[Registry - Additional Scans - Safe List]
< Disabled MSConfig Services [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services ->
"DAUpdaterSvc" -> ->
"InCDsrv" -> ->
"JavaQuickStarterService" -> ->
"LBTServ" -> ->
"LightScribeService" -> ->
"LiveTurbineMessageService" -> ->
"LiveTurbineNetworkService" -> ->
"NBService" -> ->
"NeroRegInCDSrv" -> ->
"NMIndexingService" -> ->
"ZuneNetworkSvc" -> ->
< Disabled MSConfig Folder Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\ ->
C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe -> [2009/07/20 12:30:50 | 000,813,584 | ---- | M | MD5 = B624202660474516E73AA95238FD9843] (Logitech, Inc.)
C:^Documents and Settings^chris^Start Menu^Programs^Startup^LimeWire On Startup.lnk -> C:\Program Files\LimeWire\LimeWire.exe -> [2010/02/19 08:46:10 | 000,503,808 | ---- | M | MD5 = 2B7F2DC5741BB18F7F5EC7558DA68197] (Lime Wire, LLC)
C:^Documents and Settings^chris^Start Menu^Programs^Startup^Logitech . Product Registration.lnk -> C:\Program Files\Common Files\Logishrd\eReg\SetPoint\eReg.exe -> [2008/11/07 14:56:10 | 000,517,384 | ---- | M | MD5 = FBBF2B2A5F257AA4B597F77D65155EDF] (Leader Technologies/Logitech)
C:^Documents and Settings^chris^Start Menu^Programs^Startup^monsxw32.exe -> C:\Documents and Settings\chris\Start Menu\Programs\Startup\monsxw32.exe -> File not found
< Disabled MSConfig Registry Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ ->
Adobe ARM hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe -> [2009/12/11 15:57:56 | 000,948,672 | R--- | M | MD5 = 73BB442A717B9BB0097C243374C14A3E] (Adobe Systems Incorporated)
Adobe Reader Speed Launcher hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe -> [2009/12/22 01:57:28 | 000,035,760 | ---- | M | MD5 = 466CE40EAA865752F4930A472563E4E1] (Adobe Systems Incorporated)
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe -> [2007/06/27 19:03:40 | 000,152,872 | ---- | M | MD5 = 86F0D0B3A07C142C81DAB47E8495A822] (Nero AG)
ctfmon.exe hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> -> File not found
HDAudDeck hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe -> [2008/08/14 20:13:26 | 030,003,200 | R--- | M | MD5 = A4FBD0E5A6866FD0BC3E2989A718B843] (VIA Technologies, Inc.)
InCD hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Nero\Nero 7\InCD\InCD.exe -> [2007/06/25 08:47:02 | 001,057,064 | ---- | M | MD5 = F3EFB9F5B0B7E07CBF8F18BC2AFCC4DB] (Nero AG)
Kernel and Hardware Abstraction Layer hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\WINDOWS\KHALMNPR.Exe -> [2009/06/17 09:55:10 | 000,055,824 | ---- | M | MD5 = E42A642E162B0468B2C4E9D803079C7F] (Logitech, Inc.)
LightScribe Control Panel hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -> [2008/06/09 10:16:32 | 002,363,392 | ---- | M | MD5 = 4A9295C9BE22739D030AB072E9A0B169] (Hewlett-Packard Company)
NeroFilterCheck hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe -> [2008/03/17 11:05:02 | 000,570,664 | ---- | M | MD5 = D81ED2C08797F4CF6466562E695E6FC6] (Nero AG)
Pando Media Booster hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Pando Networks\Media Booster\PMB.exe -> [2010/03/07 13:57:51 | 002,937,528 | ---- | M | MD5 = 7C6FCBAF1BE7513C5BC5B90519EE59DF] ()
SecurDisc hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe -> [2007/06/25 08:47:24 | 001,629,480 | ---- | M | MD5 = 87D568DEB1C0C07F31B78E1B41EB4AFE] (Nero AG)
Skype hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Skype\Phone\Skype.exe -> [2010/03/09 10:02:14 | 026,100,520 | R--- | M | MD5 = 46C92F0351DF5A4F74C9D37CD43F741D] (Skype Technologies S.A.)
Steam hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Steam\Steam.exe -> [2010/02/20 09:44:54 | 001,217,872 | ---- | M | MD5 = C82A015446F50242E675DEF631F8FBE8] (Valve Corporation)
Turbine Download Manager Tray Icon hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files\Turbine\Turbine Download Manager\TurbineDownloadManagerIcon.exe -> [2009/11/30 17:27:52 | 000,472,568 | ---- | M | MD5 = AD8A8306017BB9275006963058635C98] (Turbine, Inc.)
Zune Launcher hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> c:\Program Files\Zune\ZuneLauncher.exe -> [2010/01/07 14:38:08 | 000,158,448 | ---- | M | MD5 = 1C1784599D8F78B6D37C40D85DF52FFF] (Microsoft Corporation)
< Disabled MSConfig State [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state ->
"bootini" -> 0 ->
"services" -> 2 ->
"startup" -> 2 ->
"system.ini" -> 0 ->
"win.ini" -> 0 ->
< Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 ->
"msacm.iac2" -> C:\WINDOWS\system32\iac25_32.ax [C:\WINDOWS\system32\iac25_32.ax] -> [2008/04/14 05:00:00 | 000,199,680 | ---- | M | MD5 = 877C90686858D899B042BBA45E9B7F2C] (Intel Corporation)
"msacm.l3acm" -> C:\WINDOWS\system32\l3codeca.acm [C:\WINDOWS\system32\l3codeca.acm] -> [2008/04/14 05:00:00 | 000,290,816 | ---- | M | MD5 = 452705AC9E4C0DDE91A61F0E02292423] (Fraunhofer Institut Integrierte Schaltungen IIS)
"msacm.sl_anet" -> C:\WINDOWS\System32\sl_anet.acm [sl_anet.acm] -> [2008/04/14 05:00:00 | 000,086,016 | ---- | M | MD5 = 0DBB250A89E2E1C9281009AC269F0805] (Sipro Lab Telecom Inc.)
"msacm.trspch" -> C:\WINDOWS\System32\tssoft32.acm [tssoft32.acm] -> [2008/04/14 05:00:00 | 000,008,192 | ---- | M | MD5 = E8CD0D7E169ECCE2D4FD829DAAB786ED] (DSP GROUP, INC.)
"vidc.cvid" -> C:\WINDOWS\System32\iccvid.dll [iccvid.dll] -> [2008/04/14 05:00:00 | 000,080,384 | ---- | M | MD5 = 7E86D471EF8DED7B9D15106002120271] (Radius Inc.)
"vidc.iv31" -> C:\WINDOWS\System32\ir32_32.dll [ir32_32.dll] -> [2008/04/14 05:00:00 | 000,199,168 | ---- | M | MD5 = 43ECA1576906BA76FB3E329A338A3CAE] ()
"vidc.iv32" -> C:\WINDOWS\System32\ir32_32.dll [ir32_32.dll] -> [2008/04/14 05:00:00 | 000,199,168 | ---- | M | MD5 = 43ECA1576906BA76FB3E329A338A3CAE] ()
"vidc.iv41" -> C:\WINDOWS\System32\ir41_32.ax [ir41_32.ax] -> [2008/04/14 05:00:00 | 000,848,384 | ---- | M | MD5 = 948E1498C6438625247F94534AAA82FE] (Intel Corporation)
"vidc.iv50" -> C:\WINDOWS\System32\ir50_32.dll [ir50_32.dll] -> [2008/04/14 05:00:00 | 000,755,200 | ---- | M | MD5 = 5F10DC19D92CCF6B719B494572F4F74B] (Intel Corporation)
"vidc.VP60" -> C:\WINDOWS\system32\vp6vfw.dll [C:\WINDOWS\system32\vp6vfw.dll] -> [2008/09/04 13:11:14 | 000,447,752 | R--- | M | MD5 = 4B0C0A8C960AF22761FB6A25D8A50DF2] (On2.com)
"vidc.VP61" -> C:\WINDOWS\system32\vp6vfw.dll [C:\WINDOWS\system32\vp6vfw.dll] -> [2008/09/04 13:11:14 | 000,447,752 | R--- | M | MD5 = 4B0C0A8C960AF22761FB6A25D8A50DF2] (On2.com)
< Ext (PreApproved) - [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ ->
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{233C1507-6A77-46A4-9443-F871F945D258} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{4063BE15-3B08-470D-A0D5-B37161CFFD69} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{5852F5ED-8BF4-11D4-A245-0080C6F74284} [HKLM] -> C:\Program Files\Java\jre6\bin\wsdetect.dll [isInstalled Class] -> [2010/04/06 22:12:53 | 000,108,320 | ---- | M | MD5 = 2AC5774E748E95F10A5123FE8F44BE74] (Sun Microsystems, Inc.)
{68979310-D979-4CCA-AB57-83BEFB03E0D3} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_19.dll [Java Plug-in 1.6.0_19] -> [2010/04/06 22:12:52 | 000,136,992 | ---- | M | MD5 = BF86AAF1E914C153F32A9ACD04C91918] (Sun Microsystems, Inc.)
{CA8A9780-280D-11CF-A24D-444553540000} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll [Adobe PDF Reader] -> [2009/12/21 18:15:14 | 000,660,912 | ---- | M | MD5 = A911AFDEDF87F42A915C1488387185AF] (Adobe Systems, Inc.)
{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_19.dll [Java Plug-in 1.6.0_19] -> [2010/04/06 22:12:52 | 000,136,992 | ---- | M | MD5 = BF86AAF1E914C153F32A9ACD04C91918] (Sun Microsystems, Inc.)
{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_19.dll [Java Plug-in 1.6.0_19] -> [2010/04/06 22:12:52 | 000,136,992 | ---- | M | MD5 = BF86AAF1E914C153F32A9ACD04C91918] (Sun Microsystems, Inc.)
{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_19.dll [Java Plug-in 1.6.0_19] -> [2010/04/06 22:12:52 | 000,136,992 | ---- | M | MD5 = BF86AAF1E914C153F32A9ACD04C91918] (Sun Microsystems, Inc.)
{CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} [HKLM] -> C:\WINDOWS\system32\deploytk.dll [Deployment Toolkit] -> [2010/04/06 22:12:52 | 000,411,368 | ---- | M | MD5 = FA8D8FA6C60AB99C07693560842C9BB6] (Sun Microsystems, Inc.)
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{D27CDB6E-AE6D-11cf-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx [Shockwave Flash Object] -> [2010/01/26 17:58:36 | 003,981,080 | R--- | M | MD5 = C06E6E160F34CE092301BD2B29067F3F] (Adobe Systems, Inc.)
< Ext (Settings) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\ ->
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [Skype add-on for Internet Explorer (toolbar button)] -> [2010/02/08 13:28:14 | 000,804,136 | ---- | M | MD5 = 7D52D1B380C1231FCEC11A707726A781] (Skype Technologies S.A.)
{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [Skype add-on for Internet Explorer] -> [2010/02/08 13:28:14 | 000,804,136 | ---- | M | MD5 = 7D52D1B380C1231FCEC11A707726A781] (Skype Technologies S.A.)
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx [Shockwave Flash Object] -> [2010/01/26 17:58:36 | 003,981,080 | R--- | M | MD5 = C06E6E160F34CE092301BD2B29067F3F] (Adobe Systems, Inc.)
{E2E2DD38-D088-4134-82B7-F2BA38496583} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{FB5F1910-F110-11D2-BB9E-00C04F795683} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Ext (Stats) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\ ->
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} [HKLM] -> C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx [DHTML Edit Control Safe for Scripting for IE5] -> [2009/07/27 15:27:12 | 000,128,512 | ---- | M | MD5 = AB2618C157C8D7BC89BA3402C6E52638] (Microsoft Corporation)
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [Skype add-on for Internet Explorer (toolbar button)] -> [2010/02/08 13:28:14 | 000,804,136 | ---- | M | MD5 = 7D52D1B380C1231FCEC11A707726A781] (Skype Technologies S.A.)
{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [Skype add-on for Internet Explorer] -> [2010/02/08 13:28:14 | 000,804,136 | ---- | M | MD5 = 7D52D1B380C1231FCEC11A707726A781] (Skype Technologies S.A.)
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx [Shockwave Flash Object] -> [2010/01/26 17:58:36 | 003,981,080 | R--- | M | MD5 = C06E6E160F34CE092301BD2B29067F3F] (Adobe Systems, Inc.)
{E2E2DD38-D088-4134-82B7-F2BA38496583} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{FB5F1910-F110-11D2-BB9E-00C04F795683} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
.bat [@ = batfile] -> "%1" %* ->
.cmd [@ = cmdfile] -> "%1" %* ->
.com [@ = ComFile] -> "%1" %* ->
.exe [@ = exefile] -> "%1" %* ->
.pif [@ = piffile] -> "%1" %* ->
.scr [@ = scrfile] -> "%1" /S ->
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost > -> ->
*netsvcs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ->
6to4 -> -> File not found
Ias -> C:\WINDOWS\system32\ias -> [2010/02/20 01:02:10 | 000,000,000 | ---D | M]
Iprip -> -> File not found
Irmon -> -> File not found
NWCWorkstation -> -> File not found
Nwsapagent -> -> File not found
WmdmPmSp -> -> File not found
*MultiFile Done* -> ->
< Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ ->
skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} [HKLM] -> C:\Program Files\Common Files\Skype\Skype4COM.dll[IEProtocolHandler Class] -> [2010/03/09 10:02:16 | 002,135,336 | R--- | M | MD5 = 028FF74DAFDC7BB45C956A5EC8926CEE] (Skype Technologies)
skype-ie-addon-data:{91774881-D725-4E58-B298-07617B9B86A8} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll[Skype IE add-on Pluggable Protocol] -> [2010/02/08 13:28:14 | 000,804,136 | ---- | M | MD5 = 7D52D1B380C1231FCEC11A707726A781] (Skype Technologies S.A.)
< SafeBoot-Minimal Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ ->
{36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers
{4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive
{4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive
{4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller
{4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc
{4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard
{4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse
{4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters
{4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter
{4D36E97D-E325-11CE-BFC1-08002BE10318} -> System
{4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive
{71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume
{745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices
Base -> Driver Group
Boot Bus Extender -> Driver Group
Boot file system -> Driver Group
File system -> Driver Group
Filter -> Driver Group
PCI Configuration -> Driver Group
PNP Filter -> Driver Group
Primary disk -> Driver Group
SCSI Class -> Driver Group
sermouse.sys -> Driver
System Bus Extender -> Driver Group
vga.sys -> Driver
WdfLoadGroup ->
< SafeBoot-Network Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ ->
{36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers
{4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive
{4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive
{4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller
{4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc
{4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard
{4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse
{4D36E972-E325-11CE-BFC1-08002BE10318} -> Net
{4D36E973-E325-11CE-BFC1-08002BE10318} -> NetClient
{4D36E974-E325-11CE-BFC1-08002BE10318} -> NetService
{4D36E975-E325-11CE-BFC1-08002BE10318} -> NetTrans
{4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters
{4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter
{4D36E97D-E325-11CE-BFC1-08002BE10318} -> System
{4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive
{71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume
{745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices
Base -> Driver Group
Boot Bus Extender -> Driver Group
Boot file system -> Driver Group
File system -> Driver Group
Filter -> Driver Group
NDIS Wrapper -> Driver Group
NetBIOSGroup -> Driver Group
NetDDEGroup -> Driver Group
Network -> Driver Group
NetworkProvider -> Driver Group
PCI Configuration -> Driver Group
PNP Filter -> Driver Group
PNP_TDI -> Driver Group
Primary disk -> Driver Group
SCSI Class -> Driver Group
sermouse.sys -> Driver
Streams Drivers -> Driver Group
System Bus Extender -> Driver Group
TDI -> Driver Group
vga.sys -> Driver
WdfLoadGroup ->
< Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
\\"FirstRunDisabled" -> [1] -> File not found
\\"AntiVirusDisableNotify" ->
\\"FirewallDisableNotify" ->
\\"UpdatesDisableNotify" ->
\\"AntiVirusOverride" ->
\\"FirewallOverride" ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
\\"EnableFirewall" -> [1] -> File not found
\\"DoNotAllowExceptions" ->
\\"DisableNotifications" ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> ->
< Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
{0076E1AC-9E7B-4B9F-A62A-4CC9511AD8E3} -> Zune Language Pack (FR)
{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C} -> Java DB 10.5.3.0
{048298C9-A4D3-490B-9FF9-AB023A9238F3} -> Steam
{0556F885-2415-4666-B53E-33727E46AEA1} -> The Movies(TM)
{0C826C5B-B131-423A-A229-C71B3CACCD6A} -> CDDRV_Installer
{0DFB3DE8-65B9-44FF-AA0A-3BECC5A2BFD1} -> Adobe Flash Player 10 Plugin
{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB} -> LightScribe System Software 1.14.17.1
{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
{20D4A895-748C-4D88-871C-FDB1695B0169} -> Platform
{26A24AE4-039D-4CA4-87B4-2F83216019FF} -> Java(TM) 6 Update 19
{3101CB58-3482-4D21-AF1A-7057FC935355} -> KhalInstallWrapper
{32A3A4F4-B792-11D6-A78A-00B0D0160190} -> Java(TM) SE Development Kit 6 Update 19
{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP
{370BCBBA-67D7-4535-ADCD-58CD1C8DEC99} -> Zune Language Pack (DE)
{40EC6323-497B-44DA-8A88-74578622D9B3} -> Zune Language Pack (IT)
{4A03706F-666A-4037-7777-5F2748764D10} -> Java Auto Updater
{56C049BE-79E9-4502-BEA7-9754A3E60F9B} -> neroxml
{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
{7299052b-02a4-4627-81f2-1818da5d550d} -> Microsoft Visual C++ 2005 Redistributable
{789289CA-F73A-4A16-A331-54D498CE069F} -> Ventrilo Client
{837b34e3-7c30-493c-8f6a-2b0f04e2912c} -> Microsoft Visual C++ 2005 Redistributable
{888FFC82-688D-46AB-A776-B417885432B6} -> Zune
{95120000-00B9-0409-0000-0000000FF1CE} -> Microsoft Application Error Reporting
{980A182F-E0A2-4A40-94C1-AE0C1235902E} -> Pando Media Booster
{981029E0-7FC9-4CF3-AB39-6F133621921A} -> Skype Toolbars
{A2BCA9F1-566C-4805-97D1-7FDC93386723} -> Adobe AIR
{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} -> Microsoft .NET Framework 3.0 Service Pack 2
{A498D9EB-927B-459B-85D6-DD6EF8C2C564} -> erLT
{AC76BA86-7AD7-1033-7B44-A93000000001} -> Adobe Reader 9.3
{B7A9964C-A9A7-4714-B494-50067238876E} -> Fantasy Earth Zero
{B8C3B479-1716-11D5-968A-0050BA84F5F7} -> Baldur's Gate(TM) II - Throne of Bhaal (TM)
{C05D8CDB-417D-4335-A38C-A0659EDFD6B8} -> The Sims™ 3
{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} -> Microsoft .NET Framework 2.0 Service Pack 2
{C9BED750-1211-4480-B1A5-718A3BE15525} -> REALTEK GbE & FE Ethernet PCI-E NIC Driver
{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} -> Microsoft .NET Framework 1.1
{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} -> SUPERAntiSpyware Free Edition
{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} -> Microsoft .NET Framework 3.5 SP1
{D103C4BA-F905-437A-8049-DB24763BBE36} -> Skype™ 4.2
{D5A9DA4B-E4F9-FB49-017D-769FC540F1F0} -> EA Download Manager UI
{DB0BA61A-8295-4211-85F7-184FC2591033} -> Nero 7 Essentials
{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6} -> NVIDIA PhysX
{E3E71D07-CD27-46CB-8448-16D4FB29AA13} -> Microsoft WSE 3.0 Runtime
{EE4ACABF-531E-419A-9225-B8E0FA4955AF} -> Zune Language Pack (ES)
{F20C1251-1D0A-4944-B2AE-678581B33B19} -> Neverwinter Nights 2
{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E} -> Logitech SetPoint
{F7338FA3-DAB5-49B2-900D-0AFB5760C166} -> PC Probe II
15b35190-c6f9-11d9-9669-0800200c9a66_is1 -> Dungeons & Dragons Online - Eberron Unlimited™
62289540-dc30-11dc-95ff-0800200c9a66_is1 -> Turbine Download Manager
Adobe AIR -> Adobe AIR
Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX
avast5 -> avast! Free Antivirus
BitTorrent -> BitTorrent
CCleaner -> CCleaner
com.ea.Vault.919CACB699904AC5D41B606703
500DD39747C02D.1 -> EA Download Manager UI
EA Download Manager -> EA Download Manager
HijackThis -> HijackThis 2.0.2
ie8 -> Windows Internet Explorer 8
InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1} -> The Movies(TM)
InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} -> VIA Platform Device Manager
InstallShield_{B7A9964C-A9A7-4714-B494-50067238876E} -> Fantasy Earth Zero
LimeWire -> LimeWire 5.4.8
Malwarebytes' Anti-Malware_is1 -> Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1 (1033) -> Microsoft .NET Framework 1.1
Microsoft .NET Framework 3.5 SP1 -> Microsoft .NET Framework 3.5 SP1
MSCompPackV1 -> Microsoft Compression Client Pack 1.0 for Windows XP
NVIDIA Display Control Panel -> NVIDIA Display Control Panel
NVIDIA Drivers -> NVIDIA Drivers
NVIDIA nView Desktop Manager -> NVIDIA nView Desktop Manager
PunkBusterSvc -> PunkBuster Services
Steam App 10180 -> Call of Duty: Modern Warfare 2
Steam App 10190 -> Call of Duty: Modern Warfare 2 - Multiplayer
Steam App 17450 -> Dragon Age: Origins
Steam App 17460 -> Mass Effect
Steam App 20540 -> Company of Heroes: Tales of Valor
Steam App 220 -> Half-Life 2
Steam App 240 -> Counter-Strike: Source
Steam App 24960 -> Battlefield: Bad Company 2
Steam App 280 -> Half-Life: Source
Steam App 3160 -> A Farewell to Dragons
Steam App 320 -> Half-Life 2: Deathmatch
Steam App 360 -> Half-Life Deathmatch: Source
Steam App 380 -> Half-Life 2: Episode One
Steam App 40300 -> Risen
Steam App 41500 -> Torchlight
Steam App 4560 -> Company of Heroes
Steam App 47730 -> Dragon Age: Origins - Awakening
Steam App 550 -> Left 4 Dead 2
VLC media player -> VLC media player 1.0.5
Wdf01005 -> Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Wdf01009 -> Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Windows Media Format Runtime -> Windows Media Format 11 runtime
Windows Media Player -> Windows Media Player 11
WinRAR archiver -> WinRAR archiver
winusb0100 -> Microsoft WinUsb 1.0
WMFDist11 -> Windows Media Format 11 runtime
wmp11 -> Windows Media Player 11
Wudf01009 -> Microsoft User-Mode Driver Framework Feature Pack 1.9
Zune -> Zune
< Uninstall List [HKEY_USERS\S-1-5-21-1275210071-1284227242-682003330-1003\] > -> HKEY_USERS\S-1-5-21-1275210071-1284227242-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
< EventViewer Logs - Last 10 Errors > -> Event Information -> Description
Application [ Error ] 4/7/2010 12:38:10 AM Computer Name = CHRIS-83C9A0BB7 | Source = Application Error | ID = 1000 -> Description = Faulting application ctfmon.exe, version 5.1.2600.5512, faulting module unknown, version 0.0.0.0, fault address 0x715b9e59.
Application [ Error ] 4/7/2010 12:40:26 AM Computer Name = CHRIS-83C9A0BB7 | Source = .NET Runtime 2.0 Error Reporting | ID = 1000 -> Description = Faulting application dfsvc.exe, version 2.0.50727.3053, stamp 4889df14, faulting module mscorwks.dll, version 2.0.50727.3603, stamp 4a7cd88e, debug? 0, fault address 0x00097d9a.
Application [ Error ] 4/7/2010 12:40:53 AM Computer Name = CHRIS-83C9A0BB7 | Source = .NET Runtime 2.0 Error Reporting | ID = 1000 -> Description = Faulting application dfsvc.exe, version 2.0.50727.3053, stamp 4889df14, faulting module mscorwks.dll, version 2.0.50727.3603, stamp 4a7cd88e, debug? 0, fault address 0x00097d9a.
Application [ Error ] 4/7/2010 12:51:52 AM Computer Name = CHRIS-83C9A0BB7 | Source = Application Error | ID = 1000 -> Description = Faulting application ctfmon.exe, version 5.1.2600.5512, faulting module unknown, version 0.0.0.0, fault address 0x715b9e59.
Application [ Error ] 4/7/2010 1:08:42 AM Computer Name = CHRIS-83C9A0BB7 | Source = Application Error | ID = 1000 -> Description = Faulting application msiexec.exe, version 3.1.4001.5512, faulting module unknown, version 0.0.0.0, fault address 0x715b9e59.
Application [ Error ] 4/7/2010 2:03:54 PM Computer Name = CHRIS-83C9A0BB7 | Source = Application Error | ID = 1000 -> Description = Faulting application ctfmon.exe, version 5.1.2600.5512, faulting module unknown, version 0.0.0.0, fault address 0x715b9e59.
Application [ Error ] 4/7/2010 2:11:40 PM Computer Name = CHRIS-83C9A0BB7 | Source = Application Error | ID = 1000 -> Description = Faulting application avastui.exe, version 5.0.418.0, faulting module mfc90u.dll, version 9.0.30729.4148, fault address 0x00088cea.
Application [ Error ] 4/7/2010 11:57:25 PM Computer Name = CHRIS-83C9A0BB7 | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Application [ Error ] 4/8/2010 10:10:41 AM Computer Name = CHRIS-83C9A0BB7 | Source = Application Hang | ID = 1002 -> Description = Hanging application mbam.exe, version 1.45.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Application [ Error ] 4/8/2010 10:10:41 AM Computer Name = CHRIS-83C9A0BB7 | Source = Application Hang | ID = 1002 -> Description = Hanging application mbam.exe, version 1.45.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
System [ Error ] 3/9/2010 11:16:05 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7031 -> Description = The Turbine Message Service - Live service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
System [ Error ] 3/9/2010 11:24:06 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7034 -> Description = The Dragon Age: Origins - Content Updater service terminated unexpectedly. It has done this 1 time(s).
System [ Error ] 3/9/2010 11:24:14 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7031 -> Description = The Turbine Message Service - Live service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
System [ Error ] 3/9/2010 11:24:21 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7034 -> Description = The Turbine Network Service - Live service terminated unexpectedly. It has done this 1 time(s).
System [ Error ] 3/9/2010 11:24:26 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7034 -> Description = The Dragon Age: Origins - Content Updater service terminated unexpectedly. It has done this 2 time(s).
System [ Error ] 3/9/2010 11:25:05 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7034 -> Description = The Dragon Age: Origins - Content Updater service terminated unexpectedly. It has done this 3 time(s).
System [ Error ] 3/9/2010 11:27:28 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7034 -> Description = The Turbine Network Service - Live service terminated unexpectedly. It has done this 2 time(s).
System [ Error ] 3/9/2010 11:27:31 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7031 -> Description = The Turbine Message Service - Live service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
System [ Error ] 3/9/2010 11:28:31 AM Computer Name = CHRIS-83C9A0BB7 | Source = Service Control Manager | ID = 7032 -> Description = The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Turbine Message Service - Live service, but this action failed with the following error: %%1058