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 13th December 2011, 6:44 pm

Okay so I found an Extension on my firefox called InternetSearch 1.0. It said the home page was startsearcher.com (the exact same website that is forced as my homepage). I disabled the extension, but there is no option to remove it. How do I remove this extension? I think this is what is causing the problems. After having disabled it, the homepage has returned.

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by Belahzur on 14th December 2011, 10:25 pm

Hello.
Lets see if we can remove it.

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    Code:

    :OTL
    FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{fe091d01-1668-48f4-8f27-244dc71f6a76}: C:\Program Files\SSearch\InternetSearch [2011/11/30 16:53:45 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{fe091d01-1668-48f4-8f27-244dc71f6a76}: C:\Program Files\SSearch\InternetSearch [2011/11/30 16:53:45 | 000,000,000 | ---D | M]
    FF - prefs.js..browser.search.defaultenginename: "Internet Search"
    FF - prefs.js..browser.search.defaultthis.engineName: "Internet Search"
    FF - prefs.js..browser.search.defaulturl: "http://www.startsearcher.com/?q="
    FF - prefs.js..browser.startup.homepage: "http://www.startsearcher.com"
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=81&bd=Pavilion&pf=laptop
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.startsearcher.com
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.startsearcher.com
    [2011/11/30 16:53:45 | 000,000,000 | ---D | M] (InternetSearch) -- C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH

    :files
    C:\PROGRAM FILES\SSEARCH

  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 16th December 2011, 4:23 am

========== OTL ==========
File HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{fe091d01-1668-48f4-8f27-244dc71f6a76}: C:\Program Files\SSearch\InternetSearch not found.
File HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{fe091d01-1668-48f4-8f27-244dc71f6a76}: C:\Program Files\SSearch\InternetSearch not found.
Prefs.js: "Internet Search" removed from browser.search.defaultenginename
Prefs.js: "Internet Search" removed from browser.search.defaultthis.engineName
Prefs.js: "http://www.startsearcher.com/?q=" removed from browser.search.defaulturl
Prefs.js: "http://www.startsearcher.com" removed from browser.startup.homepage
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache| /E : value set successfully!
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH\skin folder moved successfully.
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH\locale\en-US folder moved successfully.
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH\locale folder moved successfully.
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH\defaults\preferences folder moved successfully.
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH\defaults folder moved successfully.
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH\content folder moved successfully.
C:\PROGRAM FILES\SSEARCH\INTERNETSEARCH folder moved successfully.
========== FILES ==========
C:\PROGRAM FILES\SSearch folder moved successfully.

OTL by OldTimer - Version 3.2.31.0 log created on 12152011_202208

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by life4blood on 16th December 2011, 4:26 am

The internet searcher 1.0 extension is gone. I think it worked. Though I'll wait for your confirmation before I celebrate. =p

life4blood
Novice
Novice

Posts Posts : 27
Joined Joined : 2010-01-03
OS OS : Windows Vista
Points Points : 25636
# Likes # Likes : 0

View user profile

Back to top Go down

Re: startsearcher removal help

Post by Belahzur on 17th December 2011, 10:47 pm

It looks gone.

Browse around for a day or two, lemme know what happens.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum