Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Browser causes PC to freeze

Started by Angelo Sartore , Oct 12 2013 08:44 PM

  • Please log in to reply

#1
Angelo Sartore
Posted 12 October 2013 - 08:44 PM

Angelo Sartore

    Member

  • Member
  • PipPip
  • 27 posts
Hi there,
I am running a PC on WIN XP Pro with SP3. Over the jast few days I found my Firefox browswer v24, which for the most part has been fine, began crashing

requiring a PC reset. After the reset I would attemt browsing again & after a while the browser would crash again & the pc would hang. The Pc would

function perfectly without any issues if the browser wasn't open. I downgraded Firefox to V 23 without success. I installed Google Chrome, thinking it may

more stable but it too suffered the same problems. I did a repair install for Windows - problem persists! On some occasions now when the browser hangs, the

mouse pointer is disabled but using Alt/Tab I can cycle through the open applications. Can you please help?
I find I can solve most of my PC problems, but I feel I need a pro for this one.

Regards,

Angelo Sartore

Melbourne
AUSTRALIA

I LOVE COOKING WITH WINE .. . .
SOMETIMES I EVEN PUT IT INTO THE FOOD!


ADOPT, ADAPT, INVENT, DESTROY !

OTL logfile created on: 13/10/2013 2:52:40 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Angelo New\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy

3.39 Gb Total Physical Memory | 2.07 Gb Available Physical Memory | 60.95% Memory free
5.23 Gb Paging File | 3.87 Gb Available in Paging File | 73.97% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 931.50 Gb Total Space | 807.70 Gb Free Space | 86.71% Space Free | Partition Type: NTFS
Drive G: | 487.81 Gb Total Space | 391.20 Gb Free Space | 80.20% Space Free | Partition Type: NTFS
Drive H: | 323.76 Gb Total Space | 82.34 Gb Free Space | 25.43% Space Free | Partition Type: NTFS
Drive I: | 1051.44 Gb Total Space | 831.27 Gb Free Space | 79.06% Space Free | Partition Type: NTFS
Drive Y: | 929.47 Gb Total Space | 166.81 Gb Free Space | 17.95% Space Free | Partition Type: NTFS
Drive Z: | 929.47 Gb Total Space | 547.23 Gb Free Space | 58.88% Space Free | Partition Type: NTFS

Computer Name: OFFICE | User Name: Angelo New | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/10/13 14:52:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Angelo New\My Documents\Downloads\OTL (1).exe
PRC - [2013/10/03 17:03:07 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013/09/25 15:42:24 | 014,018,144 | ---- | M] (GP Software) -- C:\Program Files\GPSoftware\Directory Opus\dopus.exe
PRC - [2013/09/25 15:42:24 | 000,349,824 | ---- | M] (GP Software) -- C:\Program Files\GPSoftware\Directory Opus\dopusrt.exe
PRC - [2013/06/13 10:37:34 | 005,015,048 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
PRC - [2013/06/13 10:37:34 | 001,066,504 | R--- | M] (Carbonite, Inc.) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
PRC - [2013/06/12 19:56:26 | 000,015,192 | ---- | M] (MYOB Technology Pty Ltd) -- C:\Program Files\MYOB\AccountRight\2013.2\AU\Huxley.Server.WindowsService.exe
PRC - [2013/06/12 19:55:54 | 000,017,752 | ---- | M] (MYOB Technology Pty Ltd) -- C:\Program Files\MYOB\AccountRight\Servers\Huxley.Library.WindowsService.exe
PRC - [2013/06/12 19:55:54 | 000,016,216 | ---- | M] (MYOB Technology Pty Ltd) -- C:\Program Files\MYOB\AccountRight\Servers\Huxley.ServerLocator.WindowsService.exe
PRC - [2013/05/16 10:59:00 | 003,830,224 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2012/06/26 12:06:30 | 004,668,072 | ---- | M] (Insight Software Solutions, Inc.) -- C:\Program Files\Macro Express3\MacExp.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2013/10/13 11:36:25 | 004,591,616 | ---- | M] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\1.0.5.0\libGLESv2.dll
MOD - [2013/10/13 11:36:25 | 000,112,128 | ---- | M] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\1.0.5.0\libEGL.dll
MOD - [2013/10/12 16:51:18 | 013,584,776 | ---- | M] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\11.9.900.117\pepflashplayer.dll
MOD - [2013/10/10 13:21:37 | 000,043,520 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.ServerLocato#\76da768f86cb9fffd35619072cb3d17b\Huxley.ServerLocator.Model.ni.dll
MOD - [2013/10/10 13:21:36 | 000,194,048 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\646cee8d3a77d6d71be6005800e664b7\System.ComponentModel.DataAnnotations.ni.dll
MOD - [2013/10/10 13:21:36 | 000,099,328 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DbUp\d795bd0cdffe5b8b52e0dfe9b2692eab\DbUp.ni.dll
MOD - [2013/10/10 13:21:36 | 000,070,144 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.File#\126c1431ed961b99c4a75b966718e90e\Huxley.Library.FileMetaData.ni.dll
MOD - [2013/10/10 13:21:35 | 003,443,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\EntityFramework\4012a77eeca75112b17c580d65e0c1c7\EntityFramework.ni.dll
MOD - [2013/10/10 13:21:34 | 000,228,864 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.Meta#\b9a3c7a630e6cc651802a1b0e07eb5c2\Huxley.Library.MetadataCache.ni.dll
MOD - [2013/10/10 13:21:33 | 000,098,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.Serv#\7d1d6e9db9c7c3c8dcc8611c48420b41\Huxley.Library.Services.ni.dll
MOD - [2013/10/10 13:21:32 | 000,301,056 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.WindowsAz#\b30b105deb22d4dce41c29c4d953e214\Microsoft.WindowsAzure.ServiceRuntime.ni.dll
MOD - [2013/10/10 13:21:32 | 000,082,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.ServiceModel#\8cc026a062306fec156cbb1b08cc9bb6\Huxley.ServiceModel.Server.ni.dll
MOD - [2013/10/10 13:21:31 | 000,079,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Cloud.Config#\3640159428f754e0c50ecccf2062b033\Huxley.Cloud.Configuration.ni.dll
MOD - [2013/10/10 13:21:31 | 000,060,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Server.Common\208ae425380e04526282137e7cabf835\Huxley.Server.Common.ni.dll
MOD - [2013/10/10 13:21:26 | 006,706,688 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Service.Gate#\788ee4f4e6af550ecd5aca659d9373bf\Huxley.Service.Gateway.ni.dll
MOD - [2013/10/10 13:18:46 | 000,708,096 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Autofac\73bc9f91ed3ae93f6ad2f29f09e6e517\Autofac.ni.dll
MOD - [2013/10/10 13:18:46 | 000,272,384 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.Util#\8402d022ecb5a5df025f4d6bb07b045f\Huxley.Library.Utilities.ni.dll
MOD - [2013/10/10 13:18:45 | 000,088,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.Serv#\7266b75ceaa9b4054b6c2aa20370d44e\Huxley.Library.ServiceModel.ni.dll
MOD - [2013/10/10 13:18:34 | 003,002,368 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.IdentityM#\85a5a130d19050a7cd11e0d7bd2bbe8b\Microsoft.IdentityModel.ni.dll
MOD - [2013/10/10 13:18:31 | 000,207,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.ServiceModel\ad75df4a6f3553976f4615c10a202b96\Huxley.ServiceModel.ni.dll
MOD - [2013/10/10 13:18:08 | 007,633,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.ApplicationS#\b79a26a6b88214dcded4f7bec53d92fb\Huxley.ApplicationServices.ni.dll
MOD - [2013/10/10 13:17:40 | 000,023,040 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.API\1026d6b5125abd4f3598aef8587db9b2\Huxley.Library.API.ni.dll
MOD - [2013/10/10 13:17:38 | 013,325,312 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data.Entity\c1d01dfbb202594015c85c150afe8e1b\System.Data.Entity.ni.dll
MOD - [2013/10/10 11:06:00 | 000,428,032 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\d19ad9c6cbb0dc754c7bccdc221a6fc9\System.ServiceModel.Activation.ni.dll
MOD - [2013/10/10 11:05:58 | 001,079,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\84a04308c055da2ba66d61d3e4654ae8\System.IdentityModel.ni.dll
MOD - [2013/10/10 11:05:57 | 018,150,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\f485b39173dab12416694ee20fb44b35\System.ServiceModel.ni.dll
MOD - [2013/10/10 11:05:47 | 001,250,304 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NLog\1310313c7305d6e2cdb781811aaa0da1\NLog.ni.dll
MOD - [2013/10/10 11:05:46 | 000,297,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.VersionIndep#\bf1e88605c747939f7d4a72ee152788f\Huxley.VersionIndependent.Utilities.ni.dll
MOD - [2013/10/10 11:05:45 | 000,822,784 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Utilities\524ebbb0df8333525d41ca210025851e\Huxley.Utilities.ni.dll
MOD - [2013/10/10 11:05:44 | 001,031,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\28a9793be3c7857e3e0a882d5fe0279e\System.Runtime.DurableInstancing.ni.dll
MOD - [2013/10/10 11:05:44 | 000,393,216 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\ae81136bd36917ad0ef665d7b5594525\System.Xml.Linq.ni.dll
MOD - [2013/10/10 11:05:43 | 002,658,304 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\6f9bbad52b8c9dfe3451a9a46e63977c\System.Runtime.Serialization.ni.dll
MOD - [2013/10/10 11:05:41 | 000,148,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuratio#\994f088b852b1c3f2d942581fd67eed4\System.Configuration.Install.ni.dll
MOD - [2013/10/10 11:05:38 | 001,189,376 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data.OracleC#\b2e46ccfb92d839006fccabfea120269\System.Data.OracleClient.ni.dll
MOD - [2013/10/10 11:05:36 | 012,177,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Web\b1f96d6ef245c22c228a7aec8520fda7\System.Web.ni.dll
MOD - [2013/10/10 11:05:27 | 002,441,216 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.IAPI\abddf418fd213bcf6e8e0697b5039628\Huxley.IAPI.ni.dll
MOD - [2013/10/10 10:19:24 | 006,866,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\3f441cbd88965d5e8bab7c0f041acc8e\System.Data.ni.dll
MOD - [2013/10/10 10:19:17 | 000,690,176 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\755e964ec4aa22557b3e856a0d4282d0\System.ComponentModel.Composition.ni.dll
MOD - [2013/10/10 10:19:12 | 001,616,384 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\e286d1c2191d2336253f8b49c58c4ccc\Microsoft.CSharp.ni.dll
MOD - [2013/10/10 10:19:09 | 000,377,344 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Dynamic\b55c2bcdabf15134ac65076303ee1057\System.Dynamic.ni.dll
MOD - [2013/10/10 10:19:05 | 007,053,824 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\2f0f425579c47fb0aba720d838366b7f\System.Core.ni.dll
MOD - [2013/10/10 10:18:58 | 001,014,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\b21ef81fc4131bd1edd6d0bae9d58932\System.Configuration.ni.dll
MOD - [2013/10/03 17:03:05 | 000,415,184 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\ppgooglenaclpluginchrome.dll
MOD - [2013/10/03 17:03:03 | 004,055,504 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\pdf.dll
MOD - [2013/10/03 17:02:09 | 001,604,560 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dll
MOD - [2013/08/15 00:45:07 | 000,022,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.ServerLocato#\a9bd49f061b5d976b84880aa34fdef8c\Huxley.ServerLocator.WindowsService.ni.exe
MOD - [2013/08/15 00:45:06 | 001,277,440 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data.SqlServ#\17d4f895ede71bcdaedb1b995e469cd6\System.Data.SqlServerCe.ni.dll
MOD - [2013/08/15 00:45:02 | 000,025,088 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Library.Wind#\5ef8ba97e1b792f1651308d08e755762\Huxley.Library.WindowsService.ni.exe
MOD - [2013/08/15 00:44:59 | 000,020,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Server.Windo#\2f89010f550bdaafba4776675d295b95\Huxley.Server.WindowsService.ni.exe
MOD - [2013/08/15 00:38:23 | 000,782,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data.SqlServ#\75b1fc9bfb313216d6449f077258a591\System.Data.SqlServerCe.ni.dll
MOD - [2013/08/15 00:37:05 | 000,143,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\ef2d4b4dd95fc461450c116c66708544\SMDiagnostics.ni.dll
MOD - [2013/08/15 00:37:01 | 000,221,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\581de19374a972d0d8ec2f894d8b8232\System.ServiceProcess.ni.dll
MOD - [2013/08/15 00:36:22 | 000,787,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\30212ac4ab2e8f165a31128a61f678eb\System.EnterpriseServices.ni.dll
MOD - [2013/08/15 00:36:22 | 000,236,032 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\30212ac4ab2e8f165a31128a61f678eb\System.EnterpriseServices.Wrapper.dll
MOD - [2013/08/15 00:36:20 | 000,649,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\9f37a2a23772a8e9dcbef5c6b6ebe0ad\System.Transactions.ni.dll
MOD - [2013/08/15 00:30:28 | 005,628,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\0835155203a99b6a9bb540629920da0d\System.Xml.ni.dll
MOD - [2013/08/15 00:30:12 | 009,099,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\fc16a5cafc433e6d942e9bd5b14fbeaf\System.ni.dll
MOD - [2013/08/02 19:31:16 | 000,139,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Report.API\2b1db18791dd8af0b490d11208888f2c\Huxley.Report.API.ni.dll
MOD - [2013/08/02 19:30:33 | 001,311,232 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Huxley.Presentation#\4687a42c3a782668871189004e5942a1\Huxley.Presentation.API.ni.dll
MOD - [2013/07/11 10:56:26 | 000,145,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Numerics\91bc7f6fd5295405b227cecc0e232ce8\System.Numerics.ni.dll
MOD - [2013/07/11 10:56:21 | 014,418,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\c799474a067f07ef3a167d75029fa012\mscorlib.ni.dll
MOD - [2013/07/11 10:39:12 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\b14359470744c840c59fbe4e58034fd6\mscorlib.ni.dll
MOD - [2013/05/16 10:55:28 | 000,161,112 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
MOD - [2013/05/16 10:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2013/05/16 10:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
MOD - [2009/02/27 17:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
MOD - [2008/04/14 05:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 05:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll


========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\Program Files\Spybot -- (SDWSCService)
SRV - File not found [Disabled | Stopped] -- C:\Program Files\Spybot -- (SDUpdateService)
SRV - File not found [Disabled | Stopped] -- C:\Program Files\Spybot -- (SDScannerService)
SRV - File not found [Disabled | Stopped] -- C:\Program Files\MyPC Backup\BackupStack.exe -- (BackupStack)
SRV - [2013/10/11 08:40:07 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/09/30 14:11:16 | 002,494,040 | ---- | M] (Agnitum Ltd.) [Auto | Running] -- C:\Program Files\Agnitum\Outpost Security Suite Pro\acs.exe -- (acssrv)
SRV - [2013/09/25 10:01:10 | 000,186,760 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Photodex\ProShow Gold\scsiaccess.exe -- (ScsiAccess)
SRV - [2013/09/16 12:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) [Disabled | Stopped] -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/09/12 13:14:25 | 000,118,680 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/09/05 10:34:30 | 000,171,680 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/07/02 12:19:30 | 000,093,072 | ---- | M] (TomTom) [Disabled | Stopped] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2013/06/13 10:37:34 | 005,015,048 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) [Auto | Running] -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe -- (CarboniteService)
SRV - [2013/06/12 19:56:26 | 000,015,192 | ---- | M] (MYOB Technology Pty Ltd) [Auto | Running] -- C:\Program Files\MYOB\AccountRight\2013.2\AU\Huxley.Server.WindowsService.exe -- (MYOB AccountRight Server 2013.2)
SRV - [2013/06/12 19:55:54 | 000,017,752 | ---- | M] (MYOB Technology Pty Ltd) [Auto | Running] -- C:\Program Files\MYOB\AccountRight\Servers\Huxley.Library.WindowsService.exe -- (MYOB AccountRight Library)
SRV - [2013/06/12 19:55:54 | 000,016,216 | ---- | M] (MYOB Technology Pty Ltd) [Auto | Running] -- C:\Program Files\MYOB\AccountRight\Servers\Huxley.ServerLocator.WindowsService.exe -- (MYOB AccountRight Server Locator)
SRV - [2013/03/27 16:10:50 | 000,221,536 | ---- | M] (LenovoEMC Ltd.) [Disabled | Stopped] -- C:\Program Files\LenovoEMC Storage Manager\pCloudd.exe -- (PCloudd)
SRV - [2012/02/07 18:53:34 | 000,363,800 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/02/07 18:53:32 | 000,277,784 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/02/07 18:52:04 | 000,161,560 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/02/02 23:25:30 | 000,458,464 | ---- | M] (Intel® Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2010/03/10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Disabled | Stopped] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010/01/25 09:22:56 | 000,245,760 | ---- | M] (Brother Industries, Ltd.) [Disabled | Stopped] -- C:\Program Files\Browny02\BrYNSvc.exe -- (BrYNSvc)
SRV - [2009/09/10 01:42:44 | 000,142,424 | ---- | M] (Nuance Communications, Inc.) [Disabled | Stopped] -- C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe -- (PDFProFiltSrvPP)
SRV - [2007/11/26 15:54:12 | 001,554,728 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013/09/29 18:53:08 | 000,085,264 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\Filt\VBFilt.dll -- (VBFilt)
DRV - [2013/09/29 18:53:04 | 000,802,528 | ---- | M] (Agnitum Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SandBox.sys -- (SandBox)
DRV - [2013/07/31 22:23:50 | 000,121,688 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2013/07/24 17:17:52 | 000,287,952 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afwcore.sys -- (afwcore)
DRV - [2013/07/14 22:57:01 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2013/03/29 18:04:44 | 000,018,000 | ---- | M] (Iomega Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vNICdrv.sys -- (vNICdrv)
DRV - [2013/01/22 15:03:59 | 000,016,694 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD)
DRV - [2012/11/20 13:52:20 | 000,266,872 | ---- | M] (VirusBuster Kft.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VBEngNT.sys -- (VBEngNT)
DRV - [2012/10/16 16:12:42 | 000,033,888 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afw.sys -- (afw)
DRV - [2011/12/13 21:27:30 | 007,069,288 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2011/12/06 06:24:14 | 000,270,080 | R--- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\IntcDAud.sys -- (IntcDAud)
DRV - [2011/11/10 01:52:02 | 000,046,080 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HECI.sys -- (MEI)
DRV - [2011/08/24 23:39:38 | 000,323,816 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2011/08/09 17:33:58 | 000,003,840 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\BANTExt.sys -- (BANTExt)
DRV - [2010/11/06 22:24:30 | 000,019,056 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\PeerBlock\pbfilter.sys -- (pbfilter)
DRV - [2009/11/18 10:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009/11/18 10:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009/11/03 14:06:12 | 000,011,520 | R--- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BrUsbSib.sys -- (BrUsbSIb)
DRV - [2009/11/03 14:06:11 | 000,071,424 | R--- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BrSerIb.sys -- (BrSerIb)
DRV - [2009/07/27 13:43:18 | 000,058,908 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2007/11/26 15:54:12 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007/11/26 15:54:12 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007/11/26 15:54:12 | 000,016,040 | ---- | M] (Nero AG) [Recognizer | System | Unknown] -- C:\WINDOWS\System32\drivers\InCDrec.sys -- (InCDrec)
DRV - [2007/11/26 15:54:02 | 000,118,952 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007/02/16 11:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2004/07/13 12:40:22 | 000,048,512 | ---- | M] (C-Media Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Umss.SYS -- (UMSSSTOR)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://websearch.soft-quick.info/
IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/...Date=01/01/1970
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {8AA8A2E9-93EE-491C-B2EC-F4A8E1F86B06}
IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/...Date=01/01/1970
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.delta-sea...120684&tsp=5034
IE - HKCU\..\SearchScopes\{8AA8A2E9-93EE-491C-B2EC-F4A8E1F86B06}: "URL" = http://au.search.yah...p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = localhost:21320

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: [email protected]:1.0
FF - prefs.js..extensions.enabledAddons: {5384767E-00D9-40E9-B72F-9CC39D655D6F}:1.4.2.1
FF - prefs.js..extensions.enabledAddons: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledAddons: [email protected]:5.8
FF - prefs.js..extensions.enabledAddons: [email protected]:1.8
FF - prefs.js..extensions.enabledAddons: [email protected]:1.2.4
FF - prefs.js..extensions.enabledAddons: {687578b9-7132-4a7a-80e4-30ee31099e03}:10.10.20.14
FF - prefs.js..network.proxy.type: 1
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&ilc=12&type=293224"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@photodex.com/PhotodexPresenter: C:\Program Files\Photodex Presenter\npPxPlay.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/10/02 08:46:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/10/11 08:12:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2013/10/10 18:51:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2012/10/15 13:07:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Extensions
[2012/10/15 13:07:32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Extensions\[email protected]
[2013/10/13 12:41:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions
[2012/08/17 05:43:52 | 000,000,000 | ---D | M] (EPUBReader) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
[2012/08/17 05:49:59 | 000,000,000 | ---D | M] (uTorrentControl2) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012/08/17 05:41:54 | 000,000,000 | ---D | M] (Rain Alarm Extension) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\[email protected]
[2012/08/17 05:42:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\staged
[2012/08/17 05:42:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\trash
[2013/10/13 12:42:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\xgsv5qvc.default-1377867799412\extensions
[2012/07/05 01:20:34 | 000,246,025 | ---- | M] () (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\[email protected]
[2012/07/25 19:27:54 | 000,741,958 | ---- | M] () (No name found) -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/07/27 17:52:36 | 000,002,600 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Mozilla\Firefox\Profiles\bc0zz2i3.default\searchplugins\kickasstorrents.xml
[2013/10/13 12:04:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/10/10 11:31:21 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/13 12:04:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2013/10/11 09:52:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/10/10 11:31:21 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/10/11 09:52:45 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/12/10 04:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

========== Chrome ==========

CHR - default_search_provider: Delta Search (Enabled)
CHR - default_search_provider: search_url = http://www.delta-sea...120684&tsp=5034
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.news.net/...php?referid=118
CHR - Extension: Google Docs = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: lucky leap = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\eiimolhnbbbdagljikeckdkldgemmmlj\1.0.0_0\
CHR - Extension: continuetosave = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfkdijdjahofdpaghgkffimegnldfhga\3.9_0\
CHR - Extension: Chrome In-App Payments service = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Documents and Settings\Angelo New\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/10/10 21:10:57 | 000,449,342 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15430 more lines...
O2 - BHO: (PlusIEEventHelper Class) - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDFViewerPlus\bin\PlusIEContextMenu.dll (Zeon Corporation)
O2 - BHO: (no name) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - No CLSID value found.
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (ZeonIEEventHelper Class) - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files\Nuance\PDFViewerPlus\bin\ZeonIEFavClient.dll (Zeon Corporation)
O3 - HKLM\..\Toolbar: (Nuance PDF) - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDFViewerPlus\bin\ZeonIEFavClient.dll (Zeon Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [OutpostMonitor] C:\Program Files\Agnitum\Outpost Security Suite Pro\op_mon.exe (Agnitum Ltd.)
O4 - HKLM..\Run: [SDTray] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [Directory Opus Desktop Dblclk] C:\Program Files\GPSoftware\Directory Opus\dopusrt.exe (GP Software)
O4 - HKCU..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe (PeerBlock, LLC)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Macro Express 3.lnk = C:\Program Files\Macro Express3\MacExp.exe (Insight Software Solutions, Inc.)
O4 - Startup: C:\Documents and Settings\Angelo New\Start Menu\Programs\Startup\Directory Opus (Startup).lnk = C:\Program Files\GPSoftware\Directory Opus\dopus.exe (GP Software)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Append the content of the link to existing PDF file - C:\Program Files\Nuance\PDFViewerPlus\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Append the content of the selected links to existing PDF file - C:\Program Files\Nuance\PDFViewerPlus\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Append to existing PDF file - C:\Program Files\Nuance\PDFViewerPlus\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Create PDF file - C:\Program Files\Nuance\PDFViewerPlus\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Create PDF file from the content of the link - C:\Program Files\Nuance\PDFViewerPlus\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Create PDF files from the selected links - C:\Program Files\Nuance\PDFViewerPlus\Bin\ZeonIEFavClient.dll (Zeon Corporation)
O8 - Extra context menu item: Open with PDF Viewer Plus - C:\Program Files\Nuance\PDFViewerPlus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
O9 - Extra Button: Outpost Security Suite Pro Quick Tune - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Security Suite Pro\ie_bar.dll (Agnitum Ltd.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: localhost ([]* in Local intranet)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1345086143281 (MUWebControl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://download.mac...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C9D5FBF-47AB-49F4-96C5-BE7D50FB8A34}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C9D5FBF-47AB-49F4-96C5-BE7D50FB8A34}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (c:\progra~1\agnitum\outpos~1\wl_hook.dll) - c:\Program Files\Agnitum\Outpost Security Suite Pro\wl_hook.dll (Agnitum Ltd.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Angelo New\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Angelo New\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {3CF9ECE0-1A9F-11D2-8C73-00C06C2005DE} - C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/08/16 01:17:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/10/13 12:05:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\avgchrome
[2013/10/13 12:03:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2013/10/13 12:02:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Angelo New\Start Menu\Programs\MyPC Backup
[2013/10/12 23:47:03 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2013/10/12 21:43:30 | 000,266,872 | ---- | C] (VirusBuster Kft.) -- C:\WINDOWS\System32\drivers\VBEngNT.sys
[2013/10/12 21:43:28 | 000,802,528 | ---- | C] (Agnitum Ltd.) -- C:\WINDOWS\System32\drivers\SandBox.sys
[2013/10/12 21:42:50 | 000,287,952 | ---- | C] (Agnitum Ltd.) -- C:\WINDOWS\System32\drivers\afwcore.sys
[2013/10/12 21:42:50 | 000,033,888 | ---- | C] (Agnitum Ltd.) -- C:\WINDOWS\System32\drivers\afw.sys
[2013/10/12 21:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Agnitum
[2013/10/12 21:40:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Filt
[2013/10/12 21:40:51 | 000,000,000 | ---D | C] -- C:\Program Files\Agnitum
[2013/10/12 21:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Agnitum
[2013/10/12 21:19:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2013/10/12 20:35:44 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013/10/12 20:35:44 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013/10/12 20:35:44 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/10/12 20:32:49 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013/10/12 08:47:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
[2013/10/12 08:45:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013/10/11 15:01:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Angelo New\Start Menu\Programs\Administrative Tools
[2013/10/11 07:37:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013/10/10 21:03:55 | 000,015,224 | ---- | C] (Safer Networking Limited) -- C:\WINDOWS\System32\sdnclean.exe
[2013/10/10 19:05:33 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/10/10 19:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/10/10 11:30:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Angelo New\Application Data\Skype
[2013/10/10 11:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Skype
[2013/10/10 11:30:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013/10/10 11:30:08 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2013/10/10 11:30:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2013/10/07 21:53:58 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Angelo New\Recent
[2013/10/02 08:46:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/09/28 22:57:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Angelo New\Application Data\Imploded Software
[2013/09/28 22:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Imploded Software
[2013/09/28 22:57:39 | 000,000,000 | ---D | C] -- C:\Program Files\Imploded Software
[2013/09/25 00:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Angelo New\Desktop\Georgio
[2013/09/24 14:29:27 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2013/09/24 14:27:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2012/12/23 14:43:26 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Angelo New\Application Data\pcouffin.sys
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/10/13 14:07:26 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2013/10/13 14:06:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/10/13 13:56:16 | 000,000,894 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/13 13:56:07 | 000,497,650 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/10/13 13:56:07 | 000,085,816 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/10/13 13:54:33 | 000,029,721 | ---- | M] () -- C:\Documents and Settings\Angelo New\peerblock.dmp
[2013/10/13 13:53:13 | 000,000,644 | ---- | M] () -- C:\WINDOWS\tasks\Check for updates (Spybot - Search & Destroy).job
[2013/10/13 13:53:11 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/10/13 13:52:45 | 000,000,890 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/13 13:51:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/10/13 13:01:48 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2013/10/13 12:40:43 | 000,002,307 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PaperPort.lnk
[2013/10/13 09:25:10 | 000,365,712 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/13 08:53:16 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/10/12 23:47:49 | 000,000,648 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/10/12 22:53:44 | 000,000,936 | ---- | M] () -- C:\Documents and Settings\Angelo New\Start Menu\Programs\Startup\Directory Opus (Startup).lnk
[2013/10/12 21:27:07 | 000,016,551 | ---- | M] () -- C:\WINDOWS\BRPARAM.INI
[2013/10/12 20:38:33 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2013/10/12 20:30:18 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2013/10/12 20:30:16 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2013/10/12 20:30:16 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2013/10/12 20:29:24 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2013/10/12 20:24:41 | 000,022,720 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013/10/12 20:19:02 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2013/10/12 11:47:07 | 000,000,442 | ---- | M] () -- C:\WINDOWS\MYOBP.INI
[2013/10/12 11:46:58 | 000,000,043 | ---- | M] () -- C:\WINDOWS\MYOB.INI
[2013/10/12 11:10:40 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/10/11 16:17:32 | 000,000,860 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-11 16_09_02.mjf
[2013/10/11 16:05:48 | 000,000,632 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-11 15_58_52.mjf
[2013/10/11 15:44:33 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-11 15_36_04.mjf
[2013/10/11 10:41:50 | 000,001,482 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes.lnk
[2013/10/11 09:52:50 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013/10/11 08:09:55 | 000,101,798 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2013/10/10 21:10:57 | 000,449,342 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013/10/10 21:04:51 | 000,000,616 | ---- | M] () -- C:\WINDOWS\tasks\Refresh immunization (Spybot - Search & Destroy).job
[2013/10/10 21:04:51 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\Scan the system (Spybot - Search & Destroy).job
[2013/10/10 21:04:11 | 000,001,836 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk
[2013/10/10 18:51:33 | 000,001,686 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2013/10/10 10:16:00 | 000,012,288 | ---- | M] () -- C:\WINDOWS\impborl.dll
[2013/10/10 10:15:55 | 007,013,905 | ---- | M] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\Install.exe
[2013/10/10 10:15:45 | 000,037,232 | ---- | M] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\ModifyFlash.exe
[2013/10/09 21:25:47 | 000,001,012 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-09 18_26_38.mjf
[2013/10/06 12:36:05 | 000,000,632 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 12_34_12.mjf
[2013/10/06 09:47:45 | 000,001,012 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 09_36_08.mjf
[2013/10/06 09:11:33 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 09_06_09.mjf
[2013/10/06 08:58:52 | 000,001,012 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 08_35_27.mjf
[2013/10/06 00:49:57 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-05 23_35_27.mjf
[2013/10/05 14:11:26 | 000,001,012 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-05 12_46_28.mjf
[2013/10/05 13:45:56 | 000,001,012 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-05 12_21_02.mjf
[2013/09/29 18:53:04 | 000,802,528 | ---- | M] (Agnitum Ltd.) -- C:\WINDOWS\System32\drivers\SandBox.sys
[2013/09/28 23:18:27 | 000,000,632 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-09-28 22_15_37.mjf
[2013/09/28 23:13:50 | 000,000,632 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-09-28 21_57_47.mjf
[2013/09/28 22:57:42 | 000,000,994 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\Helium Audio Joiner.lnk
[2013/09/25 13:53:41 | 013,353,564 | ---- | M] () -- C:\Documents and Settings\Angelo New\My Documents\Georgio Bogdanis.pxc
[2013/09/25 13:53:38 | 000,152,070 | ---- | M] () -- C:\Documents and Settings\Angelo New\My Documents\Georgio Bogdanis.psh
[2013/09/25 13:43:17 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013/09/25 13:15:07 | 000,152,070 | ---- | M] () -- C:\Documents and Settings\Angelo New\My Documents\Georgio Bogdanis.bak
[2013/09/25 10:01:58 | 000,001,756 | ---- | M] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\ProShow Gold.lnk
[2013/09/24 14:27:23 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2013/09/24 12:14:36 | 000,000,049 | ---- | M] () -- C:\WINDOWS\transp.gif
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/10/12 23:47:49 | 000,000,648 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/10/12 22:53:44 | 000,000,936 | ---- | C] () -- C:\Documents and Settings\Angelo New\Start Menu\Programs\Startup\Directory Opus (Startup).lnk
[2013/10/12 21:42:42 | 000,000,049 | ---- | C] () -- C:\WINDOWS\transp.gif
[2013/10/12 20:35:27 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2013/10/12 20:34:25 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/10/12 20:34:12 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013/10/12 20:34:08 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2013/10/12 20:34:06 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013/10/12 20:33:46 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2013/10/12 20:33:39 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013/10/12 20:33:30 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2013/10/12 20:32:52 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013/10/12 20:27:04 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2013/10/12 18:33:22 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2013/10/12 18:33:22 | 000,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2013/10/12 18:33:22 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2013/10/12 18:33:22 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2013/10/12 18:33:22 | 000,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2013/10/12 18:33:22 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2013/10/12 18:33:22 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2013/10/12 18:33:22 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2013/10/12 18:33:22 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2013/10/12 18:33:21 | 002,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2013/10/12 18:33:21 | 001,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2013/10/12 18:33:21 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2013/10/12 18:33:21 | 000,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2013/10/12 18:33:21 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2013/10/12 18:33:21 | 000,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2013/10/12 18:33:21 | 000,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2013/10/12 18:33:21 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2013/10/12 18:33:21 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2013/10/12 16:59:08 | 000,001,767 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Belarc Advisor.lnk
[2013/10/12 08:45:39 | 000,000,894 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/12 08:45:39 | 000,000,890 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/11 16:09:02 | 000,000,860 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-11 16_09_02.mjf
[2013/10/11 15:58:52 | 000,000,632 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-11 15_58_52.mjf
[2013/10/11 15:36:04 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-11 15_36_04.mjf
[2013/10/10 21:04:50 | 000,000,446 | ---- | C] () -- C:\WINDOWS\tasks\Scan the system (Spybot - Search & Destroy).job
[2013/10/10 21:04:48 | 000,000,616 | ---- | C] () -- C:\WINDOWS\tasks\Refresh immunization (Spybot - Search & Destroy).job
[2013/10/10 21:04:47 | 000,000,644 | ---- | C] () -- C:\WINDOWS\tasks\Check for updates (Spybot - Search & Destroy).job
[2013/10/10 21:04:11 | 000,001,836 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk
[2013/10/10 11:30:10 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2013/10/10 10:42:47 | 000,205,360 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2013/10/10 10:25:28 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2013/10/10 10:16:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2013/10/10 10:15:53 | 007,013,905 | ---- | C] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\Install.exe
[2013/10/10 10:15:45 | 000,037,232 | ---- | C] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\ModifyFlash.exe
[2013/10/09 18:26:38 | 000,001,012 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-09 18_26_38.mjf
[2013/10/09 10:07:13 | 000,101,798 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2013/10/06 12:34:12 | 000,000,632 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 12_34_12.mjf
[2013/10/06 09:36:08 | 000,001,012 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 09_36_08.mjf
[2013/10/06 09:06:09 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 09_06_09.mjf
[2013/10/06 08:35:27 | 000,001,012 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-06 08_35_27.mjf
[2013/10/06 00:35:27 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-05 23_35_27.mjf
[2013/10/05 13:46:28 | 000,001,012 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-05 12_46_28.mjf
[2013/10/05 13:21:02 | 000,001,012 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-10-05 12_21_02.mjf
[2013/09/28 23:15:37 | 000,000,632 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-09-28 22_15_37.mjf
[2013/09/28 22:57:47 | 000,000,632 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\haj-log_2013-09-28 21_57_47.mjf
[2013/09/28 22:57:42 | 000,000,994 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\Microsoft\Internet Explorer\Quick Launch\Helium Audio Joiner.lnk
[2013/09/25 13:15:07 | 013,353,564 | ---- | C] () -- C:\Documents and Settings\Angelo New\My Documents\Georgio Bogdanis.pxc
[2013/09/25 13:15:07 | 000,152,070 | ---- | C] () -- C:\Documents and Settings\Angelo New\My Documents\Georgio Bogdanis.psh
[2013/09/25 13:15:07 | 000,152,070 | ---- | C] () -- C:\Documents and Settings\Angelo New\My Documents\Georgio Bogdanis.bak
[2013/09/24 14:29:45 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Angelo New\Start Menu\Programs\Windows Media Player.lnk
[2013/09/24 14:27:23 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2013/08/23 19:25:47 | 000,000,040 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\cdr.ini
[2013/06/16 13:01:01 | 000,000,132 | ---- | C] () -- C:\WINDOWS\MYOBPOpt.INI
[2013/05/10 11:58:43 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2013/05/03 22:35:03 | 000,001,739 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBPowerAMP Mp2 and BwfMp2 codec.dat
[2013/05/03 22:34:51 | 000,001,224 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Wave64 Codec.dat
[2013/05/03 22:34:39 | 000,002,228 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBPoweramp tooLame MP2 codec.dat
[2013/05/03 22:34:33 | 000,011,406 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBPowerAMP Real Audio (Helix) Encoder.dat
[2013/05/03 22:34:04 | 000,001,219 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Dalet Codec.dat
[2013/05/03 22:33:51 | 000,003,012 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp WavPack Codec.dat
[2013/05/03 22:33:26 | 000,003,065 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Ogg Vorbis Codec.dat
[2013/05/03 22:33:02 | 000,003,153 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp mp3 (Fraunhofer IIS) Codec.dat
[2013/05/03 22:32:33 | 000,003,143 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Monkeys Audio Codec.dat
[2013/05/03 22:32:10 | 000,002,878 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp [Calculate Audio CRC] Codec.dat
[2013/05/03 22:31:04 | 000,013,961 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp DSP Effects.dat
[2013/05/03 22:30:51 | 000,017,993 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall-dBpoweramp Music Converter.dat
[2013/05/03 22:30:50 | 011,744,840 | R--- | C] () -- C:\WINDOWS\System32\SpoonUninstall.exe
[2013/04/18 12:15:29 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini
[2013/01/22 15:07:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2012/12/23 14:44:23 | 000,001,057 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\vso_ts_preview.xml
[2012/12/23 14:43:26 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\inst.exe
[2012/12/23 14:43:26 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\pcouffin.cat
[2012/12/23 14:43:26 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\pcouffin.inf
[2012/12/23 01:27:41 | 000,029,721 | ---- | C] () -- C:\Documents and Settings\Angelo New\peerblock.dmp
[2012/12/13 21:23:10 | 000,000,611 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\AutoGK.ini
[2012/10/16 13:51:58 | 000,001,646 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2012/09/11 05:23:18 | 001,867,144 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1123561945-1454471165-682003330-1005-0.dat
[2012/09/11 04:31:56 | 000,293,382 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2012/09/08 17:47:19 | 000,000,399 | ---- | C] () -- C:\WINDOWS\AudioConverter.INI
[2012/08/27 09:39:48 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/08/25 15:44:51 | 000,000,034 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2012/08/24 18:41:34 | 000,087,572 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2012/08/16 18:28:48 | 000,000,442 | ---- | C] () -- C:\WINDOWS\MYOBP.INI
[2012/08/16 18:28:48 | 000,000,043 | ---- | C] () -- C:\WINDOWS\MYOB.INI
[2012/08/16 11:04:03 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012/08/16 11:02:24 | 000,365,712 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/08/16 10:33:54 | 000,000,358 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2012/08/16 10:02:36 | 000,000,236 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2012/08/16 10:02:36 | 000,000,094 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2012/08/16 10:02:13 | 000,016,551 | ---- | C] () -- C:\WINDOWS\BRPARAM.INI
[2012/08/16 10:01:04 | 000,000,114 | ---- | C] () -- C:\WINDOWS\System32\BRLMW03A.INI
[2012/08/16 10:01:03 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\BRTCPCON.DLL
[2012/08/16 10:00:17 | 000,000,086 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini
[2012/08/16 10:00:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\brdfxspd.dat
[2012/08/16 09:47:42 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys
[2012/08/16 09:44:03 | 000,000,663 | ---- | C] () -- C:\WINDOWS\openrda.ini
[2012/08/16 09:43:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\drvxl32.INI
[2012/08/16 09:43:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\drvwd32.INI
[2012/08/16 08:49:47 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2012/08/16 08:44:45 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/08/16 02:47:47 | 000,000,125 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2012/08/16 02:12:44 | 000,015,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\IntelMEFWVer.dll
[2012/08/16 02:11:39 | 000,081,936 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2012/08/16 02:03:30 | 000,009,216 | R--- | C] ( ) -- C:\WINDOWS\System32\IGFXDEVLib.dll
[2012/08/16 02:03:30 | 000,000,264 | R--- | C] () -- C:\WINDOWS\System32\GfxUI.exe.config
[2012/08/16 02:03:29 | 000,732,392 | R--- | C] () -- C:\WINDOWS\System32\igkrng700.bin
[2012/08/16 02:03:29 | 000,557,080 | R--- | C] () -- C:\WINDOWS\System32\igfcg700m.bin
[2012/08/16 02:02:11 | 000,021,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2012/08/16 01:51:32 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2012/08/16 01:51:25 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2012/08/16 01:23:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012/08/16 01:12:58 | 000,022,720 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012/05/08 22:45:47 | 000,044,352 | ---- | C] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\rx_audio.Cache
[2012/05/08 22:44:53 | 000,000,072 | ---- | C] () -- C:\Documents and Settings\Angelo New\Local Settings\Application Data\rx_image32.Cache
[2012/02/02 23:08:06 | 000,001,536 | ---- | C] () -- C:\WINDOWS\System32\IusEventLog.dll
[2011/10/24 19:02:47 | 000,002,048 | ---- | C] () -- C:\Documents and Settings\Angelo New\Application Data\Photobook Designer Prefs
[2006/02/10 05:50:54 | 000,758,025 | ---- | C] () -- C:\Documents and Settings\All Users\ipfilter.dat
[2003/10/06 19:21:31 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\sdpsenv.dat

========== ZeroAccess Check ==========

[2012/08/16 01:54:31 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 05:42:06 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2008/04/14 05:41:54 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 05:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/10/11 07:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012/12/02 14:44:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1(2)
[2013/10/12 21:40:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Agnitum
[2012/09/04 13:06:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Secure Search
[2013/10/13 12:03:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2013/10/09 15:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Boxtools
[2012/08/16 02:30:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Carbonite
[2012/12/28 16:46:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\continuetosave
[2012/08/16 10:00:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ControlCenter4
[2013/02/09 08:47:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\dvdfab
[2012/11/21 20:18:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
[2013/03/29 23:52:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Freemake
[2012/08/16 02:08:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GPSoftware
[2013/01/22 15:05:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HotSync
[2013/09/28 22:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Imploded Software
[2012/08/16 02:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Insight Software
[2012/08/16 02:58:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Insight Software Solutions
[2013/07/28 20:56:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2013/05/26 22:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LenovoEMCStorageManager
[2013/08/02 19:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MYOB
[2013/08/03 17:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2012/08/16 10:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nuance
[2013/01/20 16:41:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Photodex
[2012/12/28 16:43:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Premium
[2012/08/16 10:13:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2012/11/21 20:19:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2012/08/25 11:24:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Squeezebox
[2013/10/13 12:40:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2012/10/15 13:13:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2012/12/24 09:27:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\vsosdk
[2012/12/28 16:44:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WoW Worldwide Software LTD
[2013/06/07 12:19:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YTD Video Downloader
[2012/10/13 00:47:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YTD YouTube Downloader & Converter
[2012/08/16 10:33:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\zeon
[2012/08/16 10:37:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/08/19 18:03:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\.oit
[2013/08/25 12:42:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Audacity
[2012/08/17 01:29:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\AUSkey
[2012/08/17 01:29:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Avery
[2012/12/03 23:17:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\calibre
[2012/08/19 17:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\ControlCenter4
[2012/08/17 01:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\DAEMON Tools Pro
[2013/05/03 22:42:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\dBpoweramp
[2012/08/17 01:36:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\DDMSettings
[2012/08/17 01:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\DiskAid
[2012/08/17 01:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\DriverCure
[2013/03/15 19:57:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\DroidExplorer
[2012/11/12 11:48:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Dropbox
[2012/08/17 01:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\EAC
[2013/01/03 08:39:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\EMCO
[2012/08/17 01:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Firetrust
[2013/10/12 17:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\foobar2000
[2013/08/03 18:03:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\freac
[2012/08/27 11:34:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\FreeAudioPack
[2013/05/10 11:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\GetRightToGo
[2012/08/17 02:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\GPSoftware
[2012/08/17 02:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Guitar Pro 6
[2013/02/09 09:48:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\HandBrake
[2013/01/22 15:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\HotSync
[2013/09/28 22:57:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Imploded Software
[2013/03/14 18:50:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\KastorFreeVimeoDownloader
[2012/08/17 02:32:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\LightZone
[2012/08/28 00:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\M4A to MP3 Converter
[2013/10/13 13:06:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\MailWasherPro
[2012/09/25 22:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\MediaMonkey
[2012/12/28 16:47:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Medieval Software
[2013/10/13 14:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Mp3tag
[2013/08/03 17:56:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\NCH Swift Sound
[2013/01/20 16:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Netscape
[2012/08/19 17:59:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Nuance
[2012/08/17 05:53:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Photobook Designer
[2012/08/17 06:35:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Photodex
[2012/08/17 07:42:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\SlySoft
[2012/11/17 09:52:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Thunderbird
[2012/08/17 07:42:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\TomTom
[2012/08/17 07:51:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\TreeCardGames
[2012/08/17 07:51:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Ulead Systems
[2013/10/13 14:19:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\uTorrent
[2013/08/02 11:36:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Vso
[2013/01/21 11:00:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\WeatherWatcherLive
[2012/08/26 17:08:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Xilisoft
[2012/08/17 07:53:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Angelo New\Application Data\Zeon

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 240 bytes -> C:\Documents and Settings\All Users\Application Data\sdpsenv.dat:naughtypirates
@Alternate Data Stream - 171 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0CE7F3C9
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B9FB94D
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:01C66DD9

< End of report >

Edited by Angelo Sartore, 12 October 2013 - 09:56 PM.

  • 0

Advertisements

#2
Dave46
Posted 14 October 2013 - 05:26 PM

Dave46

    Member

  • Member
  • PipPipPip
  • 381 posts
Hi Angelo :) Welcome to Geeks to Go. You should probably post your log on

the Malware Removal forum. It looks like you have Delta search and Babylon.

They can cause the type of problem you are having. Dave
  • 0

#3
Dave46
Posted 14 October 2013 - 05:29 PM

Dave46

    Member

  • Member
  • PipPipPip
  • 381 posts
Here is a link to the forum. Malware Removal Forum
  • 0

#4
Angelo Sartore
Posted 15 October 2013 - 01:21 AM

Angelo Sartore

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
Hi Dave,
I checked the Malware removal forum & I think I have been able to solve the issue.
So far, so good! I'll report back if things go pear shaped again. Many thanks for the guidance.

Regards,

Angelo Sartore

Melbourne
AUSTRALIA

I LOVE COOKING WITH WINE .. . .
SOMETIMES I EVEN PUT IT INTO THE FOOD!


ADOPT, ADAPT, INVENT, DESTROY !
  • 0

#5
Angelo Sartore
Posted 15 October 2013 - 03:31 AM

Angelo Sartore

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
Well OK. I spoke too soon!
I am still having an issue with my browser freezing. I have discovered that it appears to be just the browser that is locking me out. I was transferring some files from a drive to my NAS. As the browser froze, I walked away from the PC in a pissed off state only to return an hour later. I rebooted the pc & discovered all the files I was wanting to transfer from one drive to another had completed without any errors. So it appears the PC is still working in the background. The image on the screen freezes or disappears, The pointer is frozen on the screen & I can't use the alt/tab to cycle through the open applications, but the PC seems to still be functioning in the background.
Do you have any suggestions?
Thanks in advance.

Angelo Sartore

Melbourne
AUSTRALIA

I LOVE COOKING WITH WINE .. . .
SOMETIMES I EVEN PUT IT INTO THE FOOD!


ADOPT, ADAPT, INVENT, DESTROY !
  • 0
Back to Web Browsers and Email · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Software
  3. Web Browsers and Email

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP