OTL logfile created on: 10/10/2014 16:00:17 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Shane\InstallImages
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17280)
Locale: 00001809 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy
 
2.96 Gb Total Physical Memory | 1.23 Gb Available Physical Memory | 41.42% Memory free
5.92 Gb Paging File | 3.94 Gb Available in Paging File | 66.61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.79 Gb Total Space | 98.51 Gb Free Space | 42.32% Space Free | Partition Type: NTFS
 
Computer Name: CHEZKNEE | User Name: Shane | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014/10/10 11:46:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Shane\InstallImages\OTL.exe
PRC - [2014/09/23 05:07:06 | 000,852,808 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014/09/13 01:52:04 | 036,414,624 | ---- | M] (Dropbox, Inc.) -- C:\Users\Shane\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2014/07/30 17:32:00 | 000,467,680 | ---- | M] (Sony) -- C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
PRC - [2014/06/23 09:07:06 | 000,113,376 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
PRC - [2014/06/17 10:57:59 | 000,230,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
PRC - [2014/05/12 07:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014/05/12 07:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014/05/12 07:24:34 | 006,970,168 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
PRC - [2014/01/09 07:18:10 | 006,434,176 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
PRC - [2014/01/09 07:17:38 | 000,770,432 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
PRC - [2013/11/06 10:55:46 | 000,845,168 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2013/11/06 10:55:40 | 000,311,152 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2013/11/06 10:55:38 | 001,564,528 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\Kies.exe
PRC - [2013/08/30 13:32:52 | 000,884,744 | ---- | M] (Orange) -- C:\Program Files\Orange\MailNotifier\MailNotifier.exe
PRC - [2013/08/02 01:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013/04/22 09:05:32 | 000,720,064 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
PRC - [2012/11/23 03:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/05/31 17:45:33 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\real\realplayer\Update\realsched.exe
PRC - [2011/07/29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/06/24 20:19:50 | 000,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/02/27 08:18:32 | 000,217,088 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2009/01/31 14:15:38 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2009/01/31 12:43:30 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2008/11/24 03:56:46 | 000,054,568 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2007/11/27 17:13:44 | 000,385,024 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2014/10/10 12:37:44 | 000,043,008 | ---- | M] () -- c:\Users\Shane\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9wdhyx.dll
MOD - [2014/09/17 19:20:45 | 002,199,040 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common23b84511#\6819507cab6718b0fc2339a4e5935ed0\Kies.Common.Multimedia.ni.dll
MOD - [2014/09/17 19:20:33 | 000,310,784 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\47e278c933f193c0044112ce7636f596\Kies.Common.Util.ni.dll
MOD - [2014/09/17 19:20:31 | 001,251,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\4f17759395fe7b2f7269a2f7a7639186\Kies.Interface.ni.dll
MOD - [2014/09/17 19:20:27 | 002,139,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\656cb32f6423c17876c5e747e5dec245\Kies.ni.exe
MOD - [2014/09/17 19:17:15 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\1269ba2bee1b8587ae523e6d9abff484\PresentationFramework.ni.dll
MOD - [2014/09/17 19:17:00 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\38fdb5c1bcfbed498ea2db40ef6aa23e\PresentationCore.ni.dll
MOD - [2014/09/17 19:16:50 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\057cef93417231d7d4f8ed84841c12f1\WindowsBase.ni.dll
MOD - [2014/09/17 19:16:50 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\94110ad15c57cfddf356ece3d307d533\System.Xaml.ni.dll
MOD - [2014/09/17 19:16:49 | 000,805,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\0e64e782ed0f5deb5c96661b74e9f15f\System.Runtime.Remoting.ni.dll
MOD - [2014/09/17 19:16:41 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\b51470d7e909c4fab01a25fd1e1c42dc\System.Windows.Forms.ni.dll
MOD - [2014/09/17 19:16:32 | 007,668,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3c777eb7042798554bcf10134595273e\System.Xml.ni.dll
MOD - [2014/09/17 19:16:32 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\28684b3f787d06edd1de8b574521d867\System.Core.ni.dll
MOD - [2014/09/17 19:16:26 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\5ee6a5fbbf59e1c3ca14631ff12dd6ec\System.Configuration.ni.dll
MOD - [2014/09/17 19:16:24 | 010,061,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\9b943fcb3af2101cfb3467161c6ac0ed\System.ni.dll
MOD - [2014/09/13 01:20:58 | 003,610,624 | ---- | M] () -- C:\Users\Shane\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2014/06/23 09:07:06 | 000,113,376 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
MOD - [2014/02/28 15:36:48 | 014,971,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\c94e1e76e67ad518b4310a539f072832\Kies.Theme.ni.dll
MOD - [2014/02/28 15:36:12 | 000,236,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\cffeb31975c17760187d713cf2d7934d\ASF_cSharpAPI.ni.dll
MOD - [2014/02/28 15:36:11 | 000,064,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\66e54b7bc2ea804b9d1ea35524181ae9\Kies.Common.AllShare.ni.dll
MOD - [2014/02/28 15:34:50 | 000,186,368 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Commonc65c5a95#\21871ce315d4257cfe2052454e583368\Kies.Common.DeviceServiceLib.Interface.ni.dll
MOD - [2014/02/28 15:34:22 | 001,702,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\a939a4fe7890e6346d81511556e7c926\Kies.Locale.ni.dll
MOD - [2014/02/28 15:34:21 | 000,081,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\8375369d3ac9c732c2ec8f6b5c9f2bb8\Kies.MVVM.ni.dll
MOD - [2014/02/28 15:34:20 | 001,842,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\0107366ee1ddeb3e9873c6fac6344bc1\Kies.UI.ni.dll
MOD - [2014/02/28 09:06:56 | 000,223,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\f4354d6580fbb745c0c8acba382a7b84\System.ServiceProcess.ni.dll
MOD - [2014/02/28 09:06:18 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll
MOD - [2014/02/28 09:05:44 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
MOD - [2013/11/20 15:56:48 | 000,668,672 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\PhoneUpdate.dll
MOD - [2013/09/13 11:02:30 | 000,208,896 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\MExplorer.dll
MOD - [2013/09/05 00:14:10 | 004,300,456 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2013/08/30 12:39:48 | 007,388,672 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\QtGui4.dll
MOD - [2013/08/30 12:39:48 | 002,010,624 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\QtCore4.dll
MOD - [2013/08/30 12:39:48 | 000,877,056 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\QtNetwork4.dll
MOD - [2013/08/30 12:39:48 | 000,337,408 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\QtXml4.dll
MOD - [2013/08/30 12:39:48 | 000,241,664 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\phonon4.dll
MOD - [2013/08/30 12:39:48 | 000,184,320 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\ProxyDetection.dll
MOD - [2013/08/30 12:39:48 | 000,178,176 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\phonon_backend\phonon_ds94.dll
MOD - [2013/08/30 12:39:48 | 000,022,016 | ---- | M] () -- C:\Program Files\Orange\MailNotifier\imageformats\qgif4.dll
MOD - [2013/08/23 20:01:44 | 025,100,288 | ---- | M] () -- C:\Users\Shane\AppData\Roaming\Dropbox\bin\libcef.dll
MOD - [2013/05/20 12:58:08 | 000,620,718 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\sqlite3.dll
MOD - [2012/07/26 11:51:52 | 000,208,896 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\VistaCalendar.dll
MOD - [2012/04/30 11:57:42 | 000,039,936 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\TMonitorAPI.dll
MOD - [2012/04/04 14:33:24 | 000,139,776 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\CAgdLNotes.dll
MOD - [2012/03/16 12:51:02 | 000,188,416 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\CAgdOutlook.dll
MOD - [2012/02/20 20:29:04 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/02/20 20:28:42 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/02/13 09:53:50 | 000,086,016 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\CalEngine.dll
MOD - [2011/07/29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011/07/07 14:54:36 | 000,233,984 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\Report.dll
MOD - [2010/10/20 15:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2010/08/31 18:09:13 | 000,034,816 | ---- | M] () -- C:\Program Files\Google\Google Desktop Search\gzlib.dll
MOD - [2010/01/11 16:44:54 | 000,053,248 | ---- | M] () -- C:\Program Files\Sony\Sony PC Companion\VObject.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2014/09/15 13:48:32 | 000,729,608 | ---- | M] (Orange SA) [Auto | Stopped] -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe -- (Orange update Core Service)
SRV - [2014/08/18 22:36:05 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/05/12 07:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014/05/12 07:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014/01/09 07:17:38 | 000,770,432 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2013/12/19 00:41:02 | 030,814,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2013/05/27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/02/04 18:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2010/08/30 19:15:12 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2006/01/06 21:25:12 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV)
SRV - [2005/11/24 16:03:22 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2005/11/24 15:57:44 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2005/11/24 15:47:30 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\zrdumhbf.sys -- (zrdumhbf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\zanffvgn.sys -- (zanffvgn)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ymbiayfa.sys -- (ymbiayfa)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\yljbzwcs.sys -- (yljbzwcs)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ylhjqkzi.sys -- (ylhjqkzi)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\yhtdnycv.sys -- (yhtdnycv)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ybttjidb.sys -- (ybttjidb)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xzmyycfa.sys -- (xzmyycfa)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xzciipgp.sys -- (xzciipgp)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xravqyga.sys -- (xravqyga)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xjcgmrco.sys -- (xjcgmrco)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xikopeth.sys -- (xikopeth)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xdiiiaug.sys -- (xdiiiaug)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\xaootllz.sys -- (xaootllz)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\wyvqkyqg.sys -- (wyvqkyqg)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\wtwttlem.sys -- (wtwttlem)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\wlqvjzqz.sys -- (wlqvjzqz)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\wcbvkztd.sys -- (wcbvkztd)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\vmripazr.sys -- (vmripazr)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\vlkoqdju.sys -- (vlkoqdju)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\vflidguu.sys -- (vflidguu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\vcjjhcwu.sys -- (vcjjhcwu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\vbujuqzk.sys -- (vbujuqzk)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\vabzwqzw.sys -- (vabzwqzw)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\uyglfmdx.sys -- (uyglfmdx)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\uxmlfnpr.sys -- (uxmlfnpr)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\uwamaflu.sys -- (uwamaflu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\urfrjtcm.sys -- (urfrjtcm)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\uizzspnj.sys -- (uizzspnj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\trpbfvpn.sys -- (trpbfvpn)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\toxeidza.sys -- (toxeidza)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\tkuaesrn.sys -- (tkuaesrn)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\tiigmcut.sys -- (tiigmcut)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\thyansre.sys -- (thyansre)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\stwrt.sys -- (STHDA)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\sfrcyvty.sys -- (sfrcyvty)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\sevofvlg.sys -- (sevofvlg)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\secvbwum.sys -- (secvbwum)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\rvufqgdg.sys -- (rvufqgdg)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\rurwhvcz.sys -- (rurwhvcz)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\rqwauodm.sys -- (rqwauodm)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\rlomwtih.sys -- (rlomwtih)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\rhyulmue.sys -- (rhyulmue)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\rhwaulgf.sys -- (rhwaulgf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\qrqcsxrj.sys -- (qrqcsxrj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\qkhngcql.sys -- (qkhngcql)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\qimjeipo.sys -- (qimjeipo)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\qhkraxqw.sys -- (qhkraxqw)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\qfcbnuub.sys -- (qfcbnuub)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\pwxdqjya.sys -- (pwxdqjya)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\pvrlegkf.sys -- (pvrlegkf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\presgwen.sys -- (presgwen)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\pkcwaooe.sys -- (pkcwaooe)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\phnblvnu.sys -- (phnblvnu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\phhwngep.sys -- (phhwngep)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\pcypsfog.sys -- (pcypsfog)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\pcfxqcpe.sys -- (pcfxqcpe)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\pbhdcdmb.sys -- (pbhdcdmb)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\oofggyqg.sys -- (oofggyqg)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\obgvfija.sys -- (obgvfija)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\oaqybuxc.sys -- (oaqybuxc)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\nxhdcrvc.sys -- (nxhdcrvc)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\nlmsjzcz.sys -- (nlmsjzcz)
DRV - File not found [Kernel | System | Stopped] -- system32\drivers\netfilter2.sys -- (netfilter2)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\najyxzfp.sys -- (najyxzfp)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mzxhesjm.sys -- (mzxhesjm)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mxbxotek.sys -- (mxbxotek)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mwszvlpx.sys -- (mwszvlpx)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\msjvebtg.sys -- (msjvebtg)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mrunzkvn.sys -- (mrunzkvn)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mqqpiegn.sys -- (mqqpiegn)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mnirgulz.sys -- (mnirgulz)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mgrbqvcu.sys -- (mgrbqvcu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mgdntfqc.sys -- (mgdntfqc)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\mabjffiu.sys -- (mabjffiu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\longdzmb.sys -- (longdzmb)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\lgksuext.sys -- (lgksuext)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\lfiuknhj.sys -- (lfiuknhj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\leoduuww.sys -- (leoduuww)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ldzdnhwr.sys -- (ldzdnhwr)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\lahnjzwf.sys -- (lahnjzwf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\kvfmuxjg.sys -- (kvfmuxjg)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\klawevlw.sys -- (klawevlw)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\kklzhoul.sys -- (kklzhoul)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\kijafjlt.sys -- (kijafjlt)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\kecfozkj.sys -- (kecfozkj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\kbiowlcp.sys -- (kbiowlcp)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\jsxtugrq.sys -- (jsxtugrq)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\jhbepokp.sys -- (jhbepokp)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ixplwmip.sys -- (ixplwmip)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\iqyeytqq.sys -- (iqyeytqq)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\igvegmzf.sys -- (igvegmzf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\igrfubmj.sys -- (igrfubmj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ieuysqwo.sys -- (ieuysqwo)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\icsadghe.sys -- (icsadghe)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\hzgfcfvd.sys -- (hzgfcfvd)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\hvotlose.sys -- (hvotlose)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\hmtjtouf.sys -- (hmtjtouf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\hcyotgob.sys -- (hcyotgob)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\hbasuste.sys -- (hbasuste)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\gtvbavtt.sys -- (gtvbavtt)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\gldlvahk.sys -- (gldlvahk)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\gfsqcdsr.sys -- (gfsqcdsr)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\fpsjtzii.sys -- (fpsjtzii)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\fowqagmp.sys -- (fowqagmp)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\fkkdkcay.sys -- (fkkdkcay)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\fjzxmtuu.sys -- (fjzxmtuu)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ffycjpxq.sys -- (ffycjpxq)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\fcjlogbi.sys -- (fcjlogbi)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\exxisgxw.sys -- (exxisgxw)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\eudprjmx.sys -- (eudprjmx)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\eqmbmarj.sys -- (eqmbmarj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\eqiaayfd.sys -- (eqiaayfd)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\endbunal.sys -- (endbunal)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ehkxevho.sys -- (ehkxevho)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\eevovonw.sys -- (eevovonw)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ebjtqgnf.sys -- (ebjtqgnf)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\dpaetasm.sys -- (dpaetasm)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\detoolee.sys -- (detoolee)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\dclldsej.sys -- (dclldsej)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\cwdkhbdq.sys -- (cwdkhbdq)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\cpwsiiac.sys -- (cpwsiiac)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ckumkekb.sys -- (ckumkekb)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\cjmkqprt.sys -- (cjmkqprt)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bzdqydoa.sys -- (bzdqydoa)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bunydzxa.sys -- (bunydzxa)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bulrwtqq.sys -- (bulrwtqq)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\btglhnyh.sys -- (btglhnyh)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bprjqfhh.sys -- (bprjqfhh)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bnoxunta.sys -- (bnoxunta)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bkmcpxtb.sys -- (bkmcpxtb)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\bgqjilmj.sys -- (bgqjilmj)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\avxemicn.sys -- (avxemicn)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\arsrmixl.sys -- (arsrmixl)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\alundsxw.sys -- (alundsxw)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\aeppmcao.sys -- (aeppmcao)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\aeobeafj.sys -- (aeobeafj)
DRV - [2014/10/10 12:54:06 | 000,110,296 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - [2014/05/12 07:26:08 | 000,051,928 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV - [2014/05/12 07:25:54 | 000,023,256 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013/08/21 05:31:38 | 000,182,680 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2013/08/21 05:31:38 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2013/08/20 07:02:16 | 000,182,680 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudserd.sys -- (ssudserd)
DRV - [2013/01/11 18:49:53 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2013/01/11 18:49:53 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2012/07/03 11:43:00 | 000,027,776 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgandnetmodem.sys -- (ANDNetModem)
DRV - [2012/06/22 11:01:32 | 000,019,984 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\EsgScanner.sys -- (EsgScanner)
DRV - [2011/05/25 00:40:10 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\taphss.sys -- (taphss)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/05/22 17:17:52 | 000,058,528 | ---- | M] (O2Micro ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\o2mdg.sys -- (O2MDGRDR)
DRV - [2009/05/07 17:47:12 | 000,041,504 | ---- | M] (O2Micro ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\o2sdg.sys -- (O2SDGRDR)
DRV - [2009/03/24 15:25:24 | 000,197,680 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008/05/02 10:58:28 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2008/05/02 10:58:14 | 000,020,864 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2008/05/02 10:58:14 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2008/05/02 10:58:12 | 000,017,536 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = 
 
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ie.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-ie
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00:  File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2014/10/09 22:39:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\500057b036edd@500057b036f17.info: C:\Users\Shane\AppData\Roaming\Mozilla\Firefox\Profiles\smfjul7v.default\extensions\500057b036edd@500057b036f17.info
 
[2012/05/31 17:45:40 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = ,
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Shane\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\Shane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_2\
CHR - Extension: No name found = C:\Users\Shane\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\Shane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_2\
 
O1 HOSTS File: ([2014/10/10 11:37:05 | 000,000,899 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1			d3oxij66pru1i3.cloudfront.net
O1 - Hosts: 127.0.0.1			us.quikdisplay.com
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\..\Toolbar\WebBrowser: (no name) - {D3028143-6145-4318-99D3-3EDCE54A95A9} - No CLSID value found.
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [stv_fr_10]  File not found
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [GoogleChromeAutoLaunch_D543540C5E044F6C6F7A8F3CC51D5B49] C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup File not found
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [MailNotifier] C:\Program Files\Orange\MailNotifier\MailNotifier.exe (Orange)
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [OfficeSyncProcess] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (Microsoft Corporation)
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [orangeinside] C:\Users\Shane\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe File not found
O4 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000..\Run: [Sony PC Companion] C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Shane\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-1926986339-2190527163-89846441-1000\..Trusted Domains: orange.fr ([logicielsgratuits] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3ED2D654-CF67-446A-9C7A-30CF6E301ADE}: DhcpNameServer = 192.168.1.1 8.8.8.8
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1dc7ff5b-9f90-11e3-ae0c-0026b9b1def1}\Shell - "" = AutoRun
O33 - MountPoints2\{1dc7ff5b-9f90-11e3-ae0c-0026b9b1def1}\Shell\AutoRun\command - "" = E:\LG_PC_Programs.exe
O33 - MountPoints2\{473a9619-9079-11e2-933d-0026b9b1def1}\Shell - "" = AutoRun
O33 - MountPoints2\{473a9619-9079-11e2-933d-0026b9b1def1}\Shell\AutoRun\command - "" = E:\Startme.exe
O33 - MountPoints2\{664306a4-5acd-11e2-9752-0026b9b1def1}\Shell - "" = AutoRun
O33 - MountPoints2\{664306a4-5acd-11e2-9752-0026b9b1def1}\Shell\AutoRun\command - "" = E:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014/10/10 12:47:34 | 000,000,000 | ---D | C] -- C:\FRST
[2014/10/10 12:32:49 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2014/10/10 12:31:41 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/10/10 12:12:31 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014/10/10 11:30:15 | 000,000,000 | ---D | C] -- C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
[2014/10/10 11:30:05 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2014/10/10 11:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2014/10/10 11:27:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2014/10/09 21:10:51 | 000,000,000 | ---D | C] -- C:\Users\Shane\AppData\Roaming\TeamViewer
[2014/10/09 21:10:39 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2014/10/07 13:31:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antivirus Free Edition
[2014/10/07 13:28:22 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender
[2014/10/07 13:28:01 | 000,000,000 | ---D | C] -- C:\Users\Shane\AppData\Roaming\QuickScan
[2014/10/07 12:09:55 | 000,110,296 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/10/07 12:09:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/10/07 12:09:16 | 000,074,456 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014/10/07 12:09:16 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014/10/07 12:09:16 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2014/10/07 12:09:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/10/07 12:09:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/10/07 11:58:51 | 000,000,000 | ---D | C] -- C:\Users\Shane\AppData\Roaming\URSoft
[2014/10/07 11:58:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
[2014/10/07 11:58:28 | 000,000,000 | ---D | C] -- C:\Program Files\Your Uninstaller! 7
[2014/10/07 11:56:17 | 000,000,000 | ---D | C] -- C:\Users\Shane\InstallImages
[2014/10/01 22:04:51 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2014/09/29 08:32:28 | 000,000,000 | ---D | C] -- C:\Users\Shane\AppData\Local\3006
[2014/09/24 09:14:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/09/22 13:24:26 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\NativeFus_Log
[2014/09/19 08:35:05 | 000,000,000 | ---D | C] -- C:\Users\Shane\Documents\Car Insurance Info for Ireland
[2014/09/17 19:26:58 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/09/17 19:26:57 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/09/17 19:26:57 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/09/17 19:26:56 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/09/17 19:26:56 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/09/17 19:26:55 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/09/17 19:26:55 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/09/17 19:26:55 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/09/17 19:26:54 | 000,365,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/09/17 19:26:54 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/09/17 19:26:54 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/09/17 19:26:54 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/09/17 19:26:54 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/09/17 19:26:53 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/09/17 19:26:53 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/09/17 19:26:53 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/09/17 19:26:53 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/09/17 19:26:53 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/09/17 19:26:52 | 000,673,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/09/17 19:26:52 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/09/17 19:26:52 | 000,327,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/09/17 19:26:49 | 004,232,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/09/17 19:26:48 | 002,014,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/09/17 19:25:43 | 002,285,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014/09/17 11:36:08 | 001,987,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014/09/17 11:35:36 | 000,793,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWorkspace.dll
[2014/09/17 11:35:31 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/09/17 11:35:30 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[37 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Shane\Documents\*.tmp files -> C:\Users\Shane\Documents\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014/10/10 16:03:58 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/10/10 16:01:00 | 000,000,256 | ---- | M] () -- C:\Windows\tasks\HP Photo Creations Messager.job
[2014/10/10 15:35:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/10/10 12:54:06 | 000,110,296 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/10/10 12:43:36 | 000,022,656 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/10/10 12:43:36 | 000,022,656 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/10/10 12:36:42 | 000,000,152 | ---- | M] () -- C:\Users\Public\Documents\rim_expiry.xml
[2014/10/10 12:36:20 | 000,000,372 | -H-- | M] () -- C:\Windows\tasks\OptimizerProUpdaterLogonTask.job
[2014/10/10 12:36:16 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/10/10 12:34:31 | 2385,211,392 | -HS- | M] () -- C:\hiberfil.sys
[2014/10/10 12:06:03 | 000,000,352 | -H-- | M] () -- C:\Windows\tasks\OptimizerProUpdaterRefreshTask.job
[2014/10/10 12:02:49 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2014/10/10 11:56:55 | 000,670,052 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/10/10 11:56:55 | 000,127,636 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/10/10 11:30:17 | 000,002,242 | ---- | M] () -- C:\Users\Shane\Desktop\SpyHunter.lnk
[2014/10/09 22:55:47 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2014/10/09 22:55:47 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2014/10/07 13:31:40 | 000,202,583 | ---- | M] () -- C:\ProgramData\1412684881.bdinstall.bin
[2014/10/01 15:50:57 | 000,007,601 | ---- | M] () -- C:\Users\Shane\AppData\Local\Resmon.ResmonCfg
[2014/10/01 08:11:44 | 000,108,544 | ---- | M] () -- C:\Windows\System32\hfnapi.dll
[2014/09/25 11:06:32 | 000,002,127 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/09/22 07:41:56 | 000,231,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2014/09/19 10:53:13 | 000,001,049 | ---- | M] () -- C:\Users\Shane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2014/09/19 10:52:56 | 000,001,017 | ---- | M] () -- C:\Users\Shane\Desktop\Dropbox.lnk
[2014/09/19 10:42:21 | 000,001,972 | ---- | M] () -- C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
[2014/09/17 11:30:47 | 000,314,999 | ---- | M] () -- C:\Users\Shane\Documents\RI MAGUIRE AXA.pdf
[37 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Shane\Documents\*.tmp files -> C:\Users\Shane\Documents\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014/10/10 11:30:17 | 000,002,242 | ---- | C] () -- C:\Users\Shane\Desktop\SpyHunter.lnk
[2014/10/09 22:55:47 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2014/10/09 22:55:47 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2014/10/07 13:31:40 | 000,202,583 | ---- | C] () -- C:\ProgramData\1412684881.bdinstall.bin
[2014/10/01 08:11:44 | 000,108,544 | ---- | C] () -- C:\Windows\System32\hfnapi.dll
[2014/09/22 13:24:26 | 000,000,152 | ---- | C] () -- C:\Users\Public\Documents\rim_expiry.xml
[2014/09/17 11:30:46 | 000,314,999 | ---- | C] () -- C:\Users\Shane\Documents\RI MAGUIRE AXA.pdf
[2014/05/28 19:06:01 | 000,004,096 | -H-- | C] () -- C:\Users\Shane\AppData\Local\keyfile3.drm
[2013/10/30 12:07:00 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2013/10/30 12:06:54 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013/10/30 12:06:54 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013/10/30 12:06:54 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013/10/30 12:06:54 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013/08/24 23:19:41 | 000,007,601 | ---- | C] () -- C:\Users\Shane\AppData\Local\Resmon.ResmonCfg
[2012/06/09 12:21:55 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2012/02/01 18:36:39 | 000,004,608 | ---- | C] () -- C:\Users\Shane\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/20 12:14:20 | 000,000,621 | ---- | C] () -- C:\Users\Shane\Shane - Shortcut.lnk
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 65 bytes -> C:\Users\Shane\Desktop\Wide Standv2.pdf:com.dropbox.attributes
@Alternate Data Stream - 154 bytes -> C:\ProgramData\TEMP:1CE11B51
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:D1B5B4F1

< End of report >