Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

HELP! My computer won't let me download literally ANYTHING

Started by Liv Scott , Dec 03 2012 07:55 PM

  • Please log in to reply

#91
Liv Scott
Posted 04 February 2013 - 06:05 PM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Okay I did that! But now when I type mail.yahoo.com into the URL box, it can't sign in, the URL line keeps showing that it's trying to sign me in but can't do it :( Did I do something wrong? I had to unclick the Require a Secure Connection button to add mail.yahoo.com to the list, I can undo that!

Edited by Liv Scott, 04 February 2013 - 06:11 PM.

  • 0

Advertisements

#92
RKinner
Posted 04 February 2013 - 06:35 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Is it only from mail yahoo that you are having download problems?

I would take mail yahoo out of Trusted Sites. Not really sure why it doesn't want to work tho. Can you try another download site?
  • 0

#93
Liv Scott
Posted 04 February 2013 - 09:02 PM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Sure thing! I just tried downloading from my gmail (actually pictures I sent a family member, so I know they are clean), and I got the same error message! Here's a screencap of it!

Attached Thumbnails

  • Internet Explorer error screencap.jpg

  • 0

#94
RKinner
Posted 04 February 2013 - 09:37 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Copy the next 5 lines:

reg query "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer\Security" /s > \junk.txt
reg query "HKCU\Software\Policies\Microsoft\Internet Explorer\Security" /s >> \junk.txt
reg query "HKCU\Software\Microsoft\Internet Explorer\Security" /s >> \junk.txt
reg query "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2" /s >> \junk.txt
notepad \junk.txt


Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied lines should appear.
Hit Enter. Notepad should open. Copy and paste the text from Notepad into a reply.
  • 0

#95
Liv Scott
Posted 04 February 2013 - 09:55 PM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Here you go!


HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security
Sending_Security REG_SZ Medium
Viewing_Security REG_SZ High
Safety Warning Level REG_SZ Query
ENABLE_MD2_MD4 REG_DWORD 0x0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security\Adv AddrBar Spoof Detection
Enable REG_DWORD 0x1

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security\P3Global

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security\P3Sites


HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
2001 REG_DWORD 0x0
2004 REG_DWORD 0x0
(Default) REG_SZ
DisplayName REG_SZ Trusted sites
PMDisplayName REG_SZ Trusted sites [Protected Mode]
Description REG_SZ This zone contains websites that you trust not to damage your computer or data.
Icon REG_SZ inetcpl.cpl#00004480
LowIcon REG_SZ inetcpl.cpl#005424
CurrentLevel REG_DWORD 0x0
Flags REG_DWORD 0x47
1200 REG_DWORD 0x0
1400 REG_DWORD 0x0
1001 REG_DWORD 0x1
1004 REG_DWORD 0x3
1201 REG_DWORD 0x3
1206 REG_DWORD 0x3
1207 REG_DWORD 0x0
1208 REG_DWORD 0x0
1209 REG_DWORD 0x3
120A REG_DWORD 0x3
1402 REG_DWORD 0x0
1405 REG_DWORD 0x0
1406 REG_DWORD 0x3
1407 REG_DWORD 0x1
1408 REG_DWORD 0x0
1409 REG_DWORD 0x0
1601 REG_DWORD 0x0
1604 REG_DWORD 0x0
1605 REG_DWORD 0x0
1606 REG_DWORD 0x0
1607 REG_DWORD 0x3
1608 REG_DWORD 0x0
1609 REG_DWORD 0x1
160A REG_DWORD 0x0
1800 REG_DWORD 0x1
1802 REG_DWORD 0x0
1803 REG_DWORD 0x0
1804 REG_DWORD 0x1
1809 REG_DWORD 0x0
1A00 REG_DWORD 0x20000
1A02 REG_DWORD 0x0
1A03 REG_DWORD 0x0
1A04 REG_DWORD 0x3
1A05 REG_DWORD 0x1
1A06 REG_DWORD 0x0
1C00 REG_DWORD 0x10000
2000 REG_DWORD 0x0
2005 REG_DWORD 0x0
2100 REG_DWORD 0x0
2101 REG_DWORD 0x0
2102 REG_DWORD 0x3
2103 REG_DWORD 0x0
2104 REG_DWORD 0x0
2105 REG_DWORD 0x0
2106 REG_DWORD 0x0
2200 REG_DWORD 0x3
2201 REG_DWORD 0x3
2300 REG_DWORD 0x1
2301 REG_DWORD 0x3
2400 REG_DWORD 0x0
2401 REG_DWORD 0x0
2402 REG_DWORD 0x0
2600 REG_DWORD 0x0
2700 REG_DWORD 0x3
2007 REG_DWORD 0x10000
120B REG_DWORD 0x0
2107 REG_DWORD 0x0
2708 REG_DWORD 0x0
2709 REG_DWORD 0x0
2701 REG_DWORD 0x0
2702 REG_DWORD 0x0
2703 REG_DWORD 0x0
1805 REG_DWORD 0x0
1806 REG_DWORD 0x0
1807 REG_DWORD 0x0
1808 REG_DWORD 0x0
1A10 REG_DWORD 0x0
180A REG_DWORD 0x3
180C REG_DWORD 0x0
180D REG_DWORD 0x0
2500 REG_DWORD 0x3
1E05 REG_DWORD 0x20000
  • 0

#96
RKinner
Posted 05 February 2013 - 01:06 AM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Copy the next 3 lines:

reg query "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3" /s > \junk.txt
reg query "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies" /s >> \junk.txt
reg query "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies" /s >> \junk.txt
notepad \junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied lines should appear.
Hit Enter. Notepad should open. Copy and paste the text from Notepad into a reply.
  • 0

#97
RKinner
Posted 05 February 2013 - 01:52 AM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
In addition to the last post:

Get autoruns from
http://live.sysinter...om/autoruns.exe

Download Save and Run the program by right clicking and Run As Admin. Let it finish scanning. File, Save, to your desktop, Save As Type: txt
autoruns.txt, OK

then ATTACH it. Do not copy and paste.
  • 0

#98
Liv Scott
Posted 05 February 2013 - 02:05 AM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Here you go! Getting autoruns now!


HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
2004 REG_DWORD 0x0
2001 REG_DWORD 0x0
{AEBA21FA-782A-4A90-978D-B72164C80120} REG_BINARY 1A3761592352350C7A5F20172F1E1A190E2B01731E281A041B0C3BC22127530D36052C05043D4F3A4A44333A0A061268537C2013355D4C102701567A2D3F384F790F162675531C3100567A3E32244F791B0033714D2332297C6A35313440723B012E5D4C2A07154872381200567A3E163C714D2433357C72350E3C1A4144190F313A567A2E3E310C7C6A10270C055D4C3919121561542E003332405203251F055D4C2C0C0A1561541A261F055D4C10211D1B714D3B243A216D7224163C324072210F3A1A41441B1E0101714D322330276D4D1F28103C567A2F2E32167C6A3A123B2875530B3F1201714D2332292775531230321E4F7912381701714D303E37276D7238123F0441440A0E3228495F1C240B1B3621417B5B2439317C6A2B0E2575531A2E264172341626714D30303A7C6A07331A567A3A0033714D2332297C6A1A261A4052243F1A6D4D1C2228755313252041440A0E327553080720714D10270D055D4C241A1E1B714D3F203F216D4D10270C055D4C3919123A567A3A202C0C7C6A3E0C370775531230323A567A252D230C7C6A2B08213A567A223A323A5672241E261A4144071F031B75531C310101714D322330276D72341E300441441B1E3B28495F0733121B5D4C350B0A1F75530B00342840723B012D04414401053428405222360434487238123F0441440A0E1F01714D24333527061C685349142101405210270D40522C29056D4D1F2805567A2F2E32755307331240523F3A196D72200034714D1A261A4052243F1A6D723508385D4C2D0118487A27231F567A3B2F3F4F790839011B7172331F393A567A2E3E310C7C72350E3F1A41440A0A353A567A3A202C0C7C6A03251F055D4C2C0C0A156154270534324052102109055D4C2D0118156154073717055D4C1C24031B714D30303B276D7233173F284072341E300441441B1E0001714D2F2C2C276D4D0B263F3C567A3A2023167C6A35053328755312301701714D303E372775531325201E4F791F291F01714D243335270621417B5B3D24377C6A2B0E254072331F395D72341E305D4C2A0D18487A27123B714D2332125672200C2E5D4C2C0C0A75531A261F40723508385D4C2D011875530F21274144071F3E61543D06223240522C2905324872341E051B714D10270C055D4C39191A1B714D233224216D4D03251F055D4C2C0C0A3A567A252D230C7C6A2B08210775531325203A567A3E3E3B0C7C6A3F0F233A567A2F2E3D3C5672331F390441441A0E050175531C310001714D2F2C2C276D72200C2D04414406182A28495F1A261A1B5D4C2C0C0F1F75531C1C3E28407238123F0441440A163C2840523E3906342121417B5B23273C7C6A17371740523224056D4D0E212C75530B31317553083E214144071E3C6154173717055D4C00331E1B714D2E393B216D72200632324072210F3C1A41441A0E1F01714D202C30276D4D0E212C3C567A3A2E2D167C6A3F0722286E02684A7C2109265D4C291D1F567A3F32384F791E3001567A3A2E2D4F79140722714D24303B7C6A2A1E2F0775530C2D263A567A31253D0C7C6A3E0E353A567A3B2F3D3A5672341E260441440B0A1E0175530E380101714D23302B276D72210F3C04281B676B5F00221075531F212741440B0A3175530E1D22714D03271D40523E3908755308312141441A0E323A567A3F32380C7C6A063E0D055D4C350D091561542907223240521737171B5D4C3A19161F6154063E0D1B5D4C03271101714D24333B27062141734111251D567A2E3E3B4F7918123F714D2E393B7C6A3E0E354072210F3C5D4C360D194872341E1F1B714D003316055D4C3804011B714D23302B216D4D1C240D055D4C291D173C567A3F3238167C6A3909250975530B31313C567A3B2F3D1615395F7B4203380240202C1E4F37417B5B23273C7C1407226E14684A7C2013355D3037080637417B5B23273C7C1B391D30027C50683A3B344F1B1E3B6E146873410B220A5612303228096773410B222A412C0C0F2137417B5B23273C7C081C3E660E444F560613056127231F4F3F5B537C2013355D3E3906060A68537C2109265D32123F6E14684A443E37026D1C24014F3F5B7341083827413804196E14684A443E37026D3E0E353B37417B5B2439317C0839004F3F7C50683B1D3C71252D2C203A7C50683B253B4F011D2A6E14684A443E37026D102109291F5E45671430074912163C660E44734108382741360A1B213F427341103B2D4100331E4F3F5B535E2E071D75210722660E7C50682324314F0D15014F3F5B535E2E071D480B183C6E14684A4426360C6D2B06256637417B5B142101403A31241537417B5B3C3E3F7C1238174F3F5B535E2E071D75350838360356767437081940073717291F7C50682324314F071F3E16177C5068203A397525123F660E444F561C121D561C240D2937417B5B3D24377C1E1D22660E444F561C1230612313114F3F5B535E2F01154810270C6E14684A7C3612385D243F196E14684A44212C046D350534660E444F561C121D561C3B252809676B5F012C2875241E263637417B5B3D24377C143A0B3037417B5B360C7C
1A10 REG_DWORD 0x1
{A8A88C49-5EB2-4990-A1A2-0876022C854F}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
(Default) REG_SZ
DisplayName REG_SZ Internet
PMDisplayName REG_SZ Internet [Protected Mode]
Description REG_SZ This zone contains all websites you haven't placed in other zones
Icon REG_SZ inetcpl.cpl#001313
LowIcon REG_SZ inetcpl.cpl#005425
CurrentLevel REG_DWORD 0x0
Flags REG_DWORD 0x1
1200 REG_DWORD 0x0
1400 REG_DWORD 0x0
1001 REG_DWORD 0x1
1004 REG_DWORD 0x3
1201 REG_DWORD 0x3
1206 REG_DWORD 0x3
1207 REG_DWORD 0x3
1208 REG_DWORD 0x3
1209 REG_DWORD 0x3
120A REG_DWORD 0x3
1402 REG_DWORD 0x0
1405 REG_DWORD 0x0
1406 REG_DWORD 0x3
1407 REG_DWORD 0x1
1408 REG_DWORD 0x3
1409 REG_DWORD 0x0
1601 REG_DWORD 0x0
1604 REG_DWORD 0x0
1605 REG_DWORD 0x0
1606 REG_DWORD 0x0
1607 REG_DWORD 0x3
1608 REG_DWORD 0x0
1609 REG_DWORD 0x1
160A REG_DWORD 0x3
1800 REG_DWORD 0x1
1802 REG_DWORD 0x0
1803 REG_DWORD 0x0
1804 REG_DWORD 0x1
1809 REG_DWORD 0x0
1A00 REG_DWORD 0x20000
1A02 REG_DWORD 0x0
1A03 REG_DWORD 0x0
1A04 REG_DWORD 0x3
1A05 REG_DWORD 0x1
1A06 REG_DWORD 0x0
1C00 REG_DWORD 0x10000
2000 REG_DWORD 0x0
2005 REG_DWORD 0x3
2100 REG_DWORD 0x0
2101 REG_DWORD 0x0
2102 REG_DWORD 0x3
2103 REG_DWORD 0x3
2104 REG_DWORD 0x3
2105 REG_DWORD 0x3
2106 REG_DWORD 0x0
2200 REG_DWORD 0x3
2201 REG_DWORD 0x3
2300 REG_DWORD 0x1
2301 REG_DWORD 0x0
2400 REG_DWORD 0x3
2401 REG_DWORD 0x0
2402 REG_DWORD 0x0
2600 REG_DWORD 0x0
2700 REG_DWORD 0x0
2007 REG_DWORD 0x10000
120B REG_DWORD 0x3
2107 REG_DWORD 0x3
2708 REG_DWORD 0x0
2709 REG_DWORD 0x0
2701 REG_DWORD 0x0
2702 REG_DWORD 0x0
2703 REG_DWORD 0x3
1805 REG_DWORD 0x1
1806 REG_DWORD 0x1
1807 REG_DWORD 0x1
1808 REG_DWORD 0x0
180A REG_DWORD 0x3
180C REG_DWORD 0x3
180D REG_DWORD 0x1
2500 REG_DWORD 0x0
1E05 REG_DWORD 0x20000


HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Associations

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments
ScanWithAntiVirus REG_DWORD 0x3

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
NoDrives REG_DWORD 0x0

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\run

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum
{BDEADF00-C265-11D0-BCED-00A0C90AB50F} REG_DWORD 0x1
{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} REG_DWORD 0x40000021
{0DF44EAA-FF21-4412-828E-260A8728E7F1} REG_DWORD 0x20

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ratings

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System
ConsentPromptBehaviorAdmin REG_DWORD 0x5
ConsentPromptBehaviorUser REG_DWORD 0x3
EnableInstallerDetection REG_DWORD 0x1
EnableLUA REG_DWORD 0x1
EnableSecureUIAPaths REG_DWORD 0x1
EnableUIADesktopToggle REG_DWORD 0x0
EnableVirtualization REG_DWORD 0x1
PromptOnSecureDesktop REG_DWORD 0x1
ValidateAdminCodeSignatures REG_DWORD 0x0
dontdisplaylastusername REG_DWORD 0x0
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
scforceoption REG_DWORD 0x0
shutdownwithoutlogon REG_DWORD 0x1
undockwithoutlogon REG_DWORD 0x1
FilterAdministratorToken REG_DWORD 0x0

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UIPI\Clipboard\ExceptionFormats
CF_TEXT REG_DWORD 0x1
CF_BITMAP REG_DWORD 0x2
CF_OEMTEXT REG_DWORD 0x7
CF_DIB REG_DWORD 0x8
CF_PALETTE REG_DWORD 0x9
CF_UNICODETEXT REG_DWORD 0xd
CF_DIBV5 REG_DWORD 0x11

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Uninstall

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate


HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
NoDrives REG_DWORD 0x0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Network

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate
  • 0

#99
Liv Scott
Posted 05 February 2013 - 02:08 AM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Here is the autoruns log!

Attached Files


  • 0

#100
RKinner
Posted 05 February 2013 - 11:15 AM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Go into Autorun and under Everything:

uncheck Windows Defender

Might as well also uncheck:

+ "Google Toolbar Notifier BHO"
+ "Java™ Plug-In 2 SSV Helper"
+ GameConsoleService
+ GoToAssist
+ "gupdate"
+ "gusvc"
+ "CyberLink Audio Decoder"
+ "CyberLink Audio Effect"
+ "CyberLink Audio Spectrum Analyzer"
+ "CyberLink Audio Wizard"
+ "CyberLink AudioCD Filter"
+ "CyberLink Demultiplexer"
+ "CyberLink DVD Navigator"
+ "CyberLink Line21 Decoder Filter"
+ "Cyberlink SubTitle Importor"
+ "CyberLink TimeStretch Filter"
+ "CyberLink Tzan Filter"
+ "CyberLink Video Effect"
+ "CyberLink Video/SP Decoder"


since their files are gone.

(Don't uncheck rdpclip. It's probably still there just Autoruns doesn't know where it is.)

Reboot and try and download something with IE.

My hope is that turning off Windows Defender will fix it since I think it must be broken but if not I'm pretty sure that the registry entry:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments
ScanWithAntiVirus REG_DWORD 0x3

Controls the scanning like the entry we changed in Firefox's About:Config.

If turning off Windows Defender with Autoruns didn't fix it then:

Download and Save the attached noscan.reg file.

Right click on it and Merge.

If you don't get an error then reboot and try a download again. IF we use this method you should always right click on any downloads and scan with Avast. Come to think of it I should have given you the same warning when we turned off scanning in Firefox.
  • 0

Advertisements

#101
Liv Scott
Posted 05 February 2013 - 08:04 PM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Okay so I tried the first part, still couldn't download anything, and when I rebooted my computer, Avast! was turned off and I can't turn it back on again :( I can't update it, I keep trying to turn it on, ran it as administrator, didn't work! I'm staying off the internet as much as possible lol should I still do the download? I'm hesitant to do anything without an antivirus, I don't know what I did! :(
  • 0

#102
RKinner
Posted 05 February 2013 - 08:20 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
By the first part do you mean the Autoruns part? Go back into Autoruns and make sure you didn't uncheck too much. Or just go back and recheck everything. Then reboot.

IF you mean the noscan.reg part then the attached scan.reg file should put it back the way it was.
  • 0

#103
Liv Scott
Posted 05 February 2013 - 10:08 PM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Okay so I tried doing the noscan.reg, and that didn't work, so I went back into Autorun and rechecked everything EXCEPT for windef, rebooted-Avast still is a no-go. So I re-checked Windows Defender, rebooted, and tried Avast-STILL DOESN'T WORK :( I.... I am so confused! I tried updating it, it says the service isn't running
  • 0

#104
RKinner
Posted 05 February 2013 - 10:30 PM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
Run OTL, Quickscan and post the log. Let's see what happened.
  • 0

#105
Liv Scott
Posted 05 February 2013 - 10:47 PM

Liv Scott

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 149 posts
Here it is!

OTL logfile created on: 02/05/13 8:34:34 PM - Run 5
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Livsie\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: MM/dd/yy

3.80 Gb Total Physical Memory | 2.01 Gb Available Physical Memory | 52.86% Memory free
7.60 Gb Paging File | 5.42 Gb Available in Paging File | 71.35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 58.59 Gb Total Space | 15.52 Gb Free Space | 26.49% Space Free | Partition Type: NTFS
Drive D: | 397.30 Gb Total Space | 155.06 Gb Free Space | 39.03% Space Free | Partition Type: NTFS

Computer Name: LIVSIE-PC | User Name: Livsie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/12/03 16:53:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Livsie\Desktop\OTL.exe
PRC - [2012/10/30 15:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/30 15:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/09/11 23:32:32 | 004,679,672 | ---- | M] (Almico Software (www.almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe
PRC - [2009/12/29 13:35:38 | 000,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/09/30 04:01:32 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2009/09/30 04:01:30 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2009/06/09 06:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2009/05/05 02:39:18 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\DELL\DellComms\bin\sprtsvc.exe
PRC - [2009/04/07 09:13:10 | 000,673,616 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
PRC - [2009/02/06 00:00:00 | 000,843,776 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
PRC - [2006/12/19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe


========== Modules (No Company Name) ==========

MOD - [2013/02/05 20:12:32 | 000,192,512 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Temp\sfamcc00001.dll
MOD - [2013/02/05 20:12:32 | 000,158,720 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Temp\sfareca00001.dll
MOD - [2013/02/01 19:31:19 | 012,459,888 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.138\pepflashplayer.dll
MOD - [2013/01/25 18:35:06 | 000,460,240 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll
MOD - [2013/01/25 18:35:04 | 004,012,496 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\pdf.dll
MOD - [2013/01/25 18:34:19 | 000,597,968 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\libglesv2.dll
MOD - [2013/01/25 18:34:18 | 000,124,368 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\libegl.dll
MOD - [2013/01/25 18:34:16 | 001,552,848 | ---- | M] () -- C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll
MOD - [2011/10/05 03:52:30 | 000,756,048 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL
MOD - [2009/07/13 17:15:45 | 000,364,544 | ---- | M] () -- C:\Windows\SysWOW64\msjetoledb40.dll
MOD - [2009/03/12 15:45:32 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll
MOD - [2008/11/21 13:58:42 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/10/30 15:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2011/12/15 10:40:08 | 001,977,224 | R--- | M] (Western Digital ) [Auto | Stopped] -- C:\Program Files\Western Digital\WD SmartWare\WDFME.exe -- (WDFMEService)
SRV:64bit: - [2011/12/15 10:40:08 | 001,338,264 | R--- | M] (Western Digital ) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe -- (WDRulesService)
SRV:64bit: - [2011/12/15 10:40:06 | 000,319,384 | R--- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe -- (WDDMService)
SRV:64bit: - [2011/08/05 11:53:12 | 000,467,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV:64bit: - [2011/08/05 11:53:12 | 000,306,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\WMZuneComm.exe -- (WMZuneComm)
SRV:64bit: - [2011/08/05 11:53:06 | 008,277,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV:64bit: - [2009/10/09 04:52:16 | 000,092,160 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2009/07/17 09:06:22 | 000,033,280 | ---- | M] () [Auto | Running] -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 17:38:59 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CISVC.EXE -- (CISVC)
SRV:64bit: - [2009/06/09 06:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2013/01/08 14:32:39 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/09/22 09:51:17 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/09/30 04:01:32 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009/09/30 04:01:30 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009/09/20 10:55:20 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/05/05 02:39:18 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe -- (sprtsvc_DellComms)
SRV - [2006/12/19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/10/30 15:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/30 15:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/30 15:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/30 15:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/30 15:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 08:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/06/10 05:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 05:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 03:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/08/03 00:29:22 | 000,083,776 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ftser2k.sys -- (FTSER2K)
DRV:64bit: - [2010/08/03 00:29:22 | 000,063,808 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ftdibus.sys -- (FTDIBUS)
DRV:64bit: - [2010/07/21 16:59:28 | 000,045,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2010/04/27 10:40:40 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/10/30 11:23:16 | 007,770,048 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/10/26 12:39:44 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/09/26 06:42:58 | 000,233,984 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2009/09/17 11:54:00 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:64bit: - [2009/09/16 05:47:00 | 000,267,312 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2009/07/17 09:06:20 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2009/07/17 08:06:00 | 002,769,400 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009/07/16 19:14:00 | 000,220,672 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 16:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2009/07/13 16:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2009/06/15 10:06:42 | 000,172,704 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008/11/11 12:42:00 | 000,033,792 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64modem.sys -- (USBModem)
DRV:64bit: - [2008/11/11 12:42:00 | 000,027,136 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64diag.sys -- (UsbDiag)
DRV:64bit: - [2008/11/11 12:42:00 | 000,017,920 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgx64bus.sys -- (usbbus)
DRV:64bit: - [2008/05/06 15:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {812F0E75-DDF8-40C9-83B9-57ACF1312B63}
IE:64bit: - HKLM\..\SearchScopes\{812F0E75-DDF8-40C9-83B9-57ACF1312B63}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {443789B7-F39C-4b5c-9287-DA72D38F4FE6}
IE - HKLM\..\SearchScopes\{3EAD345A-5334-40C5-9F44-62F73C440223}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://slirsredirect...mrud=18-06-2012

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 26 A7 17 B9 D6 01 CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AOL Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.co...eviantart.com/"
FF - prefs.js..extensions.enabledAddons: canitbecheaper%40trafficbroker.co.uk:3.8.28
FF - prefs.js..extensions.enabledAddons: morningCoffee%40shaneliesegang:1.35
FF - prefs.js..extensions.enabledAddons: twitternotifier%40naan.net:2.5.1
FF - prefs.js..extensions.enabledAddons: youtube2mp3%40mondayx.de:1.2.3
FF - prefs.js..extensions.enabledAddons: %7B195A3098-0BD5-4e90-AE22-BA1C540AFD1E%7D:4.0.4
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Livsie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Livsie\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Livsie\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Livsie\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/01/07 21:52:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: D:\Program Files (x86)\components [2013/02/02 10:02:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: D:\Program Files (x86)\plugins [2013/01/31 19:39:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 1.0b1\extensions\\Components: D:\Program Files (x86)\Mozilla Sunbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 1.0b1\extensions\\Plugins: D:\Program Files (x86)\Mozilla Sunbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

[2010/08/01 23:45:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Extensions
[2010/08/01 23:45:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Extensions\{718e30fb-e89b-41dd-9da7-e25a45638b28}
[2010/07/25 21:10:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Extensions\[email protected]
[2013/02/01 00:44:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions
[2012/12/21 17:52:06 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2012/09/04 08:34:26 | 000,000,000 | ---D | M] (FoxyTunes) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}
[2012/12/16 09:23:01 | 000,000,000 | ---D | M] (Echofon) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\[email protected]
[2010/08/01 23:45:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Sunbird\Profiles\6bpd18yu.default\extensions
[2012/12/21 17:48:28 | 000,093,072 | ---- | M] () (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\[email protected]
[2011/04/01 00:16:34 | 000,107,019 | ---- | M] () (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\[email protected]
[2011/08/26 08:53:20 | 000,011,510 | ---- | M] () (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\[email protected]
[2013/01/09 08:37:55 | 000,377,738 | ---- | M] () (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\{AE93811A-5C9A-4d34-8462-F7B864FC4696}.xpi
[2013/02/01 00:44:34 | 000,817,973 | ---- | M] () (No name found) -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/01/05 18:07:57 | 000,002,533 | ---- | M] () -- C:\Users\Livsie\AppData\Roaming\Mozilla\Firefox\Profiles\92h85qxq.default\searchplugins\aol-search.xml

========== Chrome ==========

CHR - homepage: http://www.google.com/reader/view/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/reader/view/
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Livsie\AppData\Local\Google\Chrome\Application\24.0.1312.57\pdf.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Livsie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Livsie\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = D:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = D:\Program Files (x86)\plugins\NPOFF12.DLL
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Java™ Platform SE 6 U35 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 6.0.350.10 (Enabled) = C:\Windows\SysWOW64\npdeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Livsie\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Users\Livsie\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
CHR - Extension: YouTube = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Google Search = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Notifier for Twitter = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikknnkomiokeodcdkknnhgjmncfiefmn\4.2.6_0\
CHR - Extension: Disconnect = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo\4.2.0_0\
CHR - Extension: InvisibleHand = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lghjfnfolmcikomdjmoiemllfnlmmoko\3.8.31_0\
CHR - Extension: Thor = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lijopgmiofmhjaihppiboemgnddmjpge\1_0\
CHR - Extension: Gmail = C:\Users\Livsie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/01/25 17:34:13 | 000,000,855 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll File not found
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll File not found
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [WD Quick View] C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe (Western Digital Technologies, Inc.)
O4:64bit: - HKLM..\Run: [Zune Launcher] C:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [FUFAXSTM] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.7.249 10.1.7.205
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E9FF6BC-1FFE-4AAA-B202-A40150CC9E90}: DhcpNameServer = 10.1.7.249 10.1.7.205
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/02/05 00:06:07 | 000,654,936 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\Livsie\Desktop\autoruns.exe
[2013/01/31 19:28:14 | 000,000,000 | ---D | C] -- C:\Users\Livsie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2013/01/31 19:28:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2013/01/31 19:28:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2013/01/31 19:13:48 | 000,000,000 | ---D | C] -- C:\Users\Livsie\AppData\Local\Shopping Sidekick Plugin
[2013/01/31 19:13:40 | 000,000,000 | ---D | C] -- C:\Users\Livsie\AppData\Local\Updater21802
[2013/01/29 00:26:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\catroot2
[2013/01/25 17:36:10 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/01/25 17:12:45 | 000,000,000 | ---D | C] -- C:\RegBackup
[2013/01/25 09:29:42 | 000,181,064 | ---- | C] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/01/25 09:29:29 | 000,000,000 | ---D | C] -- C:\Tweaking.com_Windows_Repair_Logs
[2013/01/25 09:29:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2013/01/25 09:29:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2013/01/24 09:09:03 | 000,691,781 | ---- | C] (maliprog @ Geekstogo) -- C:\Users\Livsie\Desktop\QuickEvents.exe
[2013/01/23 09:34:06 | 000,000,000 | ---D | C] -- C:\Users\Livsie\AppData\Local\{79682471-CCB7-4D7B-A150-0F4F717302D2}
[2013/01/18 07:44:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/01/17 21:58:50 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Livsie\Desktop\OTL.exe
[2013/01/12 20:14:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2013/01/07 21:53:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013/01/07 21:53:32 | 000,025,232 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/01/07 21:53:31 | 000,370,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/01/07 21:53:21 | 000,054,072 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/01/07 21:53:19 | 000,059,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/01/07 21:53:17 | 000,984,144 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/01/07 21:53:15 | 000,071,600 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/01/07 21:52:27 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/01/07 21:52:24 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2013/01/07 21:52:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013/01/07 21:52:10 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software

========== Files - Modified Within 30 Days ==========

[2013/02/05 20:32:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/02/05 20:06:27 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/02/05 20:06:27 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/02/05 20:01:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/02/05 20:01:03 | 3061,202,944 | -HS- | M] () -- C:\hiberfil.sys
[2013/02/05 19:50:55 | 000,000,328 | ---- | M] () -- C:\Users\Livsie\Desktop\noscan.reg
[2013/02/05 00:06:02 | 000,654,936 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\Livsie\Desktop\autoruns.exe
[2013/02/04 23:07:24 | 000,731,034 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/02/04 23:07:24 | 000,626,976 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/02/04 23:07:24 | 000,108,080 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/02/04 19:01:41 | 000,021,108 | ---- | M] () -- C:\Users\Livsie\Desktop\Internet Explorer error screencap.jpg
[2013/02/02 21:09:32 | 000,224,975 | ---- | M] () -- C:\Users\Livsie\Desktop\Browser.download Screenshot 18.01.jpg
[2013/02/02 10:02:58 | 000,000,717 | ---- | M] () -- C:\Users\Livsie\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013/01/31 23:36:39 | 000,206,342 | ---- | M] () -- C:\Users\Livsie\Desktop\Firefox Download sc.jpg
[2013/01/31 19:49:01 | 000,000,020 | ---- | M] () -- C:\Windows\”ô¼
[2013/01/31 19:28:35 | 000,000,983 | ---- | M] () -- C:\Users\Livsie\Desktop\SpeedFan.lnk
[2013/01/31 19:28:13 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2013/01/31 19:20:22 | 002,142,960 | ---- | M] () -- C:\Users\Livsie\Desktop\installspeedfan447.exe
[2013/01/31 19:06:58 | 000,061,440 | ---- | M] ( ) -- C:\Users\Livsie\Desktop\VEW Event Viewer Tool.exe
[2013/01/25 17:46:28 | 000,355,088 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/25 17:44:46 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/01/25 17:34:13 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/01/25 17:32:12 | 000,731,034 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/01/25 17:14:29 | 000,000,207 | ---- | M] () -- C:\Windows\tweaking.com-regbackup-LIVSIE-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/01/25 09:29:20 | 000,002,245 | ---- | M] () -- C:\Users\Public\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/01/25 09:04:32 | 005,419,212 | ---- | M] () -- C:\Users\Livsie\Desktop\tweaking.com_windows_repair_aio_setup.exe
[2013/01/24 08:44:52 | 000,691,781 | ---- | M] (maliprog @ Geekstogo) -- C:\Users\Livsie\Desktop\QuickEvents.exe
[2013/01/16 12:31:19 | 000,061,665 | ---- | M] () -- C:\Users\Livsie\Desktop\IE Learn More dialog box.png
[2013/01/12 19:53:44 | 000,177,160 | ---- | M] () -- C:\Users\Livsie\Desktop\adwcleaner.exe
[2013/01/07 21:53:33 | 000,001,960 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/01/07 21:53:15 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/01/07 21:40:38 | 102,315,992 | ---- | M] () -- C:\Users\Livsie\Desktop\avast.exe

========== Files Created - No Company Name ==========

[2013/02/05 19:51:05 | 000,000,328 | ---- | C] () -- C:\Users\Livsie\Desktop\noscan.reg
[2013/02/04 19:01:40 | 000,021,108 | ---- | C] () -- C:\Users\Livsie\Desktop\Internet Explorer error screencap.jpg
[2013/02/02 21:09:31 | 000,224,975 | ---- | C] () -- C:\Users\Livsie\Desktop\Browser.download Screenshot 18.01.jpg
[2013/01/31 23:35:43 | 000,206,342 | ---- | C] () -- C:\Users\Livsie\Desktop\Firefox Download sc.jpg
[2013/01/31 19:49:01 | 000,000,020 | ---- | C] () -- C:\Windows\”ô¼
[2013/01/31 19:28:35 | 000,000,983 | ---- | C] () -- C:\Users\Livsie\Desktop\SpeedFan.lnk
[2013/01/31 19:28:10 | 000,000,045 | ---- | C] () -- C:\Windows\SysWow64\initdebug.nfo
[2013/01/31 19:27:19 | 002,142,960 | ---- | C] () -- C:\Users\Livsie\Desktop\installspeedfan447.exe
[2013/01/31 19:26:50 | 000,061,440 | ---- | C] ( ) -- C:\Users\Livsie\Desktop\VEW Event Viewer Tool.exe
[2013/01/25 17:31:02 | 000,731,034 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/01/25 17:14:29 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-LIVSIE-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/01/25 09:29:20 | 000,002,245 | ---- | C] () -- C:\Users\Public\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/01/25 09:05:56 | 005,419,212 | ---- | C] () -- C:\Users\Livsie\Desktop\tweaking.com_windows_repair_aio_setup.exe
[2013/01/16 12:31:19 | 000,061,665 | ---- | C] () -- C:\Users\Livsie\Desktop\IE Learn More dialog box.png
[2013/01/12 19:59:55 | 000,177,160 | ---- | C] () -- C:\Users\Livsie\Desktop\adwcleaner.exe
[2013/01/07 21:53:33 | 000,001,960 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/01/07 21:49:56 | 102,315,992 | ---- | C] () -- C:\Users\Livsie\Desktop\avast.exe
[2012/12/18 08:25:46 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/12/18 08:25:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/12/18 08:25:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/12/18 08:25:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/12/18 08:25:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/03/30 01:25:02 | 000,007,598 | ---- | C] () -- C:\Users\Livsie\AppData\Local\Resmon.ResmonCfg
[2011/02/23 18:05:03 | 000,073,220 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2011/02/23 18:05:03 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2011/02/23 18:05:03 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2011/02/23 18:05:03 | 000,021,021 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2011/02/23 18:05:03 | 000,015,670 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2011/02/23 18:05:03 | 000,013,280 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2011/02/23 18:05:03 | 000,010,673 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2011/02/23 18:05:03 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2011/02/23 18:05:03 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat
[2011/02/23 18:05:03 | 000,001,140 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat
[2011/02/23 18:05:03 | 000,001,137 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat
[2011/02/23 18:05:03 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat
[2011/02/23 18:05:03 | 000,001,130 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat
[2011/02/23 18:05:03 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat
[2011/02/23 18:05:03 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2011/02/23 18:05:02 | 000,029,114 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2011/02/23 17:57:23 | 000,000,060 | ---- | C] () -- C:\Windows\EPWF310.ini
[2010/10/03 17:28:17 | 000,004,608 | ---- | C] () -- C:\Users\Livsie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/15 15:16:57 | 000,002,587 | ---- | C] () -- C:\Program Files\Dell Support Center.lnk
[2010/09/15 11:04:49 | 000,004,236 | ---- | C] () -- C:\Program Files\Windows Compatibility Report.htm
[2010/08/25 14:11:49 | 000,002,515 | ---- | C] () -- C:\Program Files (x86)\Skype.lnk
[2010/08/20 17:44:01 | 000,002,016 | ---- | C] () -- C:\Program Files (x86)\Adobe Reader 9.lnk
[2010/07/13 03:51:16 | 000,000,000 | ---- | C] () -- C:\Users\Livsie\AppData\Local\prvlcl.dat
[2010/05/20 00:57:05 | 000,000,196 | ---- | C] () -- C:\Users\Livsie\AppData\Roaming\wklnhst.dat
[2010/05/19 20:09:37 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/05/18 18:43:34 | 000,002,164 | ---- | C] () -- C:\Users\Livsie\AppData\Roaming\install.dat

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 21:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\Windows\sysWOW64\wbem\fastprox.dll -- [2010/11/20 04:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2010/05/23 15:41:32 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Absolute
[2010/05/19 16:53:21 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\acccore
[2010/07/17 22:21:06 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Alzex
[2012/12/19 08:16:23 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Dropbox
[2012/04/03 19:03:01 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Epson
[2011/11/04 10:10:38 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\GARMIN
[2011/08/05 23:38:43 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\go
[2010/06/08 06:17:51 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Hardcore
[2010/12/10 02:05:52 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\PCDr
[2010/06/08 06:18:13 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\PoiZone
[2011/11/18 20:25:57 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Spotify
[2010/08/03 10:50:45 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Template
[2011/10/31 13:27:24 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Trillian
[2011/03/30 17:54:01 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Trusteer
[2010/09/15 15:07:31 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Uniblue
[2010/05/21 18:46:54 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\WildTangent
[2011/04/26 13:57:01 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\Windows Live Writer
[2010/05/22 12:59:24 | 000,000,000 | ---D | M] -- C:\Users\Livsie\AppData\Roaming\XemiComputers

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2011/08/04 16:32:24 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????????????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline楆敬⁳砨㘸尩䑖卍畯摮䐻尺牐杯慲楆敬⁳砨㘸尩畑捩呫浩履呑祓瑳浥㭜㩃停潲牧浡䘠汩獥⠠㡸⤶
[2011/08/04 16:32:24 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????????????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline楆敬⁳砨㘸尩䑖卍畯摮䐻尺牐杯慲楆敬⁳砨㘸尩畑捩呫浩履呑祓瑳浥㭜㩃停潲牧浡䘠汩獥⠠㡸⤶
[2010/10/21 04:38:30 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????????????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline砨㘸尩䑖卍畯摮䐻尺牐杯慲楆敬⁳砨㘸尩畑捩呫浩履呑祓瑳浥㭜㩃停潲牧浡䘠汩獥⠠㡸⤶坜湩潤獷
[2010/10/21 04:38:30 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????????????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline砨㘸尩䑖卍畯摮䐻尺牐杯慲楆敬⁳砨㘸尩畑捩呫浩履呑祓瑳浥㭜㩃停潲牧浡䘠汩獥⠠㡸⤶坜湩潤獷
[2010/09/15 02:21:15 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????4???????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline体归剁䡃呉䍅啔䕒砽㘸倀佒䕃卓剏䅟䍒䥈䕔㙗㌴㴲䵁㙄4剐䍏卅体归䑉久䥔䥆剅䤽瑮汥㐶䘠浡汩⁹‶
[2010/09/15 02:21:15 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????4???????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline体归剁䡃呉䍅啔䕒砽㘸倀佒䕃卓剏䅟䍒䥈䕔㙗㌴㴲䵁㙄4剐䍏卅体归䑉久䥔䥆剅䤽瑮汥㐶䘠浡汩⁹‶
[2010/09/07 03:29:35 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnlineC???????????????????????????4???????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnlineC剐䍏卅体归剁䡃呉䍅啔䕒砽㘸倀佒䕃卓剏䅟䍒䥈䕔㙗㌴㴲䵁㙄4剐䍏卅体归䑉久䥔䥆剅䤽瑮汥㐶䘠
[2010/09/07 03:29:35 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnlineC???????????????????????????4???????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnlineC剐䍏卅体归剁䡃呉䍅啔䕒砽㘸倀佒䕃卓剏䅟䍒䥈䕔㙗㌴㴲䵁㙄4剐䍏卅体归䑉久䥔䥆剅䤽瑮汥㐶䘠
[2010/09/06 06:19:52 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline??) -- C:\Users\Livsie\AppData\Local\DataSafeOnline攄င
[2010/09/06 06:19:52 | 000,000,000 | ---D | M](C:\Users\Livsie\AppData\Local\DataSafeOnline??) -- C:\Users\Livsie\AppData\Local\DataSafeOnline攄င
(C:\Users\Livsie\AppData\Local\DataSafeOnlineC???????????????????????????4???????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnlineC剐䍏卅体归剁䡃呉䍅啔䕒砽㘸倀佒䕃卓剏䅟䍒䥈䕔㙗㌴㴲䵁㙄4剐䍏卅体归䑉久䥔䥆剅䤽瑮汥㐶䘠
(C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????4???????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline体归剁䡃呉䍅啔䕒砽㘸倀佒䕃卓剏䅟䍒䥈䕔㙗㌴㴲䵁㙄4剐䍏卅体归䑉久䥔䥆剅䤽瑮汥㐶䘠浡汩⁹‶
(C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????????????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline砨㘸尩䑖卍畯摮䐻尺牐杯慲楆敬⁳砨㘸尩畑捩呫浩履呑祓瑳浥㭜㩃停潲牧浡䘠汩獥⠠㡸⤶坜湩潤獷
(C:\Users\Livsie\AppData\Local\DataSafeOnline????????????????????????????????????????????) -- C:\Users\Livsie\AppData\Local\DataSafeOnline楆敬⁳砨㘸尩䑖卍畯摮䐻尺牐杯慲楆敬⁳砨㘸尩畑捩呫浩履呑祓瑳浥㭜㩃停潲牧浡䘠汩獥⠠㡸⤶
(C:\Users\Livsie\AppData\Local\DataSafeOnline??) -- C:\Users\Livsie\AppData\Local\DataSafeOnline攄င

< End of report >
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP