WiredWX Christian Hobby Weather Tools
Would you like to react to this message? Create an account in a few clicks or log in to continue.

WiredWX Christian Hobby Weather ToolsLog in

 


How to get rid of antivirus soft?

2 posters

descriptionHow to get rid of antivirus soft? EmptyHow to get rid of antivirus soft?18th February 2010, 5:47 pm

more_horiz
Hey i had antivirus soft on my computer once before some time last year and used this link to get rid of it; http://www.GeekPolice.net/malware-removal-guides-f12/how-to-remove-antivirus-soft-removal-guide-t18839-45.htm#124486 and it worked but i have it again and i tried that once more and it didn't work could you give me any help on what to do as it's really annoying me. Many thanks Smile...

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?18th February 2010, 7:46 pm

more_horiz
Download OTL by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
How to get rid of antivirus soft? DXwU4
How to get rid of antivirus soft? VvYDg

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 8:08 pm

more_horiz
OTL. Txt = OTL logfile created on: 19/02/2010 19:57:26 - Run 1
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Users\Matthew\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

1,012.00 Mb Total Physical Memory | 536.00 Mb Available Physical Memory | 53.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 55.12 Gb Free Space | 24.74% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 6.23 Gb Free Space | 62.30% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MATTHEW-PC
Current User Name: Matthew
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/02/19 19:56:58 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\Matthew\Downloads\OTL(2).exe
PRC - [2010/01/07 23:32:50 | 000,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/01/02 06:40:20 | 000,638,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009/04/11 06:28:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2009/04/11 06:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/19 10:42:02 | 000,884,360 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2009/01/08 20:30:26 | 000,797,864 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe
PRC - [2009/01/08 20:30:26 | 000,645,328 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2008/01/19 07:33:39 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe


========== Modules (SafeList) ==========

MOD - [2010/02/19 19:56:58 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\Matthew\Downloads\OTL(2).exe
MOD - [2009/04/11 06:21:38 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2010/01/30 02:39:38 | 002,431,024 | ---- | M] () [Auto | Stopped] -- c:\Program Files\Common Files\Akamai\rswin_3647.dll -- (Akamai)
SRV - [2009/11/12 16:33:00 | 000,545,568 | ---- | M] (Apple Inc.) [On_Demand | Stopped] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/29 18:22:36 | 000,133,104 | ---- | M] (Google Inc.) [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1ca58c4e95acf2d) Google Update Service (gupdate1ca58c4e95acf2d)
SRV - [2009/09/25 01:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/08/05 21:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009/05/19 10:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009/04/27 22:28:29 | 000,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009/04/01 13:21:30 | 000,365,072 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2009/03/25 10:05:48 | 000,144,704 | ---- | M] (McAfee, Inc.) [Unknown | Stopped] -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield)
SRV - [2009/03/23 23:03:18 | 000,606,736 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon)
SRV - [2009/03/19 10:42:02 | 000,884,360 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - [2009/01/09 11:31:16 | 002,482,848 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2009/01/09 09:22:10 | 000,026,640 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\McAfee\MSK\MskSrver.exe -- (MSK80Service)
SRV - [2009/01/09 08:06:52 | 000,359,952 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009/01/08 20:30:26 | 000,797,864 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc)
SRV - [2008/12/12 11:17:38 | 000,238,888 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/11/04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008/10/25 10:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2008/08/13 17:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/03/25 20:27:36 | 000,135,168 | ---- | M] (Hewlett-Packard Co.) [Auto | Stopped] -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2008/03/25 19:38:24 | 000,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Stopped] -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2008/01/19 07:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/11/23 23:31:59 | 001,838,592 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager)
SRV - [2007/06/29 19:16:56 | 000,800,040 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2007/06/27 19:04:00 | 000,279,848 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007/03/19 12:44:44 | 000,070,656 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2006/11/05 11:15:12 | 000,880,640 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9)
SRV - [2006/11/05 11:13:00 | 000,159,744 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe -- (RoxWatch9)
SRV - [2006/11/02 12:35:29 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\ehome\ehstart.dll -- (ehstart)
SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/09/14 14:54:34 | 000,073,728 | ---- | M] (MicroVision Development, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2005/04/03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2009/11/09 11:20:12 | 000,207,792 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\PCTCore.sys -- (PCTCore)
DRV - [2009/08/27 08:53:18 | 000,027,488 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BthAvrcp.sys -- (BthAvrcp)
DRV - [2009/08/05 21:48:42 | 000,054,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fssfltr.sys -- (fssfltr)
DRV - [2009/05/18 14:17:00 | 000,026,600 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/04/11 04:45:24 | 000,113,664 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\rmcast.sys -- (RMCAST) RMCAST (Pgm)
DRV - [2009/04/11 04:42:54 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2009/03/25 10:06:30 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009/03/25 10:06:28 | 000,214,024 | ---- | M] (McAfee, Inc.) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2009/03/25 10:06:28 | 000,079,880 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2009/03/25 10:06:28 | 000,035,272 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2009/03/25 10:05:54 | 000,034,216 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2008/12/20 14:42:44 | 000,047,360 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pcouffin.sys -- (pcouffin)
DRV - [2008/10/23 13:08:54 | 000,130,424 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\Mpfp.sys -- (MPFP)
DRV - [2008/01/02 16:48:28 | 002,016,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2007/11/24 07:03:31 | 000,020,152 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2007/11/24 07:03:31 | 000,019,128 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2007/11/24 07:03:31 | 000,017,592 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2007/05/11 13:26:46 | 001,773,536 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/04/29 08:42:24 | 000,228,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
DRV - [2007/04/26 10:41:38 | 000,304,920 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastor.sys -- (iaStor)
DRV - [2007/04/03 13:59:42 | 000,099,080 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s616unic.sys -- (s616unic) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (WDM)
DRV - [2007/04/03 13:59:42 | 000,023,176 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s616nd5.sys -- (s616nd5) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (NDIS)
DRV - [2007/04/03 13:59:40 | 000,100,360 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s616mgmt.sys -- (s616mgmt) Sony Ericsson Device 616 USB WMC Device Management Drivers (WDM)
DRV - [2007/04/03 13:59:38 | 000,108,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s616mdm.sys -- (s616mdm)
DRV - [2007/04/03 13:59:36 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s616mdfl.sys -- (s616mdfl)
DRV - [2007/04/03 13:59:30 | 000,083,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s616bus.sys -- (s616bus) Sony Ericsson Device 616 driver (WDM)
DRV - [2007/02/25 12:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2006/11/02 09:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 09:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 09:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 09:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 09:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 09:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 09:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 09:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 09:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 09:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 09:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 09:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 09:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 09:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 09:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 09:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 09:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 09:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 09:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 09:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 09:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 09:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 09:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 09:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 09:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 09:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 09:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 09:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 09:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 09:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 09:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 09:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 08:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 08:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 08:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 08:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 08:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 08:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 07:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 07:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006/11/02 07:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006/11/02 07:30:53 | 000,464,384 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2006/11/02 06:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2006/10/05 17:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/07/24 03:00:00 | 000,036,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2002/07/19 08:10:20 | 000,006,656 | ---- | M] (Sonic Solutions) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\cinemsup.sys -- (Cinemsup)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {930f1200-f5f1-4870-bac6-e233ec8e7023} - C:\Program Files\Softonic_English\tbSof0.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E5 EF 7F 42 17 A8 CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKCU\..\URLSearchHook: {930f1200-f5f1-4870-bac6-e233ec8e7023} - C:\Program Files\Softonic_English\tbSof0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Live Search"
FF - prefs.js..browser.search.defaulturl: "http://search.live.com/results.aspx?FORM=IEFM1&q="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?FORM=IEFM1&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/01/07 23:33:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/01/07 23:33:04 | 000,000,000 | ---D | M]

[2008/12/12 23:19:20 | 000,000,000 | ---D | M] -- C:\Users\Matthew\AppData\Roaming\Mozilla\Extensions
[2010/02/17 23:17:13 | 000,000,000 | ---D | M] -- C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\sg28w9k9.default\extensions
[2009/03/17 12:23:16 | 000,001,632 | ---- | M] () -- C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\sg28w9k9.default\searchplugins\live-search.xml
[2009/02/15 17:24:33 | 000,002,119 | ---- | M] () -- C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\sg28w9k9.default\searchplugins\MyStart Search.xml
[2008/12/12 23:18:56 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2008/09/04 00:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
[2010/01/07 23:32:58 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010/01/07 23:32:58 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2010/01/07 23:32:59 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2010/01/07 23:32:59 | 000,000,831 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2006/09/18 21:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (TBSB01496 Class) - {71E7B3A4-90E7-4F16-A4F4-927239D47555} - C:\Program Files\IEToolbar\IGF_Currency_Converter_Toolbar\tbu02627\toolbar.dll ()
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (Softonic English Toolbar) - {930f1200-f5f1-4870-bac6-e233ec8e7023} - C:\Program Files\Softonic_English\tbSof0.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (MSN Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (Internet Service) - {144A6B24-0EBC-4D89-BF09-A06A718E57B5} - C:\Program Files\Applications\iebr.dll File not found
O3 - HKLM\..\Toolbar: (MSN Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (IGF Currency Converter Toolbar) - {6AC53803-76F5-4F2A-9F22-20310438BCA7} - C:\Program Files\IEToolbar\IGF_Currency_Converter_Toolbar\tbu02627\toolbar.dll ()
O3 - HKLM\..\Toolbar: (Softonic English Toolbar) - {930f1200-f5f1-4870-bac6-e233ec8e7023} - C:\Program Files\Softonic_English\tbSof0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Internet Service) - {144A6B24-0EBC-4D89-BF09-A06A718E57B5} - C:\Program Files\Applications\iebr.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (IGF Currency Converter Toolbar) - {6AC53803-76F5-4F2A-9F22-20310438BCA7} - C:\Program Files\IEToolbar\IGF_Currency_Converter_Toolbar\tbu02627\toolbar.dll ()
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [ECenter] C:\DELL\E-Center\EULALauncher.exe ( )
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HiYo] C:\Program Files\HiYo\bin\HiYo.exe (IncrediMail, Ltd.)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [ISTray] C:\Program Files\Spyware Doctor\pctsTray.exe (PC Tools)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MediaBarFileManager] C:\Program Files\On Demand Distribution\OD2 Music Manager\OD2MediaBar_VistaFileManager.exe ()
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Users\Matthew\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKCU..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe File not found
O4 - HKCU..\Run: [ocrvbyka] C:\Users\Matthew\AppData\Local\ymfoof\qncysftav.exe ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WeatherDPA] C:\Program Files\Zango\bin\10.3.75.0\Weather.exe File not found
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Open using &Advanced JPEG Compressor - C:\Program Files\Advanced JPEG Compressor\ajcieex.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: 3 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb Reg Error: Invalid data type. - Reg Error: Key error. File not found
O18 - Protocol\Handler\https\oledb Reg Error: Invalid data type. - Reg Error: Key error. File not found
O18 - Protocol\Handler\msdaipp\oledb Reg Error: Invalid data type. - Reg Error: Key error. File not found
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\Matthew\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Matthew\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 21:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/02/17 21:49:29 | 000,000,000 | ---D | C] -- C:\Users\Matthew\AppData\Local\ymfoof
[2010/02/10 14:50:08 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010/02/10 14:50:06 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010/02/10 14:50:06 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010/02/10 14:50:05 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010/02/10 14:46:58 | 003,600,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010/02/10 14:46:58 | 003,548,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010/01/21 19:41:50 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010/01/21 19:41:49 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010/01/21 19:41:49 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010/01/21 19:41:48 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010/01/21 19:41:48 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010/01/21 19:41:48 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010/01/21 19:41:47 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010/01/21 19:41:47 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010/01/21 19:41:47 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010/01/21 19:41:46 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010/01/21 19:41:46 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010/01/21 19:41:46 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010/01/21 19:41:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010/01/21 19:41:45 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2008/12/20 14:42:44 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Matthew\AppData\Roaming\pcouffin.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/02/19 19:55:45 | 000,021,339 | ---- | M] () -- C:\Windows\System32\Config.MPF
[2010/02/19 19:55:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/02/19 01:11:51 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/02/19 01:11:51 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/02/19 01:11:40 | 000,002,140 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2010/02/19 01:11:32 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/02/19 01:10:56 | 003,407,872 | -HS- | M] () -- C:\Users\Matthew\ntuser.dat
[2010/02/19 01:10:55 | 000,065,536 | -HS- | M] () -- C:\Users\Matthew\ntuser.dat{c0353104-1079-11de-aef4-001aa09a4cd3}.TM.blf
[2010/02/19 01:10:54 | 000,524,288 | -HS- | M] () -- C:\Users\Matthew\ntuser.dat{c0353104-1079-11de-aef4-001aa09a4cd3}.TMContainer00000000000000000001.regtrans-ms
[2010/02/19 01:09:07 | 001,933,472 | -H-- | M] () -- C:\Users\Matthew\AppData\Local\IconCache.db
[2010/02/19 01:07:00 | 000,000,426 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C1D6F2DC-316D-4176-B24C-909A8FC678CD}.job
[2010/02/19 00:48:02 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/02/18 21:48:01 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/02/18 17:26:12 | 000,000,216 | ---- | M] () -- C:\Windows\tasks\PAV.job
[2010/02/17 18:32:10 | 000,141,824 | ---- | M] () -- C:\Users\Matthew\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/02/12 18:08:53 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/02/12 18:04:58 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2010/02/08 15:40:16 | 000,000,562 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Matthew.job
[2010/02/01 01:00:00 | 000,000,348 | ---- | M] () -- C:\Windows\tasks\McQcTask.job
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/02/12 18:08:53 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2009/09/24 15:26:42 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2008/12/29 15:20:50 | 000,001,703 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008/12/21 16:24:08 | 000,000,216 | ---- | C] () -- C:\Windows\Ulead32.ini
[2008/12/20 14:45:09 | 000,000,034 | ---- | C] () -- C:\Users\Matthew\AppData\Roaming\pcouffin.log
[2008/12/20 14:42:44 | 000,087,608 | ---- | C] () -- C:\Users\Matthew\AppData\Roaming\inst.exe
[2008/12/20 14:42:44 | 000,007,887 | ---- | C] () -- C:\Users\Matthew\AppData\Roaming\pcouffin.cat
[2008/12/20 14:42:44 | 000,001,144 | ---- | C] () -- C:\Users\Matthew\AppData\Roaming\pcouffin.inf
[2008/11/30 15:14:38 | 000,000,000 | ---- | C] () -- C:\Windows\Irremote.ini
[2008/11/30 14:24:46 | 000,000,120 | ---- | C] () -- C:\Users\Matthew\AppData\Roaming\FixVTS.ini
[2008/11/28 21:31:17 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/11/21 21:47:52 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/10/18 13:52:46 | 000,001,356 | ---- | C] () -- C:\Users\Matthew\AppData\Local\d3d9caps.dat
[2008/06/12 16:15:17 | 000,000,197 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2008/04/26 20:37:17 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/02/24 16:29:48 | 000,056,320 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll
[2008/01/18 15:17:48 | 000,000,552 | ---- | C] () -- C:\Users\Matthew\AppData\Local\d3d8caps.dat
[2008/01/02 16:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/01/02 16:47:22 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/01/02 16:47:22 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/01/02 15:31:56 | 000,319,488 | R--- | C] () -- C:\Users\Matthew\AppData\Roaming\MafiaSetup.exe
[2007/12/04 19:51:05 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/12/02 17:29:35 | 000,141,824 | ---- | C] () -- C:\Users\Matthew\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/12/02 17:26:02 | 000,000,000 | ---- | C] () -- C:\Users\Matthew\AppData\Roaming\wklnhst.dat
[2007/11/24 07:04:03 | 001,238,832 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2007/11/24 07:04:03 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1322.dll
[2007/11/24 07:04:03 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2007/11/24 07:04:00 | 000,876,544 | ---- | C] () -- C:\Windows\System32\TEACico2.dll
[2006/11/07 19:25:58 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006/11/02 12:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 10:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 07:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/09/16 23:36:50 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/09/16 23:36:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[1999/09/20 10:05:32 | 000,013,387 | ---- | C] () -- C:\Windows\System32\CinemSup.sys
[1999/01/22 10:46:58 | 000,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL

========== Files - Unicode (All) ==========
[2009/09/24 15:26:58 | 000,122,368 | R--- | C] (SskBDjOJDiMO)(C:\Users\Matthew\AppData\Roaming\???) -- C:\Users\Matthew\AppData\Roaming\뺙猚
[2009/04/11 06:27:49 | 000,122,368 | R--- | M] (SskBDjOJDiMO)(C:\Users\Matthew\AppData\Roaming\???) -- C:\Users\Matthew\AppData\Roaming\뺙猚

========== Alternate Data Streams ==========

@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\Unzipped:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\Templates:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\My Games:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\Music:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\GTA3 User Files:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0092.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0091.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0090.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0089.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0088.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0087.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0086.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0085.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0084.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0083.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0082.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0081.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0080.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0079.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0078.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0077.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0076.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0075.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0074.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0072.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0071.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0070.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0069.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0068.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0067.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0066.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0065.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0064.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0063.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0062.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0061.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0060.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0059.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0058.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0057.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0056.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0055.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0054.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0053.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0052.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0050.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0049.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0048.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0047.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0045.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0044.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0043.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0042.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0041.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\DSCI0040.JPG:Roxio EMC Stream
@Alternate Data Stream - 76 bytes -> C:\Users\Matthew\Documents\Downloads:Roxio EMC Stream
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:DFC5A2B2
< End of report >

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 8:11 pm

more_horiz
Extras.Txt = OTL Extras logfile created on: 19/02/2010 19:57:26 - Run 1
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Users\Matthew\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

1,012.00 Mb Total Physical Memory | 536.00 Mb Available Physical Memory | 53.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 55.12 Gb Free Space | 24.74% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 6.23 Gb Free Space | 62.30% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MATTHEW-PC
Current User Name: Matthew
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1844122636-1837332139-1717999322-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 2

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0022B1DD-E8BB-4951-9A5D-B76514F64EA5}" = lport=57960 | protocol=6 | dir=in | name=akamai netsession interface |
"{0051A832-7C1D-4895-B6F4-1CD72184B74B}" = lport=54746 | protocol=6 | dir=in | name=akamai netsession interface |
"{01475DDB-054D-42CE-8510-61F566245534}" = lport=53414 | protocol=6 | dir=in | name=akamai netsession interface |
"{01680E83-496B-4B7F-8B9D-9419CF49404B}" = lport=49233 | protocol=6 | dir=in | name=akamai netsession interface |
"{05F6134D-90DD-4D91-963A-24D2D7CF1B95}" = lport=54932 | protocol=6 | dir=in | name=akamai netsession interface |
"{0677E4BC-C423-4A20-9C12-17F4DD115B00}" = lport=49723 | protocol=6 | dir=in | name=akamai netsession interface |
"{06B26DA2-041F-49B7-87E4-94075F10E6BE}" = lport=50681 | protocol=6 | dir=in | name=akamai netsession interface |
"{06BEE1CA-DD68-47F4-92AD-C4677F838C35}" = lport=52542 | protocol=6 | dir=in | name=akamai netsession interface |
"{0731E8FF-5CD3-44DC-8765-D0B5FAA7B105}" = lport=56038 | protocol=6 | dir=in | name=akamai netsession interface |
"{087D91EB-5C1D-4424-931B-D14FAFE88E3C}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{0892D5D7-626F-4907-A526-F46364046A9F}" = lport=49994 | protocol=6 | dir=in | name=akamai netsession interface |
"{0923D1B0-9959-45E9-82DF-849F5325597A}" = lport=54991 | protocol=6 | dir=in | name=akamai netsession interface |
"{092CECB3-074B-4ED8-8DC3-07403693DDCF}" = lport=54875 | protocol=6 | dir=in | name=akamai netsession interface |
"{0996310B-355A-452F-B537-3BD538350FB4}" = lport=53213 | protocol=6 | dir=in | name=akamai netsession interface |
"{0A25A5D2-91B8-476C-96DC-2AC17B7AB5DE}" = lport=49398 | protocol=6 | dir=in | name=akamai netsession interface |
"{0AA528FB-8E2B-4CF6-8DBE-B9ECE5337983}" = lport=57459 | protocol=6 | dir=in | name=akamai netsession interface |
"{0AB45D04-C43E-4B08-B1C5-9450CD6C6BE3}" = lport=51451 | protocol=6 | dir=in | name=akamai netsession interface |
"{0B6E07F6-C1E9-4C3B-837A-9E91309888EE}" = lport=52239 | protocol=6 | dir=in | name=akamai netsession interface |
"{0C9C2BA6-F04A-4EE4-8AF1-4A83FF98BA26}" = lport=50926 | protocol=6 | dir=in | name=akamai netsession interface |
"{0DC75825-3ECE-4F7C-BFD1-53C40D7D9644}" = lport=49252 | protocol=6 | dir=in | name=akamai netsession interface |
"{0E4F6900-BBE1-4721-92E1-9642C82BFA69}" = lport=50558 | protocol=6 | dir=in | name=akamai netsession interface |
"{0F8A9684-8C48-4D45-A584-7FAB3391CC2F}" = lport=49679 | protocol=6 | dir=in | name=akamai netsession interface |
"{11DD7908-31BA-4038-BB9F-222950DF0936}" = lport=51724 | protocol=6 | dir=in | name=akamai netsession interface |
"{12274963-D725-436F-8400-6C27FCA5F2B8}" = lport=49666 | protocol=6 | dir=in | name=akamai netsession interface |
"{124E16BD-76F8-467C-B999-BA9A4940EA3E}" = lport=52766 | protocol=6 | dir=in | name=akamai netsession interface |
"{12862CE2-9F74-469C-88AF-FB1FF2B7EA29}" = lport=49945 | protocol=6 | dir=in | name=akamai netsession interface |
"{12A2ECD7-F797-489C-8E12-2598E9844724}" = lport=50020 | protocol=6 | dir=in | name=akamai netsession interface |
"{1373ED07-93BD-4F6B-AC73-1B82FA711C30}" = lport=50990 | protocol=6 | dir=in | name=akamai netsession interface |
"{13819744-3D4D-4B34-9CF9-24D26869BA38}" = lport=50466 | protocol=6 | dir=in | name=akamai netsession interface |
"{13D30C74-DC74-49A0-8C4B-096E2FC82AA6}" = lport=52039 | protocol=6 | dir=in | name=akamai netsession interface |
"{14C1FBFD-0591-4230-B352-556223BE8B48}" = lport=49824 | protocol=6 | dir=in | name=akamai netsession interface |
"{15A90606-7EA9-4B51-A36E-CF5AEDF8ECC0}" = lport=51909 | protocol=6 | dir=in | name=akamai netsession interface |
"{1620786B-9598-4C28-9138-B2D4026126B9}" = lport=51768 | protocol=6 | dir=in | name=akamai netsession interface |
"{16A46518-1FC3-4989-880D-0790A2A74CA4}" = lport=50516 | protocol=6 | dir=in | name=akamai netsession interface |
"{16A83D57-F8EA-42EC-A8C9-648E6A30213E}" = lport=51218 | protocol=6 | dir=in | name=akamai netsession interface |
"{174B0514-303E-4AC0-AFF5-27821AAFE228}" = lport=49194 | protocol=6 | dir=in | name=akamai netsession interface |
"{17B705E3-00A1-45A9-A14E-4EA1B09FCEB6}" = lport=52222 | protocol=6 | dir=in | name=akamai netsession interface |
"{1851B332-BF24-43AC-8E3A-0B03597F2517}" = lport=51921 | protocol=6 | dir=in | name=akamai netsession interface |
"{189C016D-50B9-4949-A412-8590441959E9}" = lport=51816 | protocol=6 | dir=in | name=akamai netsession interface |
"{19598928-0500-4C83-9FF9-3E7F620A6BF7}" = lport=55355 | protocol=6 | dir=in | name=akamai netsession interface |
"{19AA892F-DFC8-45A9-8843-15165BF02609}" = lport=53029 | protocol=6 | dir=in | name=akamai netsession interface |
"{1BA8F5EC-055B-4E5C-964A-70B151DCD881}" = lport=50463 | protocol=6 | dir=in | name=akamai netsession interface |
"{1BAA4447-A00C-4613-A017-01FDD2385134}" = lport=54648 | protocol=6 | dir=in | name=akamai netsession interface |
"{1BF134A9-9F1D-4FB2-B2F7-DE9F71E35D03}" = lport=51954 | protocol=6 | dir=in | name=akamai netsession interface |
"{1BF24809-48ED-4390-A390-E07C27D49B26}" = lport=49912 | protocol=6 | dir=in | name=akamai netsession interface |
"{1D12D0DE-F397-4606-B29A-52A5CA033DC8}" = lport=54234 | protocol=6 | dir=in | name=akamai netsession interface |
"{1D45321F-6B85-4CC5-9699-C2F7ADE46F7F}" = lport=51249 | protocol=6 | dir=in | name=akamai netsession interface |
"{1D4B4076-7113-4935-806A-2F82130D61D7}" = lport=49165 | protocol=6 | dir=in | name=akamai netsession interface |
"{1E9B7DB6-4348-463C-9A38-00D6DBF311D9}" = lport=50291 | protocol=6 | dir=in | name=akamai netsession interface |
"{1FCCF457-7507-4CC5-90A8-C129306D800F}" = lport=52105 | protocol=6 | dir=in | name=akamai netsession interface |
"{20DD3B78-2E25-4656-BA5E-4DE23BC76315}" = lport=50197 | protocol=6 | dir=in | name=akamai netsession interface |
"{21467D7C-62D4-43E0-BEFF-8FBAE4280D3D}" = lport=49577 | protocol=6 | dir=in | name=akamai netsession interface |
"{218C7777-5595-4437-8E03-A373CE5460A5}" = lport=50039 | protocol=6 | dir=in | name=akamai netsession interface |
"{23E58A9A-62BC-4555-8C01-34FCC833C0B9}" = lport=53826 | protocol=6 | dir=in | name=akamai netsession interface |
"{249F9D66-0EE1-48FF-B549-82C1331C98AF}" = lport=54409 | protocol=6 | dir=in | name=akamai netsession interface |
"{24DE5C32-4E25-4678-B6C9-DD0A976AD789}" = lport=53782 | protocol=6 | dir=in | name=akamai netsession interface |
"{253F554C-8865-4E19-A977-CB709ECFF92B}" = lport=50136 | protocol=6 | dir=in | name=akamai netsession interface |
"{2658EFE8-BD3A-4819-AA03-F630A098A2E9}" = lport=50892 | protocol=6 | dir=in | name=akamai netsession interface |
"{2704BB36-67CA-4618-87B2-8374EB6EFDC2}" = lport=53569 | protocol=6 | dir=in | name=akamai netsession interface |
"{27CF4C08-C095-45EA-BB1C-FBC4884DFB58}" = lport=54985 | protocol=6 | dir=in | name=akamai netsession interface |
"{281E00A4-BCF5-4B30-B4D0-F53820400D84}" = lport=49166 | protocol=6 | dir=in | name=akamai netsession interface |
"{2878F6B6-2301-4789-B028-7BEA0438E445}" = lport=51190 | protocol=6 | dir=in | name=akamai netsession interface |
"{29CE9B89-2CA3-4FDC-AADA-7D663A65088D}" = lport=51879 | protocol=6 | dir=in | name=akamai netsession interface |
"{2A7C0058-D4BD-4250-8237-EB4ED357CC35}" = lport=51316 | protocol=6 | dir=in | name=akamai netsession interface |
"{2D0E22C2-65DF-4191-B958-C6460BC7DE6D}" = lport=49185 | protocol=6 | dir=in | name=akamai netsession interface |
"{2D371A72-CB0C-4223-ACD4-5F152514232C}" = lport=51507 | protocol=6 | dir=in | name=akamai netsession interface |
"{2E0B6D8A-2B78-4F16-96D6-A77FEC514B3F}" = lport=50581 | protocol=6 | dir=in | name=akamai netsession interface |
"{2E791799-4C86-4A5C-968C-A8E4082BC2FF}" = lport=51054 | protocol=6 | dir=in | name=akamai netsession interface |
"{2FCF8BDD-BCA3-46D7-864C-0066681F0D74}" = lport=60834 | protocol=6 | dir=in | name=akamai netsession interface |
"{30A9AF52-A0F2-4FA0-94E0-4833E0C87666}" = lport=50232 | protocol=6 | dir=in | name=akamai netsession interface |
"{30D89444-872F-44B4-9952-CD0BE7404F04}" = lport=49162 | protocol=6 | dir=in | name=akamai netsession interface |
"{31A7BE5C-6C54-4BC7-B026-E12296A87964}" = lport=50523 | protocol=6 | dir=in | name=akamai netsession interface |
"{31AFBAC1-BE9B-441B-B220-9F59AEB1DA43}" = lport=51521 | protocol=6 | dir=in | name=akamai netsession interface |
"{326BB247-9D5A-4004-B986-BF5F3E6ED897}" = lport=51870 | protocol=6 | dir=in | name=akamai netsession interface |
"{32CB2D29-5725-47DA-8424-0438DE3351A1}" = lport=49494 | protocol=6 | dir=in | name=akamai netsession interface |
"{331674C4-6843-44C9-87DB-97F4809D88BB}" = lport=49999 | protocol=6 | dir=in | name=akamai netsession interface |
"{333DE3B7-3790-4803-9B40-891A5C5B94EC}" = lport=51391 | protocol=6 | dir=in | name=akamai netsession interface |
"{33AE6A9C-9323-44D0-B808-0736ED20BF9A}" = lport=50373 | protocol=6 | dir=in | name=akamai netsession interface |
"{357E3EE7-3A71-410A-8225-A5839BD5CCA8}" = lport=51606 | protocol=6 | dir=in | name=akamai netsession interface |
"{369301FD-9B37-4F1F-B65D-A938068EC83B}" = lport=50859 | protocol=6 | dir=in | name=akamai netsession interface |
"{36D7DD80-3148-42E3-8DC9-58C960918793}" = lport=49161 | protocol=6 | dir=in | name=akamai netsession interface |
"{3726AE98-6E01-4B4F-8F63-D49ED39C5EEF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{37CBC709-D006-473A-AB24-C3115DCFB07C}" = lport=49167 | protocol=6 | dir=in | name=akamai netsession interface |
"{3819D395-F4BD-47C5-BBC2-DCEFCACD9AFF}" = lport=49279 | protocol=6 | dir=in | name=akamai netsession interface |
"{38BF7AA3-97F8-49DD-BCC4-1CF89348E68C}" = lport=54662 | protocol=6 | dir=in | name=akamai netsession interface |
"{39182162-0F8F-4E7E-AD90-3A89780806E3}" = lport=49213 | protocol=6 | dir=in | name=akamai netsession interface |
"{394924A5-67F9-438A-BF01-D6143D11A0FC}" = lport=51638 | protocol=6 | dir=in | name=akamai netsession interface |
"{3CA7CFAD-2A11-40A6-B28C-F80ECE8EC83E}" = lport=49611 | protocol=6 | dir=in | name=akamai netsession interface |
"{3D5DBDD4-7C7F-41F0-A81A-0C7383820F5D}" = lport=50246 | protocol=6 | dir=in | name=akamai netsession interface |
"{3F367BCD-A065-4E44-B2E1-F84927B01830}" = lport=49248 | protocol=6 | dir=in | name=akamai netsession interface |
"{3FE3AD62-6562-4D09-82DA-50419C3ED93E}" = lport=52256 | protocol=6 | dir=in | name=akamai netsession interface |
"{43580097-7AE0-4AE6-B791-912A9A2C7F75}" = lport=49189 | protocol=6 | dir=in | name=akamai netsession interface |
"{435C533D-99BD-41D8-BB5A-D70487478587}" = lport=50651 | protocol=6 | dir=in | name=akamai netsession interface |
"{43F0E0C0-37CC-4277-B56D-849A02DC8393}" = lport=50817 | protocol=6 | dir=in | name=akamai netsession interface |
"{442B6A9F-52FA-4493-9F71-3EFE12C3EE05}" = lport=50250 | protocol=6 | dir=in | name=akamai netsession interface |
"{44DA4551-6CE7-44FF-A101-2BFF5C708BFF}" = lport=51961 | protocol=6 | dir=in | name=akamai netsession interface |
"{45E874D4-AB88-4BDA-9CC5-9E48951F1F79}" = lport=53260 | protocol=6 | dir=in | name=akamai netsession interface |
"{46F552B0-F4A0-4B53-82AA-AD1004E65E8F}" = lport=53202 | protocol=6 | dir=in | name=akamai netsession interface |
"{48328402-A5D5-48D9-B6E4-DD71D9E24A4C}" = lport=49730 | protocol=6 | dir=in | name=akamai netsession interface |
"{4950A01B-8201-43B5-BB8A-167F5E60BB90}" = lport=49690 | protocol=6 | dir=in | name=akamai netsession interface |
"{4A26DF26-9E82-4B9B-A678-D1ED75C8AE3A}" = lport=49657 | protocol=6 | dir=in | name=akamai netsession interface |
"{4BAF0EB6-6D8D-43E0-9072-5C97957508EE}" = lport=50982 | protocol=6 | dir=in | name=akamai netsession interface |
"{4BC5BCC4-0BEA-498F-B3EE-3FD34B2C1E98}" = lport=53409 | protocol=6 | dir=in | name=akamai netsession interface |
"{4BC9653D-2742-43B6-88AF-A6A632F65635}" = lport=51290 | protocol=6 | dir=in | name=akamai netsession interface |
"{4C4C26D7-76BD-4A84-AF7D-2185ADAE1EF6}" = lport=49212 | protocol=6 | dir=in | name=akamai netsession interface |
"{4F60C39C-C709-4C07-9FB6-702B6230285D}" = lport=52263 | protocol=6 | dir=in | name=akamai netsession interface |
"{4F7FCA17-0486-453F-A12D-CDED5E78A452}" = lport=51254 | protocol=6 | dir=in | name=akamai netsession interface |
"{4F8AC47D-5842-408E-A9D7-BEC224C12867}" = lport=51024 | protocol=6 | dir=in | name=akamai netsession interface |
"{4F8C40D5-F96B-4789-95AE-535CF0F5B7B9}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{51D165FB-E60D-4576-9D82-40129CE2719F}" = lport=50068 | protocol=6 | dir=in | name=akamai netsession interface |
"{51E0E366-7534-4F5A-8881-5B42E0A08995}" = lport=49284 | protocol=6 | dir=in | name=akamai netsession interface |
"{524F5B96-76D1-45B2-9764-5B2F8F25FC38}" = lport=49425 | protocol=6 | dir=in | name=akamai netsession interface |
"{52B7FD04-F600-4987-98AD-AE77D03B4405}" = lport=52086 | protocol=6 | dir=in | name=akamai netsession interface |
"{54BB6C8D-A3CF-4539-A183-C80158ECD97F}" = lport=49990 | protocol=6 | dir=in | name=akamai netsession interface |
"{54CE4301-4848-40F5-B02A-0BB6F5E50356}" = lport=49320 | protocol=6 | dir=in | name=akamai netsession interface |
"{554C50C6-A7E5-4E15-AF4C-E557FD41F8A5}" = lport=55381 | protocol=6 | dir=in | name=akamai netsession interface |
"{5634D569-0360-4DA1-BDF6-6E371953560C}" = lport=52133 | protocol=6 | dir=in | name=akamai netsession interface |
"{5718148B-BD26-4D3C-A269-CC1E21F115EC}" = lport=50545 | protocol=6 | dir=in | name=akamai netsession interface |
"{573CA5F0-2761-4A76-8C2D-1E4D56F5453D}" = lport=49806 | protocol=6 | dir=in | name=akamai netsession interface |
"{5799009F-6464-4447-B883-CFB99C44CE24}" = lport=49640 | protocol=6 | dir=in | name=akamai netsession interface |
"{580F3787-66FD-4C83-BE5D-BA92C83B6696}" = lport=49559 | protocol=6 | dir=in | name=akamai netsession interface |
"{585435C5-8079-400B-834E-9E389C3B5CC8}" = lport=52605 | protocol=6 | dir=in | name=akamai netsession interface |
"{58863262-DA27-4E31-8818-BC4EC939C887}" = lport=49349 | protocol=6 | dir=in | name=akamai netsession interface |
"{590FEF60-40FF-416B-8247-861A9AEF3E32}" = lport=52002 | protocol=6 | dir=in | name=akamai netsession interface |
"{594D1B9A-0C40-4504-8B2D-DF7842FE6940}" = lport=50751 | protocol=6 | dir=in | name=akamai netsession interface |
"{5A76A215-34CF-45AE-9876-029A6EE45392}" = lport=50497 | protocol=6 | dir=in | name=akamai netsession interface |
"{5AAE599B-6E6C-4622-9113-57B29D103799}" = lport=50953 | protocol=6 | dir=in | name=akamai netsession interface |
"{5ACD35C6-3C88-49E6-8A84-CE4CA348DD7E}" = lport=50526 | protocol=6 | dir=in | name=akamai netsession interface |
"{5C6E2C25-3D3D-453F-A5CF-9CC48F845C81}" = lport=49229 | protocol=6 | dir=in | name=akamai netsession interface |
"{5CF9F9B1-96CE-4E97-B603-221882E8E79E}" = lport=49809 | protocol=6 | dir=in | name=akamai netsession interface |
"{5D267976-A078-48F4-8968-F8E57B58816F}" = lport=49202 | protocol=6 | dir=in | name=akamai netsession interface |
"{5DD00ECF-E217-4026-A6C9-FD9816FEE12F}" = lport=51456 | protocol=6 | dir=in | name=akamai netsession interface |
"{5DD30EE7-2C93-4C6B-AFAC-204953CD1813}" = lport=51842 | protocol=6 | dir=in | name=akamai netsession interface |
"{602F4F81-07F4-4778-9EE0-6A456EF47C69}" = lport=50554 | protocol=6 | dir=in | name=akamai netsession interface |
"{61258604-BF23-4997-92A9-E6A7E1572E27}" = lport=49897 | protocol=6 | dir=in | name=akamai netsession interface |
"{6138CEED-2337-4407-928B-8DD6B975278D}" = lport=55985 | protocol=6 | dir=in | name=akamai netsession interface |
"{61569B10-67E7-4478-8CB5-F4962079A3BE}" = lport=51951 | protocol=6 | dir=in | name=akamai netsession interface |
"{6265A830-566F-40CA-AAAD-029C997105F4}" = lport=51470 | protocol=6 | dir=in | name=akamai netsession interface |
"{62891090-A27E-432D-B773-B2575ED770E2}" = lport=50556 | protocol=6 | dir=in | name=akamai netsession interface |
"{62A510B0-6284-4E77-84BD-129C9994D658}" = lport=55742 | protocol=6 | dir=in | name=akamai netsession interface |
"{62C1806A-A4D7-4B2F-92F3-F2481949B0FA}" = lport=49608 | protocol=6 | dir=in | name=akamai netsession interface |
"{62EDEA8C-4881-4D93-8A4B-5ABA3491D58E}" = lport=53535 | protocol=6 | dir=in | name=akamai netsession interface |
"{638DE2C2-2FA4-473E-98B6-17A960B2B687}" = lport=52736 | protocol=6 | dir=in | name=akamai netsession interface |
"{64649B9B-D653-4698-96C6-30FE769C080E}" = lport=49448 | protocol=6 | dir=in | name=akamai netsession interface |
"{670CBA2C-333D-41BA-8676-85B234D8B4CF}" = lport=56092 | protocol=6 | dir=in | name=akamai netsession interface |
"{6715F550-4D7F-4F51-BBDA-2311AF852D54}" = lport=50171 | protocol=6 | dir=in | name=akamai netsession interface |
"{687890C8-17C6-4C11-A6BA-6B70E66D9018}" = lport=49489 | protocol=6 | dir=in | name=akamai netsession interface |
"{695CC578-C802-4A4B-9180-75031D3D0BDC}" = lport=50552 | protocol=6 | dir=in | name=akamai netsession interface |
"{6CCA84B6-8851-4392-A392-4259A2BDCC64}" = lport=51906 | protocol=6 | dir=in | name=akamai netsession interface |
"{6E191B10-D9C4-4FC4-ADDD-E35A64586E4A}" = lport=53421 | protocol=6 | dir=in | name=akamai netsession interface |
"{6F105796-478B-415F-9852-D238313A84D2}" = lport=49572 | protocol=6 | dir=in | name=akamai netsession interface |
"{6F14B8CE-AF45-4B6C-8E67-B455C3FDBD9B}" = lport=50652 | protocol=6 | dir=in | name=akamai netsession interface |
"{705FB81F-B4BD-410D-A3DC-B202CB8B5F04}" = lport=50921 | protocol=6 | dir=in | name=akamai netsession interface |
"{7078C746-5E8D-4093-A878-314F8AFD5419}" = lport=50265 | protocol=6 | dir=in | name=akamai netsession interface |
"{708BF7CC-A459-4327-AA1E-59A045084F8F}" = lport=52833 | protocol=6 | dir=in | name=akamai netsession interface |
"{7164FCA2-0A09-4C55-93AB-7ED2EB8AE4C3}" = lport=50088 | protocol=6 | dir=in | name=akamai netsession interface |
"{733411E9-D044-4286-B404-6599CE6BCDB9}" = lport=50626 | protocol=6 | dir=in | name=akamai netsession interface |
"{7335413D-AF12-4BE8-BAC4-CB750756BE7B}" = lport=51505 | protocol=6 | dir=in | name=akamai netsession interface |
"{73499E22-F8AC-436C-8098-4A2C54DD943E}" = lport=50802 | protocol=6 | dir=in | name=akamai netsession interface |
"{735A28F6-34FB-474F-960F-6A170BFB3DB3}" = lport=51925 | protocol=6 | dir=in | name=akamai netsession interface |
"{737724E5-3D85-42D5-98B7-75141722EF7A}" = lport=50678 | protocol=6 | dir=in | name=akamai netsession interface |
"{745A1BCD-78B5-426C-B4D5-511E96273C5D}" = lport=49164 | protocol=6 | dir=in | name=akamai netsession interface |
"{75D61B99-EC9D-4C94-BB54-3B5F517D0349}" = lport=49884 | protocol=6 | dir=in | name=akamai netsession interface |
"{767CBC9E-CCC7-42B2-81EE-FAA1BA05A6C0}" = lport=51563 | protocol=6 | dir=in | name=akamai netsession interface |
"{77A74BA2-764C-4169-AB98-FD624208110A}" = lport=51994 | protocol=6 | dir=in | name=akamai netsession interface |
"{785CEBB0-82E7-400D-8590-C88E3B3F611B}" = lport=50679 | protocol=6 | dir=in | name=akamai netsession interface |
"{787094DC-95E1-4632-9E36-577F6019DC60}" = lport=62765 | protocol=6 | dir=in | name=akamai netsession interface |
"{7A5B6815-0C22-4938-8606-5C0190AD9BB4}" = lport=49291 | protocol=6 | dir=in | name=akamai netsession interface |
"{7AA5B1A8-623E-43FE-AC22-EDBA07CD5D92}" = lport=49360 | protocol=6 | dir=in | name=akamai netsession interface |
"{7B131D6F-45ED-477E-AA08-DB8C6506EB95}" = lport=49356 | protocol=6 | dir=in | name=akamai netsession interface |
"{7BB999DD-352B-4030-8B3C-31AAEE785B43}" = lport=50154 | protocol=6 | dir=in | name=akamai netsession interface |
"{7C55C750-A147-456C-9F4E-7A15CC68FFB1}" = lport=49729 | protocol=6 | dir=in | name=akamai netsession interface |
"{7CE75470-EC2F-4B3E-BB9D-06481A746D7C}" = lport=9420 | protocol=6 | dir=in | name=akamai netsession interface |
"{7E9CD9E6-42CD-4B22-97AE-1485D2416FC1}" = lport=52500 | protocol=6 | dir=in | name=akamai netsession interface |
"{7EC113F9-2CD0-4CE2-9E45-CE70FE0D1DC2}" = lport=50103 | protocol=6 | dir=in | name=akamai netsession interface |
"{7F6981C6-4457-4500-AFDA-2CEBF589BD02}" = lport=49796 | protocol=6 | dir=in | name=akamai netsession interface |
"{8075DE7D-32A1-45A2-8373-0FD80916BEBB}" = lport=49846 | protocol=6 | dir=in | name=akamai netsession interface |
"{80C947D3-9323-454A-BFAD-D5E90297F166}" = lport=49678 | protocol=6 | dir=in | name=akamai netsession interface |
"{815FE461-BD62-4416-9096-CD4F2A989D1E}" = lport=49304 | protocol=6 | dir=in | name=akamai netsession interface |
"{820F8A5D-FC7F-41BE-8FC6-3A19347E9E15}" = lport=50316 | protocol=6 | dir=in | name=akamai netsession interface |
"{829CCCAC-B034-4B1A-A16F-7D0DB5B4BDF5}" = lport=50725 | protocol=6 | dir=in | name=akamai netsession interface |
"{834B73C9-F7FB-474A-BE7C-85CF5E6B4DEA}" = lport=50329 | protocol=6 | dir=in | name=akamai netsession interface |
"{83E02821-AEC4-4523-84EE-B9A5716E915B}" = lport=51105 | protocol=6 | dir=in | name=akamai netsession interface |
"{84CB5910-4317-428D-B651-3C0C77F99FE3}" = lport=49848 | protocol=6 | dir=in | name=akamai netsession interface |
"{853CC741-C2D8-4B7F-8C45-94D5CDB5571E}" = lport=50223 | protocol=6 | dir=in | name=akamai netsession interface |
"{85662024-8B5A-41F3-AC0E-54745487CB15}" = lport=53819 | protocol=6 | dir=in | name=akamai netsession interface |
"{86118B2E-148B-4166-B65A-452946A93924}" = lport=56923 | protocol=6 | dir=in | name=akamai netsession interface |
"{862F524C-A84F-4F0D-9E6C-A5F6029253CA}" = lport=53012 | protocol=6 | dir=in | name=akamai netsession interface |
"{880C475F-EA71-4EF5-B6E2-9B5F3AD513AA}" = lport=49726 | protocol=6 | dir=in | name=akamai netsession interface |
"{88D44C17-09B4-44B9-994E-05ECBC990D9D}" = lport=51141 | protocol=6 | dir=in | name=akamai netsession interface |
"{8AF4F3E2-4768-4B4C-9BCE-B046B8A3A34C}" = lport=49377 | protocol=6 | dir=in | name=akamai netsession interface |
"{8CB98C13-3552-434D-A280-8812B4150187}" = lport=51310 | protocol=6 | dir=in | name=akamai netsession interface |
"{8CEB8B91-4EC4-4A2A-BFE7-C5830836BB1D}" = lport=49159 | protocol=6 | dir=in | name=akamai netsession interface |
"{8CF1C9CF-57B4-4745-8BC3-75A18C8ED6B2}" = lport=51645 | protocol=6 | dir=in | name=akamai netsession interface |
"{8D3A879E-C84E-4FB2-9EA3-610AE99B3A1B}" = lport=50128 | protocol=6 | dir=in | name=akamai netsession interface |
"{8E2FBCF8-755E-4D84-8F51-4A45B2139848}" = lport=53125 | protocol=6 | dir=in | name=akamai netsession interface |
"{8F5BEA67-2ED9-4039-949E-89F3CB7D2CEF}" = lport=56332 | protocol=6 | dir=in | name=akamai netsession interface |
"{901D3332-5F35-4CF5-8A8E-7F2BAB955DD7}" = lport=50525 | protocol=6 | dir=in | name=akamai netsession interface |
"{90E323BE-E907-427C-AE3D-D54C8A6DA1C7}" = lport=50713 | protocol=6 | dir=in | name=akamai netsession interface |
"{92367987-2796-4291-A3B0-80942A6BAF66}" = lport=50931 | protocol=6 | dir=in | name=akamai netsession interface |
"{92F4B517-9813-415F-82E7-F2D9F09A2414}" = lport=55020 | protocol=6 | dir=in | name=akamai netsession interface |
"{932E53C8-50E3-49C9-A734-54FA5DA8F0B3}" = lport=49337 | protocol=6 | dir=in | name=akamai netsession interface |
"{933740B9-6609-4D08-A4CE-21E8260C34F6}" = lport=51014 | protocol=6 | dir=in | name=akamai netsession interface |
"{94E2D0E3-91AB-4B65-A456-960767344649}" = lport=50170 | protocol=6 | dir=in | name=akamai netsession interface |
"{95A3CABA-4B31-4805-8FE4-9EB7A4C2362B}" = lport=49323 | protocol=6 | dir=in | name=akamai netsession interface |
"{95D6348A-2D06-48B6-9AA2-B1A03D96993E}" = lport=49222 | protocol=6 | dir=in | name=akamai netsession interface |
"{969DE69B-A4F8-460A-8DE4-2BC2F319965D}" = lport=49160 | protocol=6 | dir=in | name=akamai netsession interface |
"{96DAA07E-B8A5-44A4-86B2-A003B28B1E4A}" = lport=51438 | protocol=6 | dir=in | name=akamai netsession interface |
"{97575616-20FA-44ED-8D01-8DE1392558B2}" = lport=51717 | protocol=6 | dir=in | name=akamai netsession interface |
"{97D07BF8-E554-457D-BDD4-B097770D8D56}" = lport=52388 | protocol=6 | dir=in | name=akamai netsession interface |
"{98BAAD12-56DD-4621-8391-82919B0F5CFF}" = lport=50334 | protocol=6 | dir=in | name=akamai netsession interface |
"{9BBA0EEA-2E30-47C0-9DA6-30F18F916B5C}" = lport=49785 | protocol=6 | dir=in | name=akamai netsession interface |
"{9C09224E-1F85-4CB7-A1E8-6FA2B354D9D2}" = lport=50226 | protocol=6 | dir=in | name=akamai netsession interface |
"{9C3EA40B-D132-4EFA-99C2-8963562E938D}" = lport=51155 | protocol=6 | dir=in | name=akamai netsession interface |
"{9E57D2F1-757F-4DFA-BF80-C565086E2398}" = lport=49568 | protocol=6 | dir=in | name=akamai netsession interface |
"{9E6403FA-9BE8-40A3-97A8-7D4104490725}" = lport=52166 | protocol=6 | dir=in | name=akamai netsession interface |
"{9F652FA1-B4B6-4F08-B842-DF4E992120FA}" = lport=49265 | protocol=6 | dir=in | name=akamai netsession interface |
"{A022DE2F-99D8-42D0-8BE1-BDB9CC180A81}" = lport=49316 | protocol=6 | dir=in | name=akamai netsession interface |
"{A0D403F0-74D0-4AA0-A456-5ADEEDCEF182}" = lport=49383 | protocol=6 | dir=in | name=akamai netsession interface |
"{A1515F02-9402-4FE0-A44D-E67759BD765A}" = lport=54035 | protocol=6 | dir=in | name=akamai netsession interface |
"{A33488B8-99AA-4CCD-BD32-2CEC34914E0B}" = lport=49357 | protocol=6 | dir=in | name=akamai netsession interface |
"{A3C69F4E-D750-44F2-8804-2B46EB9ECFD3}" = lport=50550 | protocol=6 | dir=in | name=akamai netsession interface |
"{A4AB8464-6173-4DC7-A39D-AD0CCEF18504}" = lport=50858 | protocol=6 | dir=in | name=akamai netsession interface |
"{A5ECF183-D692-4CEF-9769-F5EC5E3528D4}" = lport=51012 | protocol=6 | dir=in | name=akamai netsession interface |
"{A6193B6A-B1C2-451E-B1E6-9B7900CE9711}" = lport=50047 | protocol=6 | dir=in | name=akamai netsession interface |
"{A6747EEC-75EA-410C-9908-41E98D97E2B3}" = lport=56737 | protocol=6 | dir=in | name=akamai netsession interface |
"{A74F379A-F262-4142-B02F-F3BEC6F15280}" = lport=52719 | protocol=6 | dir=in | name=akamai netsession interface |
"{A79E0BB1-29E9-490D-B109-2989C989B0AA}" = lport=50281 | protocol=6 | dir=in | name=akamai netsession interface |
"{A7B09A34-F2F4-432E-B1BC-253B5C7A2320}" = lport=50476 | protocol=6 | dir=in | name=akamai netsession interface |
"{A7DF5AA2-320B-4316-88F2-6771BA24D53D}" = lport=51593 | protocol=6 | dir=in | name=akamai netsession interface |
"{AA60A2DC-4043-462F-B5C0-AB0EAA5C0120}" = lport=49691 | protocol=6 | dir=in | name=akamai netsession interface |
"{AB4AEF37-8D21-4759-AC05-AB4A3175F7C7}" = lport=51245 | protocol=6 | dir=in | name=akamai netsession interface |
"{AB96EE57-304F-4EB6-B714-C3C98B0F267E}" = lport=50124 | protocol=6 | dir=in | name=akamai netsession interface |
"{AC10059A-674A-4D08-BF56-8D3DFCDD7706}" = lport=52293 | protocol=6 | dir=in | name=akamai netsession interface |
"{AD4D876F-FD56-4BF8-A66E-F475C41F7482}" = lport=52045 | protocol=6 | dir=in | name=akamai netsession interface |
"{AD826F13-61CE-4232-8A61-0FEF3E1D4433}" = lport=50312 | protocol=6 | dir=in | name=akamai netsession interface |
"{AF0C3088-408B-4A83-9AAE-A9977DEEF3F6}" = lport=53784 | protocol=6 | dir=in | name=akamai netsession interface |
"{AFCA7BA9-03B6-49EC-AD2D-92C2B72E40DA}" = lport=54444 | protocol=6 | dir=in | name=akamai netsession interface |
"{B0883662-0386-45C0-852C-E5DA15E2A75A}" = lport=52258 | protocol=6 | dir=in | name=akamai netsession interface |
"{B13F10E1-C4DD-4AE2-80B4-50B25DA209DA}" = lport=49235 | protocol=6 | dir=in | name=akamai netsession interface |
"{B1A4B2B9-50D3-4AF9-9A30-9864E2BF48C0}" = lport=49693 | protocol=6 | dir=in | name=akamai netsession interface |
"{B212ACBD-5A69-4522-A245-EC626998156A}" = lport=50094 | protocol=6 | dir=in | name=akamai netsession interface |
"{B2ED6AAD-EFBB-46D5-BE16-BDA9801F7F06}" = lport=51561 | protocol=6 | dir=in | name=akamai netsession interface |
"{B3099E81-C242-46AF-A81A-2D6B39724E98}" = lport=49158 | protocol=6 | dir=in | name=akamai netsession interface |
"{B343F918-AB09-47E7-96EF-86CEA82D8D32}" = lport=54045 | protocol=6 | dir=in | name=akamai netsession interface |
"{B506D27B-B4CB-4582-AF76-E70D6DBB984A}" = lport=51304 | protocol=6 | dir=in | name=akamai netsession interface |
"{B5E33E4A-88BD-4187-99A2-470515AC26CB}" = lport=55040 | protocol=6 | dir=in | name=akamai netsession interface |
"{B60DAC01-F2AD-48E1-8790-16600ABA6392}" = lport=52543 | protocol=6 | dir=in | name=akamai netsession interface |
"{B6CFB373-9437-498B-9F6B-1C41272A8E2A}" = lport=49881 | protocol=6 | dir=in | name=akamai netsession interface |
"{B748053B-8EB2-4B9A-830B-712D7E4CDE59}" = lport=49852 | protocol=6 | dir=in | name=akamai netsession interface |
"{B7A0D62E-439B-432D-A848-05841AE1B7C9}" = lport=52172 | protocol=6 | dir=in | name=akamai netsession interface |
"{B8123F99-6BAE-471C-ADB2-C60832AC6F92}" = lport=49169 | protocol=6 | dir=in | name=akamai netsession interface |
"{B82252D8-AFDD-4B7B-9BE7-B1CA806CBAD5}" = lport=53248 | protocol=6 | dir=in | name=akamai netsession interface |
"{B8FBB350-2B90-4FD0-8E65-2158CDC000D3}" = lport=49873 | protocol=6 | dir=in | name=akamai netsession interface |
"{BAC401FC-8865-4F3E-9FE5-0270F27778DD}" = lport=49518 | protocol=6 | dir=in | name=akamai netsession interface |
"{BB0DE2DF-87B8-4738-9811-B5830E0A0707}" = lport=50757 | protocol=6 | dir=in | name=akamai netsession interface |
"{BBB85E03-C52E-48E8-8F1B-EEA5427A16D1}" = lport=50366 | protocol=6 | dir=in | name=akamai netsession interface |
"{BBF5E479-3203-41C2-A1BC-E80568196C91}" = lport=50165 | protocol=6 | dir=in | name=akamai netsession interface |
"{BE4E69A8-B933-41BF-A910-6287F89577E1}" = lport=50866 | protocol=6 | dir=in | name=akamai netsession interface |
"{BE5A98A0-32A2-40E9-BD11-BD4EC58FF8DD}" = lport=61437 | protocol=6 | dir=in | name=akamai netsession interface |
"{BE5CFC14-F305-47A6-B467-AAFCE2338BD5}" = lport=49322 | protocol=6 | dir=in | name=akamai netsession interface |
"{BEF3D5C9-4351-4E32-9B82-A9A5B9E39A49}" = lport=49753 | protocol=6 | dir=in | name=akamai netsession interface |
"{C24A9E88-38E2-4B20-BCF4-832EDD96DCCC}" = lport=51142 | protocol=6 | dir=in | name=akamai netsession interface |
"{C2808C33-6F0E-492A-847F-B9324F787C45}" = lport=50189 | protocol=6 | dir=in | name=akamai netsession interface |
"{C41347CD-32AC-4BA5-8219-21CA2E20B37C}" = lport=53045 | protocol=6 | dir=in | name=akamai netsession interface |
"{C5948571-B8C0-4AA4-A95A-03C6E9C9B9C2}" = lport=50183 | protocol=6 | dir=in | name=akamai netsession interface |
"{C63B2842-F778-4682-ABB0-C88956B33C56}" = lport=52483 | protocol=6 | dir=in | name=akamai netsession interface |
"{C7420DEB-FB47-4F5A-B823-E1AA86AB05B1}" = lport=54532 | protocol=6 | dir=in | name=akamai netsession interface |
"{C7E71883-BD0E-46EC-8D5B-58D6FD16656F}" = lport=50080 | protocol=6 | dir=in | name=akamai netsession interface |
"{C8430F84-5A9C-4C2D-961A-BE75366A90E7}" = lport=51065 | protocol=6 | dir=in | name=akamai netsession interface |
"{C89B0821-FFFA-474B-BD00-A844447D361D}" = lport=55523 | protocol=6 | dir=in | name=akamai netsession interface |
"{C8B83DD9-30D3-4F8A-BB85-BC6600419906}" = lport=50570 | protocol=6 | dir=in | name=akamai netsession interface |
"{C99056B5-8541-4722-9A3A-60F39453063E}" = lport=50673 | protocol=6 | dir=in | name=akamai netsession interface |
"{CA48ED80-519E-4483-9164-94AB4C993268}" = lport=54004 | protocol=6 | dir=in | name=akamai netsession interface |
"{CA8ACD4C-4D67-4817-A727-2C75600DF893}" = lport=49368 | protocol=6 | dir=in | name=akamai netsession interface |
"{CAC29291-E803-4AEC-8841-452DE1220CCB}" = lport=49171 | protocol=6 | dir=in | name=akamai netsession interface |
"{CD04966D-31EF-425C-A63C-1F82BA6B7831}" = lport=49157 | protocol=6 | dir=in | name=akamai netsession interface |
"{CD58FA0A-43AD-4FC1-B7FA-7F04B80FCDA7}" = lport=50090 | protocol=6 | dir=in | name=akamai netsession interface |
"{CE064B1B-DBD6-43BE-B8AC-2D6E64D53759}" = lport=51525 | protocol=6 | dir=in | name=akamai netsession interface |
"{CE8E6778-625F-4623-9FFB-528219F38C4B}" = lport=50272 | protocol=6 | dir=in | name=akamai netsession interface |
"{CEA496D5-8426-4748-AD9D-EDBBF1E45120}" = lport=55998 | protocol=6 | dir=in | name=akamai netsession interface |
"{CF5C9384-425C-4CFD-A5FA-CBBEA5034F8E}" = lport=53866 | protocol=6 | dir=in | name=akamai netsession interface |
"{D08EFDFE-6EAB-4F97-8723-569DFDE4C552}" = lport=49193 | protocol=6 | dir=in | name=akamai netsession interface |
"{D0CD237F-482C-47CD-8CBF-175D2C3E97C5}" = lport=50950 | protocol=6 | dir=in | name=akamai netsession interface |
"{D11EF39F-C3A7-4E02-9E6E-1F4E4186EAB1}" = lport=53432 | protocol=6 | dir=in | name=akamai netsession interface |
"{D13E1F35-70E3-4B32-9A28-05A8B6A61498}" = lport=49606 | protocol=6 | dir=in | name=akamai netsession interface |
"{D23E179E-85CF-489A-9124-A7AFFCB760C2}" = lport=53304 | protocol=6 | dir=in | name=akamai netsession interface |
"{D25EF724-7422-4A17-8014-79EABFA6327C}" = lport=50374 | protocol=6 | dir=in | name=akamai netsession interface |
"{D3A0E979-9B6A-4DBE-ACC2-B21C8B7BB895}" = lport=51165 | protocol=6 | dir=in | name=akamai netsession interface |
"{D418030D-2807-4D6E-8E01-A461F513EFA4}" = lport=62201 | protocol=6 | dir=in | name=akamai netsession interface |
"{D41B564A-AD1B-4A0A-AC6F-2B0BBCEC9E6A}" = lport=50132 | protocol=6 | dir=in | name=akamai netsession interface |
"{D51270A9-6244-407F-975B-B74C3678E72A}" = lport=53167 | protocol=6 | dir=in | name=akamai netsession interface |
"{D598F83D-8CB5-42F7-8DAE-2918AD8C3C11}" = lport=49681 | protocol=6 | dir=in | name=akamai netsession interface |
"{D9816D87-81D0-49E2-8AC0-2978693FEA1C}" = lport=51489 | protocol=6 | dir=in | name=akamai netsession interface |
"{D9B6BE1D-7A85-4106-BF54-32A661DE15C8}" = lport=51317 | protocol=6 | dir=in | name=akamai netsession interface |
"{DE3D0DF8-9C9C-4E03-9447-E5C2959865C4}" = lport=51971 | protocol=6 | dir=in | name=akamai netsession interface |
"{DF6D1BBF-BB78-4B0E-B6AC-14219D222A9C}" = lport=50718 | protocol=6 | dir=in | name=akamai netsession interface |
"{DFB05A59-654B-4CC5-898D-612595C2230A}" = lport=51313 | protocol=6 | dir=in | name=akamai netsession interface |
"{DFF04F19-A75E-4E13-BCBC-4754A6F82A78}" = lport=49292 | protocol=6 | dir=in | name=akamai netsession interface |
"{E04CC415-D907-478F-81A2-9DE89B336CC7}" = lport=50009 | protocol=6 | dir=in | name=akamai netsession interface |
"{E0A95228-B2E5-4730-98CB-5762DA54DFB3}" = lport=52419 | protocol=6 | dir=in | name=akamai netsession interface |
"{E11C37B3-8513-4A61-A6C4-6DA2C711605B}" = lport=51175 | protocol=6 | dir=in | name=akamai netsession interface |
"{E167ED75-35CE-4D79-B9D2-335143635ED0}" = lport=52986 | protocol=6 | dir=in | name=akamai netsession interface |
"{E18F33E3-7F1E-44B7-8EF7-3A73EB64E191}" = lport=51192 | protocol=6 | dir=in | name=akamai netsession interface |
"{E2DFC459-BF2E-4A4F-8547-75568D861B9F}" = lport=49247 | protocol=6 | dir=in | name=akamai netsession interface |
"{E3A56EB1-BE27-410C-8D90-F61BF964A2CD}" = lport=49214 | protocol=6 | dir=in | name=akamai netsession interface |
"{E3D62398-9B6B-400A-A6AD-A254B3D56339}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E48C7AE9-DCC0-4E49-ACC7-3FDA5A7B327A}" = lport=49314 | protocol=6 | dir=in | name=akamai netsession interface |
"{E4AF31B0-B44C-43F1-B5AB-ADAE4056B651}" = lport=50318 | protocol=6 | dir=in | name=akamai netsession interface |
"{E527D24A-454B-4CB8-8DD1-BB94D1B895A7}" = lport=49163 | protocol=6 | dir=in | name=akamai netsession interface |
"{E5A3014F-D554-4FD6-9F5E-2E8119F6A840}" = lport=49477 | protocol=6 | dir=in | name=akamai netsession interface |
"{E5A7E78B-FD6E-42CB-BC5F-20C67AF12289}" = lport=49215 | protocol=6 | dir=in | name=akamai netsession interface |
"{E623FA76-1755-415C-BCCD-EDD30DE14ABA}" = lport=50351 | protocol=6 | dir=in | name=akamai netsession interface |
"{E67470B3-5A11-4E2E-AA50-2A49F68DE244}" = lport=52910 | protocol=6 | dir=in | name=akamai netsession interface |
"{E684841C-943B-41A5-8EF5-3EC447D035F3}" = lport=50001 | protocol=6 | dir=in | name=akamai netsession interface |
"{E91ED322-71DF-49BE-9819-A56075800216}" = lport=53188 | protocol=6 | dir=in | name=akamai netsession interface |
"{E9FC4D6E-F3C1-433B-8B34-A788694090D0}" = lport=50911 | protocol=6 | dir=in | name=akamai netsession interface |
"{EA151783-0F1D-41B1-99CF-4608327642EB}" = lport=51643 | protocol=6 | dir=in | name=akamai netsession interface |
"{ECC68146-D98F-4B0C-B73F-A2E0027379ED}" = lport=50059 | protocol=6 | dir=in | name=akamai netsession interface |
"{EE0A67AB-FE3A-422F-B6D9-63AAA26CBF97}" = lport=56233 | protocol=6 | dir=in | name=akamai netsession interface |
"{EED91A6C-B2C6-4F17-975B-E9009DB26761}" = lport=49352 | protocol=6 | dir=in | name=akamai netsession interface |
"{EF1E0288-3A5A-4983-B855-638A84A65A7C}" = lport=49373 | protocol=6 | dir=in | name=akamai netsession interface |
"{F0CD6AB5-F3C9-4900-AFE0-4D2FA6AF2994}" = lport=50726 | protocol=6 | dir=in | name=akamai netsession interface |
"{F1F14447-5E0E-423A-85D3-E977F918956D}" = lport=49706 | protocol=6 | dir=in | name=akamai netsession interface |
"{F269E4B9-D0F3-41E4-A384-0FD63A4E5FB3}" = lport=56430 | protocol=6 | dir=in | name=akamai netsession interface |
"{F2EF5FC9-51CE-40B9-BB57-7A7267E1ABFB}" = lport=55076 | protocol=6 | dir=in | name=akamai netsession interface |
"{F37DF30F-AD70-4957-8558-71350CCF9DF2}" = lport=50715 | protocol=6 | dir=in | name=akamai netsession interface |
"{F3B309B6-EFAB-4BCA-A960-9FF90DCC5C8E}" = lport=49173 | protocol=6 | dir=in | name=akamai netsession interface |
"{F55324BF-3335-4534-8AF8-41489E9B4F29}" = lport=55059 | protocol=6 | dir=in | name=akamai netsession interface |
"{F5E51E93-D128-4FBF-AEC5-65E47F28E46E}" = lport=51727 | protocol=6 | dir=in | name=akamai netsession interface |
"{F73365C5-F2A3-4272-8BD8-DF5A3EDDBA80}" = lport=51009 | protocol=6 | dir=in | name=akamai netsession interface |
"{F8E70C1D-1C1D-4F71-9BF0-C0CC6146F319}" = lport=55023 | protocol=6 | dir=in | name=akamai netsession interface |
"{F901F4A8-1A25-4788-B12D-A3E7217E73BB}" = lport=50337 | protocol=6 | dir=in | name=akamai netsession interface |
"{FCC11066-21B3-42F6-862F-DBA8A13F8812}" = lport=49365 | protocol=6 | dir=in | name=akamai netsession interface |
"{FE5FAE00-FC39-4655-891F-F6DD2BA9B75F}" = lport=52688 | protocol=6 | dir=in | name=akamai netsession interface |
"{FE9AF4FF-7D03-4836-B6E8-546C0644C882}" = lport=52000 | protocol=6 | dir=in | name=akamai netsession interface |
"{FFBAB167-7D9E-4DEA-8321-2FCBD41A3FDD}" = lport=51592 | protocol=6 | dir=in | name=akamai netsession interface |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05E2BC3B-7453-4BC7-9BFE-1F217ADF3F99}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{06F9EB93-B398-4793-B043-F85BB8DF0A00}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{16C00BB0-2AF7-4750-85D1-795F0DD4E0D3}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{1A121C92-67FB-4112-AB1C-F4C093BA2372}" = protocol=17 | dir=in | app=e:\hiw\tiscali.exe |
"{1C649588-D013-41F0-BC86-E0C56EAB29CC}" = protocol=6 | dir=in | app=e:\hiw\tiscali.exe |
"{3002CA10-0629-4BE9-98E2-7629DD24C897}" = dir=in | app=c:\program files\common files\mcafee\mna\mcnasvc.exe |
"{3113C8EA-BD80-4827-93F6-3CE22049F342}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{4FBC0273-D5B4-4720-BC50-9AF535605EB6}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{577B7DF4-0686-43AE-84AA-F136138034F4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6B212086-EF4D-4790-9044-34B7AB1F88B9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{717844A9-DA9D-47EE-829F-AEA7FDCF4F37}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{71B1DA37-7A9A-4177-8550-631467EB718F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{82FAF1C2-F390-4D8F-ACA3-57B590F583CA}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{86F0452A-156B-4A13-A992-06F7BA81BC57}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"{87C683AC-B5AA-4CCC-828B-B832C37CF03F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9088E77B-524D-4522-8CE1-436010235E63}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{A2CC83F0-3FBE-4F14-A6FE-884FFBA21371}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"{A767C6C3-6796-4AB9-BC0B-4882CA2545A1}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{D0917A5E-81B3-47BC-945D-0D924CB0B271}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{D29744F4-6AA2-4FD3-841D-525D5B86EAFC}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{D5E67376-984E-43A0-9565-BA4189537D6C}" = protocol=17 | dir=in | app=e:\hiw\tiscali.exe |
"{E19ADB0A-2356-473B-84D8-02FDE8AE3196}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{E452BCEA-1340-4124-81D5-278995501DC1}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{E7E5DF8F-9463-4D4B-AF68-30A2CE0B8E8D}" = protocol=6 | dir=in | app=e:\hiw\tiscali.exe |
"{F2197BED-DDBA-4D96-8F4A-9C347F8CB336}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F71D81CD-84FE-4962-9F47-F87C74595BDF}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{F93E033C-3E5A-45E5-BDE7-3D6FD2F5895E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"TCP Query User{12B5C11D-ACB7-4E24-B740-5F3154ADBE5E}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{1420EB74-FB4F-4E39-9B5E-27EC26D839BE}C:\users\matthew\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\matthew\program files\dna\btdna.exe |
"TCP Query User{1F0C491C-5802-4541-A221-5FC6C5A6637D}C:\users\matthew\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\matthew\program files\dna\btdna.exe |
"TCP Query User{3AC63577-9AF1-4C19-B67B-00498ACA15F8}C:\program files\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"TCP Query User{61A899C8-C5ED-4237-B2C9-D52FF94EA9D6}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{728602EB-F9E7-4897-8987-56E69F6DFF08}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{8CD7224A-5ECF-408A-8EFB-7B985B08CE40}C:\users\matthew\documents\downloads\halo\halo.exe" = protocol=6 | dir=in | app=c:\users\matthew\documents\downloads\halo\halo.exe |
"TCP Query User{9DECB3A4-1727-4419-A4CE-F5BB434A9E80}C:\users\matthew\documents\downloads\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\users\matthew\documents\downloads\call of duty 2\cod2mp_s.exe |
"TCP Query User{AC28871A-30FC-4225-910A-5DD7C399C449}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{DF1500BD-9FF2-41C8-A7F4-436D25A1EC38}C:\program files\soulseek\slsk.exe" = protocol=6 | dir=in | app=c:\program files\soulseek\slsk.exe |
"UDP Query User{09737740-2B17-44D8-9491-D1EBA3F7D5A9}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{2BB3C98E-38F1-4FBB-9E7F-49CDF6CDF263}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{6055EE55-770B-43CA-B4AB-02612A18BF00}C:\program files\soulseek\slsk.exe" = protocol=17 | dir=in | app=c:\program files\soulseek\slsk.exe |
"UDP Query User{60563BD0-1F74-4E0D-A530-BCF11336F4C2}C:\program files\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"UDP Query User{9047489F-5AB2-4847-8E5D-3E0A92541A31}C:\users\matthew\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\matthew\program files\dna\btdna.exe |
"UDP Query User{A477F166-2755-4390-B7AB-8F48738B1B36}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{B2FDD773-993B-4900-90C9-DF5C7CE59729}C:\users\matthew\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\matthew\program files\dna\btdna.exe |
"UDP Query User{D2D704B8-BE37-4E8B-BDDC-C4D10BDCA7CA}C:\users\matthew\documents\downloads\halo\halo.exe" = protocol=17 | dir=in | app=c:\users\matthew\documents\downloads\halo\halo.exe |
"UDP Query User{D94B394D-9811-47A5-BC72-117C2CB73AB3}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{E2B99D80-6CCC-4D35-8F99-9FE6D92847DA}C:\users\matthew\documents\downloads\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\users\matthew\documents\downloads\call of duty 2\cod2mp_s.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0CE5F45E-F6CC-4638-B0DD-BB7F6EF56713}" = HP Deskjet D1500 Printer Driver Software 10.0 Rel .3
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 8:11 pm

more_horiz
"{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
"{139E303E-1050-497F-98B1-9AE87B15C463}" = Windows Live Family Safety
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{25771101-7948-4591-ABF3-B1ECE7A7F45F}" = HP Update
"{26792CA7-D87A-4DBE-896B-C2F66B344511}" = Sonic CinePlayer
"{2EAF7E61-068E-11DF-953C-005056806466}" = Google Earth
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{305468A6-DE2D-43ba-A168-2F45A97A89DA}" = DJ_SF_03_D1500_Software_Min
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar)
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Sonic Activation Module
"{36FDBE6E-6684-462b-AE98-9A39A1B200CC}" = HPProductAssistant
"{38436888-9EAA-4cec-A56F-65B73D9D423C}" = D1500
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3CEA4CA8-CDD4-451C-B673-E8F17BE01B15}" = Ulead COOL 360 1.0
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{5109C064-813E-4e87-B0DE-C8AF7B5BC02B}" = SmartWebPrintingOC
"{534C6D59-D6E3-48A6-AD0B-747799019960}" = XVID Codec Installation
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™️ 3.8
"{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}" = User's Guides
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{757AD3D4-036B-42FA-B0A4-96BD6F4605A0}" = Ulead VideoStudio 7 SE Basic
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7745B7A9-F323-4BB9-9811-01BF57A028DA}" = Map Button (Windows Live Toolbar)
"{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}" = Intel(R) PRO Network Connections 12.1.11.0
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{82C113AD-486F-4bd5-A2EA-2383AF57D084}" = D1500_Help
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}" = Roxio Creator BDAV Plugin
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B8240B3-891D-4965-AA51-8799622D44FF}" = DJ_SF_03_D1500_ProductContext
"{8F3A13FC-DFDA-4001-A6C3-030495A1E66E}" = HiYo
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{92B94569-6683-4617-8C54-EB27A1B51B30}" = GTAIII
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0122-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{A5AB9D5E-52E2-440e-A3ED-9512E253C81A}" = SolutionCenter
"{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar)
"{A6982C3D-17A7-41A7-B226-C214F49C3120}" = BTOffer
"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
"{A785BBA7-3FB9-4D81-BC35-4A2028915ACB}" = Prey
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A90000000001}" = Adobe Reader 9
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B1421599-A42D-47ef-B512-B9B0317BD599}" = DJ_SF_03_D1500_Software
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{BBC0D330-C37B-4472-BFB9-AA217CF0C95F}" = Ulead Photo Express 4.0 SE
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C45B1500-7B63-47C2-AB25-C28CB46AFDEE}" = OD2 Music Manager
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator DE
"{C994D98C-293D-4825-958E-EB684B4D413F}" = MSN Toolbar
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}" = WinZip 12.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEF5B15D-3B5A-46DC-A242-DC12629DDC10}" = DDV-660 Digital Video
"{CF097717-F174-4144-954A-FBC4BF301033}" = Nero 7 Ultra Edition
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D4A8FCAB-9D30-4509-A3F1-D0B7E1BE9F00}" = Devil May Cry 3 Special Edition
"{D639085F-4B6E-4105-9F37-A0DBB023E2FB}" = Roxio MyDVD DE
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar)
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Advanced JPEG Compressor_is1" = Advanced JPEG Compressor 2008
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Shrink_is1" = DVD Shrink 3.2
"DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.1.2.2
"EAX Unified" = EAX Unified
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Google Chrome" = Google Chrome
"Google Desktop" = Google Desktop
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Hitman 2: Silent Assassin" = Hitman 2: Silent Assassin
"HiYo" = HiYo
"HP Imaging Device Functions" = HP Imaging Device Functions 10.0
"HP Photosmart Essential" = HP Photosmart Essential 2.5
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 10.0
"HPExtendedCapabilities" = HP Customer Participation Program 10.0
"ImTOO AVI to DVD Converter" = ImTOO AVI to DVD Converter
"Indeo®️ Software" = Indeo®️ Software
"Mafia Game" = Mafia Game
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Metacafe" = Metacafe
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Moto Racer 3_is1" = Moto Racer 3
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"MSC" = McAfee SecurityCenter
"Norton PC Checkup" = Norton PC Checkup
"NSS" = Norton Security Scan
"PROSetDX" = Intel(R) PRO Network Connections 12.1.11.0
"ShockwaveFlash" = Macromedia Flash Player 8
"Shop for HP Supplies" = Shop for HP Supplies
"Softonic_English Toolbar" = Softonic_English Toolbar
"Soulseek" = SoulSeek Client 156c
"Spyware Doctor" = Spyware Doctor 7.0
"TBSB01496.TBSB01496Toolbar" = IGF Currency Converter Toolbar
"VLC media player" = VLC media player 0.9.4
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Antispyware PRO XP 3.1" = Antispyware PRO XP
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"World of Warcraft Trial" = World of Warcraft Trial

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 05/03/2009 18:04:56 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program msnmsgr.exe version 8.5.1302.1018 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 1308 Start Time: 01c99dd4e2072b5b Termination Time: 229

Error - 06/03/2009 17:41:45 | Computer Name = Matthew-PC | Source = MsiInstaller | ID = 11316
Description =

Error - 06/03/2009 20:47:53 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program firefox.exe version 1.9.0.3334 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 131c Start Time: 01c99ebe277362d0 Termination Time: 39

Error - 09/03/2009 17:16:08 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program firefox.exe version 1.9.0.3334 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 1104 Start Time: 01c9a0f83f82d8a4 Termination Time: 45

Error - 09/03/2009 18:24:13 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program msnmsgr.exe version 8.5.1302.1018 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 5f0 Start Time: 01c9a10052908a9c Termination Time: 16

Error - 09/03/2009 19:31:25 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program msnmsgr.exe version 8.5.1302.1018 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 344 Start Time: 01c9a105c959977c Termination Time: 42

Error - 09/03/2009 19:33:41 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program msnmsgr.exe version 8.5.1302.1018 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 15ec Start Time: 01c9a10f2c9df34c Termination Time: 21

Error - 09/03/2009 19:36:54 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program msnmsgr.exe version 8.5.1302.1018 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 1608 Start Time: 01c9a10f7cb5b824 Termination Time: 33

Error - 09/03/2009 20:08:53 | Computer Name = Matthew-PC | Source = Application Hang | ID = 1002
Description = The program msnmsgr.exe version 8.5.1302.1018 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: bf0 Start Time: 01c9a10ff144bd34 Termination Time: 19

Error - 11/03/2009 08:35:52 | Computer Name = Matthew-PC | Source = McLogEvent | ID = 5022
Description = MCSCAN32 Engine Initialisation failed. Engine returned error : 3

[ OSession Events ]
Error - 20/10/2008 17:04:05 | Computer Name = Matthew-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 77
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 18/02/2010 13:31:19 | Computer Name = Matthew-PC | Source = DCOM | ID = 10010
Description =

Error - 18/02/2010 13:42:32 | Computer Name = Matthew-PC | Source = DCOM | ID = 10010
Description =

Error - 18/02/2010 21:10:43 | Computer Name = Matthew-PC | Source = DCOM | ID = 10010
Description =

Error - 19/02/2010 15:55:18 | Computer Name = Matthew-PC | Source = DCOM | ID = 10005
Description =

Error - 19/02/2010 15:55:28 | Computer Name = Matthew-PC | Source = DCOM | ID = 10005
Description =

Error - 19/02/2010 15:55:41 | Computer Name = Matthew-PC | Source = DCOM | ID = 10005
Description =

Error - 19/02/2010 15:55:45 | Computer Name = Matthew-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 19/02/2010 15:55:45 | Computer Name = Matthew-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 19/02/2010 15:56:05 | Computer Name = Matthew-PC | Source = DCOM | ID = 10005
Description =

Error - 19/02/2010 15:58:51 | Computer Name = Matthew-PC | Source = DCOM | ID = 10005
Description =


< End of report >

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 8:11 pm

more_horiz
there you go

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 9:12 pm

more_horiz
Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):


    :OTL
    O4 - HKLM..\Run: [] File not found
    O4 - HKCU..\Run: [ocrvbyka] C:\Users\Matthew\AppData\Local\ymfoof\qncysftav.exe ()
    [2010/02/17 21:49:29 | 000,000,000 | ---D | C] -- C:\Users\Matthew\AppData\Local\ymfoof



  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
How to get rid of antivirus soft? DXwU4
How to get rid of antivirus soft? VvYDg

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 9:52 pm

more_horiz
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ocrvbyka deleted successfully.
C:\Users\Matthew\AppData\Local\ymfoof\qncysftav.exe moved successfully.
C:\Users\Matthew\AppData\Local\ymfoof folder moved successfully.

OTL by OldTimer - Version 3.1.28.0 log created on 02192010_215127

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 11:14 pm

more_horiz
Hello.

To remove all of the tools we used and the files and folders they created do the following:
Double click OTL.exe.

  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes.
How is the machine running now?

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
How to get rid of antivirus soft? DXwU4
How to get rid of antivirus soft? VvYDg

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?19th February 2010, 11:37 pm

more_horiz
yeah i think thats it gone now, i had to reboot during the clean up and when it started back up in normal mode (was using safe mode before) and ive been one for 15 mins or so now and it hasn't popped up so i think its gone now if not I'll write back informing you.
Thanks alot, really appreciated Smile...

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?20th February 2010, 12:12 am

more_horiz
Hello.


  • Click Start >> Control Panel.
  • Under the Programs click Uninstall a Program
  • Highlight the following:

    Adobe Reader 9
    Java(TM) SE Runtime Environment 6
  • Click on the Uninstall/Change button at the top.

Updating Java:

  • Download the latest version of Java SE Runtime Environment (JRE) 6 Update 18.
  • Click the "Download JRE" button to the right.
  • In the Window that opens, select your platform, check the "agree" box, and click Continue.
  • Click on the link to download Windows Offline Installation and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Then from your desktop double-click on jre-6u18-windows-i586.exe that you downloaded to install the newest version.

Then download and install Adobe Reader 9.3

............................................................................................

Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
How to get rid of antivirus soft? DXwU4
How to get rid of antivirus soft? VvYDg

descriptionHow to get rid of antivirus soft? EmptyRe: How to get rid of antivirus soft?

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum