Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Extremely Slow Internet....Virus? [Closed]

Started by turbokid , Sep 02 2012 04:59 AM

  • This topic is locked This topic is locked

#1
turbokid
Posted 02 September 2012 - 04:59 AM

turbokid

    New Member

  • Member
  • Pip
  • 1 posts
Okay I purchased a new laptop 2 weeks ago, purchased bit defender total internet security, and then 2 days ago my internet is extremely slow. I mean to the point where it takes 2 mins to load a webpage on a 10mb internet connection.

I have scanned for viruses and nothing has come up. I'm stumped. Other devices in the household seem to have to a decent connection.

Help?

Thanks

edit:

added otl scan:

OTL logfile created on: 02/09/2012 12:12:23 - Run 1
OTL by OldTimer - Version 3.2.59.1 Folder = C:\Users\Lee\Desktop\otl
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

7.89 Gb Total Physical Memory | 4.48 Gb Available Physical Memory | 56.81% Memory free
15.79 Gb Paging File | 12.56 Gb Available in Paging File | 79.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 913.36 Gb Total Space | 742.08 Gb Free Space | 81.25% Space Free | Partition Type: NTFS

Computer Name: LEE-TOSHIBA | User Name: Lee | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Lee\Desktop\otl\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe (Adobe Systems, Inc.)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe ()
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe ()
PRC - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG)
PRC - C:\Program Files (x86)\TOSHIBA\widimon\widimon.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)


========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtWebKit4.dll ()
MOD - C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\phonon4.dll ()


========== Services (SafeList) ==========

SRV:64bit: - (SafeBox) -- C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe (Bitdefender)
SRV:64bit: - (VSSERV) -- C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe (Bitdefender)
SRV:64bit: - (UPDATESRV) -- C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe (Bitdefender)
SRV:64bit: - (SbieSvc) -- C:\Program Files\Sandboxie\SbieSvc.exe (SANDBOXIE L.T.D)
SRV:64bit: - (TOSHIBA eco Utility Service) -- C:\Program Files\TOSHIBA\TECO\TecoService.exe (TOSHIBA Corporation)
SRV:64bit: - (Intel® -- C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel® Corporation)
SRV:64bit: - (TosCoSrv) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TPCHSrv) -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (ZeroConfigService) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel® Corporation)
SRV:64bit: - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
SRV:64bit: - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel® Corporation)
SRV:64bit: - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel® Corporation)
SRV:64bit: - (TOSHIBA HDD SSD Alert Service) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (Update Server) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe (BitDefender)
SRV:64bit: - (Thpsrv) -- C:\Windows\SysNative\ThpSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TODDSrv) -- C:\Windows\SysNative\TODDSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe (Intel Corporation)
SRV - (Intel® -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe ()
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (NAUpdate) -- C:\Program Files (x86)\Nero\Update\NASvc.exe (Nero AG)
SRV - (TMachInfo) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)
SRV - (TemproMonitoringService) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (Toshiba Europe GmbH)
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (BdfNdisf) -- c:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys (BitDefender LLC)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
DRV:64bit: - (CeKbFilter) -- C:\Windows\SysNative\drivers\CeKbFilter.sys (Compal Electronics, INC.)
DRV:64bit: - (SbieDrv) -- C:\Program Files\Sandboxie\SbieDrv.sys (SANDBOXIE L.T.D)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (Netaapl) -- C:\Windows\SysNative\drivers\netaapl64.sys (Apple Inc.)
DRV:64bit: - (avc3) -- C:\Windows\SysNative\drivers\avc3.sys (BitDefender)
DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (SmbDrv) -- C:\Windows\SysNative\drivers\Smb_driver.sys (Synaptics Incorporated)
DRV:64bit: - (avckf) -- C:\Windows\SysNative\drivers\avckf.sys (BitDefender)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (tosrfbd) -- C:\Windows\SysNative\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV:64bit: - (nvpciflt) -- C:\Windows\SysNative\drivers\nvpciflt.sys (NVIDIA Corporation)
DRV:64bit: - (iusb3xhc) -- C:\Windows\SysNative\drivers\iusb3xhc.sys (Intel Corporation)
DRV:64bit: - (iusb3hub) -- C:\Windows\SysNative\drivers\iusb3hub.sys (Intel Corporation)
DRV:64bit: - (iusb3hcs) -- C:\Windows\SysNative\drivers\iusb3hcs.sys (Intel Corporation)
DRV:64bit: - (intaud_WaveExtensible) -- C:\Windows\SysNative\drivers\intelaud.sys (Intel Corporation)
DRV:64bit: - (iwdbus) -- C:\Windows\SysNative\drivers\iwdbus.sys (Intel Corporation)
DRV:64bit: - (NETwNs64) -- C:\Windows\SysNative\drivers\NETwNs64.sys (Intel Corporation)
DRV:64bit: - (RSP2STOR) -- C:\Windows\SysNative\drivers\RtsP2Stor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (LPCFilter) -- C:\Windows\SysNative\drivers\LPCFilter.sys (COMPAL ELECTRONIC INC.)
DRV:64bit: - (Tosrfusb) -- C:\Windows\SysNative\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel® Corporation)
DRV:64bit: - (NBVol) -- C:\Windows\SysNative\drivers\NBVol.sys (Nero AG)
DRV:64bit: - (NBVolUp) -- C:\Windows\SysNative\drivers\NBVolUp.sys (Nero AG)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (avchv) -- C:\Windows\SysNative\drivers\avchv.sys (BitDefender)
DRV:64bit: - (bdsandbox) -- C:\Windows\SysNative\drivers\bdsandbox.sys (BitDefender SRL)
DRV:64bit: - (bdfwfpf) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (BitDefender LLC)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (trufos) -- C:\Windows\SysNative\drivers\trufos.sys (BitDefender S.R.L.)
DRV:64bit: - (bdfsfltr) -- C:\Windows\SysNative\drivers\bdfsfltr.sys (BitDefender)
DRV:64bit: - (Thpdrv) -- C:\Windows\SysNative\drivers\thpdrv.sys (TOSHIBA Corporation)
DRV:64bit: - (tos_sps64) -- C:\Windows\SysNative\drivers\tos_sps64.sys (TOSHIBA Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (PGEffect) -- C:\Windows\SysNative\drivers\PGEffect.sys (TOSHIBA Corporation)
DRV:64bit: - (Tosrfcom) -- C:\Windows\SysNative\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (tosrfbnp) -- C:\Windows\SysNative\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV:64bit: - (Tosrfhid) -- C:\Windows\SysNative\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV:64bit: - (tosrfec) -- C:\Windows\SysNative\drivers\tosrfec.sys (TOSHIBA Corporation)
DRV:64bit: - (TosRfSnd) -- C:\Windows\SysNative\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV:64bit: - (BDVEDISK) -- C:\Windows\SysNative\drivers\bdvedisk.sys (BitDefender)
DRV:64bit: - (tdcmdpst) -- C:\Windows\SysNative\drivers\tdcmdpst.sys (TOSHIBA Corporation.)
DRV:64bit: - (tosrfnds) -- C:\Windows\SysNative\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\drivers\TVALZ_O.SYS (TOSHIBA Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (WSDPrintDevice) -- C:\Windows\SysNative\drivers\WSDPrint.sys (Microsoft Corporation)
DRV:64bit: - (Thpevm) -- C:\Windows\SysNative\drivers\Thpevm.sys (TOSHIBA Corporation)
DRV:64bit: - (TVALZFL) -- C:\Windows\SysNative\drivers\TVALZFL.sys (TOSHIBA Corporation)
DRV:64bit: - (tosporte) -- C:\Windows\SysNative\drivers\tosporte.sys (TOSHIBA Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {AFB0C4F7-A6BE-407A-8F19-B74A7429A80B}
IE:64bit: - HKLM\..\SearchScopes\{AFB0C4F7-A6BE-407A-8F19-B74A7429A80B}: "URL" = http://www.google.co...g}&rlz=1I7TEUA;
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {AFB0C4F7-A6BE-407A-8F19-B74A7429A80B}
IE - HKLM\..\SearchScopes\{AFB0C4F7-A6BE-407A-8F19-B74A7429A80B}: "URL" = http://www.google.co...g}&rlz=1I7TEUA;

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\SearchScopes,DefaultScope = {AFB0C4F7-A6BE-407A-8F19-B74A7429A80B}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:7.0.0
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.911
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.3.3
FF - prefs.js..extensions.enabledItems: [email protected]:3.14.0.100012
FF - prefs.js..extensions.enabledItems: [email protected]:1.1.7.0190
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.1.1
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {d57c9ff1-6389-48fc-b770-f78bd89b6e8a}:1.38
FF - prefs.js..extensions.enabledItems: [email protected]:1.00
FF - prefs.js..extensions.enabledItems: [email protected]:0.21
FF - prefs.js..extensions.enabledItems: [email protected]:1.00
FF - prefs.js..extensions.enabledItems: [email protected]:1.8.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}:5.0.21
FF - prefs.js..extensions.enabledItems: {c2b1f3ae-5cd5-49b7-8a0c-2c3bcbbbb294}:1.1
FF - prefs.js..extensions.enabledItems: [email protected]:3.3.3.2
FF - prefs.js..extensions.enabledItems: {32b29df0-2237-4370-9a29-37cebb730e9b}:3.7.0.6
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442
FF - prefs.js..extensions.enabledItems: {317B5128-0B0B-49b2-B2DB-1E7560E16C74}:2.8.0
FF - prefs.js..extensions.enabledItems: {1519200d-6633-40c9-a9a1-d60d8d1d0479}:1.0.4
FF - prefs.js..keyword.URL: "http://search.icq.co...ver=2.0.1.1&q="
FF - prefs.js..network.proxy.backup.ftp: ""
FF - prefs.js..network.proxy.backup.ftp_port: 0
FF - prefs.js..network.proxy.backup.gopher: ""
FF - prefs.js..network.proxy.backup.gopher_port: 0
FF - prefs.js..network.proxy.backup.socks: ""
FF - prefs.js..network.proxy.backup.socks_port: 0
FF - prefs.js..network.proxy.backup.ssl: ""
FF - prefs.js..network.proxy.backup.ssl_port: 0
FF - prefs.js..network.proxy.ftp: "109.230.246.150"
FF - prefs.js..network.proxy.ftp_port: 8080
FF - prefs.js..network.proxy.gopher: "109.230.246.150"
FF - prefs.js..network.proxy.gopher_port: 8080
FF - prefs.js..network.proxy.http: "109.230.246.150"
FF - prefs.js..network.proxy.http_port: 8080
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "109.230.246.150"
FF - prefs.js..network.proxy.socks_port: 8080
FF - prefs.js..network.proxy.ssl: "109.230.246.150"
FF - prefs.js..network.proxy.ssl_port: 8080
FF - prefs.js..network.proxy.type: 4
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_4_402_265.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2012\BDTBEXT\ [2012/08/21 19:07:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/08/30 14:49:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\ [2012/08/21 19:07:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/08/30 14:49:58 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/08/20 18:24:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lee\AppData\Roaming\Mozilla\Extensions
[2012/09/02 10:22:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions
[2012/08/20 19:00:57 | 000,000,000 | ---D | M] (FaceTweak) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\{1519200d-6633-40c9-a9a1-d60d8d1d0479}
[2012/08/20 19:00:59 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2012/08/20 19:01:00 | 000,000,000 | ---D | M] (SeoQuake) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74}
[2012/08/21 19:25:42 | 000,000,000 | ---D | M] (FreeSoundRecorder Community Toolbar) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\{32b29df0-2237-4370-9a29-37cebb730e9b}
[2012/08/20 19:01:03 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012/08/20 19:01:04 | 000,000,000 | ---D | M] ("NoDoFollow") -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\{c2b1f3ae-5cd5-49b7-8a0c-2c3bcbbbb294}
[2012/08/20 19:00:52 | 000,000,000 | ---D | M] (RARdownload.net AutoFiller) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\[email protected]
[2012/08/20 19:00:52 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\[email protected]
[2012/08/20 19:00:54 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\[email protected]
[2012/08/20 19:00:55 | 000,000,000 | ---D | M] (Katz Downloads Submit Tool) -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\[email protected]
[2012/08/20 19:00:57 | 000,000,000 | ---D | M] ("Nero Toolbar") -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\extensions\[email protected]
[2010/04/28 18:28:14 | 000,002,059 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\daemon-search.xml
[2012/08/27 19:34:32 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-1.xml
[2011/03/06 14:57:40 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-10.xml
[2011/03/27 15:50:04 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-11.xml
[2011/05/02 14:48:02 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-12.xml
[2011/06/22 19:39:40 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-13.xml
[2011/08/18 00:16:36 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-14.xml
[2011/09/03 11:44:54 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-15.xml
[2011/09/11 13:29:22 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-16.xml
[2011/09/29 18:49:06 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-17.xml
[2011/10/12 10:35:12 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-18.xml
[2011/11/10 09:02:20 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-19.xml
[2010/07/31 12:33:44 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-2.xml
[2011/12/21 14:27:02 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-20.xml
[2012/02/05 14:09:22 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-21.xml
[2012/02/21 10:33:36 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-22.xml
[2012/03/15 18:38:12 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-23.xml
[2012/05/05 20:32:28 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-24.xml
[2010/08/02 13:56:40 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-3.xml
[2010/09/10 19:10:00 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-4.xml
[2010/09/25 19:57:58 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-5.xml
[2010/10/23 19:25:50 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-6.xml
[2010/10/30 17:48:02 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-7.xml
[2010/12/15 13:33:40 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-8.xml
[2011/03/02 21:32:00 | 000,000,950 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin-9.xml
[2010/06/29 10:13:40 | 000,000,947 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Mozilla\Firefox\Profiles\d756rku6.default\searchplugins\icqplugin.xml
[2012/08/20 18:23:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/08/12 00:22:58 | 000,340,132 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI
[2012/05/05 21:29:58 | 000,013,225 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\{6E47E7C0-4166-11DF-9879-0800200C9A66}.XPI
[2012/06/05 19:54:42 | 000,030,312 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\{888D99E7-E8B5-46A3-851E-1EC45DA1E644}.XPI
[2012/08/16 21:44:56 | 001,136,465 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\{C45C406E-AB73-11D8-BE73-000A95BE3B12}.XPI
[2012/06/11 22:06:36 | 000,068,257 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\{D57C9FF1-6389-48FC-B770-F78BD89B6E8A}.XPI
[2012/09/02 10:22:07 | 000,699,353 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
[2012/05/05 20:32:26 | 000,158,974 | ---- | M] () (No name found) -- C:\USERS\LEE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D756RKU6.DEFAULT\EXTENSIONS\[email protected]
[2012/08/30 14:49:58 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/08/30 14:49:57 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/08/30 14:49:57 | 000,002,253 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.co...=TEUA&bmod=TEUA

O1 HOSTS File: ([2012/08/21 22:38:34 | 000,001,053 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 www.adobeereg.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O2:64bit: - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [] File not found
O4:64bit: - HKLM..\Run: [BDAgent] C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe (Bitdefender)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [SRS Premium Sound 3D] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
O4:64bit: - HKLM..\Run: [TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [ThpSrv] C:\windows\SysNative\thpsrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Toshiba Registration] C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [Toshiba TEMPRO] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe (TOSHIBA Electronics, Inc.)
O4 - HKLM..\Run: [KeNotify] C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [TSleepSrv] C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe (TOSHIBA)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (SANDBOXIE L.T.D)
O4 - Startup: C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html File not found
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{15DA5773-920F-4C9E-8BD1-4AF8DFD6FE26}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{53170A5E-753C-485D-8A12-5E23466FB9D0}: DhcpNameServer = 193.36.79.100 193.36.79.101
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - AppInit_DLLs: (C:\windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/02 12:12:00 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\otl
[2012/09/01 23:12:06 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\{8C184C52-100C-4ADB-A460-64D7BC3DDFB3}
[2012/09/01 23:12:06 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\{11B584B3-B885-42A6-9D46-880DB750DFA6}
[2012/09/01 01:06:57 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Nero_AG
[2012/08/31 23:32:22 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Nero
[2012/08/31 23:07:27 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Yahoo!
[2012/08/31 23:00:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yahoo!
[2012/08/31 19:42:46 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\samples
[2012/08/31 19:19:01 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Steinberg
[2012/08/31 19:18:49 | 002,785,792 | ---- | C] (AiR) -- C:\windows\SysWow64\GuaD.dll
[2012/08/31 19:18:49 | 002,442,752 | ---- | C] (AD and Gouda © 1999-2010) -- C:\windows\SysWow64\SYNSOEMU.DLL
[2012/08/31 19:08:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steinberg
[2012/08/30 16:17:00 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\reFX.Nexus.v1.4.1uper
[2012/08/30 16:15:46 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\Native Instruments - Prophet 5 (VST,DX, RTAS) (Ver. 2.5)
[2012/08/30 16:14:52 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\KORG.Legacy.Collection.Special.Bundle.STANDALONE.VST.RTAS.v09.2011-ASSiGN
[2012/08/29 16:57:11 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\HP
[2012/08/29 12:05:39 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\NVIDIA
[2012/08/28 22:04:55 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\directx
[2012/08/28 18:36:16 | 000,000,000 | ---D | C] -- C:\ProgramData\VirtualizedApplications
[2012/08/28 16:25:03 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\SoftGrid Client
[2012/08/28 16:25:03 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\SoftGrid Client
[2012/08/28 16:24:04 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\TP
[2012/08/28 16:09:35 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\{555D0582-874A-44FE-B6E4-E0D3CF1C2447}
[2012/08/27 14:20:44 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mkv2vob
[2012/08/27 14:20:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\mkv2vob
[2012/08/26 11:19:51 | 000,000,000 | ---D | C] -- C:\Users\Lee\Documents\Bluetooth
[2012/08/26 10:40:23 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Diagnostics
[2012/08/25 14:08:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MegaDev
[2012/08/25 14:08:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MegaDev
[2012/08/25 13:41:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\Documents\My Cheat Tables
[2012/08/25 13:41:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2
[2012/08/25 13:41:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cheat Engine 6.2
[2012/08/24 10:16:38 | 000,000,000 | R--D | C] -- C:\Sandbox
[2012/08/24 10:11:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
[2012/08/24 10:11:52 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie
[2012/08/23 22:19:03 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\{28BB5C92-FD7E-4E75-BC10-3775B17F2827}
[2012/08/23 22:17:26 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Windows Live Writer
[2012/08/23 22:17:26 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Windows Live Writer
[2012/08/23 12:57:04 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\The Creative Assembly
[2012/08/23 12:54:01 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Empire Total War (WBB Edition)
[2012/08/23 12:26:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Empire Total War (WBB Edition)
[2012/08/23 12:16:10 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Wat
[2012/08/23 12:16:10 | 000,000,000 | ---D | C] -- C:\windows\SysNative\Wat
[2012/08/23 11:29:18 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\Games
[2012/08/22 22:31:26 | 000,000,000 | ---D | C] -- C:\Users\Lee\Documents\Square Enix
[2012/08/22 22:27:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix
[2012/08/22 22:21:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Square Enix
[2012/08/22 22:12:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012/08/22 22:12:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2012/08/22 22:11:29 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\DAEMON Tools Lite
[2012/08/22 22:11:27 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012/08/22 10:05:17 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Apple Computer
[2012/08/22 10:05:17 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Apple Computer
[2012/08/22 10:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/08/22 10:04:53 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/08/22 10:04:52 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/08/22 10:04:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2012/08/22 10:04:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/08/22 10:04:52 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2012/08/22 10:02:59 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Apple
[2012/08/22 10:02:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/08/22 10:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/08/22 10:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/08/22 10:02:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2012/08/22 10:02:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/08/22 10:02:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/08/22 09:31:58 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Image-Line
[2012/08/21 23:03:06 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
[2012/08/21 23:03:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASIO4ALL v2
[2012/08/21 23:01:48 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\windows\SysWow64\rewire.dll
[2012/08/21 23:01:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VstPlugins
[2012/08/21 23:01:48 | 000,000,000 | ---D | C] -- C:\Users\Lee\Documents\Image-Line
[2012/08/21 23:01:40 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
[2012/08/21 23:01:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Outsim
[2012/08/21 23:00:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Image-Line
[2012/08/21 22:52:24 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\MixMeister Technology
[2012/08/21 22:51:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
[2012/08/21 22:51:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MixMeister Fusion + Video
[2012/08/21 22:48:42 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Skype
[2012/08/21 22:37:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
[2012/08/21 21:17:04 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\FileZilla
[2012/08/21 21:16:37 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
[2012/08/21 21:16:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FileZilla FTP Client
[2012/08/21 20:52:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Radmin
[2012/08/21 20:51:52 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Radmin Viewer 3
[2012/08/21 20:51:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Radmin Viewer 3
[2012/08/21 20:50:04 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Downloaded Installations
[2012/08/21 19:11:51 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\liQeNSoft
[2012/08/21 19:11:50 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\liQeNSoft
[2012/08/21 19:08:09 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2012/08/21 19:07:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2012
[2012/08/21 19:07:56 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Bitdefender
[2012/08/21 19:07:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Bitdefender
[2012/08/21 19:07:17 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender
[2012/08/21 19:06:57 | 000,442,088 | ---- | C] (BitDefender) -- C:\windows\SysNative\drivers\bdfsfltr.sys
[2012/08/21 19:06:57 | 000,329,800 | ---- | C] (BitDefender S.R.L.) -- C:\windows\SysNative\drivers\trufos.sys
[2012/08/21 19:06:57 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\QuickScan
[2012/08/21 19:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bitdefender
[2012/08/21 18:41:06 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\Music
[2012/08/21 18:39:23 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\Films & TV Shows
[2012/08/20 21:02:08 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\WinRAR
[2012/08/20 21:02:08 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/08/20 21:02:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/08/20 21:02:00 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012/08/20 19:59:47 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\sMedio
[2012/08/20 19:56:55 | 000,000,000 | ---D | C] -- C:\Users\Lee\Desktop\Business
[2012/08/20 19:34:46 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Macromedia
[2012/08/20 18:23:57 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Mozilla
[2012/08/20 18:23:57 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Mozilla
[2012/08/20 18:23:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/08/20 18:23:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/08/20 18:23:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/08/20 18:15:22 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Google
[2012/08/20 18:11:47 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Toshiba
[2012/08/20 18:08:08 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\SRS Labs
[2012/08/20 18:07:52 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\TOSHIBA
[2012/08/20 18:07:06 | 000,000,000 | R--D | C] -- C:\Users\Lee\Searches
[2012/08/20 18:07:06 | 000,000,000 | R--D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/08/20 18:07:06 | 000,000,000 | -H-D | C] -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/08/20 18:06:54 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Identities
[2012/08/20 18:06:47 | 000,000,000 | R--D | C] -- C:\Users\Lee\Contacts
[2012/08/20 18:06:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay
[2012/08/20 18:05:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon
[2012/08/20 18:05:52 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\WinBatch
[2012/08/20 18:05:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BBC iPlayer Desktop
[2012/08/20 18:05:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2012/08/20 18:05:17 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Macromedia
[2012/08/20 18:05:15 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Adobe
[2012/08/20 18:05:14 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Adobe
[2012/08/20 18:03:48 | 000,000,000 | ---D | C] -- C:\ProgramData\ToshibaEurope
[2012/08/20 18:03:02 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\VirtualStore
[2012/08/20 18:01:34 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Intel
[2012/08/20 18:01:33 | 000,000,000 | --SD | C] -- C:\Users\Lee\AppData\Roaming\Microsoft
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Videos
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Saved Games
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Pictures
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Music
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Links
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Favorites
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Downloads
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Documents
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\Desktop
[2012/08/20 18:01:33 | 000,000,000 | R--D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\AppData\Local\Temporary Internet Files
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Templates
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Start Menu
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\SendTo
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Recent
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\PrintHood
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\NetHood
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Documents\My Videos
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Documents\My Pictures
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Documents\My Music
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\My Documents
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Local Settings
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\AppData\Local\History
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Cookies
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\Application Data
[2012/08/20 18:01:33 | 000,000,000 | -HSD | C] -- C:\Users\Lee\AppData\Local\Application Data
[2012/08/20 18:01:33 | 000,000,000 | -H-D | C] -- C:\Users\Lee\AppData
[2012/08/20 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Temp
[2012/08/20 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/08/20 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\Roaming
[2012/08/20 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Local\Microsoft
[2012/08/20 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Media Center Programs
[2012/08/20 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/02 12:38:00 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/09/02 12:29:25 | 000,000,324 | ---- | M] () -- C:\windows\SysNative\checkdnsid.xml
[2012/09/02 11:36:38 | 000,024,608 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/02 11:36:38 | 000,024,608 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/02 10:53:04 | 165,490,200 | ---- | M] () -- C:\Users\Lee\Desktop\James Zabiela & Sasha @ DJ Mag - Shelborne, Miami [WMC] 21--{905e1b3a-bf4b-445c-9a77-464bb6b0175e}.dtapart
[2012/09/02 10:14:04 | 000,002,006 | -H-- | M] () -- C:\Users\Lee\Documents\Default.rdp
[2012/09/02 10:13:22 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/09/01 22:56:55 | 000,726,316 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012/09/01 22:56:55 | 000,628,460 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012/09/01 22:56:55 | 000,110,612 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012/09/01 22:27:05 | 000,272,409 | ---- | M] () -- C:\windows\SysWow64\TmpA16386079
[2012/09/01 17:57:14 | 000,000,830 | ---- | M] () -- C:\windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2012/09/01 17:56:22 | 000,002,042 | ---- | M] () -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
[2012/09/01 17:56:13 | 000,000,828 | ---- | M] () -- C:\windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2012/09/01 17:54:08 | 2062,290,943 | -HS- | M] () -- C:\hiberfil.sys
[2012/08/31 22:50:53 | 015,256,775 | ---- | M] () -- C:\Users\Lee\Desktop\Mirco Berti - Dont Break (Original Mix) [Enterpride].mp3
[2012/08/31 22:49:39 | 016,418,974 | ---- | M] () -- C:\Users\Lee\Desktop\Sebastian Davidson - Last Love Found (J Kar Remix) [Nightbird Music].mp3
[2012/08/31 22:48:29 | 016,328,832 | ---- | M] () -- C:\Users\Lee\Desktop\Helmut Dubnitzky_Jackspot - You You (Original Mix) [Brise Records].mp3
[2012/08/31 22:47:43 | 020,112,207 | ---- | M] () -- C:\Users\Lee\Desktop\Atapy - Move Baby (Massimo Cassini Remix) [Cimelde].mp3
[2012/08/31 22:45:37 | 013,811,682 | ---- | M] () -- C:\Users\Lee\Desktop\Moony Me - Konfused (Argy Back to the UK mix) [These Days].mp3
[2012/08/31 22:45:12 | 014,765,611 | ---- | M] () -- C:\Users\Lee\Desktop\Kellerkind - Its Like (Original Mix) [Sirion Records].mp3
[2012/08/31 22:44:50 | 023,811,313 | ---- | M] () -- C:\Users\Lee\Desktop\Jorge Takei - Paris (Los Suruba Remix) [Suruba].mp3
[2012/08/31 22:39:07 | 015,267,872 | ---- | M] () -- C:\Users\Lee\Desktop\Funman_Vansam - Take The Whole (Original Mix) [Passion Recordings].mp3
[2012/08/31 22:37:32 | 014,733,888 | ---- | M] () -- C:\Users\Lee\Desktop\Superhero - Its Not For You Ft C Layne (The Mekanism Remix) [Noir Music].mp3
[2012/08/31 22:36:03 | 018,474,142 | ---- | M] () -- C:\Users\Lee\Desktop\Marc Miroir feat Hard TonKiki Moorse_Kiki Moorse - The Train feat Kiki Moorse (Original Mix) [Paso Music].mp3
[2012/08/31 20:14:01 | 020,600,760 | ---- | M] () -- C:\Users\Lee\Desktop\Maxim Lany - Some Bells (Blackmode Remix) [Swink Music Ltd].mp3
[2012/08/31 16:36:01 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_netaapl64_01009.Wdf
[2012/08/31 15:17:06 | 182,816,768 | ---- | M] () -- C:\Users\Lee\Desktop\Benidorm S1E6.avi
[2012/08/31 15:16:03 | 207,366,422 | ---- | M] () -- C:\Users\Lee\Desktop\Benidorm S1E5.avi
[2012/08/30 10:28:28 | 000,735,230 | ---- | M] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012/08/29 16:56:23 | 000,088,134 | ---- | M] () -- C:\Users\Lee\Documents\Untitled-2.psd
[2012/08/28 16:24:30 | 000,001,528 | ---- | M] () -- C:\windows\Sandboxie.ini
[2012/08/27 14:20:44 | 000,001,993 | ---- | M] () -- C:\Users\Lee\Desktop\mkv2vob.lnk
[2012/08/26 11:19:28 | 000,000,956 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
[2012/08/24 10:11:52 | 000,000,903 | ---- | M] () -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\Sandboxed Web Browser.lnk
[2012/08/23 13:48:36 | 000,093,160 | ---- | M] (BitDefender LLC) -- C:\windows\SysNative\drivers\bdfndisf6.sys
[2012/08/23 12:17:42 | 000,274,320 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012/08/22 22:12:53 | 000,834,544 | ---- | M] () -- C:\windows\SysNative\drivers\sptd.sys
[2012/08/22 10:05:16 | 000,001,790 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/08/22 10:00:13 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/08/22 09:24:10 | 000,000,385 | ---- | M] () -- C:\windows\SysNative\user_gensett.xml
[2012/08/21 23:01:48 | 000,001,153 | ---- | M] () -- C:\Users\Lee\Desktop\FL Studio 10.lnk
[2012/08/21 22:55:45 | 000,001,023 | ---- | M] () -- C:\Users\Lee\Desktop\MixMeister Fusion + Video.lnk
[2012/08/21 22:38:34 | 000,001,053 | ---- | M] () -- C:\windows\SysNative\drivers\etc\hosts
[2012/08/21 22:37:46 | 000,001,160 | ---- | M] () -- C:\Users\Lee\Desktop\Photoshop CS4.lnk
[2012/08/21 21:16:39 | 000,002,007 | ---- | M] () -- C:\Users\Lee\Desktop\FileZilla Client.lnk
[2012/08/21 19:09:28 | 000,169,825 | ---- | M] () -- C:\ProgramData\1345572411.bdinstall.bin
[2012/08/21 19:08:10 | 000,000,270 | -H-- | M] () -- C:\bdr-conf
[2012/08/21 19:08:00 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2012/08/21 19:07:57 | 000,002,103 | ---- | M] () -- C:\Users\Public\Desktop\Bitdefender Total Security 2012.lnk
[2012/08/21 01:58:26 | 000,108,227 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2012/08/21 01:58:26 | 000,108,227 | ---- | M] () -- C:\windows\SysNative\license.rtf
[2012/08/20 18:51:04 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/08/20 18:23:52 | 000,001,137 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/08/20 18:16:49 | 000,001,444 | ---- | M] () -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/02 10:46:08 | 165,490,200 | ---- | C] () -- C:\Users\Lee\Desktop\James Zabiela & Sasha @ DJ Mag - Shelborne, Miami [WMC] 21--{905e1b3a-bf4b-445c-9a77-464bb6b0175e}.dtapart
[2012/09/02 00:07:04 | 182,816,768 | ---- | C] () -- C:\Users\Lee\Desktop\Benidorm S1E6.avi
[2012/09/01 23:29:38 | 207,366,422 | ---- | C] () -- C:\Users\Lee\Desktop\Benidorm S1E5.avi
[2012/09/01 22:27:05 | 000,272,409 | ---- | C] () -- C:\windows\SysWow64\TmpA16386079
[2012/08/31 22:50:27 | 015,256,775 | ---- | C] () -- C:\Users\Lee\Desktop\Mirco Berti - Dont Break (Original Mix) [Enterpride].mp3
[2012/08/31 22:49:11 | 016,418,974 | ---- | C] () -- C:\Users\Lee\Desktop\Sebastian Davidson - Last Love Found (J Kar Remix) [Nightbird Music].mp3
[2012/08/31 22:47:58 | 016,328,832 | ---- | C] () -- C:\Users\Lee\Desktop\Helmut Dubnitzky_Jackspot - You You (Original Mix) [Brise Records].mp3
[2012/08/31 22:47:05 | 020,112,207 | ---- | C] () -- C:\Users\Lee\Desktop\Atapy - Move Baby (Massimo Cassini Remix) [Cimelde].mp3
[2012/08/31 22:45:18 | 013,811,682 | ---- | C] () -- C:\Users\Lee\Desktop\Moony Me - Konfused (Argy Back to the UK mix) [These Days].mp3
[2012/08/31 22:44:47 | 014,765,611 | ---- | C] () -- C:\Users\Lee\Desktop\Kellerkind - Its Like (Original Mix) [Sirion Records].mp3
[2012/08/31 22:44:18 | 023,811,313 | ---- | C] () -- C:\Users\Lee\Desktop\Jorge Takei - Paris (Los Suruba Remix) [Suruba].mp3
[2012/08/31 22:38:33 | 015,267,872 | ---- | C] () -- C:\Users\Lee\Desktop\Funman_Vansam - Take The Whole (Original Mix) [Passion Recordings].mp3
[2012/08/31 22:36:53 | 014,733,888 | ---- | C] () -- C:\Users\Lee\Desktop\Superhero - Its Not For You Ft C Layne (The Mekanism Remix) [Noir Music].mp3
[2012/08/31 22:35:37 | 018,474,142 | ---- | C] () -- C:\Users\Lee\Desktop\Marc Miroir feat Hard TonKiki Moorse_Kiki Moorse - The Train feat Kiki Moorse (Original Mix) [Paso Music].mp3
[2012/08/31 19:53:34 | 020,600,760 | ---- | C] () -- C:\Users\Lee\Desktop\Maxim Lany - Some Bells (Blackmode Remix) [Swink Music Ltd].mp3
[2012/08/31 19:12:36 | 683,235,342 | ---- | C] () -- C:\Users\Lee\Desktop\office.rar
[2012/08/31 16:36:01 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_netaapl64_01009.Wdf
[2012/08/29 16:56:22 | 000,088,134 | ---- | C] () -- C:\Users\Lee\Documents\Untitled-2.psd
[2012/08/28 16:24:30 | 000,735,230 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012/08/27 14:20:44 | 000,001,993 | ---- | C] () -- C:\Users\Lee\Desktop\mkv2vob.lnk
[2012/08/26 11:19:25 | 000,000,956 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
[2012/08/24 10:12:01 | 000,000,903 | ---- | C] () -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\Sandboxed Web Browser.lnk
[2012/08/24 10:11:59 | 000,001,528 | ---- | C] () -- C:\windows\Sandboxie.ini
[2012/08/22 22:12:53 | 000,834,544 | ---- | C] () -- C:\windows\SysNative\drivers\sptd.sys
[2012/08/22 10:05:16 | 000,001,790 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/08/22 10:02:59 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/08/22 10:00:13 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/08/22 09:24:10 | 000,000,385 | ---- | C] () -- C:\windows\SysNative\user_gensett.xml
[2012/08/21 23:01:48 | 000,001,153 | ---- | C] () -- C:\Users\Lee\Desktop\FL Studio 10.lnk
[2012/08/21 22:51:24 | 000,001,023 | ---- | C] () -- C:\Users\Lee\Desktop\MixMeister Fusion + Video.lnk
[2012/08/21 22:37:46 | 000,001,172 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS4.lnk
[2012/08/21 22:37:46 | 000,001,160 | ---- | C] () -- C:\Users\Lee\Desktop\Photoshop CS4.lnk
[2012/08/21 21:16:39 | 000,002,007 | ---- | C] () -- C:\Users\Lee\Desktop\FileZilla Client.lnk
[2012/08/21 19:31:26 | 000,000,324 | ---- | C] () -- C:\windows\SysNative\checkdnsid.xml
[2012/08/21 19:09:28 | 000,169,825 | ---- | C] () -- C:\ProgramData\1345572411.bdinstall.bin
[2012/08/21 19:08:10 | 000,000,270 | -H-- | C] () -- C:\bdr-conf
[2012/08/21 19:08:09 | 036,942,680 | -H-- | C] () -- C:\bdrescue.gz
[2012/08/21 19:08:09 | 002,510,608 | -H-- | C] () -- C:\bdrescue.vm
[2012/08/21 19:08:09 | 000,217,769 | -H-- | C] () -- C:\bdrescue
[2012/08/21 19:08:09 | 000,009,216 | -H-- | C] () -- C:\bdrescue.mbr
[2012/08/21 19:08:00 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2012/08/21 19:07:57 | 000,002,103 | ---- | C] () -- C:\Users\Public\Desktop\Bitdefender Total Security 2012.lnk
[2012/08/20 21:07:55 | 000,000,830 | ---- | C] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/08/20 19:05:23 | 000,002,006 | -H-- | C] () -- C:\Users\Lee\Documents\Default.rdp
[2012/08/20 18:51:04 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/08/20 18:23:52 | 000,001,149 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/08/20 18:23:52 | 000,001,137 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/08/20 18:16:49 | 000,001,444 | ---- | C] () -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/08/20 18:07:08 | 000,001,450 | ---- | C] () -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/08/20 18:05:49 | 000,001,000 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BBC iPlayer Desktop.lnk
[2012/08/20 18:01:33 | 000,002,042 | ---- | C] () -- C:\Users\Lee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
[2012/08/20 18:01:33 | 000,000,290 | ---- | C] () -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/08/20 18:01:33 | 000,000,272 | ---- | C] () -- C:\Users\Lee\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/05/10 15:14:32 | 000,755,572 | ---- | C] () -- C:\windows\SysWow64\igkrng700.bin
[2012/05/10 15:14:32 | 000,559,972 | ---- | C] () -- C:\windows\SysWow64\igfcg700m.bin
[2012/05/10 15:07:18 | 000,058,880 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012/05/10 14:25:28 | 013,026,304 | ---- | C] () -- C:\windows\SysWow64\ig7icd32.dll
[2012/02/03 06:08:26 | 000,001,536 | ---- | C] () -- C:\windows\SysWow64\IusEventLog.dll
[2011/12/20 04:21:20 | 000,032,768 | ---- | C] () -- C:\windows\SysWow64\SPCtl.dll

========== LOP Check ==========

[2012/08/23 22:05:57 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\Bitdefender
[2012/08/22 22:20:26 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\DAEMON Tools Lite
[2012/08/30 12:53:22 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\FileZilla
[2012/08/22 09:31:58 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\Image-Line
[2012/08/21 19:11:50 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\liQeNSoft
[2012/08/21 19:06:57 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\QuickScan
[2012/08/21 20:52:33 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\Radmin
[2012/08/20 19:59:47 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\sMedio
[2012/08/30 13:15:27 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\SoftGrid Client
[2012/08/31 19:19:01 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\Steinberg
[2012/08/23 12:57:04 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\The Creative Assembly
[2012/08/20 18:11:47 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\Toshiba
[2012/08/28 16:25:17 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\TP
[2012/08/20 18:05:52 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\WinBatch
[2012/08/23 22:17:26 | 000,000,000 | ---D | M] -- C:\Users\Lee\AppData\Roaming\Windows Live Writer
[2012/09/01 17:56:13 | 000,000,828 | ---- | M] () -- C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2012/09/01 17:57:14 | 000,000,830 | ---- | M] () -- C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2009/07/14 06:08:49 | 000,014,396 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >

Edited by turbokid, 02 September 2012 - 05:42 AM.

  • 0

Advertisements

#2
godawgs
Posted 04 September 2012 - 11:03 AM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Hello turbokid, :wave:
:welcome:. My name is godawgs and I will be assisting you with your Virus / Malware issues.
We apologize for the delay in responding to your request for help. Here at GeeksToGo we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

I will start working on your Malware issues. This may, or may not, solve other issues you have with your machine. The fixes are specific to your problem and should only be used for this issue on this machine!

If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed.
If you have not, please adhere to the guidelines below and then carefully follow all future instructions:

You must reply to posts within four days. If you haven't replied within that time, the topic will be closed! If you need additional time to complete things, just let me know.
If you're not sure, or if something unexpected happens, Do NOT continue! Stop and ask!

This board can notify you when a new reply is added to a topic. Please read this topic to find out how to do that.

Please do not run any tools unless instructed to do so.
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability. Do as the instructions ask, nothing extra. Do Not run things twice unless instructed.
  • If I ask a Question just answer it, don't run anything unless directed to.
Please read every post completely before doing anything.
  • Pay special attention to the NOTE: lines, or anything in red. These entries identify an individual issue or important step in the cleanup process.
  • Please make sure you are saving and printing the instructions out prior to each fix, this way you will have them on hand just in case you are unable to access this site. Some of the steps I will be asking you to do may require you to boot into Safe Mode and this process will be much easier for you to perform if the instructions are printed out for you to follow.
  • Please do not use the Attachment feature for any log file. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.
Logs from malware diagnostic or removal programs (OTL is one of them) can take some time to analyze.
  • I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forum, (sometimes :lol: )
  • Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
Lastly, Please be aware that removing Malware is a hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. Some infections are so severe that we might encounter situations where the only recourse is to re-format and re-install your operating system. Don't worry, this only happens in severe cases, but, sadly, it does happen.
In light of this be prepared to back up your data. Have means of backing up your data available.


Let's get a couple of additional scans. And I want you to post the Extras.txt log that OTL generated when it first ran. It should be in the C:\Users\Lee\Desktop\otl folder.


Step-1.

Run aswMBR
  • Download aswMBR.exe to your desktop.
  • Double click the aswMBR.exe file to run it. (Windows /7 users: Right click the file and click Run as Administrator. If you get a UAC window, allow the file to run.
  • If it asks you if you want to download the latest virus definitions, click Yes
  • Click the "Scan" button to start the scan
    Posted Image
  • On completion of the scan click save log. Save it to your desktop and post in your next reply.
    Posted Image
NOTE: When you run aswMBR, if it is shutdown automatically, then it is most likely the infection detecting that aswMBR is running and terminating it. In this situation you should rename executable to iexplore.exe and try it again.


Step-2.

AdwCleaner by Xplode

Download AdwCleaner from here to your desktop.
  • (Vista and 7 users) right click the adwcleaner.exe file and select Run as administrator to run AdwCleaner.

    Posted Image
  • Click the Search button and wait for the scan to finish.
  • Once done it will ask to reboot, allow this.
  • On reboot a log will be produced please attach that. This report is also saved to C:\AdwCleaner[R1].txt


Step-3.

Things For Your Next Post:
1. The aswMBR log
2. The AdwCleaner[R1].txt log
3. The Extras.txt log
  • 0

#3
godawgs
Posted 08 September 2012 - 02:19 PM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP