Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

trojan horse infection [Solved]


  • This topic is locked This topic is locked

#16
azarl

azarl

    GeekU Admin

  • Administrator
  • 25,175 posts
Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    PRC - [2011/10/24 20:29:16 | 002,415,456 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
    PRC - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
    SRV - [2011/10/12 06:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
    SRV - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2011/11/22 10:05:29 | 000,000,000 | ---D | M]
    CHR - Extension: AVG Safe Search = C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\
    O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
    O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
    O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
    O18:64bit: - Protocol\Handler\avgsecuritytoolbar - No CLSID value found
    O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
    O18 - Protocol\Handler\avgsecuritytoolbar - No CLSID value found
    O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
    [2011/11/23 15:01:02 | 110,567,732 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
    [2011/11/22 10:05:30 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
    [2011/11/11 17:44:32 | 000,283,248 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm
    [2011/10/30 22:49:55 | 000,113,461 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjw.avm
    
    :files
     C:\Program Files (x86)\AVG\
    
    :Commands
    [purity]
    [emptytemp]
    
    [Reboot]
    
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

Advertisements


#17
baggieboy

baggieboy

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Here's the latest scan. Also below this scan I've posted something that came up on notepad straight after reboot incase you need this too.

OTL logfile created on: 11/25/2011 7:41:29 PM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\eric\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.91 Gb Total Physical Memory | 2.78 Gb Available Physical Memory | 71.19% Memory free
7.81 Gb Paging File | 6.58 Gb Available in Paging File | 84.21% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 285.36 Gb Total Space | 230.01 Gb Free Space | 80.60% Space Free | Partition Type: NTFS
Drive D: | 12.53 Gb Total Space | 2.09 Gb Free Space | 16.65% Space Free | Partition Type: NTFS

Computer Name: ERIC-PC | User Name: eric | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/11/25 17:22:19 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\eric\Desktop\OTL.exe
PRC - [2011/10/14 06:01:50 | 000,994,360 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psia.exe
PRC - [2011/10/14 06:01:48 | 000,399,416 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\sua.exe
PRC - [2011/10/14 06:01:46 | 000,291,896 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
PRC - [2011/09/10 16:22:23 | 000,034,864 | ---- | M] (RadioPI) -- C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4ebarsvc.exe
PRC - [2011/09/10 16:22:23 | 000,026,576 | ---- | M] (RadioPI) -- C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4ebrmon.exe
PRC - [2011/09/06 20:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/09/06 20:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe


========== Modules (No Company Name) ==========


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/09/06 20:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/06/30 07:37:57 | 000,253,440 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/06/30 07:37:56 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2009/09/04 21:35:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Disabled | Stopped] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2008/02/19 08:12:32 | 000,565,928 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxbkcoms.exe -- (lxbk_device)
SRV - [2011/11/02 20:29:22 | 002,072,896 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2011/10/14 06:01:50 | 000,994,360 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\PSIA.exe -- (Secunia PSI Agent)
SRV - [2011/10/14 06:01:48 | 000,399,416 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2011/09/10 16:22:23 | 000,034,864 | ---- | M] (RadioPI) [Auto | Running] -- C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4ebarsvc.exe -- (RadioPI_4eService)
SRV - [2011/06/21 14:57:34 | 000,085,560 | ---- | M] (Hewlett-Packard Company) [Disabled | Stopped] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe -- (HP Support Assistant Service)
SRV - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Disabled | Stopped] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/12 17:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/02/22 20:00:00 | 000,129,584 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\SysWOW64\ezsvc7.dll -- (ezSharedSvc)
SRV - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/02/19 08:12:18 | 000,537,256 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\lxbkcoms.exe -- (lxbk_device)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/09/06 20:38:18 | 000,601,944 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2011/09/06 20:38:16 | 000,301,912 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2011/09/06 20:36:41 | 000,058,200 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2011/09/06 20:36:41 | 000,042,328 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2011/09/06 20:36:30 | 000,065,368 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011/09/06 20:36:14 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2011/03/11 06:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 06:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/12/24 10:43:40 | 000,029,288 | -H-- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apowersoft_AudioDevice.sys -- (Apowersoft_AudioDevice)
DRV:64bit: - [2010/09/01 08:30:58 | 000,017,976 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\psi_mf.sys -- (PSI)
DRV:64bit: - [2010/06/30 07:37:57 | 000,506,880 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010/03/02 15:45:24 | 001,594,368 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/09/17 20:56:24 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2009/09/17 20:56:16 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2009/09/17 20:56:14 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2009/09/17 20:56:10 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009/08/27 16:07:06 | 007,369,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/07/14 23:16:34 | 000,273,456 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 01:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 00:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM)
DRV:64bit: - [2009/07/13 23:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/07/10 14:45:12 | 000,139,264 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®
DRV:64bit: - [2009/06/10 21:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 21:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 21:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 21:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/06/10 20:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 20:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel®
DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/22 14:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/04/29 16:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2009/01/09 14:02:08 | 000,031,744 | ---- | M] (Research in Motion Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys -- (RimVSerPort)
DRV:64bit: - [2008/05/20 17:33:36 | 000,028,416 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - [2007/05/01 02:00:00 | 000,052,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV - [2011/10/31 16:22:10 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2009/09/02 17:58:08 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/2
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT/2
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/2
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT/2

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/2
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\URLSearchHook: {8bc67b0f-a721-45e0-a0b6-db0121b0aade} - C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4eSrcAs.dll (RadioPI)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@RadioPI_4e.com/Plugin: C:\Program Files (x86)\RadioPI_4e\bar\1.bin\NP4eStub.dll (RadioPI)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.666: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.666: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.666: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.666: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files (x86)\Veetle\VLCBroadcast\npvbp.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\eric\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/08/27 23:20:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]_4e.com: C:\Program Files (x86)\RadioPI_4e\bar\1.bin [2011/11/24 22:13:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\15.0.874.121\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\15.0.874.121\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\15.0.874.121\gcswf32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files (x86)\Veetle\Player\npvlc.dll
CHR - plugin: Veetle Broadcaster Plugin (Enabled) = C:\Program Files (x86)\Veetle\VLCBroadcast\npvbp.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\3.0.40624.0\npctrl.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: avast! WebRep = C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\
CHR - Extension: AT_LukasHudec = C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifdgcflnbjihdfafceknjpidanddhnjb\3_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Giveaway of the Day = C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\kocdedcclholffpbgekfcfeplhmbbkbh\2.4.0.4\

O1 HOSTS File: ([2009/06/10 21:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O2 - BHO: (Toolbar BHO) - {35fd2bab-ab2b-494f-b5bf-8755ec043784} - C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4ebar.dll (RadioPI)
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2 - BHO: (Giveaway of the Day Toolbar) - {4290ae1f-b7ac-4270-8e20-444cc0432d1f} - C:\Program Files (x86)\Giveaway_of_the_Day\prxtbGive.dll (Conduit Ltd.)
O2 - BHO: (Search Assistant BHO) - {4adc9c1b-9c50-4c2d-a471-5c06d8de7e80} - C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4eSrcAs.dll (RadioPI)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Giveaway of the Day Toolbar) - {4290ae1f-b7ac-4270-8e20-444cc0432d1f} - C:\Program Files (x86)\Giveaway_of_the_Day\prxtbGive.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (RadioPI) - {92926b63-5116-4c6f-a33e-378767b8d15f} - C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4ebar.dll (RadioPI)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Giveaway of the Day Toolbar) - {4290AE1F-B7AC-4270-8E20-444CC0432D1F} - C:\Program Files (x86)\Giveaway_of_the_Day\prxtbGive.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [RadioPI_4e Browser Plugin Loader] C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4ebrmon.exe (RadioPI)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O8:64bit: - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files%20(x86)/Sudoku%20Quest/Images/stg_drm.ocx (SpinTop DRM Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.co...sreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicr...osoft/wrc32.ocx (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files%20(x86)/Sudoku%20Quest/Images/armhelper.ocx (ArmHelper Control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.24.199.13 62.24.199.23
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CA86218C-6CFD-4CA8-B5E3-89EB3A64B22A}: DhcpNameServer = 62.24.199.13 62.24.199.23
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F7FAD7D6-2F3A-4BAE-BF97-123C83C00C01}: DhcpNameServer = 40.7.1.100
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\vsharechrome - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O27:64bit: - HKLM IFEO\AcroRd32.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\excel.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\finder.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\gameconsole-wt.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\hpsf.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\lightscribecontrolpanel.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\lslauncher.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\msoxmled.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\mstore.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\outlook.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\schdpl32.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\unbind.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\winword.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\AcroRd32.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\excel.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\finder.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\gameconsole-wt.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\hpsf.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\lightscribecontrolpanel.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\lslauncher.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\msoxmled.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\mstore.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\outlook.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\schdpl32.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\unbind.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\winword.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe (TuneUp Software)
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{91f85c29-bc3b-11e0-a964-002713787e88}\Shell - "" = AutoRun
O33 - MountPoints2\{91f85c29-bc3b-11e0-a964-002713787e88}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/11/25 19:36:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/11/25 17:22:17 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\eric\Desktop\OTL.exe
[2011/11/25 11:53:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011/11/25 11:53:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2011/11/25 11:53:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011/11/25 11:46:07 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Local\Secunia PSI
[2011/11/25 11:45:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Secunia
[2011/11/25 11:35:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011/11/25 10:13:27 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\AVG2012
[2011/11/25 10:09:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2011/11/25 10:00:45 | 000,000,000 | ---D | C] -- C:\Users\eric\Desktop\geeks 2 go
[2011/11/24 21:50:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2011/11/24 21:26:54 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\Malwarebytes
[2011/11/24 21:26:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/11/24 21:26:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/11/24 21:26:44 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/11/24 21:26:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/11/23 23:17:07 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Local\Adobe
[2011/11/18 21:25:06 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2011/11/18 21:25:06 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2011/11/18 21:25:05 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2011/11/18 21:25:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012
[2011/11/18 21:24:42 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\TuneUp Software
[2011/11/18 21:24:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2012
[2011/11/18 21:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2011/11/18 21:23:53 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2011/11/18 13:45:10 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\laptop station
[2011/11/16 12:51:05 | 000,000,000 | ---D | C] -- C:\extensions
[2011/11/16 12:51:04 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Local\Giveaway_of_the_Day
[2011/11/16 12:51:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Giveaway_of_the_Day
[2011/11/16 12:51:04 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Local\Conduit
[2011/11/16 12:51:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Giveaway of the Day Toolbar
[2011/11/16 12:51:02 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\GiveawayOfTheDay
[2011/11/16 12:51:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2011/11/12 18:18:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lotus SmartSuite
[2011/11/12 15:41:29 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
[2011/11/12 15:41:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2011/11/12 15:41:27 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\Notepad++
[2011/11/12 15:41:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Notepad++
[2011/11/12 14:44:57 | 000,000,000 | ---D | C] -- C:\Users\eric\Desktop\backup2
[2011/11/12 14:44:52 | 000,000,000 | ---D | C] -- C:\Users\eric\Desktop\backup
[2011/11/06 13:23:54 | 000,000,000 | ---D | C] -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
[2011/11/06 13:23:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
[2011/11/06 13:23:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SopCast
[2010/04/26 09:22:15 | 000,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkpmui.dll
[2010/04/26 09:22:15 | 000,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkinpa.dll
[2010/04/26 09:22:15 | 000,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkiesc.dll
[2010/04/26 09:22:14 | 001,224,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkserv.dll
[2010/04/26 09:22:14 | 000,991,232 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkusb1.dll
[2010/04/26 09:22:14 | 000,696,320 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkhbn3.dll
[2010/04/26 09:22:14 | 000,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkcomc.dll
[2010/04/26 09:22:14 | 000,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbklmpm.dll
[2010/04/26 09:22:14 | 000,537,256 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkcoms.exe
[2010/04/26 09:22:14 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkcomm.dll
[2010/04/26 09:22:14 | 000,385,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkih.exe
[2010/04/26 09:22:14 | 000,381,608 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkcfg.exe
[2010/04/26 09:22:14 | 000,180,904 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkppls.exe
[2010/04/26 09:22:14 | 000,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkprox.dll
[2010/04/26 09:22:14 | 000,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxbkpplc.dll
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/11/25 19:47:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/25 19:47:06 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/25 19:39:20 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/11/25 19:38:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/11/25 19:38:22 | 3144,880,128 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/25 19:33:03 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/11/25 17:22:19 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\eric\Desktop\OTL.exe
[2011/11/25 11:53:44 | 000,001,805 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/11/25 11:45:34 | 000,001,066 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2011/11/25 11:30:01 | 020,882,083 | ---- | M] () -- C:\Users\eric\Desktop\jre-7u1-linux-i586.rpm
[2011/11/25 08:37:43 | 000,024,218 | ---- | M] () -- C:\Users\eric\AppData\Roaming\wklnhst.dat
[2011/11/24 21:26:48 | 000,001,069 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/23 23:19:54 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2011/11/21 23:29:38 | 000,732,510 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/11/21 23:29:38 | 000,632,646 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/11/21 23:29:38 | 000,112,600 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/11/18 23:49:26 | 000,003,560 | ---- | M] () -- C:\bootsqm.dat
[2011/11/18 21:25:01 | 000,002,169 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
[2011/11/18 21:25:01 | 000,002,143 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
[2011/11/18 13:45:45 | 000,002,311 | ---- | M] () -- C:\Users\eric\Desktop\laptop station - Shortcut.lnk
[2011/11/18 10:38:06 | 000,000,047 | ---- | M] () -- C:\Windows\SysWow64\_WKERNEL.FRE
[2011/11/16 22:24:24 | 000,424,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/11/12 18:18:48 | 000,000,038 | ---- | M] () -- C:\Windows\Approach.ini
[2011/11/10 20:08:08 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForeric.job
[2011/11/02 20:29:30 | 000,034,624 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2011/11/02 20:29:10 | 000,025,920 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2011/11/02 20:29:10 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/11/25 11:53:44 | 000,001,805 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011/11/25 11:45:34 | 000,001,066 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
[2011/11/25 11:45:34 | 000,001,029 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2011/11/25 11:29:43 | 020,882,083 | ---- | C] () -- C:\Users\eric\Desktop\jre-7u1-linux-i586.rpm
[2011/11/24 21:26:48 | 000,001,069 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/18 23:49:26 | 000,003,560 | ---- | C] () -- C:\bootsqm.dat
[2011/11/18 21:25:01 | 000,002,169 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
[2011/11/18 21:25:01 | 000,002,143 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
[2011/11/18 21:25:00 | 000,002,155 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012.lnk
[2011/11/18 13:45:45 | 000,002,311 | ---- | C] () -- C:\Users\eric\Desktop\laptop station - Shortcut.lnk
[2011/11/12 18:18:48 | 000,000,038 | ---- | C] () -- C:\Windows\Approach.ini
[2011/11/12 15:19:45 | 000,002,557 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2011/06/26 13:27:12 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\pool.bin
[2011/06/01 15:41:27 | 000,000,000 | ---- | C] () -- C:\Users\eric\AppData\Local\{2D811B65-F5DA-4A2A-B1B9-3ACD155B8D2C}
[2011/05/09 21:39:23 | 000,000,064 | ---- | C] () -- C:\Windows\SysWow64\rp_stats.dat
[2011/05/09 21:39:23 | 000,000,044 | ---- | C] () -- C:\Windows\SysWow64\rp_rules.dat
[2011/01/06 18:53:34 | 000,001,854 | ---- | C] () -- C:\Users\eric\AppData\Roaming\GhostObjGAFix.xml
[2010/10/28 21:06:23 | 000,000,243 | ---- | C] () -- C:\ProgramData\MusicStation.xml
[2010/07/27 13:33:39 | 000,024,218 | ---- | C] () -- C:\Users\eric\AppData\Roaming\wklnhst.dat
[2010/07/26 11:53:24 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/06/29 23:12:16 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL
[2010/06/21 21:16:53 | 000,004,608 | ---- | C] () -- C:\Users\eric\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/21 19:38:30 | 000,007,605 | ---- | C] () -- C:\Users\eric\AppData\Local\Resmon.ResmonCfg
[2010/05/01 22:12:05 | 000,000,318 | ---- | C] () -- C:\Windows\cncscore.ini
[2010/05/01 22:11:54 | 000,000,024 | RH-- | C] () -- C:\Windows\wcpx_.dat
[2010/05/01 22:11:53 | 000,000,460 | ---- | C] () -- C:\Windows\superball.ini
[2010/05/01 17:00:03 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2010/05/01 11:17:03 | 000,000,000 | ---- | C] () -- C:\Windows\winhelp.ini
[2010/04/26 09:23:05 | 000,000,247 | ---- | C] () -- C:\Windows\Lexstat.ini
[2010/04/26 09:22:15 | 000,413,696 | ---- | C] () -- C:\Windows\SysWow64\lxbkutil.dll
[2010/04/26 09:22:15 | 000,274,432 | ---- | C] () -- C:\Windows\SysWow64\LXBKinst.dll
[2010/04/24 22:27:05 | 000,000,016 | ---- | C] () -- C:\Windows\popcinfo.dat
[2009/11/07 04:31:17 | 000,009,868 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
[2009/11/05 09:29:07 | 000,000,268 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini
[2009/11/05 09:29:07 | 000,000,209 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini
[2009/08/27 16:05:12 | 000,982,220 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2009/08/27 16:05:12 | 000,439,300 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2009/08/27 16:05:12 | 000,134,592 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
[2009/08/27 16:05:12 | 000,092,216 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2009/07/14 05:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 02:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 02:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 00:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 21:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
[2009/07/13 21:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2003/01/07 14:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
[1999/03/10 01:23:00 | 000,222,928 | ---- | C] () -- C:\Windows\SysWow64\lobas09.dll
[1998/03/18 01:23:00 | 000,096,256 | ---- | C] () -- C:\Windows\SysWow64\nsqlc32.dll
[1998/01/13 01:23:00 | 000,047,104 | ---- | C] () -- C:\Windows\SysWow64\lotrn13.dll
[1997/11/14 01:23:00 | 000,031,008 | ---- | C] () -- C:\Windows\SysWow64\ivtrn09.dll
[1997/05/13 01:23:00 | 000,000,153 | ---- | C] () -- C:\Windows\acroread.ini
[1994/07/25 01:23:00 | 000,014,928 | ---- | C] () -- C:\Windows\SysWow64\wingen.drv
[1994/04/07 01:23:00 | 000,000,462 | ---- | C] () -- C:\Windows\lodbf13.ini

========== LOP Check ==========

[2010/12/20 22:52:44 | 000,000,000 | -HSD | M] -- C:\Users\eric\AppData\Roaming\.#
[2011/09/25 13:10:08 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Apowersoft
[2011/11/25 10:13:27 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\AVG2012
[2011/09/30 22:13:55 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Blackberry Desktop
[2011/06/20 11:18:21 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\DriverCure
[2011/11/16 12:51:02 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\GiveawayOfTheDay
[2011/11/12 15:42:09 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Notepad++
[2011/06/21 12:01:27 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Octoshape
[2011/06/20 11:18:21 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\PC Unleashed Online
[2010/06/21 21:07:37 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Porn Terminator
[2010/12/18 23:50:37 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Programs
[2011/03/27 13:39:35 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\RegistryKeys
[2011/06/26 13:52:50 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Research In Motion
[2011/10/07 22:49:20 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\SpinTop
[2011/11/21 00:00:28 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Spotify
[2010/05/15 00:04:14 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\StoneLoopsWT
[2011/08/01 12:46:21 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Telefónica Móviles
[2010/07/27 13:33:40 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Template
[2011/11/18 21:24:42 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\TuneUp Software
[2011/05/02 15:33:29 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\Windows Live Writer
[2010/05/08 16:24:58 | 000,000,000 | ---D | M] -- C:\Users\eric\AppData\Roaming\_MDLogs
[2011/10/20 16:13:31 | 000,032,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:0B4227B4
@Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:96CA0456
@Alternate Data Stream - 106 bytes -> C:\ProgramData\Temp:C05C9266

< End of report >


All processes killed
Error: Unable to interpret <Geeks to Go Forums: trojan horse infection - Geeks to Go ForumsJump to content> in the current context!
Error: Unable to interpret <Geeks to Go > in the current context!
Error: Unable to interpret <Advanced Search> in the current context!
Error: Unable to interpret <BlogForums > in the current context!
Error: Unable to interpret <Community Introductions Site OrientationHow-To GuidesSite NewsGeekU ApplicationsSecurity Spyware, Malware RemovalMalware Removal GuidesComputer Won't BootCan't Run Any Programs Mobile MalwareOperating Systems Windows 7 and VistaWindows XPWindows ServerApple OSXLinuxApple iOSGoogle AndroidOther OSHardware Components and PeripheralsSystem BuildingNetworkingSmartphones and TabletsTV, and Home TheaterSoftware ApplicationsMobile Apps, Games and ThemesWeb Browsers, EmailGamesConsole GamesOfficeDevelopment Web DevelopmentSoftware DevelopmentDigital Video and AudioDiscussion Off-TopicHot Tech DealsJokes and Forum GamesGeeks to Go FeedbackFiles > in the current context!
Error: Unable to interpret <HardwareSoftwareAnti-malwareMembersChatHow to Post> in the current context!
Error: Unable to interpret <Signed in as baggieboy ( Sign Out ) 0 unread notifications > in the current context!
Error: Unable to interpret <My Profile · My Settings · My Content · Messenger (0 New) · Manage Friends · Manage Ignored Users > in the current context!
Error: Unable to interpret < Spyware, Virus, Trojan, Rootkit? BEGIN HERE: Malware and Spyware Cleaning Guide • How did I get infected? • Frequently Asked Questions> in the current context!
Error: Unable to interpret <Geeks to Go Forums > Security > Virus, Spyware, Malware Removal Terms of UseView New ContentMalware Removal Forum Rules> in the current context!
Error: Unable to interpret <IMPORTANT! Please follow the steps in our Malware and Spyware Cleaning Guide, before starting a new topic.> in the current context!
Error: Unable to interpret <Put the infection name or its symptoms in the "Topic Title" field. Use the "Topic Description" field to include more detail. Your first, and best opportunity to attract a qualified expert is a quality title.> in the current context!
Error: Unable to interpret <Please only post your topic once. Duplicate posts will be closed, and just create additional work for the staff members trying to help you. Do not 'bump' or reply to your own topic. We look first for topics with zero replies. We generally work from the oldest posts the the newest. Bumping will only delay a reply.> in the current context!
Error: Unable to interpret <Please remember, only staff members are allowed to reply to malware removal topics, and all staff members are volunteers. We understand it's stressful to have an infected computer, and wish we could help everyone immediately. However, depending on the complexity of your infection, when it was posted, and other factors, it may take a couple of days for your topic to receive an initial reply. If you've waited more than 3 days for a reply, see our special "waiting room" forum. > in the current context!
Error: Unable to interpret <2 Pages ←12 Start New Topic Add Reply Stop watching topic> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <trojan horse infection #16 azarl > in the current context!
Error: Unable to interpret <GeekU Teacher> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Group: GeekU Moderator Posts: 7,730 Joined: 07-April 08 Location:Leeds, UK > in the current context!
Error: Unable to interpret <Posted 30 minutes ago > in the current context!
Error: Unable to interpret <Run OTL> in the current context!
Error: Unable to interpret <•Under the Custom Scans/Fixes box at the bottom, paste in the following> in the current context!
========== OTL ==========
No active process named avgtray.exe was found!
Process avgwdsvc.exe killed successfully!
Service AVGIDSAgent stopped successfully!
Service AVGIDSAgent deleted successfully!
C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe moved successfully.
Service avgwd stopped successfully!
Service avgwd deleted successfully!
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe moved successfully.
File HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ not found.
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\plugins folder moved successfully.
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\content\Icons folder moved successfully.
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\content folder moved successfully.
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0 folder moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
C:\Program Files (x86)\AVG\AVG2012\avgssie.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AVG_TRAY deleted successfully.
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\avgsecuritytoolbar\ deleted successfully.
File Protocol\Handler\avgsecuritytoolbar - No CLSID value found not found.
C:\Program Files (x86)\AVG\AVG2012\avgppa.dll moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
Invalid CLSID key: C:\Program Files (x86)\AVG\AVG2012\avgppa.dll
File C:\Program Files (x86)\AVG\AVG2012\avgppa.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\avgsecuritytoolbar\ not found.
File Protocol\Handler\avgsecuritytoolbar - No CLSID value found not found.
C:\Program Files (x86)\AVG\AVG2012\avgpp.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ not found.
Invalid CLSID key: C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
File C:\Program Files (x86)\AVG\AVG2012\avgpp.dll not found.
C:\Windows\SysNative\drivers\AVG\incavi.avm moved successfully.
C:\Users\Public\Desktop\AVG 2012.lnk moved successfully.
C:\Windows\SysNative\drivers\AVG\iavichjg.avm moved successfully.
C:\Windows\SysNative\drivers\AVG\iavichjw.avm moved successfully.
========== FILES ==========
C:\Program Files (x86)\AVG\AVG9\log folder moved successfully.
C:\Program Files (x86)\AVG\AVG9\cfg folder moved successfully.
C:\Program Files (x86)\AVG\AVG9 folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\sounds folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\PCTuneup folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Icons folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Firefox4\Components folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Firefox4\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Firefox4 folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Firefox\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Firefox folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Drivers\Win7 folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Drivers\platform_WIN7 folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Drivers\ErHr7x64 folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Drivers folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\pct\component folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\pct folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\obx\component folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\obx folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\fas\component folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\fas folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\dav\component folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs\dav folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\awacs folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\3rd_party\licenses folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012\3rd_party folder moved successfully.
C:\Program Files (x86)\AVG\AVG2012 folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\TOOLBAR folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\PCTuneup folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\driver\platform_WIN7 folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\driver folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Identity Protection folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Icons folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox4\Components folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox4\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox4 folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Firefox folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Drivers\Win7 folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Drivers\ErHr7x64 folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Drivers folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\Chrome folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\3rd_party\licenses folder moved successfully.
C:\Program Files (x86)\AVG\AVG10\3rd_party folder moved successfully.
C:\Program Files (x86)\AVG\AVG10 folder moved successfully.
C:\Program Files (x86)\AVG folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: eric
->Temp folder emptied: 67793 bytes
->Temporary Internet Files folder emptied: 8650212 bytes
->Java cache emptied: 2384968 bytes
->Google Chrome cache emptied: 79286310 bytes
->Flash cache emptied: 3406 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 30706 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 84592 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 757 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 86.00 mb

Error: Unable to interpret <•Then click the Run Fix button at the top> in the current context!
Error: Unable to interpret <•Let the program run unhindered, reboot the PC when it is done> in the current context!
Error: Unable to interpret <•Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.> in the current context!
Error: Unable to interpret <I'm happy to help you but please don't PM me asking for assistance as I will only help you via the forums> in the current context!
Error: Unable to interpret <I try and respond to help requests the same day, if I don't get back to you in 24 hours please PM me> in the current context!
Error: Unable to interpret <My help is free but if you would like to donate to help me fight malware click here> in the current context!
Error: Unable to interpret <0 + Like Report> in the current context!
Error: Unable to interpret < Back to top of the page up there ^> in the current context!
Error: Unable to interpret < MultiQuote> in the current context!
Error: Unable to interpret < Quote Reply Add Reply> in the current context!
Error: Unable to interpret <--------------------------------------------------------------------------------> in the current context!
Error: Unable to interpret <Currently viewing all posts. Change threshold?> in the current context!
Error: Unable to interpret < Hide posts below View all posts 20 points 10 points 0 points -10 points -20 points > in the current context!
Error: Unable to interpret < Forum Home Community |-- Introductions |-- Site Orientation and FAQ |-- How-To Guides and Tutorials |-- The Waiting Room |-- News and Announcements |-- GeekU Applications Security |-- Virus, Spyware, Malware Removal |-- Malware Removal Guides and Tutorials |-- Computer Won't Boot - Malware Related |-- Can't Run Any Antivirus or Malware Removal Programs |-- Smartphone Virus / Mobile Malware Operating Systems |-- Windows Vista™ and Windows 7™ |-- Windows 8 |-- Windows XP™, 2000, 2003, NT |-- Windows Server |-- Apple OSX |-- Linux |-- Apple iOS |-- Google Android |-- All Other Operating Systems Hardware |-- Hardware, Components and Peripherals |-- System Building and Upgrading |-- Networking |-- Smartphones and Tablets |-- TV, and Home Theater Software |-- Applications |-- Mobile Apps, Games and Themes |-- Web Browsers and Email |-- Office |-- Games |-- Console Games Development |-- Web Development |-- Software Development |-- Digital Video an> in the current context!
Error: Unable to interpret <d Audio Discussion |-- Off-Topic |-- Hot Tech Deals |-- Jokes and Forum Games |-- Geeks to Go Feedback Retired Forums |-- Windows 98™, 95, ME |-- Software Updates |-- Lavasoft Support (Ad-aware) > in the current context!
Error: Unable to interpret <← Browser redirect in IE9codec failure lie →Share this topic:> in the current context!
Error: Unable to interpret <2 Pages ←12 Start New Topic Add Reply> in the current context!
Error: Unable to interpret <--------------------------------------------------------------------------------> in the current context!
Error: Unable to interpret <Fast Reply > in the current context!
Error: Unable to interpret <Emoticons > in the current context!
Error: Unable to interpret < Other styles Fonts Sizes > in the current context!
Error: Unable to interpret <Tip: click inside this box to load the editor > in the current context!
Error: Unable to interpret <1 User(s) are reading this topic> in the current context!
Error: Unable to interpret <1 members, 0 guests, 0 anonymous users > in the current context!
Error: Unable to interpret <baggieboyDelete PostRemove From View The post may still be visible to moderators in this topic> in the current context!
Error: Unable to interpret <Reason: > in the current context!
Error: Unable to interpret <Delete From Topic The post will be removed from this topic completely> in the current context!
Error: Unable to interpret <Skin and Language> in the current context!
Error: Unable to interpret < Theme: Geeks To Go --Geeks to Go Classic --Geeks to Go - After Dark IP.Board --CleanCut --IP.Board Classic IP.Board Mobile Language: Execution Stats> in the current context!
Error: Unable to interpret <Time Now: Nov 25 2011 01:30 PM > in the current context!
Error: Unable to interpret <Last Visit: Today, 11:47 AM> in the current context!
Error: Unable to interpret < 0.4096 1.55 15 queriesThe forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks mentioned on this page are the property of their respective owners.> in the current context!
Error: Unable to interpret <Back To TopForum HomeDelete My CookiesMark Board As ReadPrivacy PolicyContactLink to us > in the current context!
Error: Unable to interpret <How-To Guides and Tutorials ForumMalware Removal Guides and TutorialsVirus, Spyware, Malware RemovalWindows Vista™ and Windows 7™Windows XP, 2000, 2003, NTWindows 95, 98, MEAll Other Operating SystemsHardware, Components and PeripheralsSystem Building and UpgradingNetworkingOfficeGamesConsole GamesApplicationsSoftware DevelopmentOff TopicTech DiscussionSerious DiscussionJokes and Forum GamesComputer Won't Boot - Malware RelatedCan't Run Any Antivirus or Malware Removal ProgramsSmartphone Virus / Mobile MalwareWeb Browsers and EmailWeb DevelopmentSoftware DevelopmentDigital Images, Video and AudioLast 10 Submissions RSS FeedCommunity Forum Software by IP.Board > in the current context!
Error: Unable to interpret <Jump to page > in the current context!
Error: Unable to interpret <Jump to page > in the current context!

OTL by OldTimer - Version 3.2.31.0 log created on 11252011_193639

Files\Folders moved on Reboot...
C:\Users\eric\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
  • 0

#18
azarl

azarl

    GeekU Admin

  • Administrator
  • 25,175 posts
Has that sorted it?
  • 0

#19
baggieboy

baggieboy

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
That's seems to have sorted it and no prompts from avg anymore.
So thanks for all your help and seeing me through each step of the way.
Cheers,
Baggieboy.
  • 0

#20
azarl

azarl

    GeekU Admin

  • Administrator
  • 25,175 posts

That's seems to have sorted it and no prompts from avg anymore.
So thanks for all your help and seeing me through each step of the way.
Cheers,
Baggieboy.

No probs :)
  • 0

#21
azarl

azarl

    GeekU Admin

  • Administrator
  • 25,175 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP